Security Update 19/09/09

Security Update 19/09/09.

As you are aware, OSS carry out your security surveys and TSCM and bring up various points. During these difficult times with unemployment redundancies and surely disgruntled employees now is the time to know what is downloaded from your systems and to put in security measures that will not let any sensitive information get into the public domain by limiting who and what can be downloaded. This will also more importantly protect the Name of your company. Information loss and fraud are on the increase.

To highlight these points here are a few prime examples.

“A seven-strong gang that attempted an audacious and high-tech raid on Sumitomo Mitsui Banking Corporation”.
“The attempt was made by surreptitiously entering the bank at night, by corrupting its computer system and by attempting to electronically transfer the money.  The plan involved the secret uploading of key logger software onto a number of the bank’s computers. This software has the effect of logging the activities carried out by staff including log on names and passwords.

The gang tried to send 10 million Euros from Toshiba International’s account to one of their accounts in Dubai. They attempted to plunder 6.9 million Euros from a Nomura account, attempting to send it to Spain. The plot came within a whisker of success and was only foiled at the last minute due to a faulty password being entered into the computers.

The security guard and the computer hackers pleaded guilty to conspiracy to steal from the bank. Others were charged with setting up the bank accounts that the funds were going to be diverted to.

Other Examples:
Hotel chain falls victim to 14,000 data-stealing malware incidents

http://www.usatoday.com/money/industries/technology/2008-07-15-coreflood_N.htm

Cybercrime security breaches cost British business $18bln a year

http://www.itfacts.biz/security-breaches-cost-uk-businesses-18-bln-a-year/6369

40 million credit card numbers stolen from TJX

http://www.msnbc.msn.com/id/21454847/

Computer virus attack brings London hospital networks to a standstill

http://www.heise-online.co.uk/security/Computer-virus-brings-London-hospital-networks-to-a-standstill–/news/112011

94% of large enterprises in the UK had a security breach within the last 12 months

http://www.pwc.co.uk/eng/publications/berr_information_security_breaches_survey_2008.html

HM Revenue & Customs data loss leaves 25 million exposed

http://www.computeractive.co.uk/computeractive/news/2203907/darling-admits-hmrc-lost.

No related posts.