If you are having trouble viewing this email, click here to view this online



   ISSUE 71

15 June 2017

Article of the Month Around the World

Is The Cloud More Secure For Your Information?


There�s been a healthy amount of debate regarding cloud security during the last several years. With data hacks of major corporations like The Home Depot and Target as well as the unauthorized release of celebrity photos, the cloud has received a lot of bad publicity.

However, the cloud is becoming more and more secure every day, and businesses are flocking to store their data in it. Even highly secure industries, such as the financial and health sectors, are moving to the cloud. So the question is: Does the cloud keep your information more secure?

Possible Issues

When you move your information to the cloud, you�re giving up some of your control, because the information no longer in your physical possession. You can�t check on the servers to make sure they�re running properly or update them with the latest protection yourself. You also don�t have control over who works with your data.

This lack of control can make you feel vulnerable and insecure, but that�s not the case most of the time. As you�ll see below, many of the factors that might make you nervous are actually what makes your data more secure in the cloud. However, it never hurts to invest in a cloud insurance policy to give yourself a little extra peace of mind.


When you�re looking for a cloud service provider, one of the first things you need to ask about is encryption. Most cloud services � from cloud storage to cloud contact centers � use bank-level encryption to keep your data safe from hackers. In a BBC interview, Amazon Web Service�s chief evangelist Ian Massingham said data should be encrypted, both when it�s in transit and when it�s �at rest.�

AWS has more than 1,800 security controls for its customers, which helps prevent hackers from accessing data. Massingham explained that AWS also lets its customers control their own encryption keys (instead of Amazon) and set rules for who can access the data.

This amount of protection could not be achieved by your internal IT team. By having this level of protection � and having some control over your encryption � you can feel more secure about using the cloud.


Fast Protection

Your information is also more secure in the cloud because cloud service providers have the tools and knowledge to stop � and mitigate � the damage of cyber attacks much more quickly than an in-house IT team. Cloud service providers, like Aspect Zipwire, are constantly on the lookout for security problems, such as malware or DDoS attacks.

According to InformationWeek, cloud service providers use big data security to stop the spread of malware before it gains access to a system. Your internal IT team has a lot of responsibilities and jobs to perform, security just being one of them. In comparison, cloud service providers have dedicated processes to stop malware attacks so they can be found sooner. InformationWeek also explains that if malware does get through a company�s system, the company can then retroactively revert file additions or changes that were made because of how they collect and organize data.

Furthermore, cloud service providers can act as a shock absorber if there is a DDoS attack. Your internal IT department can�t prevent such an attack, because the DDoS fills the network connection faster than it can be stopped. In comparison, cloud service providers have a much larger cloud presence, which enables them to absorb the impact.

There always will be some risks when you�re dealing with large amounts of data. But you shouldn�t let this prevent your business from taking advantage of all the benefits cloud computing provides because your information is secure.



























1 Statistics on the Internet growth in Sri Lanka
2.The Dragon Research Group (DRG)
3.TSUBAME (Internet threat monitoring system) from JPCERT | CC
4.Shadowserver Foundation
5. Team Cymru



"....The WannaCry ransomware has affected more than 300,000 people around the world and scared many more. While WannaCry may have been halted, incidents of ransomware in general are rising and an average tech user could easily fall victim to it. But there are some things you can do. ..."


Scammers use Instagram to help them steal $50,000 from PA banks


"...A trio of men successfully used Instagram to steal more than $50,000 from various financial institutions.

According to a press release from the office of Pennsylvania attorney general Josh Shapiro, the Facebook-owned photo sharing application was used as a recruiting tool to lure people into a bank fraud scheme....."

  China's cybersecurity law vows to better protect personal information

'...China's first ever cybersecurity law, which officially takes effect on June 1, vows to protect online users' information by prohibiting abuse from online service providers.

Passed by China's Parliament in November last year, the new law has banned ISPs from collecting and selling users' personal information that is irrelevant to their services. Users also have the right to request their information to be deleted in cases of abuse, according to a Sina news report.....'




'...The intelligence community is betting on cloud-based application delivery.

Earlier this month, In-Q-Tel, the venture capital firm for the 17 agencies that comprise the IC, joined Bain Capital Ventures and Microsoft Ventures in making a $16 million investment in San Mateo-based Frame....'

How Microsoft plans to upgrade Office 365?


'....The FBI�s Internet Crime Complaint Center (IC3) issued a public service announcement earlier this week, urging college students to remain vigilant of rampant employment scams. According to the PSA, scammers continue to target students across the US by advertising phony job opportunities on college employment websites or emailing students� university accounts....'

Month in Brief
Facebook Incidents Reported to Sri Lanka CERT|CC in May 2017
  Statistics - Sri Lanka CERT|CC

Qatar: FBI says Russian hackers 'planted fake news story' that led to crisis � report

'...US intelligence officials believe Russian hackers planted a false news story that prompted Saudi Arabia and several allies to sever relations with Qatar, according to CNN.

FBI experts visited Qatar in late May to analyse an alleged cyber breach that saw the hackers place the fake story with Qatar�s state news agency, the US broadcaster said......'

Lloyds bank staff will move to IBM in outsourcing deal

"...Lloyds Banking Group is to transfer 1,500 of its staff to IBM as part of a major outsourcing agreement.

In March, Computer Weekly reported that the bank would transfer the jobs to IBM, under Tupe regulations, as part of an IT infrsatructure outsourcing agreement worth �1.3bn over seven years...."
Japan�s first ransomware arrest is a 14-year-old boy

�..A 14-year-old boy was arrested in Japan for allegedly creating a malware program and uploading its source code online, police announced on Monday.

This is the first ransomware-related arrest in Japan. Police had found the malicious program during one of their regular cyber patrols, then searched his house in April and confiscated his laptop.

When arrested, the boy admitted he �learned to create it on his own� out of curiosity and promoted it on Twitter to become famous....�
iOS 11: All the cool new features coming to your iPhone and iPad

."...Can you believe Apple's iOS is 11 iterations old already? It seems like just yesterday we were excited about the prospect of an app store, or the ability to select and copy text. At this week's WWDC keynote, Apple revealed a host of updates and upgrades to iOS, including many longtime requested features.

You'll have to wait until spring to upgrade your iPhone or iPad with the official final version of iOS 11, or in the coming weeks you can weasel your way into an early developer version of the new OS, if you're brave enough....."

Notice Board
  Training and Awareness Programmes - June  2017

Brought to you by: