ARCHIVE FOR THE ‘security’ CATEGORY

BullGuard VPN for Windows, Mac, Android and iOS makes it simple for consumers to create military-grade encrypted connections.

Cybersecurity company, BullGuard, today announced the expansion of its cybersecurity product line with the launch of BullGuard VPN. Designed to be easily used across multiple devices, BullGuard VPN features a simplified user interface and quick connect functionality, enabling consumers to fly under the radar and surf the internet in stealth mode while retaining complete anonymity via military-grade encryption. Available for Windowsâ, Macâ, Androidâ and iOSâ operating systems, BullGuard VPN is available for download and purchase on the Apple App Store, Google Play and the BullGuard website.

 

“Cybersecurity to date has been primarily focused on keeping consumers and their devices safe from online threats, but cybercriminals also pose a threat to consumer privacy,” said BullGuard CEO, Paul Lipman. “In today’s cyberthreat landscape, security and privacy must be equally addressed in order to adequately protect consumers. BullGuard VPN enables consumers to safeguard their online privacy in a fast, easy and seamless way – from their desktop, laptop, tablet or smartphone – wherever they go.”

 

BullGuard VPN secures and protects up to six devices simultaneously – desktop computer, smartphone, laptop or tablet – and consumers can easily switch between 16 different country locations, including the U.S., Canada, U.K., Germany, Austria, The Netherlands, Belgium, France, Spain, Switzerland, Denmark, Norway, Sweden, Ireland, Singapore and Australia. BullGuard VPN hides a consumer’s origin IP address, preventing others – including ISPs (Internet Service Providers) and government organizations – from monitoring their online browsing activity, including what websites they visit, what they download or what services and applications they use. BullGuard VPN customers have access to 24/7 customer support.

 

Online consumer privacy is under siege on a near daily basis – from huge breaches where personal data is stolen and cybercriminals absconding with personal information and identities to Facebook and Internet Service Providers caught selling consumer data without consent. BullGuard VPN puts privacy control in consumers’ hands and is the perfect choice for consumers when using an unprotected Wi-Fi hotspot when away from home in airports, hotels or cafes. BullGuard VPN users receive secure connections in to hotspots, which protect them against data theft, privacy breaches, malware and cyber attacks via Wi-Fi. 

Report highlights that threat actors are advanced and persistent, but companies are using outdated systems and technology to save money. Poor security posture, prioritization, and awareness are also gifts to attackers. 

Malicious actors are targeting critical infrastructure (CNI) sites and energy distribution facilities exponentially. Interconnected systems in the energy industry increase vulnerabilities, and cyber attacks often go undetected for some time.

As energy companies save costs against the backdrop of lower oil prices, consolidating operations can weaken business resilience and redundancy levels. This gives rise to new, single critical points of failure, with any disruption across the supply chain potentially having increased consequences.

“Espionage and sabotage attacks against CNI organizations have increased over the years and I don’t think we have seen it all yet,” says Sami Ruohonen, Labs Threat Researcher at Finnish cyber security company F-Secure.

Connecting Industrial Control Systems (ICS) to the Internet is increasing, and a considerable number of CNI systems in use today were installed and built before 24/7/365 internet connections were the norm and the advent of Stuxnet. Many Operational Technology (OT) components have built-in remote operation capabilities, but are either partly or entirely lacking in security protocols such as authentication.

Moreover, cyber security was not a realistic threat when these systems were manufactured, and legacy protocols and systems never had the built-in security controls that we take for granted today. Transitioning these systems to the Internet has opened them up to attacks from a myriad of angles.

“Critical Infrastructure due to its nature is an interesting target for a foreign nation-state, even during peacetime,” Ruohonen explains.

F-Secure’s report shows that:

• A variety of different adversaries, each with their own motivations and tradecraft, constantly strive to compromise organizations that operate critical infrastructure
• Attackers have more time than their targets and will take months to plan their attack
• People are the weakest link in production, with company employees seemingly being criminals’ go-to target
• Attackers continue to succeed mainly due to organizations’ lack of mature cyber security practices
• Nation-state sponsored Advanced Persistent Threat (APT) groups are relentless, and continue to seek network foothold positions on CNIs and espionage opportunities in the interests of exercising political leverage
• Nine different attackers/malwares/techniques targeting the energy industry stand out, with spear phishing being the most common initial supply chain attack technique
• Keeping a small attack surface in the energy industry – while often pitched as the best way to mitigate the risk of a cyber attack – is simply not possible

While breaches are a certainty, Ruohonen advises organizations review their cyber security posture to implement latest technologies such as an endpoint detection and response (EDR) solution.

