In light of increasing hacker sophistication and lack of banking security infrastructure, small and medium enterprises (SMEs) across the world may face a bleak future if they do not secure their networks against upcoming cyber threats which are on the rise, says network security training expert EC-Council.
Cyber criminals are stealing as much as $1 billion a year from the accounts of small to medium companies (SMEs) in the United States and Europe, according to estimates from Dell SecureWorks, a security arm of the computer maker. With rising incidences of hacking and other such network defence issues, network defence expert EC-Council advises SMEs to educate their employees on good information security practices and habits.
According to a recent Bloomberg report, overseas gangs target small commercial accounts protected by rudimentary security measures at community or regional banks. The accounts typically aren’t covered by fraud insurance, as individual accounts are, and businesses often find themselves held accountable by the banks for their losses.
Owners of SMEs conventionally face the challenge of having to be a jack of all trades, combining a keen knowledge of their core businesses with a basic knowledge of many other specialised fields such as IT Security. Read more…
Global Information Security Certification Institution EC-Council issued stern warnings about a lack of wireless security implemented by medical device manufacturers, after the American House Energy and Commerce Committee expressed concern about regulating the wireless security of medical devices.
Albuquerque, NM (PRWEB) September 22, 2011
Manufacturers of medical devices need to tread carefully when implementing wireless technologies such as Bluetooth in their equipment, says EC-Council, a leading global information security expert. In high-risk industries such as healthcare, the smallest innocuous mistake may often turn fatal.
At the recent 2011 Black Hat hacker conference in Las Vegas, security researcher and Type 1 diabetic Jerome Radcliffe demonstrated the vulnerabilities of his own wireless insulin pump and glucose meter by disrupting its operations through electronic interference. Although there was no real harm done, it was a clear example of how susceptible life-sustaining devices were to external influence.
This shocking demonstration showed a lack of awareness of such medical wireless security risks among legislators in the country, raising alarm among the members of the House Energy and Commerce Committee. Soon after, Democratic Representatives Anna Eshoo and Ed Markey sent letters of concern to the Government Accountability Office, asking for a review of the safety screening policies of the Federal Communications Commission.
Jay Bavisi, the president of EC-Council, says; “The time for the industry to take wireless security seriously is long overdue”. He pointed out that although the medical industry had made great progress in new advancements such as adopting wireless technology, the security aspect of such emerging technologies was not sufficiently catching up. Read more…
EC-Council Academy and the Center of Advanced Security (CAST) launches the first CAST “Live” advanced security training series across Thailand and Singapore. This series will feature two highly advanced and technical three-day workshops developed by CAST.
BANGKOK, THAILAND, 19 SEPTEMBER 2011: With escalating cyber incidents and threats being reported over the past months, and the increasing demand for more technically competent professionals to defend the cyberspace, EC-Council Academy announced that it is launching the first CAST “Live” Asia Roadshow. This series will bring two highly advanced and technical three-day CAST workshops to Thailand and Singapore.
The Center of Advanced Security Training (CAST) was developed to provide highly technical and advanced security training to IT security professionals, to address the rapid evolution of new threats, vulnerabilities and exploits. CAST programs are designed to be domain-specific and focused, with greater emphasis on hands on lab exercises, so as to enable participants to experience combating real life scenarios.
According to Wilson Wong, Managing Director EC-Council Academy, CAST “Live” Asia Roadshow will give infosec professionals the opportunity to learn from some of the best industry practitioners, and acquire cutting edge skills and knowledge, in order to be technically proficient so as to stay ahead of cyber criminals.”
The two programs featured during this roadshow are the Advanced Network Defense (CAST 614) and Cryptography Deep Dive (CAST 615).
The Cyber Defense Expert program focuses on the paradigm of thinking like a hacker in order to defend against threats with an offensive mindset by learning how to build robust infrastructure in the face of sophisticated attacks. This highly technical workshop will be led by Kevin Cardwell, who spent 22 years in the U.S. Navy, and had tested and evaluated Surveillance and Weapon system software. He worked as both software and systems engineer on various US Department of Defense projects, and was selected to head the team that built a Network Operations Center (NOC) that provided services to the commands ashore and ships at sea in the Norwegian Sea and Atlantic Ocean. He served as the Leading Chief Information Security Officer at the NOC for six years before hanging up his hat from the U.S Navy. During this time he was the leader of a five-person Red Team that had a 100% success rate at compromising systems and networks.
