Category Archives: Security

Игроки всегда ценят удобный и стабильный доступ к играм. Для этого идеально подходит зеркало Вавады, которое позволяет обходить любые ограничения, обеспечивая доступ ко всем бонусам и слотам.

33% of Employees Fail to Meet Minimum Security Standards for BYOD

Posted on by

Bring Your Own Devices

By 2017, half of employers will require employees to provide their own mobile devices for work use, Gartner reports. There are many benefits to BYOD policies, from greater productivity on devices users are more comfortable with to lower corporate costs when businesses do not have to purchase mobile equipment or service plans. But securing these devices poses tremendous risk that may not be worth the reward.

According to data security firm Bitdefender, 33% of U.S. employees who use their own devices for work do not meet minimum security standards for protecting company data. In fact, 40% do not even activate the most basic layer of protection: activating lock-screen features. Further, while the majority of workers could access their employer’s secure network connection, only half do so.

Bitdefender reports that there are 5 core security functionalities a strong BYOD policy should check:

  • Data encryption, for data residing on the employee’s device and for data transiting different channels.
  • Application access control, using port knocking, whitelists and intrusion prevention systems, for enterprise apps communicating with company servers.
  • Mobile malware detection and removal, to ensure clean devices enter the company and to keep them malware-free throughout their use.

  • Real-time app and website scanning, to make sure the device does not get infected by malicious apps or websites when the employee wants to download/access them.

  • App permission management, to allow employees to see exactly what types of information does an application require permission to access and share with the application vendor.

Check out more of the study’s findings below:

Bitdefender BYOD infographic

Crime Expert Reveals Biggest Gaps in Company Security

Posted on by

WINNIPEG, MANITOBA, Canada – After decades of working undercover for the Royal Canadian Mounted Police, the U.S. Drug Enforcement Administration and U.S. Customs Service, crime and risk expert Chris Mathers knows where companies are vulnerable and what it takes to protect them.

“In a world where popular culture tells us that the ends justify the means, crime is all about perception,” he said in a keynote address at the 2014 RIMS Canada Conference. “Young people are bombarded with it all the time, but we are in business, too. So the question is, how vulnerable is your business?”

Mathers, who joined the forensic division of KPMG and was later named president of corporate intelligence, shared his insight into how companies can best guard against “the business of crime, and crime in business.”

During his 20 years dealing with drug traffickers, money launderers and members of organized crime syndicates, Mathers developed what he calls a “10/80/10” theory – 10% of the population is truly bad, 10% is truly good and would never lie (but you will probably never meet), and the other 80% is everywhere in between. Identifying and managing the risks of that 80% requires far more work than employers are currently doing, he said.

Background checks may be the single biggest thing companies can do better, Mathers said. While most businesses perform background checks when an employee is hired, such investigations are seldom conducted during the course of employment. As an example, he cited a case where a company had a director who was serving jail time on the weekends. Due to Canadian privacy laws, however, the case was never reported, so no one knew he had been convicted and imprisoned while on staff. In addition to possible reputation implications, the company could have been exposed to liability if any incidents had occurred at work.

While searching for criminal records of new hires is an excellent start, periodic checks should be implemented for all employees. High levels of drug use in the workplace in industries like manufacturing can be further compounded by the lack of drug testing in Canada, Mathers said. Further, 90% of corporate theft cases he have involved perpetrators who were gamblers.

He suggested that investigations should examine whether employees: have extreme views, use or are addicted to drugs, exhibit signs of alcoholism, are addicted to gambling or participate in illegal gambling, frequent prostitutes, or have relatives or a spouse associated with a criminal organization.

Associating with criminals can be a significant risk factor, regardless of the nature of the relationship. “Prostitutes are criminals and associate with criminals,” Mathers said. “They are around that activity and more likely to engage in it, which may mean they steal a client’s wallet or steal the sensitive intellectual property he’s carrying.” Similarly, an administrative assistant who is married to a member of the Hell’s Angels can introduce far more than just reputation risk if the spouse gets involved in illegal activities like drug smuggling.

Employees within a company can also rationalize criminal behavior. In the case of a man found to have stolen thousands of dollars through expense account fraud, for example, Mathers said the company faced a wrongful dismissal suit from the thief. He was never told that he could not steal, the man said, claiming the practice was an “unofficial bonus program.” Further, he claimed his boss had been doing it for years. “People see that behavior and come to think it is OK because they become accustomed to seeing it,” Mathers said. Maintaining regular internal investigations and ensuring compliance does not just bust wrong-doers, but prevents others from developing, especially as new technology continually emerges to make theft easier to commit and harder to track.

