Міжнародна Ліга Кібербезпеки

П'ятниця, 25 червня 2021 року

+38 (044) 454-07-92

On April 21, 2021, Ukraine will launch Cyber Accelerator - a program that will allow small and medium-sized businesses to create products in the field of cybersecurity and build their own cyber security departments, Minister of Digital Transformation Mykhailo Fedorov has announced. "Cyber Accelerator will help representatives of food and service technology companies to launch the development of new products and services for cyber security, as well as their development with the best experts, mentors, investors," Fedorov wrote on his Facebook page.

The minister said the goals of the program are as follows: increasing the level of development of new products in the field of cybersecurity; transforming ideas into proven products and services that are ready for implementation and scaling; transforming the Ukrainian IT business with strengthening cybersecurity for sustainable development; creating new cybersecurity services and products for critical infrastructure; building a strong business community in the field of cybersecurity.

Teams can receive mini-grants of up to $5,000 during acceleration. Participants will receive three months of mentoring support from each team with the involvement of international and Ukrainian experts - information opportunities, professional networking, promotional support and technical support services. Applications are accepted until May 23, 2021. The Cyber Accelerator program is implemented by the SocialBoost team as part of the USAID Ukraine project "Cybersecurity of Critical Infrastructure of Ukraine". The program partners are Catalisto, DAI, ISSP, and Veterans First Initiative.

For many businesses, digital transformation initiatives are not yielding the expected results. As a consequence, the majority (56 percent) are worried about failing to achieve a return on investment (ROI). This is according to a new report from value stream platform Digital.ai, based on a poll of more than 600 enterprise IT, security, and business decision-makers, which states that a lack of visibility into software planning processes is plaguing businesses.

Less than two-thirds of the poll’s respondents (62 percent) said they can provide much-needed visibility, and a third (34 percent) are said to be doing “poorly” on this front. Furthermore, there’s a damaging misalignment between software development and delivery processes on one side and business objectives on the other, despite alignment proving “critical” to driving better business outcomes.

While almost all (94 percent) believe software development and delivery must be better linked with business objectives, just over half (54 percent) said they succeed in that respect. On top of that, 78 percent of leaders said Covid-19 has further impacted the alignment between business and IT value streams in their organizations.

“We’ve found that in large enterprises that succeed at true digital transformation, business and technology teams work collaboratively to define value and drive outcomes,” said Derek Langone, Head of Strategic Transformation at Digital.ai. “These companies typically organize themselves in terms of value streams, employ an open approach to sharing information, and leverage enterprise-grade solutions that offer full visibility and rich, predictive insights across the entire organization.”

Resilience, technological sovereignty and leadership are essential for the EU and as such, they are addressed by the EU Cybersecurity Strategy. In an effort to support this cybersecurity strategy, ENISA releases a report intended to look into digital strategic autonomy in the EU and suggests future research directions.

What is digital strategic autonomy?

Digital strategic autonomy can be defined as the ability of Europe to source products and services designed to meet the EU’s specific needs and values, while avoiding being subject to the influence of the outside world. In the digital world, such needs may encompass hardware, software or algorithms, manufactured as products and/or services, which should comply with the EU values, and thus preserve a fair digital ecosystem while respecting privacy and digital rights.

To ensure the sourcing of such products and/or services complies with the EU’s needs and values, the EU has the option to self-produce them autonomously, or in the case where products and services are acquired from third countries, to certify them and validate their compliance. However, in cases where there is a high dependence on sourcing, the EU should still be capable of operating its digital infrastructures without giving rise to any possible detrimental influence. Hence, Europe needs to maintain the capability to produce its critical products and services independently.

In short, digital strategic autonomy means the capacity for the EU to remain autonomous in specific areas of society where digital technologies are used.

Why such a move?

The new challenges brought about by the digitalization of its environment raise questions on its capacity to retain ownership and control of its personal data, of its technological assets and of its political stand. Such are the main dimensions to be considered under the idea of digital strategic autonomy. Furthermore, the COVID-19 pandemic highlighted the importance of cybersecurity and the need for the EU to continue to invest in research and development in the digital sector. Within this context, the report sets and prioritises the key research and innovation directions in cybersecurity.

Ключові напрямки досліджень

The report identifies the following seven key research areas:

  • Data security
  • Trustworthy software platforms
  • Cyber threat management and response
  • Trustworthy hardware platforms
  • Cryptography
  • User-centric security practices and tools
  • Digital communication security
  • The global cybersecurity services market will be worth $192.7bn in seven years' time, according to a new report by Grand View Research, Inc. Researchers believe that the market size, valued at $91.15bn in 2020, will expand at a compound annual growth rate (CAGR) of 10.2% from 2021 to 2028.

    Factors expected to drive the growth of the market size include the predicted continuance of cybersecurity breaches impacting enterprises and individuals and feeding the need to tackle vulnerabilities in networks, apps, and systems. The proliferation of smartphones and the continued rollout of high-speed internet networks is also expected to boost the cybersecurity services market by triggering the adoption of mobile apps for everything from banking to health monitoring and socializing.