Cryptography Deep Dive is designed to further enhance the understanding of cryptography and how it’s used in modern systems, from SSL-based e-commerce, online banking, to hard drive and e-mail encryption and at the same time learn crypt analytical techniques for breaking cryptographic protocols. Some causes of recent reported high-profile breaches such as the RSA and Epsilon incidents include poor cryptography practices and understanding. This adavnce workshop will be led by Chuck Easttom, author of 11 computer science books, one of which had been translated into several languages. Chuck is also the inventor of a method for quantifying network security that is being taught at several universities, and most recently has developed a new approach to creating ghost drives. He has taught various security related courses for several years and has over 10 years of teaching experience. Chuck has 7 provisional patents, all related to computer science and 4 related to computer security. One of those patents regards a new method of steganography, another regards a new approach to detecting spyware, and yet another involves the invention of a new, more stable file system.
For more details of the CAST “Live” Asia Roadshow, and the online live training sessions, please visit www.eccouncilapac.org/cast
The Center for Advanced Security Training (CAST) was developed by EC-Council (www.eccouncil.org), in conjunction with cybersecurity experts, to address the need for highly technical and advanced security training for information security professionals. Instructed by EC-Council’s select group of master trainers, CAST offers hands-on, lab intensive courses that cover the security industry’s top domains, including advanced penetration testing training, digital mobile forensics training, advanced application security training, advanced network defense training, advanced social engineering training, Web application security training, and more. CAST is hosted at various international events, including the CAST Summit, as well as EC-Council’s flagship Hacker Halted conference series. More information about CAST is available at http://www.eccouncil.org/training/advanced_security_training.aspx.
ABOUT EC-COUNCIL ASIA PACIFIC:
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT). EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 87 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncilapac.org/cast
PR Web Summary: EC-Council Academia has signed a partnership with Groupe ESAIP in France. This partnership will see Groupe ESAIP include quality content provided by EC-Council into its curricula for IT students. The goal of EC-Council’s (www.eccouncil.org) Academia is to provide information security training to colleges and universities around the world, and to facilitate its incorporation into related degree and certificate programs.
ALBUQUERQUE, NM – EC-Council Academia, an education initiative to make information security courses readily available for colleges and universities around the world, recently a new partner in France, with Groupe ESAIP.
Under this partnership, Groupe ESAIP, a private state-recognized school and member of the worldwide Lasallian network, will incorporate EC-Council information security courses and hands-on labs for students pursuing the following two degrees:
1. Ingénieur en informatique et systèmes d’information (Diplôme habilité par la commission des titres d’ingénieurs)
2. Chef de projet international en informatique et réseau (Titre niveau I – équivaut master 2 – inscrit au RNCP)
“We are pleased to partner with EC-Council Academia to provide industry-recognized information security training courses to our IT students,” said Redouane Djelouah the Higher Education Director. “The course content are recognized to be one of the highest quality, and the certification opportunities will add a lot of value to our students, as they seek to distinguish themselves in the job market upon graduation. As EC-Council is recognized by the CLUSIF in France, we believe this training will greatly benefit students in their future employment and earnings prospects.”
As Redouane Djelouah noted, security issues are becoming tantamount for many companies, not just those in the IT field. And as widely reported, employment opportunities are rapidly increasing within this field.
“The objective of EC-Council Academia is to make information security training, both theoretical and hands-on labs, more widely available to students, professionals and organizations around the world,” said Jay Bavisi, president and co-founder of EC-Council. “We are excited by this new partnership with Groupe ESAIP in France, which will be a great benefit to the school and its students. We look forward to grow our partnerships with leading educational institutions globally.”
EC-Council Academia provides coursework and hands-on labs for colleges and universities in the following areas of IT and information security: Certified Ethical Hacker (CEH), Computer Hacking Forensic Investigator (CHFI), EC-Council Network Security Administrator (ENSA), EC-Council Certified Security Analyst/Licensed Penetration Tester (ECSA/LPT), EC-Council Certified Secure Programmer (ECSP), EC-Council Certified VoIP Professional, EC-Council Disaster Recovery Professional, Security5, EC-Council Certified Incident Handler, EC-Council Certified Security Specialist, PM in IT Security, customer relationship management, and supply chain management.
EC-Council Academia provides students with six feature services:
• iLearn – An online platform where students can download everything they need to complete the course and achieve EC-Council certification. This includes courseware, lab exercises, teaching slides and DVD content. It is unlimited access on a 24/7 basis.
• iPrep – An exam assessment framework used to prepare students for the actual certification exams.
• iExam – Online examination portal so students don’t have to travel to test centers in order to get certified.
• iVideo – Computer-based training videos by EC-Council’s Master Trainers so students can better understand the coursework and labs they are taking.
• iLabs – Students can login to a virtualized remote machine to perform various hands-on activities, including malware testing.
• iClass – An instructor-led classroom environment that is entirely online. Students can interact with the instructors and other students in real-time.
For colleges and universities interested in becoming an EC-Council Academia partner, please go to https://eccouncil.wufoo.com/forms/registration-of-interest/.
