02 November 2018

IRM Weekly Cybersecurity Roundup: Car hacking, Tesco Bank fine and more

Each week, IRM gathers up (what we think) are the most interesting and important reads from the cybersecurity industry. The weekly roundup will often include good and bad examples of cybersecurity practice and thought pieces from across the globe – all summarised in one handy place for your regular news top-up.

New study shows 99 per cent of drivers are unaware of major digital hacking threats

Half of the drivers with keyless technology are concerned about car hacking, and 16 per cent of drivers or someone they know have experienced car hacking.

A new study has revealed that despite 110 car models being vulnerable to theft via hacking of the keyless entry and ignition system, only 50 per cent of drivers with keyless access are concerned about their car being stolen.

The research from MoneySuperMarket highlights the security flaws that hackers can exploit to attack a vehicle, from key jamming to phone phishing. The results reveal not only the hacking methods to which cars may be vulnerable, but also the nation’s level of understanding of the problem.

You can read more by clicking on the individual URLs above, or read the full article here.

Tesco Bank fined £16.4 million for 2016 cyber attack

Tesco Bank has been fined £16.4m by the Financial Conduct Authority (FCA) over a “largely avoidable” 2016 cyber attack that saw criminals steal over £2m from 34 accounts.

A report on the hack by the FCA found that fraudsters in Brazil managed to carry out thousands of fake contactless card transactions, likely using genuine Tesco Bank card numbers.They exploited “deficiencies” in Tesco Bank’s debit card as well as in its financial crime controls and crime operations team. There’s no suggestion that Tesco Bank’s servers were breached during the hack. The FCA said on Monday that 8,261 Tesco Bank customers were affected by the hack. Most customers suffered disruption to card payments, however, some appeared to have money taken out of their accounts

Read more about it here.

LONDON — FIFA acknowledged this week that its computer systems were hacked earlier this year for the second time, and officials from European soccer’s governing body fear they also might have suffered a data breach.

You can read more here.

How Traditional Training Is Weakening Businesses’ Cybersecurity

Just a decade ago, cybersecurity was a relative myth to the public – something taken care of by any old antivirus and certainly nothing to worry about. But as the internet age gathered momentum, rolling like a freight train on an endless slope, things changed. Cyber attackers were not perceived as hoodie-wearing teens with abundant spare time anymore, but seen for what they are: organized, often well-funded groups – and a genuine menace to society.

Better cyber awareness is key, but there are two glaring issues with providing training for every employee in an organization: time and money.

You can read the full article here.

Driverless cars: Who should die in a crash?

If forced to choose, who should a self-driving car kill in an unavoidable crash? Should the passengers in the vehicle be sacrificed to save pedestrians? Or should a pedestrian be killed to save a family of four in the vehicle?  To get closer to an answer – if that were ever possible – researchers from the MIT Media Lab have analysed more than 40 million responses to an experiment they launched in 2014.

Their Moral Machine has revealed how attitudes differ across the world

You can read more here.

To receive this blog post direct to your inbox every week, sign up to our newsletter.

If you have any questions about this week’s roundup or want to know how IRM can support your cybersecurity strategy, get in touch.