penetration testing

3i, Barclays and Worldpay praised in Deloitte report on cyber risk

Only 5% of FTSE boards appears to have a director with specialist expertise in cyber risk, despite the fact that 87% of FTSE companies’ annual reports pulled out one or more elements of cyber risk as principal risks in their disclosures, according a report published by consultants Deloitte. The findings, based on a study of »

Cyber security firm to be publicly traded on AIM

Bradford-based ECSC Group, a cyber security services provider which includes Barclays among its customers, has announced that it will float on the London Stock Exchange’s Alternative Investment Market (AIM). Investors will be able to publicly trade shares of ECSC on December 14th. The float is expected to raise £5 million, according to the AIM site. »

Exchange trade body publishes cyber resilience principles

The World Federation of Exchanges (WFE), an industry body that represents more than 200 exchanges and clearinghouses, has published a set of principles on cyber resilience. The WFE says these are intended to complement a paper released on June 29th by a joint Committee on Payments and Market Infrastructures (CPMI) and International Organization of Securities »

CREST opens Singapore branch

The UK’s Council for Registered Ethical Security Testers (CREST), which provides accreditation for vendors of digital security services, has established a branch in Singapore in association with the Cyber Security Agency of Singapore (CSA) and Singapore’s Association of Information Security Professionals (AISP). The project, which marks CREST’s first branch in Asia, was undertaken in collaboration »

Ian Glover-CREST

Video Interview: Ian Glover, CREST

Ian Glover is president of the Council for Registered Ethical Security Testers (CREST), the UK trade body that accredits information security testers and is working with the Bank of England on its CBEST penetration testing project for leading banks. The bad news, according to Glover, is that cyber-attacks on banks are going grow in frequency and »

Shark

DDoS cyber attacks: Europe’s banks need a plan

It’s an arms race and – right now – banks are losing. A recent casualty was HSBC, which on January 29th saw its online banking system brought down for several hours by a distributed denial-of-service (DDoS) attack. DDoS attacks are getting larger, and better organised. According to a recent report by Massachusetts-based security consultant Arbor »

Ian Glover-CREST

Asia to drive growth in security testing certification

Ian Glover, president of CREST — the UK-based Council of Registered Ethical Testers — expects his organisation to certify a growing number of penetration and threat intelligence testing companies in 2016 as demand for their services grows. CREST, a not-for-profit organisation whose objective is to represent the information security industry by demonstrating the competence of »