Your monthly update of ICT continuity news and information
NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/ictnewsjuly2023.html
FEATURE ARTICLES
AI and network security: balancing efficiency and risk
Artificial intelligence - as embedded within network security - plays a critical role in enabling organizations to stay cyber secure. In this interview security engineer Gergana Kungalova describes the network security problems that AI addresses and the risks involved in using AI within this area.
Read the article
• World
DORA: steps for implementing the Digital Operational Resilience Act
Impacted organizations have until January 2025 to become fully compliant with the EU’s Digital Operational Resilience Act. Dr. Roland Pulfer looks at what needs to be taken into account and how to successfully and pragmatically make the changes required for compliance.
Read the article
• Europe
Five data backup and recovery challenges threatening SaaS application data
Asigra is highlighting five major data protection challenges threatening SaaS application data, as well as the need for comprehensive data protection measures to safeguard this information.
Read the article
• World
Managing AI risks: the ethical imperative
Peter Ruffley explores the ethical issues affecting the corporate adoption of AI, the importance of trust and the need for robust data sets that support robust bias checking.
Read the article
• World
Data resilience strategies and management
Data is the currency of the digitalized world and its importance in today’s business landscape cannot be overestimated. Protecting this investment requires data resilience strategies to be in place. In this article Alberto G. Alexander explains what data resilience involves.
Read the article
• World
‘Impregnable’ off-grid computers exposed by the one thing they can’t do without - their power supply
Quantum computing will light the way for hackers to identify and attack air-gapped servers - high-security computers once thought immune to data theft - new analysis by Cystel has revealed.
Read the article
• World
The Internet of Things, digital twins, and resilience
Digital twinning has been making waves as the latest evolution from ‘Industry 4.0’. In a nutshell, a digital twin is a virtual replica of a physical object or process powered through IoT devices. Oleksandr Maidaniuk looks at how digital twins are being used and where resilience fits into the picture.
Read the article
• World
A new dawn in risk management: how will AI shape the future of compliance?
AI is set to transform the way companies manage their key business functions – risk and compliance included, says Craig Adams. In this article he explores the opportunities and the challenges that need to be addressed by GRC teams.
Read the article
• World
Data sovereignty is key to cyber resilience
Simon Pamplin explains why those organizations still taking a tech-first approach to cyber security are fundamentally misunderstanding the objectives of global data protection regulation – and leaving both individuals and the business dangerously exposed as a result.
Read the article
• World
Enhance your cyber resilience with The Cyber Response Builder
The Cyber Response Builder is designed to help you proactively build your cyber resilience capabilities to anticipate, respond to, and recover from cyber attacks. The guide provides an assessment to help you quickly evaluate your current capability and then walks you through a framework to strengthen and build out your response.
Read the article |
NEWS ARTICLES
Research shows that business continuity response measures are not keeping pace with cyber threats
New research commissioned by Cohesity has found that the majority of businesses do not have the necessary cyber resilience strategies or data security capabilities required to address today’s escalating cyber threats and maintain business continuity.
Read the article
• World
IBM issues annual Cost of a Data Breach Report
IBM has published its 2023 Cost of a Data Breach Report, which is based on a survey conducted by Ponemon Institute. This has found, amongst other things, that AI is having a positive impact on breach lifecycles.
Read the article
• World
Cyber security leaders see AI as their biggest emerging cyber threat
Cyber security leaders claim that AI is the biggest cyber threat to their business, according to new research from RiverSafe, which is published in the ‘AI Unleashed: Navigating Cyber Risks Report’.
Read the article
• World
Guidance for managing data centres / centers during extreme heat
The data centre cooling experts at Vertiv, a global provider of critical digital infrastructure and continuity solutions, has published guidance for managing data centres/ centers during periods of extreme heat.
Read the article
• World
71 percent of organizations may have been breached and not know about it
Vectra AI has released a new research report identifying that 97 percent of analysts are worried they will miss security events, with 71 percent admitting their organization may have been compromised and they don’t know about it yet.
Read the article
• Various
Guidance released on security considerations for 5G network slicing
The US National Security Agency (NSA) and CISA has published a new guidance document which focuses on addressing some identified threats to 5G network slicing, and provides industry recognized practices for the design, deployment, operation, and maintenance of a hardened 5G standalone network slice.
Read the article
• US / World
Just two percent of industry experts are confident in their organization’s security strategies
OPSWAT has released key findings from its 2023 State of Web Application Security report, based on an online survey of over 400 executive leaders, managers, and senior contributors.
Read the article
• World
39 percent of businesses experienced a data breach in their cloud environment last year
Thales has released its 2023 Thales Cloud Security Study, an annual assessment of the latest cloud security threats, trends and emerging risks based on a survey of nearly 3,000 IT and security professionals across 18 countries.
Read the article
• World
Cloud security threats are rampant: driven by misconfigurations
Check Point, in collaboration with Cybersecurity Insiders, has released its 2023 Cloud Security Report. The report, based on a survey of over 1,000 cyber security professionals worldwide, provides insights into the current state of cloud security management.
