ICYMI: AI limit: NY breaches; iOS ransom; 1.4 bn leaks; Swiss AI SOC
ICYMI: AI limit: NY breaches; iOS ransom; 1.4 bn leaks; Swiss AI SOC

Carbon Black warns that artificial intelligence is not a silver bullet

The roles of AI and ML in preventing cyber-attacks have been met with both hope and scepticism says Carbon Black report “Beyond the Hype”.  Looking at how security researchers perceive non-malware attacks, and how good Artificial Intelligence (AI) and Machine Learning (ML) are at stopping them Carbon Black research found that the vast majority (93 percent) of the 400 security researchers interviewed said non-malware attacks pose more of a business risk than commodity malware attacks, and more importantly that these are often not stopped by traditional anti-virus offerings.

Mike Viscuso, co-founder and CTO of Carbon Black told SC Media UK: “Researchers have reported seeing an increase in the number, and sophistication, of non-malware attacks. .... specifically designed to evade file-based prevention mechanisms.” More...

New York data breaches rise by 60% due to hacking and insiders

New York Security breaches skyrocketed by 60 percent in 2016. Firms reported 1,300 breach incidents involving the data of 1.6 million New York state residents. Hacking was the prime cause, appearing in 40 percent of reports. Insider breaches followed, constituting 37 percent of breaches. The remainder comprised a variety of causes including device theft and ‘merchant missteps'.

"Hacking is increasingly prevalent — making it all the more important for companies and citizens alike to take precautions when sharing and storing personal data," said the state's attorney general Eric Schneiderman. In the large majority of cases, 81 percent, either social security numbers or financial information was taken. More...

iOS 10.3 update: scammers use 'scare' tactic to gain ransom payments

Apple has released an update to iOS 10.3 that changes how Mobile Safari handles JavaScript pop-ups. The Support desk of Lookout, a mobile security company, discovered scammers using a “scareware” campaign, which locks out victims from using the browser, unless the victim pays the attacker money in the form of an iTunes Gift Card, in which case the attack blocks use of the Safari browser on iOS.

A user running Apple's iOS 10.2 reported that they lost control of Safari after visiting a website and was no longer able to use the browser. An endless loop of pop-ups effectively locks up the browser, thus preventing the victim from using Safari. The user reported seeing messages that said “Your device has been locked…” or “…you have to pay the fine of £100 with an iTunes prepaid card”.  Users can restore functionality of the browser by clearing the cache in iOS Settings. More...

Gemalto Breach Level Index: 1.4bn data records compromised in 2016

Gemalto has released the findings of its 2016 Breach Level Index revealing that 1,792 publicly disclosed data breaches led to almost 1.4 billion data records being compromised worldwide during 2016, an increase of 86 percent compared to 2015.

Identity theft was the leading type of data breach in 2016, accounting for 59 percent of all data breaches. In addition, 52 percent of the data breaches in 2016 did not disclose the number of compromised records at the time they were reported. More...

Switzerland to build AI cognitive security ops centre to protect banks

Famous for its cuckoo clocks, Switzerland is about to get a machine so sophisticated that it is designed to outthink the cyber-attackers targeting its equally famous banking industry.

Watson AI machine will provide artificially intelligent cyber solutions for Switzerland bank. Being developed by IBM and SIX, the Financial Technology Company of Switzerland, this will be the country's first cognitive security operations centre (SOC) and will help protect the Swiss financial services industry. More...