Newsletter: Cyber Security Pulse. Insights about security.

2015 | November 12th. New issues are delivered every Friday. In this issue:

Analyst Insight

Express Recruitment of Cybersecurity Experts

Cibersecurity and intelligence are becoming strategic materials for the world's major powers as the National Security Strategies of many countries already state. Every day more palpable even to the general public the consequences of cyberattacks and that is why the US and UK have already announced that they plan to strengthen their squads for next year.

In the case of United States, the Department of Homeland Security has announced the hiring of up to a thousand people to work in risk analysis, incident response, malware and intelligence analysts, amongst other profiles. Instead, the finance minister of the United Kingdom, George Osborne, has stated that any new additions in this field will be aimed to combat terrorism and monitor extremist ideologies through the Internet surveillance.

In order to minimize the risks of the misuse of the Internet, both countries have performed changes in their respective legislations to allow the acceleration of the recruitment of specialized staff in cybersecurity. In this sense, changing these procedures to incorporate civilian personnel into military and law enforcement agencies will be a decisive factor to avoid the talent drain of our professionals towards other latitudes.

More information at Nextgov

Top Stories

A Judge Urges the NSA to Stop The Collection of Telephone Records

Last Monday, a federal judge ordered the Obama administration the immediate cessation of the surveillance program to collect phone records of US citizens without any judicial authorization. In his ruling, Judge Richard Leon of the US District Court for the District of Columbia said that the program of the National Security Agency (NSA) "probably violates the Constitution" and warned that "the loss of freedom is significant". This program was unveiled to the public by the former employee of the CIA and the NSA, Edward Snowden, what has lead to its discussion by the United States Congress earlier this year.

More information at The Hill

Four out of Ten Companies Have Opted for a Cybersecurity Insurance Due to the Impact of the Security Breaches

Many companies are acquiring insurance policies hoping to never have to use them. Unfortunately, it is not the case for cybersecurity insurance. A recent survey by Wells Fargo to more than a hundread medium and large US companies revealed that up to 85% had paid for an insurance policy, while the 44% have already made a claim as a result of a security breach. In this way, the price of each and every insurance varies a lot depending on factors such as the type of business, the volume of records stored (whether or not it stores personal data specially protected or credit card information is an issue) and the security controls implemented by the organization involved.

More information at NBC News

Rest of the Week´s News

The Hackers Who Broke Into the CIA Director Email Strike Again

The hacktivist group Crackas With Attitude (CWA) that published last week have obtained personal information about the CIA director has struck again. On this occasion, they have had access to a database called Joint Automated Booking System (JABS) used to store information about detentions, even about those who are under a gag order.
More information at Wired

Comcast Denies a Security Breach After Finding Credentials for Sale on the Black Market

The television and internet services supplier Comcast has resetted the passwords of about 200,000 customers after identifying email addresses and passwords of its customers for sale on the black market. Although the company claims not to have been hacked, it will will offer the affected customers an in-depth monitoring of their credit as a preventive measure.

More information at The Washington Post

The US Military Lacks Updates for Its Smartphones

Military officials and officers have remained exposed to Stagefright for five months. Identified as a major security issue for Android, the flaw, which could be activated using a SMS, allowed the execution of code remotely and gave access to everything flowing through the device.

More information at Ars Technica

Further Reading

Vizio Is Offering Advertisers Data about Its Users' Behaviour

More information at Ars Technica UK

Arrests for JP Morgan, eTrade and Scottrade Incidents

More information at Krebs on Security

Linux Systems Targetted by a New Ransomware

More information at Computerworld
Copyright © 2015 ElevenPaths. Todos los derechos reservados.
Telefónica Digital Identity & Privacy, S.L.U. es una empresa española con sede social en Distrito Telefónica, Ronda de la Comunicación, s/n, 28050 – Madrid (España), con número de identificación fiscal (CIF) B-86362886 e inscrita en el Registro Mercantil de Madrid, volumen 29508; libro 0; folio 12, Sección 8; Hoja M-531046. Para cualquier información relativa al tratamiento digital de sus datos personales para ejercer su derecho de consulta, modificación o borrado, puede ponerse en contacto con nosotros mediante el correo electrónico