Tag Archives: Internet

Top Bank CEO becomes LinkedIn influencer

Posted on by
Reply

Mike Smith, CEO of ANZ Banking Group is leading the way for CEO’s into social media.

He is joining the elite of LinkedIn called the global influencer program which includes US President Barack Obama, British PM David Cameron,  Microsoft founder Bill Gates and Virgin founder Richard Branson.

Many now predict, that we will now see the CEO & Board member elite who have not felt the need to join a professional Social Network will now rush to not be left behind.

First Australian CEO accepted into the influencer program

CEO sees the light on social media

…………………

IP voice security: are you susceptible or strong?

Posted on by
Reply

Undoubtedly, corporations are realising the benefits of IP voice systems. Voice over internet protocol (VoIP) can bring substantial cost savings and productivity enhancements to a business by transforming its circuit-switched networks to IP packet switching networks and running voice and data applications over a single infrastructure. However, businesses need to be aware that there are potential risks involved, they need to take some necessary steps to protect their interests.

When voice and data are merged onto a single network, voice becomes an application on the network and is, therefore, exposed to the same threats as data applications. These threats include infrastructure and application-based attacks, denial-of-service (DoS) attacks, eavesdropping, toll fraud and protocol-specific attacks. However, with the right procedures in place, VoIP security risks and threats can be managed and mitigated—maximising the benefits of VoIP while minimising exposure.

Infrastructure and application-based attacks

In VoIP, voice is essentially an application on the data network, fine-tuned to maintain voice-quality performance. VoIP equipment and end-point devices such as IP phones are becoming standardised and commoditised just like other data components such as PCs—meaning that VoIP is just as vulnerable to cyber-attacks. Hackers can exploit voice devices and disrupt the network from normal service and/or perform criminal actions such as data theft.

IT managers need to maintain current patch levels on all IT and network equipment and applications, and have appropriate anti-virus software installed and up-to-date. Virtual local area networks (VLANs) can also be implemented and used to protect voice traffic from data network attacks. By implementing application gateways between trusted and untrusted zones of the network, a VLAN will complement the protection offered by corporate firewalls.

Denial-of-service (DoS) attacks

A DoS attack occurs when someone deliberately floods a particular network with so much illegitimate traffic that it blocks legitimate traffic. Obviously, if your voice traffic is being transmitted over the same network, a DoS attack will have significant impact on business operations.

DoS attacks are difficult to stop and prevent, but proper intrusion prevention practices, special network devices and proper patch updates can minimise the risk of exposure. In order to prevent data network problems from affecting voice traffic, voice and data traffic should logically be separated from administrative traffic. Traffic shaping can also provide another layer of protection and control for the network.

Eavesdropping

Intercepting data traffic is a trivial endeavour for most hackers so it stands to reason that with voice and data convergence, the same can be said for voice traffic over the network. Many tools are freely available to collect packets associated with VoIP conversations and reassemble them for illicit purposes. Two measures that can be taken to prevent eavesdropping include isolating VoIP traffic using virtual private networks (VPNs) and applying encryption on voice packets. However, IT managers need to carefully evaluate the use of encryption of VoIP as it can increase latency in the network. Encryption of voice data could be selectively applied based on business requirements, for example, encryption and decryption can be used only for those conversations over untrusted networks. When choosing a managed service provider, companies should ensure that appropriate security protocols are actively used by the potential provider to ensure secure conversations within the network.

Toll fraud

Just as with traditional voice systems, toll fraud cannot be ignored when considering VoIP systems. Using toll fraud, attackers gain unauthorised access to a private branch exchange (PBX) call-control system to make long-distance or international calls, which can mean significant financial impact to the business. Poor implementation of authentication processes could allow calls from unauthorised IP phones and/or allow unauthorised use of the VoIP network. Companies need to impose proper control for access to VoIP systems, including gateways and switches, in order to avoid the occurrence or toll fraud. Centralisation of management and configuration control is also recommended.

