Last week saw the gathering of over 100+ security leaders at the Executive Leaders Network. Several themes ran throughout the day from Cyberinsurance, to the future of Security to the challenges faced in protecting business.
Discussions at roundtables, during open sessions and even in the bar afterwards identified a significant gulf between "security professionals" and those companies that are lacking in the way they protect your and my information.
The "elephant" in the room was the value of security to the organisation. Are those accountable for the risks, really taking into account the real, quantifiable value to their business.
We should be careful about how we categorise these cyber incidents. Recent events like TalkTalk and this MoonPig incident talks about the cyber menance.
However even in this report it is clear that we are not talking about a cyber menance applying detailed systematic attack techniques to circumvent managed and engineered security defences.
We are seeing individuals bemused at how little defence is put in place to protect a business assets. As one wise member of ClubCISO said "we have locked the door and left the key hanging up on the outside of the door to let ourselves back in".
With one extra person diligently working on security Moonpig can easily avoid the casual inquisitor.
A COMPUTER hacker launched a cyber attack on the firm Moonpig.com, forcing it to shut down its operations in three different continents. Anthony Luke Fulton, 22, targeted the personalised greetings card business over four days. It is said about 18,000 records were accessed in July last year.
