LinuxSecurity.com 		Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Security Week: February 6th, 2012
Linux Advisory Watch: February 3rd, 2012
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Make security the business of the business Print E-mail
User Rating:      How can I rate this item?
Source: vnunet.com - Posted by David Isecke   
Security Companies in the IT security industry must be very pleased with themselves at the moment. Business is booming. We have moved on from the perception that the internet is inherently insecure and anyone who so much as looks at a computer will fall foul of teams of evil teenagers sitting in cyberspace waiting to steal their credit card details. But now we are privy to a new wave of security pressures such as software vulnerabilities, viruses, worms, identity theft, phishing and denial of service attacks. The internet and new, open ways of working have opened a back door to the business. . . . Companies in the IT security industry must be very pleased with themselves at the moment. Business is booming.

We have moved on from the perception that the internet is inherently insecure and anyone who so much as looks at a computer will fall foul of teams of evil teenagers sitting in cyberspace waiting to steal their credit card details.

But now we are privy to a new wave of security pressures such as software vulnerabilities, viruses, worms, identity theft, phishing and denial of service attacks.

The internet and new, open ways of working have opened a back door to the business.

Figures from anti-virus specialist Symantec last week show that in 2003, seven new software vulnerabilities were identified every day.

And research from the Department for Trade and Industry and PricewaterhouseCoopers shows that around half of UK companies suffered a virus or denial of service attack last year.

Symantec thinks numbers of flaws have reached a plateau, but the sophistication of worms and viruses created to exploit these vulnerabilities is maturing.

The latest trend to emerge is online extortion, often engineered by gangs of organised criminals.

Businesses with high profile web sites, often sites that generate money, are targeted. The hacker finds a back-door into the site and the company's systems, and leaves some kind of evidence that they are in and have the ability to wreak havoc.

The company is then contacted and threatened with its site being taken down or its data removed, if sums of money are not paid to the criminals.

All sounds a bit James Bond, but the National HiTech Crime Unit is taking it very seriously, citing it as one of the biggest growing trends in the world of cybercrime.

It has led at least one insurance company, Hiscox, to start offering insurance against hacking.

If your company is hit by one of these extortion rackets it will pay the ransom, and recoup damages if worse comes to worse.

Hiscox is not going to insure any old company just because it happens to operate predominantly on the internet. But if this is a trend that takes off, there is a danger that companies will be complacent when it comes to protecting their digital assets, treating them with similar regard to a camera on a week's holiday - it doesn't matter, it's covered on the insurance.

This slack attitude will simply play into the hands of the unscrupulous individuals looking to sully the internet and turn it into a dangerous criminal landscape.

Read this full article at vnunet.com

Only registered users can write comments.
Please login or register.

Powered by AkoComment!
 
< Prev   Next >
    
Partner

 
Latest Features
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Using the sec-wall Security Proxy
sec-wall: Open Source Security Proxy
Yesterday's Edition
Hackers Hit Apple Supplier Foxconn, Leak Usernames And Passwords
Hackers Mug Google's Wallet App on Rooted Android Devices
Google Chrome will no longer check for revoked SSL certificates online
Have Your Users' Passwords Already Been Hacked?
DDoS Tools Flourish, Give Attackers Many Options
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2012 Guardian Digital, Inc. All rights reserved.