Protocol-specific threats

Since VoIP was developed on an open standard, the protocols that support communications are well known and thus vulnerable to probing for their weaknesses and security flaws. Session initiation protocol (SIP) is gaining popularity – SIP is a session and call-control protocol, components of which are used by standards-based IP PBX and IP telephony systems. In addition to the standard IP vulnerabilities, SIP brings additional risks.

SIP is a text-based protocol, like the common HTTP and SMTP. Therefore attackers can easily monitor and analyse traffic and then transition into various application-level attacks. Attacks can include impersonation of registration for system access, unauthorised access to corporate directory information, taking control of calls to disrupt business and also placing unsolicited calls and voice messages. Obviously, in a malicious attack, this could be highly detrimental to a business. It managers need to be aware of these vulnerabilities and thus implement strong authentication and authorisation processes.

IP voice security

While convergence and VoIP implementations are fast becoming mainstream among multinational corporations, they are, at the same time, posing serious security challenges. Whether you are planning to build your own converged network or utilise the services of a managed service provider, the primary goal should be the implementation of VoIP security that is properly built and validated, with ongoing management support. Security has to be managed through proactive monitoring, event management, remediation and regular follow-up to ensure a stable and reliable corporate communications infrastructure. However, with the right security in place, VoIP can be a valuable asset to a company.

Original Publication

Security complexity threatens enterprises

Posted on by
Reply

Information security is one of the biggest challenges facing enterprises this year. Being hacked by criminals is becoming depressingly familiar for a many businesses. A roll call of prominent brands has succumbed to what is an unprecedented number of attacks. Increasing threats, regulations and complexity have catapulted network security up the corporate agenda. Considering billions are being spent on cyber security each year, why are businesses continuing to fall victim to cyber attacks?

The changing dynamics of the workplace have led to increasing complexity of enterprise security. Employees bringing their own devices to work, escalating the growth of data and need for corresponding protection. The proliferation of new cyber threats, daily, and the sheer number of security solutions available make a chief information security officer’s job a formidable challenge. These are issues that need to be examined in greater detail.

Employees and BYOD

The consumerisation of technology has been one the biggest trends in recent years—one that shows no sign of abating. Consumerisation has brought a whole new range of devices into the workplace, often as part of a sanctioned Bring Your Own Device (BYOD) program. These additional devices can create security and management headaches for enterprises as they struggle to deal with the implications of securing corporate data. Employees using their own devices also create numerous additional access points to the network—leading to many more opportunities for cyber criminals to attack the enterprise network, as well as leading to greater potential for data leakage.

Data growth is rocketing

Exacerbating the impact is the explosion in data. Over the last five years, data on the internet has increased five-fold, to almost 2 zettabytes (billion terabytes) and this trend is likely to continue on an exponential scale in the foreseeable future. Video is one of the main culprits—in January 2012, YouTube reported that 60 hours of video were being uploaded every minute to the site, equating to more than 300,000 full-length feature films each week.

Aside from video, amidst this avalanche of data there is important confidential information such as legal documents, state secrets, company IP and healthcare data. The challenge for businesses is to identify what they are actually responsible for in this growing mass of information.

Compliance demands protection

Companies need to identify and protect confidential information—and not just to protect their own assets. An increasing raft of international regulations and legislation are demanding that enterprises show due care and diligence in protecting confidential information. This is an area that Australia is yet to cover in depth, but with the advent of more and more sensitive information going online—for example, healthcare—this will need to be addressed.

New threats daily

There are currently over 45 million different viruses in circulation, with over 2000 new ones appearing each day. The steady increase in threats, coupled with manyfold new vulnerabilities created by employees using their own devices for work purposes, means it is nearly inevitable that an enterprise’s defences will be overcome at some point. Businesses need to develop new methods and systems for protecting critical company information and sensitive customer data.

Solution overload, outsourcing and increasing cost pressures

The combination of rising threats in security, changing employee behaviour and increased regulation has led to myriad solutions being made available by vendors. The sheer scale and complexity on offer can make it confusing for businesses to know what to choose for optimum protection.

