Ian Barker

Corporate information security has traditionally used the 'castle' approach, using a strong boundary to keep everything secure.

But as we've moved to hybrid working and more sharing of information the castle is too restrictive and we've moved towards a 'city' model, allowing open routes to trade with assets widely distributed.

Continue reading →

Open Source contributed 27 percent of the UK tech sector's Gross Value Added (GVA) in 2022, according to a new report from OpenUK, the non-profit organization representing the UK’s open technology sector.

The report finds that there are 3.2 million GitHub accounts in the UK and 8,200 UK contributors to open source projects in the past year. There have also been1,700 new contributors to open source projects in the last 12 months, representing 20.7 percent growth.

Continue reading →

Building management systems (BMS) are responsible for controlling and monitoring various building services such as HVAC, energy, elevators, escalators, surveillance and access control.

They're crucial for service delivery across industries, including critical infrastructure such as energy, utilities, and healthcare. But they're also a significant of an organization's cyber risk due to their integration with IT networks and the internet.

Continue reading →

According to a new report, 66 percent of IT decision makers (ITDMs) are worried that data is spiraling out of control in their organization and that this is putting compliance at risk.

The study of 850 ITDMs carried out for Cloudera shows that 63 percent of organizations believe siloed data makes it harder for them to comply with data compliance regulations.

Continue reading →

In the wake of the MOVEit vulnerability, which affected an estimated 40 million people around the world, businesses are stepping up their investment in ransomware protection.

A new study carried out by Censuswide for Veeam Software surveyed 100 directors of UK companies with over 500 employees who had suffered a ransomware attack in the past 18 months and finds 24 percent report they are significantly more anxious about ransomware attacks as a direct result of the MOVEit breach.

Continue reading →

A new survey from detection and response specialist Adarma reveals that organizations believe they are at significant risk of cyberattack due to stressed and exhausted staff.

The study of 500 cybersecurity professionals from UK organizations with over 2000 employees finds 51 percent believe their security operations staff are challenged, stressed, frustrated and/or exhausted, which could be putting businesses at risk.

Continue reading →

A new report from Cisco finds 62 percent of consumers say that their expectations of digital experiences are far higher now than they were two years ago.

It also charts the rise of what it calls the 'Application Generation.' Aged 18-34, this group relies on applications like no generation before, having used them to navigate the pandemic and today, to live and thrive in a hybrid world.

Continue reading →

ChatGPT and other LLMs are designed to train and learn from unstructured data -- namely, text. This has enabled them to support a variety of powerful use cases.

However, these models struggle to analyze structured data, such as numerical and statistical information organized in databases, limiting their potential.

Continue reading →

A new survey of 500 financial executives in the US shows a 17 percent increase in 'synthetic' identity fraud cases over the past two years, with more than a third of professionals reporting a significant surge of 20 to 50 percent.

The study by Wakefield Research for Deduce finds that despite the industry investing in fraud prevention, 52 percent of experts believe that fraudsters are adapting faster than defenses can keep up.

Continue reading →

Generative AI has seen rapid adoption in the enterprise with 67 percent of respondents to a new study reporting that their companies are currently using generative AI, and 38 percent of this group saying that their companies have been working with AI for less than a year.

The report from O'Reilly shows many are still in the early stages of the AI journey, however. 18 percent report having applications in production, but there are multiple bottlenecks for enterprises looking to implement these technologies. First is identifying appropriate use cases (53 percent), followed by legal issues, risk, and compliance (38 percent).

Continue reading →

A new report from managed security platform Huntress shows that 64 percent of identity-focused incidents at SMBs in the third quarter of 2023 involved malicious forwarding or other malicious inbox rules, a key indicator of business email compromise (BEC).

Another 24 percent of identity-focused incidents involved logons from unusual or suspicious locations. Now favored as an intrusion vector, identity-based attacks are on the rise with threat actors targeting cloud services to steal identifying information or break into business emails.

Continue reading →

A new report from software auditing company Engprax finds 53 percent of software engineers have identified suspected wrongdoing at work but many are reluctant to report it due to fear of retaliation from management.

Of those who have spoken up, 75 percent report facing retaliation the last time they reported wrongdoing to their employers.

Continue reading →

Only 38 percent of executives say their organization has the in-house expertise to adopt generative AI for innovation, according to a new study from the IBM Institute for Business Value.

Generative AI promises to upgrade ecosystem innovation by transforming the entire workflow. A large majority of executives say generative AI will greatly improve ideation (80 percent), discovery (82 percent), collaboration with partners for innovation (77 percent), and innovation execution (74 percent).

Continue reading →

The shift towards cloud and hybrid models of IT along with containerization has placed greater emphasis on the need for secure authentication, whether it’s via passwords, certificates or keys.

Managing these 'secrets' effectively is therefore key to keeping systems secure. We spoke to Oded Hareven, co-founder and CEO at Akeyless Security to find out more.

Continue reading →

Bulk remediation in Google Shared Drives can be useful in removing unneeded permissions, revoking expired access and ensuring that data remains secure.

But it can also present significant challenges due to the complex nature of managing permissions across a large number of files and users. Administrators face the difficulty of ensuring accurate and appropriate access levels for each file and user.

Continue reading →