“EDR is a quick way to tremendously increase capabilities to detect and respond to advanced threats and targeted attacks which might bypass traditional endpoint solutions,” he explains. “Managed EDR solutions can provide monitoring, alerting, and response to cover the needs 24/7. This means organizations’ IT teams can operate during business hours to review the detections while a specialized cybersecurity team takes care of the rest,” says Ruohonen.

The complete report is available here.

Machine learning and threat intelligence capabilities in SIEM solutions will augment the productivity of security analysts, finds Frost & Sullivan.

Security Information and Event Management (SIEM) vendors have begun to inject greater versatility into their platforms as well as incorporate new security functionalities and analyst-friendly dashboards. Also, managed SIEM providers are offering cloud-hosted SIEM solutions to lower the per customer cost-to-serve to penetrate the SMB market.

These advances will drive the $1.98 billion global SIEM market toward $3.23 billion by 2023. "SIEM 3.0, with its high degree of automated response and remediation, can detect malicious threats attempting to penetrate the environment and automatically perform actions to thwart attackers’ advances,” said Mauricio Chede, Senior Industry Analyst, Digital Transformation. "The integration of several functionalities, such as user & entity behavior analytics (UEBA), security operation and automation response (SOAR), and forensic analysis, is essential to effectively compete in the SIEM market."

Frost & Sullivan’s recent analysis, Security Information and Event Management (SIEM)—Global Market Analysis, Forecast to 2023, examines the market drivers, restraints, and market distribution channels of the SIEM market. It presents revenue forecasts and key findings to help participants make the most of the market potential. The study covers the four product types of physical appliance, virtual appliance, software, and Software-as-a-Service (SaaS).

You can read the full report here.

New study also reveals incidents rose in latter half of year with companies struggling to identify when systems are compromised.
Research by cyber-security provider F-Secure has shown that cyber attacks in 2018 increased by 32% compared to the previous year.

The survey consulted 3350 IT decision-makers, influencers and managers from 12 countries also highlighted a lack of awareness in detecting incidents, suggesting firm's preventative measures such as firewalls were insufficient.

Findings also revealed that the Finance and ICT sectors were most commonly targeted by attackers while healthcare and manufacturing received fewest, with the majority of attacks affecting US-based IP addresses.

Leszek Tasiemski said today's cyber-attacks had evolved significantly and questioned whether or not companies were even aware of the issue. "Today's threats are completely different from ten or even five years ago," he said. "Preventative measures and strategies won't stop everything anymore, so I've no doubt that many of the companies surveyed don't have a full picture of what's going in with their security."

You can read the full report here.

New research suggests adherence to GDPR compliance will influence company's spending around cybersecurity.

Cyber security revenues in 2018 were $160.2 billion and will jump $11.2 billion during 2019, as the focus moves to GDPR compliance. Growth will slow to around $9.8 billion per annum, spiking once a in 2023/4 as AI based Cybersecurity escalates, reaching $223.7 billion, says the report from Rethink Technology Research.

The European Union’s GDPR (General Data Protection Registrar) has set the agenda for legislation over data privacy and protection worldwide and that is generating a spike in spending on security measures that ensure compliance. This will continue to ripple around the world between 2019 and 2021.

North America is expected to continue to spend the most on security (27%), but both Europe (22%) and China (20%) which are rapidly accelerating their spend, with the rest of Asia following closely behind on 16%. North America is expected to lead on almost every market with the exceptions of Industrial and Automotive, where China leads, by a small margin.

You can read the full report here. 

The use of Android tablets and handhelds are on the rise in business but security remains a concern, according to the latest research from Panasonic Business.

On average, 72% of tablets and handheld devices in businesses (excluding mobile telephones) use the Android operating system. And with 60% of device buyers saying Android was still being integrated into their organisations, the number of devices is expected to rise with the majority seeing growth for the next three years.

Top three benefits of Android over other operating systems were said to be flexibility, security and affordability.

The top three benefits of Android over other operating systems were said to be flexibility (59%), security (58%) and affordability (52%).

Security concerns

Businesses believe they should be security patching their devices much more; on average four times a year more than they currently do. The variety of methods to deploy security patches also varied with 66% relying on the IT department, 38% using a Mobile Device Management (MDM) solution, 30% taking equipment manufacturer updates via Firmware over the air, 23% relying on the User, 22% using an IT support company and 16% using a reseller.

