Design Con 2015

Cyber Criminals Have Eyes on Your Business, Large or Small

View comments: newest first | oldest first | threaded
tech4people
User Rank
Supply Network Guru
Re: Education is absolutely key,The Other is staying patched.
tech4people   11/22/2014 11:11:25 AM
NO RATINGS

Hailey,

Even if all 100% of Security issues are because of Human faults/mistakes;Does that mean we remove/reduce Human Intervention in the system to Zero?

Will that definitely reduce Security issues?

I don't think so.

Given how all those automated Bots are causing havoc online today(building Smartphone Android Bots as well);I doubt this is the right approach.

Human intervention is absolutely neccesary to make sure we are on the right track today.

 

tech4people
User Rank
Supply Network Guru
Re: Education is absolutely key,The Other is staying patched.
tech4people   11/22/2014 11:07:54 AM
NO RATINGS

Jacob,

Believe me you are preaching to the choir here with your comments.

But I am telling how routine folks(who have no interest in Tech) apart from making sure something just works.

These folks are least bit interested in upgrading their Computers(or Phones) every 2-3 years.

Its just not possible.

Why look at other people,I (inspite of being extremely Tech Savvy and someone who uses my Computer all the time);refuse to upgrade it until it absolutely breaks!!!!

Same goes for my Phones also.

After all,its my Hard-Earned money on the line here;have to be careful about how I spend it.

 

Jacob
User Rank
Supply Network Guru
Re: Education is absolutely key,The Other is staying patched.
Jacob   11/19/2014 11:25:45 PM
NO RATINGS
1 saves

"you are totally right. i have seen many studies and something like 80 percent of security problems come from a human being doing something. People can be the problem..and that being said, they also have to be part of the solution."

Hailey, we are hearing and coming across various security issues for more than a decade; but still its continues in same phase. That's only due to user negligence, so educating them is important like securing the system.  

Hailey Lynne McKeefry
User Rank
Blogger
Re: Education is absolutely key,The Other is staying patched.
Hailey Lynne McKeefry   11/18/2014 8:37:27 PM
NO RATINGS

@Jacob, you are totally right. i have seen many studies and something like 80 percent of security problems come from a human being doing something. People can be the problem..and that being said, they also have to be part of the solution.

Jacob
User Rank
Supply Network Guru
Re: Education is absolutely key,The Other is staying patched.
Jacob   11/11/2014 4:15:48 AM
NO RATINGS
1 saves

"I would add that a multilayered approach that safeguards hardware, software, OS, and mobile devices is critical. Further organizations need to make and enforce security policies, offer regular training for their employees, push these requirements downstream to suppliers, and do regular audits on both their own organization and their partners organizations. It's complicated..and getting more so."

Hailey, eventhough there are many layers of security in place, user education is important. If they are not making use of it perfectly; nothing is useful.

Hailey Lynne McKeefry
User Rank
Blogger
Re: Education is absolutely key,The Other is staying patched.
Hailey Lynne McKeefry   11/5/2014 8:11:20 PM
NO RATINGS

I would add that a multilayered approach that safeguards hardware, software, OS, and mobile devices is critical. Further organizations need to make and enforce security policies, offer regular training for their employees, push these requirements downstream to suppliers, and do regular audits on both their own organization and their partners organizations. It's complicated..and getting more so.

Jacob
User Rank
Supply Network Guru
Re: Education is absolutely key,The Other is staying patched.
Jacob   11/5/2014 5:04:32 AM
NO RATINGS
1 saves

"Even for Software;so many Consumers are still using really outdated software because it works-XP or even iOS 4 anyone???"

Asish, frequent updation of security tools and software are very much necessary to make the system tamperproof.  I won't think hereafter XP is secure, eventhough you installed most updated security software too.

Jacob
User Rank
Supply Network Guru
IT Security Risk
Jacob   11/5/2014 5:00:43 AM
NO RATINGS
1 saves

"This false sense of security may lead to devastating losses if an attack does occur, not only in pure monetary terms -- the bill for a single incident amounts to an average of $50,000 for a small to midsized company, according to Global Corporate IT Security Risks, B2B International."

Frank, they are using only some distributor or vendor inventory datas; how this much loss can incur by losing the inventory data!!

Hailey Lynne McKeefry
User Rank
Blogger
PWC study
Hailey Lynne McKeefry   11/4/2014 4:47:55 PM
NO RATINGS

A PWC study on SMB and cybercrime has some intereting stats. Here's the potential problems that these crimes can create: 



tech4people
User Rank
Supply Network Guru
Education is absolutely key,The Other is staying patched.
tech4people   11/4/2014 10:34:19 AM
NO RATINGS

Frank ,

A very pertinent and Timely post!!!

As someone who has to keep track of Security Threats for a living;Even I was amazed by how lacksadaical attitudes at most Businesses towards Security remains even today.

Take the case of the recent Drupal(one of the most popular CMSes) out there-www.computerworld.com/article/2841320/drupal-warns-unpatched-users-assume-your-site-was-hacked.html

&this too-www.computerworld.com/article/2834650/drupal-releases-patch-for-serious-sql-injection-flaw.html

 

It genuinely amazes me how casually consumers take the issue of non-patched systems.This is an issue which is even greater in today's POS and Supply Chain infrastructure.

Even for Software;so many Consumers are still using really outdated software because it works-XP or even iOS 4 anyone???

What these companies /consumers don't understand (until they hacked/audited);that using outdated software is one of the easiest ways to let Hackers in today.

Not just that,you WILL FAIL most Compliance Tests by using out dated Software.

 

As far as Education is concerned its very much an ongoing process today.

Regards

Ashish.

 



More Blogs from Frank Cavallaro
Companies know supply chain analytics can yield great insights, but many question how to make sense of the deluge of data.
Sustainable design for warehouses and distribution centers has become the norm and one of the most effective tools to boost the bottom line.
For all the doom and gloom surrounding the supply chain talent shortage, there has hardly been a better time to be a college graduate or self-motivated professional in this industry.
Consumer demand and corporate commitment have spurred a flood of new innovations in sustainable packaging, taking what was once a novel concept into the mainstream.

Datasheets.com Parts Search

185 million searchable parts
(please enter a part number or hit search to begin)
EBN Dialogue / LIVE CHAT
EBN Dialogue enables you to participate in live chats with notable leaders and luminaries. Open to the entire EBN community of electronics supply chain experts, these conversations see ideas shared, comments made, and questions asked and answered in real time. Listed below are upcoming and archived chats. Stay tuned and join in!
Archived Dialogues
Live Chat 11/12: Examining the Cyberthreat to Supply Chains
The number of cyberattacks is on the rise and hackers are targeting the supply chain. Drew Smith, founder and CEO of InfoArmor, will be on hand to discuss the reality of today's threat landscape and what to do about it.
Live Chat 11/06: Enterprise Risks, Intellectual Property & Supply Chains
Enterprise risk management (ERM) frameworks can be useful to identify, assess, and manage intellectual property (IP) risks that arise in supply chain compliance. We'll look at real-world examples and strategies for mitigating those risks.
Latest Poll
EBN Newswire
SINGAPORE AND SAN FRANCISCO   11/20/2014
Menlo Logistics Keen to Build on 2014 Growth in South Asia
Twitter Feed
EBN Online Twitter Feed