Connect with us

Featured

Botnets aim at World Cup

KEIRON SHEPHERD, Senior Security Specialist, F5 Networks, discusses why advanced application security is a match for today’s sophisticated cyber-attacks.

Published

on

Hackers across EMEA are warming up for the FIFA World Cup. As all eyes turn to the pitch, they’ll be booting up the botnets ready to take on the excitable businesses who are increasingly giving away the ball on app protection and data security.

The EU General Data Protection Regulation (GDPR) – the cyberspace equivalent of the omnipresent Video Assisted Referee – will also be making its presence felt this Summer. The penalty for a breach is 2% to 4% of global turnover or €10 to 20 million, whichever is the bigger hit. The GDPR supervisory body can also flash the proverbial red card by immediately suspending all data processing if the risk to an EU citizen’s privacy is deemed unacceptable.

According to the Ponemon Institute’s 12th annual Cost of Data Breach study, the global average cost of a data breach currently stands at $3.62 million. The ongoing reputational costs are harder to quantify, so it’s not worth being sent off over compliance complacency. Like any competition, every company must now train hard and be ready to take a stand against cybercrime with the goal of protecting data.

Bots take to the field

Football is a game of two halves, and so too is the Internet. Recent research by F5 Labs suggests that half of the Internet’s traffic comes from bots, 30% of which are malicious. Most bots search for vulnerabilities, scrape websites or participate in DDoS attacks. They can speed up password-guessing to break into online accounts, mine cryptocurrency such as Bitcoin, and attack anything requiring a large network of computers.

Most botnet based attacks are designed for disruption and exploitation. Typical attacks include the creation of Spam email relays and Denial of Service (DoS) activities designed to prevent access to websites. Another concern flagged by F5 Labs is the inexorable rise of Thingbots: botnets which are built exclusively from IoT devices and are fast becoming the cyberweapon delivery system of choice for today’s attackers due to their poor security and ease of compromise.

Year over year (2016-2017), F5 Labs found that Telnet brute force attacks against IoT devices rose 249%. Moving ahead, IoT’s destructive arsenal is set to explode in scale. Gartner recently reported that there are 8.4 billion IoT devices in use and the number is expected to grow to 20.4 billion by 2020. Botnet risks rise significantly when moving to multi-cloud environments as many businesses are now doing out of operational necessity. In particular, many cloud consumers assume that security is inherently better in the cloud and do not realise the same vulnerabilities that plagued them in their datacentre are just as present in the cloud.

Tackling advanced app security

A threat defence is only effective if it safeguards sensitive data. Visibility is fundamental to understanding normal application behaviour, detecting anomalous traffic and being able to report data breaches to the relevant data protection authorities. Visibility means having insight into all traffic that passes between users and applications. It is essential that security systems understand the application, the protocols and can see into encrypted traffic. Context is equally important and the key to understanding the characteristics of an application’s environment, including behavioural insights that enable rapid adaptation where required. Incisive visibility and context are crucial to informing decision-makers, which means that robust security controls can be implemented to protect your apps and data.One of the best first lines of defence in the game is a web application firewall (WAF). The 2018 State of Application Delivery (SOAD) report revealed that 98% of F5’s surveyed customers protect at least some part of their application portfolio with a WAF. More than 40% protect half or more of their apps.

However, not all WAFs are capable of safeguarding against the full scope of today’s hyperactive threat spectrum. This is where Advanced WAF (AWAF) solutions are more effective. Capable of supporting a variety of consumption and licensing models, including a per-app basis, as well as perpetual, subscription, and utility billing options, AWAFs provide a new level of flexibility in both the cloud and the data centre. Important benefits include facilitating better collaboration between SecOps, DevOps, and NetOps teams to deploy app protection services in any environment.

Crucially, AWAFs provide powerful defensive capabilities against malicious bots going beyond signatures and reputation to block evolving automated attacks, prevent account takeovers (with encryption at the application layer), and protect apps from DoS attacks (using machine learning and behavioural analytics for high accuracy). AWAFs also provide comprehensive protection from mobile attacks through an Anti-Bot Mobile SDK rich security services, including application whitelisting (i.e. index of approved software), secure cookie validation, and advanced app hardening.

Blowing the whistle on cybercrime

Organisations need to prove they are responsible data custodians. Security and transparency are now essential attributes for customer service. It’s time to blow the whistle on cybercrime.

Investing in integrated security solutions protects what matters: your applications. The net result is that data are protected, the business upholds compliance standards and your customers remain enthusiastic, loyal fans – a world class winning combination.