Functionality expectations
When it came to management capabilities in a business Android device, mobile buyers expected to see the following functionality as standard:

• A customisable OS to meet the business’ requirements - 50%;
• Android for Work - 47%;
• Policy Management Tool/Console for firmware updates - 41%;
• Enhanced Android Security support 37%;
• Incorporation of certified 3rd party security solution 35%;
• Free of charge, out of the box productivity and manageability apps 35%;
• Staging, EMM certifications, licences and customised MDM apps 33%;
• SCOMO Software Component management object 30%;
• Compatibility across different devices from the same manufacturer 30%;
• FOTO Firmware over the air 29%;
• Optional modular-based Developer package 23%.

Update expectations
Businesses currently update their Android operating systems on each device an average of 5 times per year and they expect their device provider to support the Android operating system for up to 3 years after the end of device’s life.

Android devices not all equal
“The march of Android mobile devices into the business world continues apace but how IT departments effectively manage and secure these devices remains a challenge,” said Jan Kaempfer, General Manager for Marketing at Panasonic Computer Product Solutions. “It is important that buyers recognise that not all Android mobile devices are equal. They should look closely at the management and security functionality being offered by their vendor and their Android engineering experience. With the use of the latest over air updates and management consoles, IT departments can save considerable time and money automating their updates by choosing the right device with the right management and security functionality.

You can read a copy of the research here.

Ericsson has been selected by Swiss telecommunications service provider Swisscom for its security manager solution.

 

The Security Manager software will offer security automation, visibility and control for Swisscom's Security Operation Center, addressing the increasing security management needs of the service provider.

The new deal includes automation of security compliance management and basic security analytics.

Philippe Vuilleumier, Head of Group Security, Swisscom, said: “Continuing our strong partnership and collaboration with Ericsson, we are deploying Ericsson Security Manager in our datacenter in Switzerland while simultaneously developing the solution further through progressive and agile collaboration. Ericsson Security Manager is improving the security baseline automation and security analytics in our Security Operations Center, strengthening our activities to protect our own critical infrastructure.”

Åsa Tamsons, Senior Vice President and Head of Business Area Technologies & New Businesses, Ericsson, says: “Security is a cornerstone of Swisscom’s business. Ericsson Security Manager will transform the security management of Swisscom’s mobile network and in the future support new use cases in the telecommunications industry, while addressing the ever-increasing security requirements.”

Tool theft is on the increase, with more than 50% of builders in the UK having had their tools stolen, according to research held by the Federation of Master Builders.

ABAX, GPS tracking specialists, have created six tips to prevent tool theft from happening to your business vehicle and to deter thieves.

1. Park in a secure location 
During the day, whilst working at a job, we recommend that you park your vehicle in a secure location where CCTV is around if possible. It is also common that thieves have been targeting vans/vehicles in broad daylight so you can still be at risk while working in the day.

2. Install locks to your vehicle
The break-in of vans is extremely common these days with the ‘peel and steal’ technique being one of them. It is therefore recommended that strong locks are installed around the vehicle, to prevent unwanted access to the vehicle.

3. Alarms and immobilisers
We recommend that you install extra alarms and immobilisers to the vehicle, to deter the thieves and stop the movement of the vehicle if it is to be tampered with.

4. Add stickers to your vehicle and your assets
Adding stickers to your vehicles is recommended, to emphasise the fact that no tools are left on board the vehicle overnight, to be a preventative measure to thieves. If you leave assets in the vehicle, make sure they are properly marked with stickers or in other ways.

5. Use the glove compartment
For small, but valuable assets like: keys and important documents, use the vehicle’s glove compartment to hide and conceal the valuables

6. Implement GPS Tool Trackers
Invest in small GPS tool trackers, that operate on a global network, and can be visualised on a live map, to see their whereabouts if the unfortunate event happens that they are stolen.Although it is an easy option, we would recommend that you do not leave your tools in your vehicle overnight and you take a few minutes at the end of the day to take them out of your van and into your house or secure them safely in a garage.

As part of an excellent ‘analyst’s take’ paper commissioned by ServicePower, Bill Pollock has provided an in-depth look at the service requirements for the security sector, here Samir Gulati offers us a key excerpt from that paper...

There are now more security systems players than ever, bringing refined ways of doing business and new efficiencies to the marketplace. 