Read the article
• World
Cybercriminals are becoming more sophisticated in their attacks finds new report
Acronis has released the findings of its Mid-Year Cyberthreats Report, ‘From Innovation to Risk: Managing the Implications of AI-driven Cyberattacks’.
Read the article
• World
Bank of Ireland outage down to expired SSL machine identity
On Friday 30th June 2023 the Bank of Ireland experienced an outage that resulted in online and mobile customers unable to access their accounts and services. The outage appears to have been due to an expired SSL machine identity.
Read the article
• Europe
A new wave of insider threats will be driven by ‘Shadow AI’
Imperva, Inc., is warning that the twin factors of poor data controls and the advent of new generative AI tools based on Large Language Models (LLMs) will lead to a spike in insider data breaches over the coming year.
Read the article
• World
Four critical areas of emerging AI regulation that organizations need to consider
With various lawmakers across the globe proposing regulations and guidance on large language model (LLM) tools, such as ChatGPT and Google Bard, Gartner, Inc. has identified four critical areas for general counsel (GC) and legal leaders to address.
Read the article
• World
Report shows that companies struggle with digital supply chain visibility
Despite 84 percent of businesses claiming to prioritize third-party risk management, more than 40 percent have insufficient visibility into their digital supply chain.
Read the article
• World
CISA releases cloud services security and resilience guidance
The US CISA has published the first series of guidance resources under its Secure Cloud Business Applications (SCuBA) project. The ‘Extensible Visibility Reference Framework (eVRF) Guidebook’ and a Technical Reference Architecture (TRA) document provide guidance for developing and managing cloud services security and resilience.
Read the article
• US / World
Research reveals significant increase in sophisticated attacks against mobile devices
Zimperium has released its Global Mobile Threat Report 2023. This shows continued growth of the ‘mobile-powered business’ along with the increasingly sophisticated security risks facing it.
Read the article
• World
New NIST Public Working Group to work on generative AI risk management
The US National Institute of Standards and Technology (NIST) is launching a new public working group on generative artificial intelligence (AI) that will build on the NIST AI Risk Management Framework to address this rapidly advancing technology.
Read the article
• US
Digital-first economy has introduced unforeseen risks say 89 percent of CISOs
Salt Security has released key findings from its ‘State of the CISO’ report. Conducted by Global Surveyz for Salt, the global CISO survey gathered feedback from 300 CISOs/CSOs around the world on issues resulting from digital transformation and enterprise digitalization.
Read the article
• World
Balancing ROI and Risk: A Practitioners’ Guide to Managing AI Security
The Global Resilience Federation (GRF) has released a new publication, ‘Balancing ROI and Risk: A Practitioners’ Guide to Managing AI Security’. This presents the results of a working group, convened with KPMG to facilitate discussions among AI and security practitioners...
Read the article
• World
91 percent of businesses experience at least one network outage quarterly
A survey by Opengear, a Digi International company, of both CIOs and network engineers around the world has found that 91 percent of organizations experience network downtime at least once a quarter.
Read the article
• World
Consultation launched on first batch of DORA technical standards
The European Supervisory Authorities (the ESAs), constituted of EBA, EIOPA, and ESMA, have launched a public consultation on the first batch of policies under the Digital Operational Resilience Act (DORA).
Read the article
• Europe
CISA highlights the high importance of acting on Barracuda Email Security Gateway Appliance vulnerability
The US CISA has issued a warning alert to organizations concerning a recently announced vulnerability in the Barracuda Email Security Gateway Appliance (ESG) which is being actively exploited.
Read the article
• US / World
AI is already mission critical for many organizations
A new survey has found that artificial intelligence (AI) is already powering mission critical activities in many organizations, but that digital infrastructure has not yet caught up.
Read the article
• World
Cyber security more likely to succeed if linked to business objectives
Organizations that closely align their cyber security programs to business objectives are 26 percent more likely to lower the cost of cyber security breaches and incidents according to new research from Accenture.
Read the article
• Various
Report finds a surge in red team deployment as enterprises turn to proactive cyber resilience
Bishop Fox has announced the results of a study, conducted by the Ponemon Institute, exploring enterprise adoption and use of offensive security tools and techniques to more effectively harden environments and assets.
Read the article
• World
Employees contribute to 70 percent of corporate data breaches
Organizations are only as resilient as the people who work for them; and a new report from Gallup shows that the latter is being challenged by record levels of employee stress.
Read the article
• World
(ISC)² and CIISec release new guide to inclusive terminology in cyber security
(ISC)², an association of certified cybersecurity professionals, and the Chartered Institute of Information Security (CIISec) have revealed a new guide that outlines the importance of inclusive terminology and language to fostering a more inclusive cyber profession...
Read the article
• World
The riskiest OT and ICS devices across critical infrastructure industries identified
Armis has released new research analysing the threat that various devices pose to the manufacturing, utilities, and transportation critical infrastructure industries.
Read the article
• World
CALL FOR PAPERS
Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com
You have subscribed to this
newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com
Read our privacy policy at https://www.continuitycentral.com/index.php/privacy-and-cookies
Continuity
Central is a registered trademark
|
