Tech firms way behind the curve on handling cybersecurity

From: NakedSecurity.com

by John Hawes

US financial companies are the best protected against the risk of cyberattack, with the energy and retail sectors not too far behind. In contrast, technology businesses consistently rate far lower, according to a study by risk analysis firm BitSight.

The study is based on the firm’s security risk rating system, measured by analysing factors like data breaches, but also including levels of spam and botnet traffic observed coming from within a company’s IP space and how long it takes to mop up breaches and infections.

The Impact of Cybersecurity on Trade

From: GovInfoSececurity.com

Researcher Offers U.S. Policy Case Examples

National policies regarding cybersecurity can have a positive or negative effect on global trade efforts, says Allan Friedman, research director of the Brookings Institution’s Center for Technology Innovation.

Take, for example, a congressional report from 2012, which recommends that government systems, particularly sensitive IT systems, refrain from using equipment and component parts manufactured by two Chinese companies, Huawei and ZTE, the world’s largest and fifth-largest telecom equipment makers, respectively (see House Panel: 2 Chinese Firms Pose IT Security Risks).

Fortinet’s FortiGuard Labs Reveals Top 10 Threat Predictions for 2014

From: MarketWatch

Expected Trends Include Android Malware Migrating to Industrial Control Systems, Cybercriminals Battling It Out in the Deep Web and New Exploits Targeting Home Devices

Fortinet(R)– a global leader in high-performance network security — today revealed FortiGuard Labs’ 2014 threat predictions, highlighting 10 threats to watch out for next year.

EU cyber security agency issues cloud deployment guide

From: Asia Pacific FutureGov

By Medha Bas

The European Union Agency for Network and Information Security (ENISA) has recommended that the European Union (EU) develop a unified strategy for government cloud in order to enable member countries to securely deploy government clouds.

The report recognises that public sector organisations are increasingly switching to cloud computing, and government clouds can simplify citizen interactions by reducing information processing time, lowering cost of government services and enhancing citizen data security. However, cloud adoption in the European government sector has been very heterogeneous.

President’s science & tech panel releases cybersecurity report urging further regulation

From: Inside Cybersecurity

Dan Dupont

The President’s Council of Advisors on Science and Technology today released its report on cybersecurity opportunities, opening up for debate its suggested “leveraging” of existing regulatory authorities and singling out the Securities Exchange Commission for its potential role in mandating the disclosure of business risks.

The main conclusions of the report, “Immediate Opportunities for Strengthening the Nation’s Cybersecurity,” were first reported Thursday by Inside Cybersecurity. The report was approved by PCAST during a public meeting on Nov. 20.