In addition, there has been a complete transformation of the security installer/service technician into an “everything as a service”

professional, supported by service delivery models that embrace Cloud technology, interactive services, predictive diagnostics and customer self-service.

The most successful companies will ultimately differentiate themselves with unique and seemingly indispensable services and solutions that make it easier for a consumer (or business) to be smarter, safer, and more cost-effective.

For those organisations that install, monitor, and maintain commercial or residential security systems, ServicePower enables faster, smarter service, so they can deliver on today’s consumer service preferences and expectations, while also reducing operational costs and driving new and more predictable revenue streams.

 

"The most successful companies will ultimately differentiate themselves with unique and seemingly indispensable services and solutions..."

 

The five primary factors to focus on when evaluating alternative Field Service Management (FSM) and Warranty Management (WM) solutions for the security services segment are critical to the success of the vendor/solution evaluation and selection processes.

They include:

• Customer Engagement – by offering a customised, self-service portal to enable customers to log in with their account number and report issues or order add-on security services, schedule the appointment, watch their installer/ service technician en route, and communicate with him or her, if needed; also to suggest relevant new cross sell and/or upsell services during this key interaction opportunity.
• Smart Scheduling – the ability to pair parameters such as skills, certifications, and geography with the latest in Artificial Intelligence (AI) for real-time scheduling to ensure that the best installer/service technician is assigned, at the least cost; and provide the opportunity to re-optimise schedules and routes in real-time to accommodate intra-day changes, increase on-time arrival and completed jobs per day, and decrease travel costs.
• Mobile Tech Enablement – to ensure that the installer/service technicians arrive with everything they need to get the job done the first time, driving consistent quality service delivery, improved productivity, and increased completion rates; also to provide a value-based experience by personalising the customer’s experience via fully configurable mobile functionality which also improves schedule compliance and first-time installation/ fix rates, and proactively offer additional value-added security solutions while onsite to increase revenue.
• Contractor Management – to facilitate better management of outsourced or supplementary third-party contractor staff to quickly expand geographic reach or support changing demand; the ability to dynamically choose a contractor based on rank scores, credentials, crowd-sourced Better Business Bureau (BBB) info, and dynamic rules configuration; and confidently being able to book an appointment based on available time-slots, coupled with the ability to view the current job status and track overall progress.
• Reporting & Analytics – the ability to use real-time Business Intelligence (BI) to measure performance metrics, fine tune future operations, and enhance the customer experience; along with the ability to access Key Performance Indicators (KPIs), scorecards and reports in real-time, from either mobile devices or the desktop, and share them both inside and outside the organisation, as warranted.

The best FSM and WM solutions will also be those that include additional functionalities, such as:

• Claims Management
• Work Order Management
• Inventory, Asset and Contract Management
• Outsourced Managed Services

The main benefits that can be realised through the implementation and use of a Field Service Management (FSM) and Warranty Management (WM) solution designed specifically for the security services segment are many, and quite compelling, as follows:

• Improve management control over service provisioning
• Reduce manual processes to create and manage field schedule routes, thereby reducing travel times
• Increase appointments, per day
• Less time spent on-site
• Enable improvements in overtime, travel, skills, and spares
• Grow revenue
• Increase customer engagement
• Serve customers more efficiently with convenient scheduling, increased first-time installation/ fix rates, and improved service levels
• Use Business Intelligence (BI) to better measure and improve service operations KPIs
• Research has shown that for a typical Fortune 1000 company, just a 10% increase in data accessibility will result in more than US$65 million additional net income, according to Forbes.com.

These benefits, albeit on a smaller scale, can also be realised by small-to-medium-sized security services organisations as well.

 

---

 Samir Gulati is Chief Marketing Office with ServicePower

---

 

Be social and share...

 

Asolvi has brought about a digital transformation at Cryptex Security, a London-based specialist in home and business security systems. This has not just enabled the company to go paperless, reduce admin staff and acquire a competing business. It’s also let co-founder and finance director Ian Zeff fulfil a lifelong dream to live and work abroad...

Cryptex specialises in harnessing the power of the Internet of Things (IoT) to make people and buildings safer. Its intruder alarms, access control and CCTV systems are embedded with sensors and software that enable them to interact with each other via the internet and are capable of being controlled by computer or smartphone. This provides occupiers with more extensive and comprehensive security as well as greater ease and flexibility in how they use it.

