The summer travel season is almost here, and with it comes an increased risk of hacking.
With all of our smartphones, iPads, laptops, netbooks and Bluetooth-enabled devices, we’re more at risk of online fraud and identity theft than ever before. In fact, a 2011 report from Javelin Strategy & Research found that the average out-of-pocket expense for identity theft victims skyrocketed 63%, from $387 per incident in 2009 to $631 in 2010.
Business travelers often have the most to lose from attacks and airports are hotbeds for identity theft, from rogue Wi-Fi hotspots to new wirelessly-accessible e-passports.
For more information on this, please visit “http://www.foxbusiness.com/personal-finance/2011/05/26/cybersecurity-tips-travelers/“.
“Ethical hacking” – is the term an oxymoron, or is it one of today’s necessities in the fight against cybercrime? Jay Bavisi, president and co-founder of the EC Council, feels strongly about why we need ethical hackers more today than ever before.
“Many people misunderstand what ethical hacking is,” says Bavisi, who co-founded the EC Council in the wake of the Sept. 11 terrorist attacks.
“I was bombarded by the U.S. media for coming up with such a stupid term as ‘ethical hacking,'” he recalls of the council’s early days. “They said it was an oxymoron, that ethical hacking doesn’t exist …”
In layman’s terms, Bavisi says, an ethical hacker is simply a bodyguard. “But instead of a human bodyguard, an ethical hacker is a computer bodyguard. Their job is to sit there and figure out: If a hacker were to attack a system, how would they do it, and they’re trying to figure out how to protect your systems – if your systems have been sufficiently protected.”
For more information on this, please visit “http://www.bankinfosecurity.com/podcasts.php?podcastID=1145“
Two security researchers, working at home in their spare time, have created a cyberweapon similar to the sophisticated Stuxnet computer worm that was discovered last year to have disrupted computer systems running Iran’s nuclear program.
The private efforts by Dillon Beresford and Brian Meixell are raising concerns among U.S. government officials that hackers will launch copycat cyber-attacks that could cripple computer controls at industrial sites such as refineries, dams and power plants.
Officials at the Department of Homeland Security were so distressed by the researchers’ findings that they asked the two men to cancel a planned presentation at a computer security conference in Dallas last week called TakeDownCon.
For more information on this, please visit “http://www.washingtontimes.com/news/2011/may/24/homemade-cyberweapon-worries-feds/“.
Jay Bavisi, president and co-founder of the EC-Council (The International Council of Electronic Commerce Consultants), speaks in this letter about the boundaries of ethical hacking, and urges the industry not to judge the ethical hacking community by the actions of one security professional:
In a recent ZDNet Australia article, “Qld cops denounce ‘ethical hacking‘”, the author, Stilgherrian, wrote the following:
“Police have spoken out strongly against so-called ‘ethical hacking’ in the wake of the demonstration of a Facebook privacy hack at the BSides Australia conference being held in conjunction with the AusCERT 2011 information security conference. The incident has already seen a journalist arrested and his iPad seized.”