The Telegraph Business – Are company boards of directors trivialising security?

telegraphUK CEOs worry more about cyber threats than their global peers; but how can they effectively combat them?

“At a time when businesses are facing a growing threat from data breaches, they must have a director responsible for cyber security. It’s no longer a question of if but when a data breach will occur,” says Jason Hart, CTO for data protection at digital-security firm Gemalto.

“Having an individual or team on the board responsible for this area is essential. They can help the company understand the threats it faces and communicate steps that need to be taken to senior management.”

To read the full article click here.

GDPR Report – GDPR Summit London: Should you be worried about a data breach?

gdprreport-logogReports of business data breaches have unfortunately become commonplace. This week, the corporate finance giant Deloitte has suffered a cyber-attack that compromised confidential data, including the private emails of some of its clients.

More than ever, businesses need to ensure their data is protected from outside threats. Jason Hart, CTO of Data Protection at Gemalto said about the news of the Deloitte breach:

“Today’s announcement that Deloitte was hacked is not a surprise. Breaches will – and ARE continuing to happen—to expect otherwise would be unrealistic. As an industry, we need to truly know our surroundings, meaning knowing exactly where data resides, who has access to it, how it is transferred, when it is encrypted/decrypted – really the entire supply change of digital users and the data. Of the 1.9 billion data records compromised worldwide in the first half of 2017, less than 1% used encryption to render the information useless.

“We need a data-centric view of threats means using better identity and access control techniques, multi-factor authentication and encryption and key management to secure sensitive data. This is, even more, pressing with new and updated government mandates like the 2015 Digital Privacy Act in Canada, the GDPR in Europe, as well as U.S state-based and APAC country-based breach disclosure laws.”

To read the full article click here. 

Saudi Gazette – Identity theft leading type of data breach in first half of 2017

saudigazetteJEDDAH – Gemalto, the world leader in digital security, released the latest findings of the Breach Level Index, a global database of public data breaches, revealing 918 data breaches led to 1.9 billion data records being compromised worldwide in the first half of 2017. Compared to the last six months of 2016, the number of lost, stolen or compromised records increased by a staggering 164%. A large portion came from the 22 largest data breaches, each involving more than one million compromised records. Of the 918 data breaches more than 500 (59% of all breaches) had an unknown or unaccounted number of compromised data records.
“IT consultant CGI and Oxford Economics recently issued a study, using data from the Breach Level Index and found that two-thirds of firms breached had their share price negatively impacted. Out of the 65 companies evaluated the breach cost shareholders over $52.40 billion,” said Jason Hart, Vice President and Chief Technology Officer for Data Protection at Gemalto. “We can expect that number to grow significantly, especially as government regulations in the US, Europe and elsewhere enact laws to protect the privacy and data of their constituents by associating a monetary value to improperly securing data. Security is no longer a reactive measure but an expectation from companies and consumers.”

To read the full article click here.

Information Week – The Cyber Risk of False Confidence

informationweek-logo2Companies are overly confident about their cybersecurity, and it’s leaving their data (and maybe yours too), open to some major security risks.

Gemalto CTO and VP for Data Protection, Jason Hart says part of the reason for this “breach gap” – the idea that organizations think their data is more secure than it is – is because organizations don’t fully understand the motivations behind a breach.

“There’s still a lack of understanding from organizations that it’s the data [threat actors] are after,” says Hart. “We’ve mostly seen confidentiality breaches, when a threat actor gets the data they share it, sell it, etc. What people misunderstand, is that a confidentiality breach is just the start of the problem,” he says.

To read the full article click here. 

eSecurity Planet – Massive SEC Breach Highlights Need for Broader Use of Encryption

esp_logoU.S. Securities and Exchange Commission (SEC) chairman Jay Clayton recently announced that a software vulnerability in its Electronic Data Gathering, Analysis and Retrieval (EDGAR) system “was exploited and resulted in access to nonpublic information” in 2016.

Jason Hart, vice president and CTO for data protection at Gemalto, said by email that stopping breaches like these is an unrealistic goal. “A better starting point is for organizations to truly know what they are trying to protect and then putting the right safeguards like encryption in place,” he said. “Of the 1.9 billion data records compromised worldwide in the first half of 2017, less than 1 percent used encryption to render the information useless.”

According to Gemalto’s Breach Level Index for the first half of 2017, the proportion of stolen, lost or compromised data that was protected by encryption dropped by 4 percent compared to the last six months of 2016.

The first half of 2017 also saw a 164 percent increase in stolen, lost or compromised records — over 10 million records were compromised or exposed every day, or 122 records every second.

To read the full article click here.

Help Net Security – Number of lost, stolen or compromised records increased by 164%

helpnetAccording to Gemalto’s Breach Level Index, 918 data breaches led to 1.9 billion data records being compromised worldwide in the first half of 2017.

Compared to the last six months of 2016, the number of lost, stolen or compromised records increased by 164%. A large portion came from the 22 largest data breaches, each involving more than one million compromised records. Of the 918 data breaches more than 500 (59% of all breaches) had an unknown or unaccounted number of compromised data records.

“IT consultant CGI and Oxford Economics recently issued a study, using data from the Breach Level Index and found that two-thirds of firms breached had their share price negatively impacted. Out of the 65 companies evaluated the breach cost shareholders over $52.40 billion,” said Jason Hart, Vice President and CTO for Data Protection at Gemalto. “We can expect that number to grow significantly, especially as government regulations in the U.S., Europe and elsewhere enact laws to protect the privacy and data of their constituents by associating a monetary value to improperly securing data. Security is no longer a reactive measure but an expectation from companies and consumers.”

To read the full article click here.

Oct. 4th 2017 – IPEXPO Europe – GDPR Blueprint; Tackling Confidentially, Integrity and Availability of Data

ipe17-logo-pngThe new EU regulation of the Privacy world (the GDPR) is rapidly approaching.  Jason Hart will reveal a back to basics approach in relation to GDPR. Specifically, we will identify a GDPR blueprint that tackles the privacy concerns around confidentiality, integrity and availability of sensitive data.

October 4th, 2017. Session time: 14:30-14:50

 

For more info. and to access to the seminar planner, click here.

CSO – Protecting data: when confidence is overconfidence

csoonlineAccording to the recently released annual Data Security Confidence Index (DSCI), many businesses today are guilty of feeling overconfident about keeping hackers at bay, while at the same time failing to keep data safe.

American author, engineer and billiards Hall of Famer, Robert Byrne, once noted “confidence is overconfidence.” According to the recently released annual Data Security Confidence Index (DSCI), many businesses today are guilty of this flawed mindset; feeling overconfident about keeping hackers at bay, while at the same time failing to keep data safe.

To read the full article click here.

ComputerWorld UK – Cyber security tips for UK businesses

computerworldukHere’s ten cyber security tips your business needs, from an ethical hacker.

The amount of data we create is increasing rapidly. According to IBM, every day we generate 2.5 quintillion bytes, so much that 90 percent of the data in the world today has been created in the last two years alone.

To read the full article click here.