ESAIP is a private state-recognised school, member of the worldwide Lasallian network, composed of different branches, under which the Engineering school, proposing 2 qualifications ESAIP Engineer, Computing and Networks and ESAIP Engineer, Industrial & Environmental Risk Management, Health & Safety; Sup’esaip – A course from Batchelor’s degree to a Master and a training center for professionals. Esaip group has a national and international network of laboratories and partner companies as well as French establishments and foreign universities. Esaip group has held the Europass label since 2007.
ABOUT EC-COUNCIL ACADEMIA:
EC-Council Academia is an innovative education initiative that delivers information and security skills to improve career and economic opportunities around the world. It is a comprehensive learning program. EC-Council Academia provides online courses, assessment exams, CBT videos and lab activities via iPrep, iVideo, iExam, iLearn and iLabs platform. The portal also prepares candidates for industry leading EC-Council certifications exams such as CEH, CHFI, ECSA/LPT. Website: www.academia.eccouncil.org
The U.S. Cyber Challenge (USCC) today announced that the International Council of E-Commerce Consultants (EC-Council) has agreed to sponsor awards for the top three winners of the Cyber Quests Fall 2011 competition. Cyber Quests is a national online competition allowing participants to demonstrate their knowledge in a variety of information security disciplines.
The Quest features a quiz designed for an intermediate skill level and is based upon a network packet capture file that participants must analyze to identify and interpret various types of network and web application attacks. Winners will be determined based on who achieves the highest quiz score in the shortest amount of time. Registration is open through September 8.
EC-Council is sponsoring prizes for the first, second and third place winners that include EC-Council’s flagship Certified Ethical Hacker (CEH) v7 training, Security+ training by Element K, official courseware, exam vouchers and passes for Hacker Halted, TakeDownCon and CAST cyber security conferences. EC-Council will also grant the first place winner with an automatic entry into the Global CyberLympics competition, an international team ethical hacking championship. Read more…
PRWeb Summary: EC-Council’s (www.eccouncil.org) Center of Advanced Security Training (CAST) debuted in the Middle East in late July with two back-to-back courses on Advanced Penetration Testing, coordinated by Formatech’s Lebanon training center. The CAST Advanced Penetration Testing training is an intense three-day technical training course that teaches experienced information security professionals how to pen-test highly secured environments like government agencies and financial institutions. Roughly 80 percent of the class involves hands-on hacking labs.
ALBUQUERQUE, NM – EC-Council’s new elite training program, the Center of Advanced Security Training (CAST), recently debuted in the Middle East with two back-to-back classes in Advanced Penetration Testing in late July in Lebanon.
|The CAST classes were held July 26-28 and July 29 – August 2, coordinated by EC-Council training partner Formatech, through its training center in Beirut, Lebanon. Both the Advanced Penetration Testing courses were led by CAST Master Joe McCray and were attended by a total of 30 information security professionals from around the region.“CAST is committed to providing advanced information security training in the Middle East, which we foresee exponential growth in demand for such training ifor some time to come,” said Leonard Chin, Director of CAST. “It is very encouraging to receive very good responses from the participants in our first-ever Middle East CAST training class, and plans for more of such offerings are already underway.”|
|The 30 information security professionals who completed CAST’s Advanced Penetration Testing course gained invaluable experience in pen-testing a high security network, like those used by government agencies and financial institutions. Specifically, they learned how to move around the network without being detected by IDS/IPS, how to circumvent common security implementations such as Locked, and how to down desktops, GPOs, IDS/IPS/WAF, etc.Formatech is a leading training center in Lebanon since 1995, offering computer and IT training courses to companies and individuals. (I will put in Formatech’s boilerplate here)|
CAST is holding an inaugural summit in Washington, D.C. August 22-25. The CAST Summit will offer advanced penetration testing, advanced network defense training, digital mobile forensics training and cryptography training. The summit concludes with a keynote address by two renowned cybersecurity and cyber terrorism experts, Jeff Bardin and Richard Stiennon, and a series of lectures directly from CAST’s elite trainers. For more information on the CAST Summit, please visit http://www.eccouncil.org/castsummit.
The Center of Advanced Security Training (CAST) was developed by EC-Council (www.eccouncil.org), in conjunction with cybersecurity experts, to address the need for highly technical and advanced security training for information security professionals. Instructed by EC-Council’s select group of master trainers, CAST offers hands-on, lab intensive courses that cover the security industry’s top domains, including advanced penetration testing training, digital mobile forensics training, advanced application security training, advanced network defense training, advanced social engineering training, web application security training, and more. CAST is hosted at various international events, including the CAST Summit, as well as EC-Council’s flagship Hacker Halted conference series. More information about CAST is available at http://www.eccouncil.org/cast
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cyber security and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT). EC-Council has trained over 90,000 security professionals and certified more than 40,000 members.
EC-Council’s certification programs are offered by over 450 training centers across 87 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncil.org.