Featured

How panic-buying disrupts traditional supply chains

Panic buying has become commonplace during the COVID-19 crisis. PAULO DE MATOS, chief product officer at SYSPRO, outlines how good technology and ingenuity is panic-proof.

Published

on

Amid the COVID-19 pandemic, the world cannot afford for manufacturing and distribution to grind to a halt. From food on our shelves, to medical necessities, these sectors are at the heart of our economy and must keep going at all costs. Although the global supply chain is usually a well-oiled machine consisting of a system of organizations, people, processes, information and resources, disruption of this well-oiled machine has become the new reality. According to a new survey released by the Institute for Supply Management (ISM), 75% of companies worldwide have reported supply chain disruptions as a result of COVID-19.  Added to that is the increasingly unpredictable demand caused by panic buying and consumer stockpiling.  

Reinventing the supply chain to face the challenges of today 

In response to the pandemic, manufacturers and distributors have had to pivot in a new direction, to turn the supply chain challenge into a competitive advantage through ingenuity.  

The US recently invoked the Defense Production Act to allow American manufacturers to suspend their normal production schedules and begin manufacturing materials such as ventilators, which are needed in this time of crisis. The Act, which was originally passed in 1950, was a war mobilization effort. It allowed the government to direct efforts of manufacturers to focus production on the much-needed necessities in times of need, from medical supplies through to necessary disinfection products.  

Australia has applied a similar approach through the implementation of ‘wartime’ manufacturing. Due to a shortage of necessities like ventilators and hand sanitizers, the Australian government is offering financial packages that incentivize factories to manufacture critical supplies. For example, one of Australia’s biggest packaging companies, Pact Group, is converting production lines at three of its Sydney plants as it starts making hand sanitizer for the first time, instead of industrial cleaners.  

Within Canada and South Africa, distilleries have also committed to supplying alcohol, a key ingredient in hand sanitizer.  

Using technology to ensure long-term resilience 

Until recently, China has consistently supplied global manufacturers with the bulk of their required components, raw materials and or processed materials. Presently, 6 in 10 (62%) of the respondents of the Institute for Supply Management (ISM) survey have reported that they have experienced increasing delays in receiving orders from China. This is of course just the tip of the iceberg, with the pandemic now impacting almost every country in the world; delays are going to begin affecting deliveries from every country, and the lateness of the delivery is expected to increase.  With the increasing shortages of parts, global manufacturers are now scrambling to identify alternative suppliers and supply chains to make up for the missed deliveries. 

Technology systems, such as Enterprise Resource Planning (ERP) systems, can certainly improve the situation by giving manufacturers improved visibility of the reliable local suppliers and their supply chains. Through ERP integration, representatives from different supplier companies can interact on a single platform, improving the flow and availability of information and improving the reliability of delivery. For example, the SYSPRO Supply Chain Portal was originally launched with a Request for Quote capability, which enabled the formal invitation of suppliers to tender for the supply of goods and services. Not only can manufacturers identify local suppliers who can meet their orders in a time of scarcity, but manufacturers themselves could easily find alternative suppliers.  

ERP also has the added advantage of reducing document handling and other manual activities and facilitates cross functional collaboration by enabling an online process for engaging with customers and suppliers. What’s more, planned receiving and manufacturing process steps can be amended temporarily in your ERP system to include additional Quality Assurance.  For example, the wiping down of surfaces and spraying of goods with appropriate chemical or detergent cleansers and adding waiting times before issue or delivery. 

In times of unforeseen scarcity, as the world is currently experiencing with the COVID-19 pandemic, it is imperative that the supply chain is kept open and full.  The challenge that the company faces is to identify the cheapest and easiest way to accomplish this, using their own unique combination of technology and ingenuity.  If there is surplus stock in the supply chain, the surplus could easily be sold onto neighbouring organizations – after all, the function of a manufacturing organization is to fulfil whatever is identified as a shortage in the economy. 

Managing disruption in the long-term 

The World Economic Forum has suggested that moving forward after this pandemic, there will be a “new normal”, a need to manage disruption by developing predictive models for proactive scheduling, and dynamic planning of supply with careful consideration of the uncertainties and risks. This change will most likely usher in the next level of digital transformation, based on the collection and analysis of data from various disparate applications.  

Ultimately, having the right combination of technology and dynamic ingenuity will allow manufacturers to weather the storm and navigate the unknown, bringing with it the success of discovering “the new world.” 

