Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Security Management

10/3/2017
12:00 PM
Simon Marshall
Simon Marshall
Simon Marshall
50%
50%

A Month for Cybersecurity

It's National Cybersecurity Awareness Month, a time to think about, plan and deploy better cybersecurity for your organization.

It's National Cybersecurity Awareness Month (NCSAM), and the National Cyber Security Alliance (NCSA) and the US Department of Homeland Security want everyone to know that securing the Internet is everyone's job. It's a noble sentiment and one consumers need to hear: not literally going out there and securing it themselves, but at least behaving wisely while online.

Will we soon see families rushing out to purchase their own industrial endpoint protection? Well, maybe. Especially if the Department of Homeland Security continues to ban Kaspersky Labs from its approved federal vendor list. Will neighbors instead form blue teams and try to defeat hackers at their own game? Pretty unlikely (although an interesting idea).

There's a veritable hackerfest out there to deal with, so consumers are better barricading themselves indoors than saddling up for King and Country and galloping out there to lance them.

But sometimes, the wisdom isn't there and so NCSAM -- themed "Our Shared Responsibility" -- is all about setting the educational record straight. There's hope for us yet: in a survey today from Raytheon and Forcepoint in partnership with the NCSA, about 85% of adults worldwide aged between 18 and 26 think that keeping the Internet safe and secure should be a shared venture.

Today's "devil take the hindmost" consumer culture could soon be replaced with a new vibe -- some would say the original Internet vibe of a shared resource for all -- to take more responsibility online, for the greater good.

"NCSAM is the time we all re-dedicate our efforts to make sure that everyone has the information they need to stay safe online, and build a safer, more secure and more trusted Internet," said Michael Kaiser, NCSA's executive director. "We must secure all corners."

Although consumers are in the swing of erecting their firewalls, and rolling out anti-malware and anti-virus efforts, identity theft is still a major worry. A report today from the Identity Theft Resource Center (ITRC) kicked up a couple of interesting stats that show how stressful the identity theft experience has become.

"The results [of the] survey indicate 75 percent of respondents were severely distressed by the misuse, or attempted misuse, of their personal information, highlighting the serious repercussions for victims," said Eva Velasquez, ITRC's CEO and president. "Nearly a quarter of the participants sought professional help to manage the emotional and physical symptoms they suffered as a result of this crime."

Sadly, it's still the senior community that bears the brunt of scamming. Just more than one-third of US seniors say someone has tried to scam them online, according to a survey conducted by Home Instead, franchisor of the Home Instead Senior Care network.


You're invited to attend Light Reading's Virtualizing the Cable Architecture event – a free breakfast panel at SCTE/ISBE's Cable-Tec Expo on October 18 featuring Comcast's Rob Howald and Charter's John Dickinson.

Apparently, it could be a combination of Teddy Roosevelt's motto, "everybody deserves a square deal" and their generally trusting nature that can lead to seniors coming unstuck. The top five scams remain: bogus PC tech support alerts, tax scams, ransomware, false debt collection emails and sweepstake scams.

To try and keep consumers heading off the security cliff without a hang-glider, NCSA is reiterating a catchy campaign to remind users to think carefully while online. "STOP. THINK. CONNECT," launched in October 2010, is simple, actionable advice all digital citizens can follow -- STOP: make sure security measures are in place. THINK: about the consequences of your online actions. CONNECT: and enjoy the Internet.

To complement this, NCSA is also literally taking its message on the road: it's parking cars strategically to flag the issues to people on the street.

Related posts:

— Simon Marshall, Technology Journalist, special to Security Now

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/17/2020
Cybersecurity Bounces Back, but Talent Still Absent
Simone Petrella, Chief Executive Officer, CyberVista,  9/16/2020
Meet the Computer Scientist Who Helped Push for Paper Ballots
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/16/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-8225
PUBLISHED: 2020-09-18
A cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away information about used proxies and their authentication credentials.
CVE-2020-8237
PUBLISHED: 2020-09-18
Prototype pollution in json-bigint npm package < 1.0.0 may lead to a denial-of-service (DoS) attack.
CVE-2020-8245
PUBLISHED: 2020-09-18
Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11....
CVE-2020-8246
PUBLISHED: 2020-09-18
Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-W...
CVE-2020-8247
PUBLISHED: 2020-09-18
Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-W...