    "All these applications have also emerged as potential targets for hackers, thereby prompting companies to opt for cybersecurity services to identify loopholes in the applications, plug the loopholes, and subsequently save users from potential losses," noted researchers. Other anticipated drivers of market growth flagged in the report include the need to meet various regulatory compliance acts and standards, such as HIPAA, FISMA, and PCI DSS.

    Key predictions from the report are that the healthcare industry, which has lost $160m to ransomware attacks alone since 2016, will exhibit the highest CAGR of 11.4% over the forecast period. Asia Pacific is expected lead the way in regional growth as the fastest-growing area over the forecast period with a predicted CAGR of more than 16.3%. Headquartered in San Francisco, Grand View Research is a California research and consulting company comprising over 425 analysts and consultants.

    The last 12 months have been challenging for a wide variety of businesses. Indeed, the latest lockdown has meant that 2021 began with yet more remote working and empty office spaces that have needed to safeguarded whilst no one is there. But, as restrictions ease again & physical business locations welcome customers back, now is the ideal time to assess your business security for 2021. So, here’s guide to ensuring your company has a smooth reopening and comprehensive long-term security:

    Review your current system

    If your security protocols have kept your business property safe whilst you’ve been working from home, that’s certainly a good sign for your current system. However, after months of being closed, it is essential that you review these measures and test their effectiveness. This is because, after months of remote working, there may be some flaws in your physical business security (and even your online security systems) that might need changing in 2021. If you do spot any issues, you can then speak to an expert or one of your security providers.

    Invest in secure payment

    Contactless payment systems have offered a great solution to reassure customers that are returning to physical stores after lockdown. But for businesses adopting these for this latest reopening, you should look to choose the most secure payment option and to invest in digital as well as network security products. Indeed, this reopening also gives businesses an opportunity to update their contactless payment systems, making it a great way to maintain company security this year. Offering effective encryption that protects customer financial data will provide greater peace of mind for your business well beyond COVID-19.

    Look into physical security and CCTV

    Whether this is after your system review or you’re just concerned about leaving more valuables within your company premises as people return, there are physical security options you can consider. CCTV cameras are one such solution, and these can work alongside alarm systems and access controls to ensure that your business security is even more effective in 2021.

    Cyber security focus

    It doesn’t matter if you’re planning an imminent return to your business locations or you’re maintaining work from home practices, staying on top of cyber security is always vital. If you haven’t installed company-wide anti-virus software and don’t have Effective Password Management or cyber security training in place, then you may well be leaving your business vulnerable. Thus, Understanding Cyber Security will be imperative to maintaining the safety of your business this year.

    According to research by CyberArk, remote workers don’t comply with corporate security policies to be more productive.

    Despite the fact that most employees working remotely due to the coronavirus pandemic believe they are more productive at home, failure to comply with security regulations may force companies to reconsider security policies.

    Almost all (95%) of employees want to continue working from home. However, disregard for security may lead companies to question whether remote work is a long-term strategy for an organization, CyberArk, a provider of privileged access management tools, said in a recently released survey of nearly 2,000 telecommuters in the US, France, Germany. and the UK.

    For the most part, remote workers find it difficult to find work-life balance, according to a study:

  • 78% have technical problems connecting to corporate systems and resources.
  • 45% cite family problems, followed by work-life balance (43%) and “Zoom fatigue” (34%).
  • Employees also recognize clear benefits of telecommuting, including time savings on travel (32%), completing errands (24%) and doing household chores between appointments (23%).
  • Regarding security practices and training for remote workers:

  • 67% avoid corporate security policies to be more productive, including sending work papers to personal email addresses, sharing passwords, and installing pirate software.
  • 69% use corporate devices for personal use.
  • 57% allow other family members to use corporate devices for activities such as study, play and shopping, up 185% from a similar survey conducted last spring.
  • 82% reuse passwords, 12% more than in the previous CyberArk report.
  • 54% received specialized training in remote work security.
  • “The global pandemic has been the largest test yet for the future of remote work,” said Matt Cohen, CyberArk chief operating officer. “As we continue to adapt to this new way of working, , the responsibility for corporate security falls on both employees and organizations. Organizations should continually reinforce best practices and implement user-friendly tools and policies while employees need to understand and be receptive to those policies.”

    Гість студії - Діючий Посол на території України від Всесвітньої Асоціації Детективів, голова правління Ліги протидії кібертероризму та інформаційним війнам, генеральний директор консалтингової компанії «Сидкон» Юрій Когут

    Наживо, без цензури і монтажу разом з експертом говоритимуть про специфіку офшорів та етику ведення міжнародного бізнесу Давид Арахамія та Віктор Пузанов.
    Під час трансляції працює онлайн-чат - задавайте свої запитання, висловлюйте свою думку.

    https://www.facebook.com/idealistmedia/posts/1687431214852434

    Украинцам начали блокировать банковские карты за подозрительные доходы. В Нацбанке эту меру предосторожности объясняют борьбой с терроризмом и незаконным отмыванием денег и советуют всем клиентам финучреждений пройти в банке идентификацию личности.

    Read more...

     

    Согласно данным организации, киберпреступники стали чаще инфицировать вымогательским ПО компьютерные сети предприятий, хранящих важные данные. Злоумышленники на свое усмотрение устанавливают сумму выкупа в зависимости от ряда факторов, включая конфиденциальность информации и размер компании.

    Read more...