Continue Reading

Featured

Pandemic will change co-working – and vice versa

By CHARMAINE LAMBERT, WorkInProgress – an Absa Innovation Lab

Published

on

The COVID-19 pandemic is set to realign the world’s social and economic structure, and fundamentally change the way people work and interact, personally and professionally. While the current social measures in place around the world are aimed at stemming the spread of the virus, there’s a good chance that there’ll be a residual adoption of elements of them as humanity adapts to ‘the new normal’ – because the world will fundamentally never be the same again. 

Hundreds of thousands of people are set to lose their jobs as economies tank – but the optimistic view is that that’s an opportunity for the future, rather than the very real catastrophe it feels like at the moment – particularly in the SME space. It’s a rare economic situation that sees major corporations struggling as much as SME’s, and the upshot is that people may have to create employment opportunities for themselves and others, rather than returning to the jobs they had before the pandemic. 

It’s clear that the world will need more entrepreneurs, whose smart ideas can help rebuild economies, create employment opportunities and re-establish – and rebuild – the livelihoods of entire communities. 

Time Saving 

Many have glibly asked ‘could that meeting have been an email?’ – but the reality is that the working world is rapidly discovering the benefits of finding new ways to address business needs, that rely less on physical face-to-face interactions. Catching up as a group on a Zoom meeting is important, but cutting out a commute, the niceties of the preamble to a meeting and repeating yourself for the guy who stumbled in five minutes late has made meetings more efficient and to-the-point. 

Meetings won’t go away, because humans are collaborative. It takes one person to have a great idea, but it takes a team to realise and implement it – which is why co-working spaces will remain an important part of life for those taking up the challenge of employing themselves, and others by forming SME’s, in the new world order. 

Decentralising Operations 

The shift in ways of working has also shown that decentralisation is possible – something that may become a necessity in the future. All those shiny offices in global centres are expensive line items on the annual budget, and since budgets are going to be way tighter – if not non-existent – in future, even SME’s may have to make peace with the fact that not everyone needs to share a space. And knowing what we know now about how easy it is to spread viruses in close-contact working spaces, there’s a convincing health argument for decentralisation, too. 

If an SME team is driven enough, nobody will have to worry about clock-watching or ensuring that people are doing their jobs by having a manager stalking the halls and peering over cubicle walls. There will be essential functions that rely on being physically present in a space – but there’s no reason that different functions of a business can’t be split across different spaces, cities or even time zones to maximise efficiency and save costs. And with flexibility of working time now becoming an option across many industries, that demand will need to be catered for by SME’s and other employers, in the future. 

Greener Business 

Building more efficient spaces has been an important global trend over the past few years as companies realise the impact their business has on the planet. What about the environmental cost of getting people to that office every day, and of business travel? Cutting out the commute for the global workforce has already had a noticeable effect on the environment – fake-news dolphins in the canals of Venice, aside – so now that we’ve proven it’s possible to decentralise or work remotely, why not continue that?  

Carbon monoxide emissions in New York have been slashed by 50% over the past few weeks – mostly on the back of reduced road traffic – and an analysis by climate website Carbon Brief indicates that the shut-down in China has resulted in a 25% drop in energy use and emissions over a two week period at the height of the pandemic there, which is set to lead to an overall drop of 1% in the country’s carbon emissions for 2020. As industry ramps up again around the world, emissions will rise once more, but those numbers do illustrate the significant impact  a reduction in worker commuting, can have for the planet. 

4IR Creating Opportunities 

While there’s plenty of concern that the Fourth Industrial Revolution (4IR) is going to cost millions of jobs, it’s also set to deliver millions of opportunities and plenty of efficiencies. 

Robotic Process Automation (RPA) can take over manual, repetitive tasks – but instead of making the people in those functions, redundant, it frees them up to tackle more important and non-automatable tasks which can improve business operations. The global economic crisis means that efficiency and multitasking are going to become the order of the day – something the lean SME space is used to, to an extent. Embrace technology and let the people who are the heart of your business focus on helping you re-establish it and re-invent it. It’s time to innovate. 

While things are set to be very different, there’s a huge benefit to collaboration to establishing and maintaining a dynamic, agile business. Entrepreneurs and innovators thrive off being able to kick around ideas, sense-check decisions with others and find ways for seemingly-unrelated companies to work together to deliver unprecedented opportunity – and there’s nothing the world is going to need more than opportunity, once we come out the other side of this. 

Continue Reading

Trending

Copyright © 2020 World Wide Worx