BCS, The Chartered Institute for IT’s Post

Well, yet another important reason why we need to have a robust, wide, computing curriculum for all that helps produce digital citizens with more than a limited surface awareness of the computer systems that now permeate every aspect of their lives.

Luckily, it is still the case with most Government systems that patches and upgrades are fully tested internally in a sandbox, before being applied to critical systems, to prevent exactly this kind of problem. But if your organisation does not run a dev/test operation, you probably won't have that luxury, and in any case this software was supposed to offer 'rollback' (although that's not much use if it's crashed your machine is it?). Mitigation? well suppliers should obviously have quality testing in place, and perhaps we should be specifying minimum test standards? Roll out could, and should, be phased so that issues, when spotted can be isolated to the first phase. And of course no organisation should put all of their eggs in one basket - so the use of multiple operating systems (other than Windows) would help prevent a total outage.

A Global IT Outage!  Now that is something you don't come by on a daily basis. Which begs the question:  What "danger" or vulnerability  had the antivirus software that was already in place and running present that warranted an update so massive that the result had to be a global tech outage? For a company responsible for all matters cyber security, Crowdstrike really endangered the global IT systems. Who is to say the number of new vulnerabilities created? If I could hazard a guess, I think the "traditional" way of doing things is going to stick around for a while.  In a world that aspires to be digitally oriented and incorporate tech fully in its future operations, room for doubt has been created on whether pure technology is the way to go. #globalitoutage #globaltechoutage #technology #cybersecurity

CrowdStrike, a major cybersecurity company serving some of the world's largest organizations, identified a faulty software update as the cause of these widespread outages. While many feared this could be a potential cyber-attack, rest assured, it's not. Endpoint detection and response products are designed to monitor and protect systems from malicious viruses and malware. These tools rely heavily on cloud technology and require specific access to a computer's operating system to function effectively. Because of this faulty update, the system has been compromised of these tools, specifically for customers running Microsoft Windows Client and Windows Server. Some customers have regained access, but many are still awaiting. I'm keeping a close watch on the newest updates! #CloudStrike #InternetOutage #Microsoft #Cybersecurity

Welcome to the 2nd Chronicle! Here is an important topic and one that, by the time the decision-maker realizes its priority, it's already too late. We hear many stories about friends, family, neighbors, etc and the repercussions to passed-down family-owned businesses that are now closed due to breaches. It's time to recognize the threat and take action. In "Debunking the Myth that SMBs Aren't Cyber Targets" we discover why small doesn't mean safe in the cyber world. 💻💡 We got the data, now strengthen your defense and safeguard your business. #Cybersecurity #SMBProtection #StaySecure 🔒 Check it out at https://lnkd.in/etUtyMrz

🚨 Global IT Outage Affects 8.5 Million Computers 🚨 Microsoft estimates that around 8.5 million computers globally were impacted by a recent IT outage, potentially the worst cyber event in history. The glitch was caused by a corrupted update from cybersecurity firm Crowdstrike, leading to widespread disruptions: - Flights were grounded. - Businesses couldn’t process card payments. - Hospitals had to cancel operations. Crowdstrike’s CEO, George Kurtz, apologized and confirmed a fix is in progress, but it may take time for all systems to return to normal. Experts highlight the incident as a stark reminder of our digital dependency and the inherent vulnerabilities within critical infrastructure. This event underscores the need for heightened vigilance against potential cyber threats, including phishing and scams. Stay informed, stay secure. #CyberSecurity #ITOutage #TechNews #DigitalSafety

Risky Business Flash - Hot off the press. Time for some important reading in the cybersecurity community. "Give me the facts, just the fact ma'am" 68% of breaches involved a non-malicious human element, like a person falling victim to a social engineering attack or making an error. 23% of all breaches are due to ransomware attacks. 15% of breaches involved a third party or supplier, such as software supply chains, hosting partner infrastructures or data custodians. 14% of breaches involved the exploitation of vulnerabilities as an initial access step, almost triple the amount from last year’s report. #cybersecurity #cyberbreach Aujas Cybersecurity 24By7Security, Inc. OccamSec OP Innovate Federal Bureau of Investigation (FBI) FBI Cyber Division

The Impact of the WannaCry Ransomware Attack on Global Cybersecurity In May 2017, the WannaCry ransomware attack emerged as a significant global cybersecurity threat, infecting hundreds of thousands of computers in over 150 countries. Targeting Microsoft Windows operating systems, it encrypted data and demanded ransoms paid in Bitcoin. Exploring the Vulnerability WannaCry exploited a known vulnerability in the Windows SMB (Server Message Block) protocol, exposed by the Shadow Brokers. Despite Microsoft releasing protective patches two months prior, many systems remained unpatched, leaving them vulnerable. Impact on Global Institutions WannaCry's rapid spread caused extensive harm across vital sectors, including healthcare, corporate businesses, and government agencies. The scale of disruption and financial damage highlighted the necessity for stringent cybersecurity measures. Key Lessons and Preventative Measures The WannaCry incident serves as a stark reminder of the critical importance of regular software updates and robust cybersecurity protocols. It also underscores the dangers of using outdated software that no longer receives support. Conclusion The WannaCry ransomware attack demonstrated the potential destructiveness of cyber threats and emphasized the need for comprehensive security strategies to safeguard against similar incidents in the future. #Cybersecurity #WannaCry #Ransomware #CyberThreats #Security #Tech #ITSecurity #DataProtection

🔒 Digital Security: Definitely A Priority 🔒 In today's interconnected world, digital security stands as an indispensable cornerstone of our online activities. With cyber threats evolving at an alarming rate, safeguarding our digital assets has never been more critical. As we navigate the vast and complex digital landscape, whether in personal or professional capacities, we must remain steadfast in our commitment to protecting our data, identities, and privacy. From securing our personal information to defending critical infrastructure, the importance of robust digital security measures cannot be overstated. Cybercriminals continually devise new tactics to exploit vulnerabilities, making it imperative for us to stay vigilant and proactive. By implementing encryption protocols, multi-factor authentication, and regular security updates, we can fortify our defenses and mitigate potential risks. Remember, the consequences of a security breach can be far-reaching and devastating, impacting not only individuals but also organizations and entire economies. Let's collectively prioritize digital security and foster a culture of cyber resilience, working together to create a safer online environment for all. #CyberSecurity

As technology continues to advance at a rapid pace, the importance of IT security has never been more crucial. With cyber threats becoming increasingly sophisticated, organizations must prioritize the protection of their data and systems. IT security is not just about preventing data breaches and cyber attacks, it is also about safeguarding the reputation and trust of your customers. A single breach can have far-reaching consequences, including financial loss, legal ramifications, and damage to your brand. Investing in robust IT security measures is not only a smart business decision, but it is also a moral obligation. As custodians of sensitive information, organizations have a responsibility to ensure that data is handled securely and ethically. By staying informed about the latest cyber threats, implementing strong security protocols, and regularly updating systems, organizations can mitigate risks and protect their assets. Remember, in today's digital age, it's not a matter of if a cyber attack will occur, but when. So, let's all do our part to prioritize IT security and safeguard our digital future. #ITSecurity #CyberSecurity #DataProtection #DigitalSecurity. Gary Butler Adam Kerley Chloe Radestock Connor Mccutcheon Dan Talliss