Cyber Blog
IT Relation Holding has entered into an agreement to acquire Improsec, a leading and 100% independent Danish advisory firm with unmatched technical capabilities in cyber security. Improsec continues as an independent company under its own brand and will form a strong foundation for the IT Relation group’s new Cyber Security Services business area.
Keeping data safe and systems protected is a key challenge for global companies. Yet, many companies are not prepared for an attack on their infrastructure. We have spoken to shipping and cyber security expert Lars Jensen of Improsec about the state of cyber security in global shipping and logistics. He explains why the next attack in the industry is not a question of ‘if’ but ‘when’.
Cyber criminals look for the weakest point of entry – just like burglars in the physical world. A few simple tests might illustrate, how mature an organization’s approach to cyber security is. However, an analysis shows a critical current-state, and highlights improvements how to strengthen your cyber security.
Den internationale it-sikkerhedsekspert Troels Ørting Jørgensen, der er formand for World Economic Forums globale center mod cyberkriminalitet, bliver en del af bestyrelsen i det fremadstormende it-sikkerhedsfirma Improsec. Troels Ørting skal blandt andet hjælpe Improsec ud over landets grænser for alvor.
Der er en række ting, man med fordel kan overveje, hvis man arbejder med online testsystemer. Det viste en nylig hændelse i Version2's eget setup.
Det erfarede Version2 og Ingeniøren selv, da en menneskelig fejl under en migrering betød, at flere af mediehusets testsider pludselig ikke var gemt væk bag en VPN, som de plejer. Herunder testsider for Version2.dk og Ing.dk. I en uge var testsiderne derfor tilgængelige for alle og enhver.
Ransomware attacks against shipping companies have spiked in number and severity over the past year, according to security firms. Norwegian shipbuilder Vard, part of Italy’s Fincantieri, was hit last week but has declined to give details. Lars Jensen, a maritime security adviser at Danish cybersecurity firm Improsec, said there had been more cyber attacks on shipping in recent years, but an increase was hard to gauge as many attacks went unreported
A customer of ours asked for some basic principles to follow when procuring new tailor-made software from various vendors. The discussion boiled down to these three bullets that hopefully can bring value to anyone in the same position as our customer:
Vendor interviews
Maintainability as a design goal
Penetration test payment
This is by no means a complete guide to secure software procurement but meant to be seen as an inspiration for starting out.
Improsec har hentet it-sikkerhedseksperten og iværksætteren Ulf Munkedal ind som bestyrelsesformand og frontfigur. Målet er at bidrage med strategisk styring under den forestående vækst, og den nye bestyrelsesformand ser ingen grænser for vækstpotentialet.
”Min opgave er at hjælpe med at sætte den fremtidige strategiske kurs. Cybersikkerhed bliver kun mere komplekst, og jeg ser nærmest ingen grænser for Improsecsvækstpotentiale,” siger Ulf Munkedal.
”Det er et kæmpe scoop, at vi har fået en kapacitet som Ulf Munkedal ombord. Han har haft stor succes med lignende virksomheder i både Danmark og Europa og er den helt rette til at hjælpe med netop den professionalisering og vækst, vi står overfor. Ulf får en synlig og meget aktiv rolle, og hans erfaring og strategiske indsigt kommer til at gøre en stor forskel for os,” siger CEO i Improsec, Jakob H. Heidelberg.
The recommendations to strengthen resilience against Ransomware are somewhat similar to the Corona virus.
Ransomware strikes seemingly out of nowhere and may stay latent over a longer period of time and strike at full force, especially if countermeasures are limited and vital systems are hit.
Like the Corona virus, protecting IT has focused on minimizing the attack surface. Anti-Virus software, Firewalls, IPS/IDS, efficient backups and so forth are all part of our mitigating measures.
However, it only takes one small accident or mistakes with the mitigating measures before virus or ransomware strikes, and the organization is hit by a strong - and often rapidly spreading - infection.
We could, however, use our recently gained knowledge as a reference to mitigate, contain and reduce the spread of infection, when things go south.
En af verdens største webshopplatforme måtte tidligere i år erkende, at »ingen platform er 100 procent sikker«. For nylig blev en dansk betalingsløsning afsløret i at negligere sikkerhedshuller.
Hvis man vil forstå, hvorfor webshops bøvler med sikkerheden i en sådan grad, skal man forstå, at de er økosystemer med et væld af små programmer. Den hårde kerne er udviklet af for eksempel Magento eller Wordpress, mens mange af funktionerne er udviklet af små selskaber som Yourpay.
Alle kan lave et såkaldt Wordpress-plugin og uploade det – uden at nogen ser det efter i sømmene for usikkerheder og sjuskefejl, som Yourpay i øvrigt også var fuld af.
»Selve kernen i Magento og Wordpress er generelt ganske sikker, og derfor lader det til, at nogle tror, at det også gælder alle de programmer, der ligger uden om,« siger Magnus Stubman, der er sikkerhedsrådgiver hos Improsec:
»Det er bare ikke tilfældet.«
Cyber risks in shipping are as real and present as ever. The risk of having your full operations brought to a standstill is genuine. The risk of having your ships rendered inoperative, or ineffective, is genuine.
Our experience from Improsec is that if you have never had your systems properly tested against a cyber-attack, you are unlikely to have a good overview of your actual vulnerabilities. However, our experience is also that many of the vulnerabilities can be alleviated if a proper plan is drawn up based on the actual vulnerabilities found, whereas a plan made only on the basis of assumptions is likely to miss the mark.
En række danske kommuner, virksomheder og institutioner har sendt følsomme oplysninger om borgeres helbred, økonomi og strafbare forhold mm. via mail-tjenesten 'Sikker Mail', som har været sårbar i to år. Improsec opdagede sikkerhedshullet.
Shodan er i flere omgange blevet beskyldt for at gå kriminelles ærinder. Det er for nemt at finde sårbarheder med tjenesten, lyder det fra to danske sikkerhedsfolk.
Scanningstjenesten Shodan er et fantastisk værktøj, hvis man vil angribe en virksomhed eller privatperson digitalt og kan desuden kompromittere Tor-noder, der bruger https.
Sådan lyder det fra sikkerhedskonsulenterne Claus Vesthammer fra Improsec og Keld Norman fra Dubex, der begge lever af at angribe virksomheder for at teste deres sikkerhed.
Det kan koste dyrt, hvis organisationer køber it-sikkerhedsudstyr uden at sikre sig, at der er god sikkerhedsadfærd i dagligdagen, lyder det fra sikkerhedsrådgiver hos it-virksomheden Improsec.
Sådan lød budskabet fra Magnus Klaaborg Stubman, sikkerhedsrådgiver hos it-virksomheden Improsec, da han onsdag gæstede debatscenen på it-sikkerhedskonferencen Infosecurity.
Hydro er udsat for et ransomwareangreb med LockerGoga, meddeler de norske sikkerhedsmyndigheder. Også selskabets Active Directory er angrebet. Hvis det er lykkes at kryptere AD'en kan det minde om det vi så på A.P. Møller-Mærsk forrige år, lyder det fra it-sikkerhedsrådgiver.
Der er tale om et ransomware-angreb mod Norsk Hydro med det omfattende cyberangreb, som ramte selskabet i nat.
We are expanding our business by acquiring the specialized Maritime cyber security company CyberKeel.
The acquisition follows several years of close strategic collaboration providing cyber security advisory and technical services to shipping lines, maritime insurers, and government entities. Security assessments have been provided both on the landside as well as on vessels.