Global CyberLympics is conceptualized and organized by EC-Council. The goal of the CyberLympics is to raise awareness towards increased education and ethics in information security. The mission of the Global CyberLympics is Unifying Global Cyber Defense through the Games. EC-Council’s Global CyberLympics, the world’s first ethical hacking championship will be held this September across six continents. The Global CyberLympics is endorsed by the U.N.‘s cybersecurity executing arm. The mission behind the games is to foster better cooperation and communication on cybersecurity issues among countries.
Global CyberLympics is a series of ethical hacking games comprised of both offensive and defensive security challenges that will take place starting from September across six continents. Teams will vie for regional championships, followed by a global hacking championship round to determine the world’s best cybersecurity team. The EC-Council is sponsoring over $400,000 worth of prizes at the CyberLympics. Read more…
ALBUQUERQUE, NM – July 6th, 2011 – New Horizons Bulgaria, a member of the global network of New Horizons Computer Learning Centers, recently became EC-Council’s first Accredited Training Center (ATC) in Bulgaria.
The company also organized the first training workshops for Certified Ethical Hacker version 7 (CEHv7) and Computer Hacking Forensic Investigator (CHFI) in Bulgaria.
“EC-Council is a recognized global leader in cybersecurity training, and we are extremely proud to become its first Accredited Training Center in Bulgaria,” said Nikolay Penev, general manager of New Horizons Bulgaria. “Our new partnership will create better training opportunities for information security professionals in Bulgaria, and allow us to provide the latest, cutting-edge training courses available anywhere in the world.”
“We are pleased to have New Horizons Bulgaria as a new training partner of EC-Council and look forward to a long-standing and successful relationship,” said Hanan Wagie, Regional Director – EMEA of EC-Council. “Bulgaria’s information security community will surely benefit from New Horizons’ enhanced training offerings, and it will prove to be an asset for many local companies and organizations.”
Since its inception as an EC-Council Accredited Training Center, New Horizons Bulgaria has already certified 12 professionals as Certified Ethical Hackers and nine professionals as Computer Hacking Forensic Investigators.
As part of its launch effort for CEHv7, New Horizons Bulgaria also hosted an ethical hacker training conference in May, dubbed “Hack the Hackers.” The conference was attended by 230 representatives from high-profile companies in finance, telecommunications, information technologies, public administration, energy and manufacturing. An additional 60 visitors participated in the conference’s online portal.
For more information about EC-Council’s Accredited Training Center partnership program, please visit http://www.eccouncil.org/portals/accredited_training_center.aspx.
ABOUT NEW HORIZONS BULGARIA
New Horizons Bulgaria is the largest IT training center in Bulgaria, member of the global network of New Horizons Computer Learning Centers, which is the leading provider of learning solutions for Information Technology, PC Desktop Applications, Project Management and Business Skills training. With 300 locations in 60 countries and over 400 courses, New Horizons is the world’s largest independent IT training company and delivers over three million student days of classroom training and over one million hours of online training each year.
New Horizons Bulgaria is a successor of all the activities currently performed by Consulting & Technical Education Company (CTEC-BG) and provides full range of solutions in the transfer of knowledge area: technical training (information security, ITIL, Microsoft, Cisco, IBM etc.), training on integrated business systems, office applications (Microsoft Project, Microsoft Excel, Microsoft PowerPoint etc.) and business skills. The company offers the full range of official training delivery methods (Instructor-led classroom training, on-site training, mentored training and e-learning) according to the latest technologies by Microsoft, Cisco, IBM and so on.
New Horizons Bulgaria is a certified partner of leading global companies in the field of information technologies, amidst Microsoft (Microsoft Gold Certified Partner for Learning Solutions, Information Worker Solutions and Security Solutions), Cisco (Cisco Learning Partner Associate), The International Council of E-Commerce Consultants, EC-Council (EC-Council Authorized Training Center), IBM (IBM Authorized Training Provider), Pearson VUE (Pearson Vue Authorized Testing Center), Prometric (Authorized Prometric Testing Center), and others.
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT) certification. EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 84 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncil.org.
June 8th is World IPv6 Day and it’s a key opportunity for network security analysts, CSOs and other information security professionals to begin planning for their organizations’ transition from IPv4 to IPv6 – and consider the security issues that may develop.
“With the transition to IPv6 comes a host of security concerns, since a change from IPv4 to IPv6 means a change to the very protocol that drives the Internet,” said Jay Bavisi, president and co-founder of EC-Council. “Among other things, the larger address space and mandatory cryptographic functionality of IPv6, in theory, makes it a significant advancement over IPv4. However, IPv6 is not without its problems, and the real test is how well this theoretical superiority will translate into practical benefit.”
For more information on this, please visit “http://www.prweb.com/releases/2011/6/prweb8534812.htm“