“There are no new crimes – they’re the same crimes, they’re just using new techniques to get them to you,” he said. Companies need to keep updating their monitoring strategies to match.

 

What Motivates Hackers?

Posted on by

At Black Hat USA 2014, the preeminent global information security conference for self-identified “black hat” hackers, IT security firm Thycotic surveyed 127 participants to determine what makes hackers tick. “Understanding why hackers do what they do is the first step toward better protecting your sensitive data from unsanctioned access,” the firm explained.

buy strattera online orthosummit.com/wp-content/uploads/2023/10/jpg/strattera.html no prescription pharmacy

Most are motivated by thrill, Thycotic found, and profoundly few are worried about getting caught. What’s more, despite extensive media coverage, companies’ internal education efforts and all the security measures implemented by IT departments, 99% of hackers report that basic tactics like phishing are still effective.

buy rybelsus online orthosummit.com/wp-content/uploads/2023/10/jpg/rybelsus.html no prescription pharmacy

And almost half of them are working on more sophisticated approaches.

buy zestril online orthosummit.com/wp-content/uploads/2023/10/jpg/zestril.html no prescription pharmacy

Check out the highlights from the firm’s Black Hat 2014 Survey:

Thycotic Hacker Infographic

Staying Safe at the World Cup

Posted on by

Brazil is steadily moving into the international spotlight as it prepares to host the World Cup, which begins next week on June 12, and the Olympics in 2016, both of which are forecasted to showcase its status as an emerging economic power. On the other hand, these events are also likely to amplify security risks in the country.

The primary risk for travelers during the World Cup is the rise of common crime in host cities.

Often times, foreigners are perceived as wealthier and thus make attractive targets for pickpockets and armed robbers as well as express and traditional kidnappers. Risk managers should be aware that preparing travelers for these crimes is the best mitigation strategy.

Beyond crime, civil unrest is also a threat. Many groups already have plans in place to protest; the magnitude of their demonstrations and effectiveness of the government’s response are factors that are unpredictable. Widespread rallies may result in localized and violent clashes with police, especially in Sao Paulo and Rio de Janeiro, where they may be larger and more frequent.

These demonstrations can also routinely halt traffic, which can force an ambulance to take an hour to reach a hospital that may only be 20 minutes away. Risk managers are advised to plan an alternative route, especially in a medical crisis.

The Proactive Risk Manager
Due diligence and intelligence are every risk manager’s responsibility, but conveying this information to travelers is critical. This includes offering pre-trip training which teaches travelers how to be self-aware, and addresses visa requirements, language and cultural information, and any relevant medical and security threats. Simultaneously, all risks, mitigation strategies and contingency plans should be clearly communicated to relevant departments.

During trips to and within Brazil, risk managers should be aware of any itinerary delays and security incidents.

Knowing where travelers are at all times is vital; traveler tracking services, often offered by assistance providers, can help enormously in case of an emergency.

Following Best Practices
As we approach the World Cup, travelers and risk managers should expect a heightened security presence of police and other law enforcement officials, especially in all 12 host cities. That said, it is easy to fall into a false sense of security. Using common sense safety precautions can help to mitigate risks and ensure peace of mind:

  • Avoid exposing flashy jewelry or high-price items such as cell phones, laptops, cameras, etc.
  • Always carry extra medications with you.
  • Choose an indoor ATM so you don’t fall prey to express kidnappers or muggers.
  • Carry only a small amount of cash with you.

    Leave passport and credit cards in your hotel’s safe.

  • Do not walk alone at night. It is best to travel in groups.
  • Avoid public transportation. Hotels can assist in hailing “radio taxis” (taxis you call ahead of time to arrange a pick-up rather than cabs on the street).
  • Take out comprehensive travel and medical insurance before your travel.
  • Remember the local equivalent to “911″ is divided up into three services: 190 – Policia (Police), 192- Ambulancia (Ambulance), and 193- Bombeiros (Fire).
  • Carry the number of the nearest English speaking hospital and an emergency contact on you.

For more on staying safe at the World Cup, read our cover story in this month’s issue of Risk Management.