There is also an increasing disconnect between the budget available for security and the wide-ranging nature of the chief information security officer’s area of responsibility. Previously, security was only about being able to connect the network securely and safely. Now a CISO needs to be a business leader while also managing security policy, compliance, access and application security. Finding the right staff is also crucial, and the higher demand for IT specialists has created a skills shortage which is, in turn, driving the uptake of outsourced security services.

Businesses are looking to outsource their security needs to third party suppliers to utilise their specialist capabilities and knowledge which the business may lack internally. Managed security, from specialists, can better handle the complexities posed by increasing threats, regulation and costs, and can free up internal resources. It can also help simplify the business’s security controls, audit and reports—something that is vital for efficient compliance.

By taking complexity out of the equation, a business will be able to focus on developing its responses to security incidents, ensuring that its reputation does not suffer while also establishing itself as a leader in doing business securely. As we rapidly move into a mobile age, it is vital for business to adapt and grow with the times, or risk becoming a risk itself.

Original Publication

Safeguard security with gateway consolidation

Posted on by
Reply

Just like the doors to your house, your internet gateways are the one point where you can see (and decide) what comes in and out. The gateway is exposed to all sorts of security threats, from hacking attempts, to spam, phishing and viruses. It’s critical that you define clear security rules for your gateways and deploy corresponding processes to keep them up to date.

Every company has increasing numbers of employees needing to work remotely while maintaining access to corporate information and communication. It’s a security issue, one of escalating importance.

Despite the serious cyber risks, many companies and multinationals still apply a local internet access policy, with local offices individually managing access to the internet and their corporate network, as well as the security related to that access. The lack of standardised security across a company can cause serious security issues with high potential for exploitation of loopholes. The more points of contact that exist between the internet and a corporate WAN, the greater the risk of attack and impact on business operations – it can take just a few days or even hours for a hacker to exploit a known vulnerability.

It is important to be aware of your network vulnerabilities so that patches can be implemented rapidly when necessary. Such capabilities require time and skilled resources, and expert security specialists can be hard to find, as well as expensive to retain. Having local internet access points also requires hardware and software implemented at each location, with the right management systems in place. It is important to remember that the more local gateways you have the greater your initial capital expenditure, operational costs and security risk will be.

Traditional thinking dictates that there must be strict barriers between the internet and corporate intranets. Over the years, these barriers have become increasingly complex, leading to numerous perimeter loopholes and a huge variety of gateways – and so a greater potential for a loss of network control. The best way to regain control is to consolidate these gateways. Fewer gateways mean lower costs, better consistency and increased compliance with security policy. The concept of consolidating multiple gateways is simple: instead of many points of entry to the internet, only major gateways are retained. Information flows are redirected through the private corporate network to secure, highly available, consolidated internet gateways.

While this may sound simple it is vital that specialists handle the consolidation process to manage and control business risks. A thorough analysis must be undertaken to determine security risks and the associated costs. It should include assessments of IT risk, technical security and vulnerability, and a total cost analysis detailing all expenses such as hardware, software, maintenance, network capacity and staffing costs.

It’s important to realise the benefits of consolidated gateways aren’t just cost-related. By redirecting traffic over your corporate WAN, you can prioritise company internet traffic through different classes of service, ensuring continuity of service for your critical applications and/or customer traffic. You can also choose to host your web, messaging and application servers in the gateway’s demilitarised zone, a separate and protected area of the gateway. You can then (potentially) transfer administration of this area to specialists who can monitor, upgrade, troubleshoot and patch traffic around the clock, ensuring that customers and employees have access to business services at all times.

Consolidating your internet gateways reduces the number of loopholes that cybercriminals can squeeze through, increases efficiency and raises compliance with security policies. Fewer gateways mean fewer complications, reducing the need for multiple layers of security for different devices, portals and locations which can potentially conflict with each other.

Better security and performance at your gateways, lowers the risk to your business and most importantly, your customers.

Original Publication