Maintenance in this industry is more important than in any other because of the disastrous implications of a security system going down. IoT technology is vulnerable to cyber threats as well as physical threats, which is why the maintenance of smart security systems has to be intensive and meticulous. It also means that providers need a foolproof maintenance management system to ensure not just that nothing falls through the cracks, but that there are no cracks. 

Cryptex operates rigorous preventative and corrective maintenance programmes on all security assets, both on-site and, leveraging its IoT capabilities, remotely. Since April 2016, all of these programmes have been managed through Tesseract — Asolvi’s pan-industry solution, suitable for field service businesses of all types — which Cryptex chose over several market-specific options.

 

Going paperless

One of the reasons Cryptex chose Asolvi was because it wanted to automate its service processes, including workforce management and invoicing, and go paperless. “The efficiency gains we’ve made since implementing Tesseract are radical,” says Ian Zeff. “We’re now completely paperless. Our printing and postage costs are zero. And being in the security industry, we used to have to do huge amounts of shredding. Now we do none. The fact that there’s no wastage has made Cryptex much greener.”

 

"Our printing and postage costs are zero. And being in the security industry, we used to have to do huge amounts of shredding. Now we do none."

 

The elimination of paperwork also enabled Cryptex to swap an administrative staff member for a new engineer. “Thanks to Tesseract, we no longer needed a junior administrator doing filing, printing, posting etc. This meant we could employ another field engineer in their place. And engineers are our bread and butter. The work they do is our business. So having an extra engineer on our books is enabling us to do more work and bring in additional revenue.”

 

The power to scale up

Tesseract has given Cryptex the power to grow, something that its old, manual, paper-driven service management system would have made too difficult. It’s partly because the efficiency gains that come with Tesseract cut out a lot of administrative red tape when taking on new customers, contracts and workers. It’s also because of how easy it is to input new data and users into the Tesseract system.

“In May 2018, we purchased a local competitor, Henry Gates Security Services,” says Ian. “Tesseract gave us the power to make this acquisition, because of how easy it was to input data and users and get visibility of the new company straight away. We were able to take on nearly 700 new contracts instantly. The integration process was a breeze.”

 

A more enjoyable work life

Since implementing Tesseract, the most exciting change for Ian personally is that he’s moved abroad and performs all his management responsibilities remotely.

“My favourite thing about working with Asolvi is that they’ve helped me emigrate!” he says. “It was always a dream of mine to move to Israel. Now I can be in the office without physically being in the office. The fact that our data is in the cloud, our processes are automated and everyone’s connected via a central point has made that possible.”

 

"Now each person is at his or her desk driving the business forwards with a few clicks of the mouse..."

 

The rest of the people at Cryptex are also experiencing radically improved working conditions. Ian explains, “Our staff no longer have to get up and walk to a cabinet, check a file, find that something’s missing and have to look for it, wait for things to print, deal with printer jams, stick things in the post, lick envelopes. Now each person is at his or her desk driving the business forwards with a few clicks of the mouse. And our engineers are happier too. They loathed paperwork and having to lug around files. Now they have everything they need on their phones and it means we’re not chasing them for forms and timesheets.”

Ian continues, “The way Tesseract has changed our service operation is nothing short of the digital transformation that everyone in the industry is talking about. The automation, the mobility and the seamless lines of communication between us all — it’s exactly what digital transformation is all about.”

 

Automated scheduling for customers

A new development at Cryptex is about to make its people’s lives even easier. The company will soon adopt the Tesseract customer service portal, which gives customers direct access to the Tesseract system. They will be able to log incidents, monitor progress and escalation, and run reports. They will also be able to use Tesseract’s automated scheduling functionality to book appointments directly through the portal. This is a new feature and something that many field service management software providers don’t offer.

Ian explains, “Now that we’ve got the bug for automation and making everything run faster and slicker, we wanted to foster a culture of customers booking their own service visits. At the moment we have to tell customers when maintenance is due and book the visits ourselves. With the new functionality, when maintenances become due, customers will receive an automated email telling them to book their appointment through the portal or call the office, in that order. This will save even more time for our office staff and give customers more control over their service needs.”

 

Forward-thinking development

Asolvi is committed to strengthening and adding to its solutions in an effort to make field service operations, particularly those of SMEs, faster and smarter. Ian says, “What I like about working with Asolvi is that they’re looking to drive their business forwards and continually refine what they offer. This can only be a good thing for customers.”

---

 

Be social and share...