ReliantSecurity Blog » online security

House Passes Cybersecurity Enhancement Act

admin — Thu, 04 Feb 2010 23:12:18 +0000

On Thursday the US House of Representatives overwhelmingly passed the bipartisan Cybersecurity Enhancement Act.

See the AFP article here: http://www.google.com/hostednews/afp/article/ALeqM5jRMjda7dUrbt8_XlVUWSB4Dmr01w

The bill increases funding for cybersecurity research and a public awareness campaign. The bill allocates 400 million dollars for security related grants through the National Science Foundation and seeks to increase cooperation between research universities and government agencies charged with protecting networks that are critical to the nation.

As businesses and government agencies become more dependent on the internet to conduct business, the risks of hacking, data theft and network disruptions are growing.

Following passage of the bill, Oregon Democratic Representative, David Wu, said that, "Securing cyberspace is vitally important to both our safety and our national economy. We cannot stand by and let the most powerful tool for connecting Americans with each other and the world remain the Wild West of technology."

Reliant Security provides the latest security solutions for clients throughout the western United States.

Sincerely,

Matthew Cooper, CPP

Reliant Security

503.452.1050

info@reliantsecurity.net

www.reliantsecurity.net

Cybercrooks Targeting Small Businesses That Bank Online

admin — Tue, 02 Feb 2010 00:03:35 +0000

The FBI and the American Bankers Association recently warned small businesses about the potential perils of online banking. According to an article in USA Today, "Cybergangs have inundated the Internet with 'banking Trojans' — malicious programs that enable them to surreptitiously access and manipulate online accounts." Read the full article here: http://www.usatoday.com/money/industries/technology/2009-12-30-cybercrime-small-business-online-banking_N.htm

Due to the proliferation of banking Trojans on the internet, experts recommend that small businesses dedicate a pc exclusively for Internet banking which does not otherwise access the internet or email.

The risks for business are particularly acute as they do not enjoy the same banking protections as consumers. Depending on how a fradulent transfer was initiated and when it was detected, businesses may not be able to recover all of their losses and banks may not be obligated to make them whole.

Security managers must constantly update their electronic defenses and continually educate their users to stay one step ahead of the thieves and avoid becoming the next corporate victim of online bank fraud.

Reliant Security provides current security solutions for clients throughout the western United States.

Sincerely,

Matthew Cooper, CPP

Reliant Security

503.452.1050

info@reliantsecurity.net

www.reliantsecurity.net

Common Passwords Make Internet Accounts Vulnerable

admin — Fri, 22 Jan 2010 21:22:08 +0000

The New York Times recently published an interesting article in the wake of the release of 32 million passwords that a hacker posted online after stealing them from software company RockYou. See the article here showing the 32 most common passwords: http://www.nytimes.com/2010/01/21/technology/21password.html

Some of the most common passwords found were, "12345, 123456, iloveyou, and the word "password." In the age of automated hacking tools that can "guess" thousands of passwords per minute, these common simple passwords leave you accounts at risk. Once your account has been compromised not only can hackers access your private data but they can use your ID for phishing campaigns against everyone in your contact list which can be very embarrassing and damaging to your reputation and that of your company.

Some best practices for passwords are:

1) Use multiple passwords

2) Don't use common identifiers like your initials and date of birth

3) Make your passwords longer

4) Use a mix of letters and numbers upper and lowercase

It is a hassle to remember multiple passwords but it is an even bigger hassle to explain to all your contacts that your email was hacked and that you didn't really intent to send them that email about how much money they can make from Google by posting links from home and taking online surveys.

Sincerely,

Matthew Cooper, CPP

Reliant Security

503.452.1050

info@reliantsecurity.net

www.reliantsecurity.net

Survey Finds More Employees are Willing to Steal Company Information

admin — Tue, 15 Dec 2009 19:52:02 +0000

Tim Wilson writing in DarkReading.com presented some alarming findings taken from recent surveys about financial industry employee attitudes towards security and proprietary company data.

See the article here: http://www.darkreading.com/insiderthreat/security/management/showArticle.jhtml?articleID=221900815

Almost half of the respondents said that they would be willing to illegally take company information for personal use or use with another employer. A quarter of those surveyed said that, "the recession has made them feel less loyal toward their employers." Disgruntled and laid-off employees were perceived as representing the greatest risk to companies.

Although the survey was specifically focused on data security, one can safely assume that these employee attitudes towards theft are held more broadly among workers. Companies that utilize dedicated security personnel can train their guards to be aware not only of risks from outside the company, but also to watch for signs of internal theft as well. A combination of dedicated security officers as well as up-to-date electronic monitoring lets employees know that the company has a well-crafted, sophisticated approach to security.

In addition, when companies provide security awareness training to all employees, those employees will help senior managers to be aware of potential risks and security weaknesses within their organizations.

Reliant Security provides a full range of security services as well as security training to companies throughout the Western United States.

Sincerely,

Matthew Cooper, CPP

Reliant Security

503.452.1050

info@reliantsecurity.net

www.reliantsecurity.net

FBI Reports $40M Stolen from Small and Mid-Sized US Businesses

admin — Tue, 03 Nov 2009 00:13:39 +0000

According to Brian Krebs writing for the Washington Post, the FBI recently reported that $40 million dollars has been stolen from small and mid-sized us businesses through online bank fraud. See the article here: http://voices.washingtonpost.com/securityfix/2009/10/fbi_cyber_gangs_stole_40mi.html?hpid=sec-tec

Companies are particularly vulnerable to cyber fraud because their commercial banking accounts typically "enjoy few of the protections afforded to consumers." While consumers can recover money stolen from fraudulent withdrawals, businesses often can not.

The FBI points out that these attacks are carried out by software that steals user names and passwords when an unsuspecting user opens a spam email or clicks on a link the leads them to a "booby-trapped" website. They recommend "locking-down" computers that are used for online banking and making sure these computers are not used for everyday email and web surfing.

The takeaway for me in this article is that the most sophisticated firewalls and cyber security can be compromised without the proper security policies and procedures and physical safeguards around end users' computer workstations.

Reliant Security can work with your business to implement the right security policies and procedures to protect your assets and your company from embarrassment and financial loss.

Sincerely,

Matt Cooper

Reliant Security

503.452.1050

info@reliantsecurity.net