Spreading the word about cybersecurity – Sophos featured on NBC’s “The Hacking of America”

james-lyne-today-show-150In case you missed it, NBC aired a series called “The Hacking of America” that highlights some of the big cybersecurity risks we encounter every day – credit card fraud, unsecured Wi-Fi, and the growing threat of malicious smartphone apps.

Cybercrime is definitely big, headline-grabbing news lately, as data breaches from Target to Anthem have compromised the personal and financial information of millions of consumers. We’re helping people fight back with the tools and information they need to stay secure.

James Lyne, Sophos global head of security research, is featured in the segments, which appeared on the TODAY Show and NBC Nightly News. James showed NBC’s Tom Costello how easy it is for hackers to harm us.

Continue reading

Who will cybercriminals target next? (Video)

james-lyne-150Who will cybercriminals target next? James Lyne, Sophos global head of security research, says gangs are creating new ways to attack ever more victims, and improving on the old ways to make more money.

In a new video from the Wall Street Journal, James sounds off on recent and emerging trends in cybercrime, and talks about what’s coming next for security of the Internet of Things (IoT).

Continue reading

Sophos on the TODAY Show: That free open Wi-Fi could cost you your identity

Wi-Fi dangersAlways on the go, but need to stay connected? It might be tempting to log on to free open Wi-Fi networks at airports, cafes and other public hotspots. Don’t do it – those networks offer no protection against hackers looking to steal your identity.

Sophos security expert James Lyne drove home that point on the TODAY Show, as he demonstrated how easy it would be for a cybercriminal to intercept communications on open networks to steal passwords and bank account details.

Just like his previous research experiments in cities like London and San Francisco, James set up an open Wi-Fi hotspot in New York City to see how many people would connect to his network. The results might surprise you.

Continue reading

Sophos at Mobile World Congress: Hacking mobile devices and the Internet of Things (Video)

MWC15-bannerThe security of mobile devices and the Internet of Things is surprisingly lax, especially compared to traditional desktops. James Lyne, global head of security research at Sophos, proved just how insecure these devices really are, in a presentation at the Mobile World Congress in Barcelona.

In his live demonstration, James demonstrated hacks that a modestly talented cybercriminal could use to compromise mobile devices and Internet-connected closed-circuit cameras (CCTV).

In our video below, you can watch James hack into an Android tablet over Wi-Fi to record video and audio, and see how insecure CCTV cameras that use weak or no passwords can be breached from the other side of the world.

Continue reading

What healthcare orgs should know about the Anthem breach and HIPAA compliance

Anthem data breach and what it means for HIPAA compliance.The cyber attack on Anthem BlueCross BlueShield is being called the largest data breach ever in the healthcare industry, and a warning of things to come as criminal gangs and even nation states take aim at valuable health data stored by insurers, hospitals, doctors’ offices and others.

Anthem said the breach affected nearly 80 million customers and employees, and the haul for cybercriminals included records that could be very valuable to the thieves – names, taxpayer IDs, birthdays, medical IDs, street addresses, email addresses, and employment data, including income.

Just as the massive breach of Sony last year sent shockwaves of concern throughout industry and government, the Anthem incident is raising awareness of just how vulnerable healthcare organizations are.

Continue reading

With EU Data Protection Regulation on the horizon, will companies be ready?

European-Union-150European businesses are not prepared to meet regulatory requirements outlined in the EU Data Protection Regulation, due to be enacted by the EU parliament in 2015. That’s the story told by a survey of 1,500 office workers in the UK, France and Germany, conducted by Sophos.

Although a large majority of poll respondents (84%) agree that stricter data protection requirements are needed, most lack confidence that their employers are compliant (77%), and many do not know what type of data protection their companies currently have in place.

During a roundtable discussion about the survey, our security experts talked about the current state of data protection and how the new requirements might impact businesses.

Continue reading

What’s the deal with the Home Depot data breach?

TheHomeDepotThe massive data breach of payment card numbers and other customer details at Target last December raised serious doubts about security of point-of-sale (POS) systems. And the recent breach of the Home Depot has amplified those concerns, as more and more retailers are owning up to breaches involving POS compromises.

In the Home Depot’s case, the company hasn’t fully disclosed what data was lost or at how many of its more than 2,000 stores — leading to speculation about the size of the breach and whether the same type of malware that hit Target was involved. [UPDATE: Home Depot confirms 56 million payment card numbers were exposed.]

What can consumers and retailers do to stay safe?

Continue reading