Industry & Business

Secure websites a cyber security risk for Irish businesses

 Breaking News
  • Largest Ever European Investment Bank Support in Ireland The European Investment Bank is to provide a loan of €490 million to support construction of the new children’s hospital in Dublin. This represents the largest ever financial engagement by the European Union’s long-term lending institution in Ireland and the EIB’s first backing for a hospital in the country. The new children’s hospital project includes two [...]...
  • Strabane Manufacturer to Invest Over £7 Million in Ambitious Expansion Strabane-based Fabplus is planning to more than double its workforce and turnover with support from Invest Northern Ireland. The investment is part of a three year expansion plan to increase its market share in the Republic of Ireland and Great Britain, and gain a foothold in mainland Europe and Scandinavia. Recruitment is underway to employ 83 additional staff at [...]...
  • PM Group Appoints a New Non-Executive Director Michael McNicholas has been appointed as a Non-Executive Director of Project Management Holdings (PM Group), the Irish headquartered international project delivery specialists. Michael McNicholas. Michael has over 35 years’ experience in senior leadership positions in the public and private sectors. He is the former CEO of Ervia, NTR plc and Managing Director of ESB International.  During his [...]...
  • Center Parcs Signs Contract With John Sisk & Son As construction activity on the much anticipated €233 million Center Parcs Longford Forest resort in County Longford ramps up, the company has announced it has formally awarded two major construction contracts to Dublin-based construction firm John Sisk & Son. The contracts for the construction of the 470 lodges and 30 apartments as well as the state-of-the-art centre [...]...
  • Medi-Shower Invests in Innovation to Drive Export Growth Multi-award-winning manufacturer Medi-Shower has created ‘smart showerhead’ technology which can reduce the risk of Legionnaires disease. The cutting edge product, developed with R&D support from Invest Northern Ireland is designed to meet the high requirements for hygiene within the healthcare sector. It reduces the risk of waterborne infection from bacteria that can build up due to poor design [...]...

Secure websites a cyber security risk for Irish businesses

Secure websites a cyber security risk for Irish businesses
May 16
09:00 2017

Secure websites present one of the biggest headaches for Irish companies looking to protect themselves from potentially crippling online attacks, a top cyber security expert has claimed. “Most traditional firewalls allow all traffic coming from secure websites straight into your network, presenting a huge opportunity for cyber criminals,” said cyber security expert James Canty of Magnet Networks.

“Unfortunately, secure sites account for between 60-70% of all internet traffic for Irish businesses today, leaving network access open to attack and making most firewalls unfit for purpose. “If cyber criminals have potential access to your network and staff are not cyber aware, then the potential is there for disastrous consequences such as we recently saw in the UK and US health services.

“Business owners need to ask the person responsible for their cyber security questions about how effective their firewall is, even if it was just recently installed, as the onset and adoption of cloud technologies has made most firewalls pretty worthless.

“Unfortunately, we are finding that just because you have a box in the corner that the IT calls a firewall doesn’t mean you are protected.

“Software patches and security updates are what make traditional anti-virus solutions ineffective as they are constantly playing catch up, leaving unsecure software vulnerable to attack.

“Companies need to have a next generation application-aware firewall along with advanced endpoint protection and local real-time analysis on each machine.

“No business using this system, which Magnet Networks employ, would have been affected in any way by the recent cyber attack.”

Ransomware is displacing other cybercrime business models as criminals have realised that this is a lucrative business with low barriers to entry. “Nearly all computers or devices with an unsecured internet connection are potentially victims of ransomware, which is a more urgent concern with the rise of the internet of things (IoT) and the proliferation of additional devices, such as wearable tech and home appliances,” said Canty.

“Ransomware acts quickly and it is imperative that businesses act and deploy zero-day protections and controls that mitigate or prevent attack.

“Education and awareness are key as most attacks are triggered by unsuspecting individuals opening either exe files or documents, which can look quite convincing.

“These have no known signatures or behaviours so that most existing enterprise security systems must allow the malware to run, so they can then recognise them and are effectively playing catch ups with cyber criminals.

“There are certain stages that malware must go through in able to function, and businesses need to employ real time protection that can identify, isolate and educate on each new piece of malware as it happens.

“Owners also need to ask if their IT departments can provide reports showing all the activity on the network, on the basis that if you don’t know what is coming in and out of the business, then how can you protect yourself?

“If needed, system administrators should be able to see a report detailing all activity on a per user basis across the network.

“Businesses should also look at reviewing their network drive permissions to minimise the impact a single user can have, and ensure that administrators are assigned separate normal restricted accounts separate from their highly privileged accounts.”

About Author

editor

editor

Related Articles






New Subscriber





Subscribe Here



Advertisements
































National Manufacturing Conference & Exhibition 2016

NIBRT Springboard Success Stories



Upcoming Events

  • No upcoming events
AEC v1.0.4