sb-au logo
Story image

Blockchain an inspiring tech for enterprises, but it's attracting hackers too

20 Jun 2017

As blockchain and Bitcoin rocket in value and becomes mainstream across the world, both ISACA and Proofpoint have published advisories about the technology and the security risks behind it.

Global tech organisation ISACA released a blockchain research report this week, which touts the technology as having 'the potential to transform how value is recorded and transferred'.

The company says that blockchain's openness; ability to facilitate anonymous transactions while ensuring identity; transaction permanence; decentralised infrastructure and the elimination of third party attestation requirements.

The organisation says that blockchain is more than just the most popular cryptocurrency, Bitcoin. Blockchain can be tailored to lodge transaction containing ledger entries for public records, land registries, contract information, coupons, vouchers, payments and many other things.

“Of all the emerging technologies we’re currently seeing, blockchain has the potential to have the biggest impact on businesses and society at large,” comments Ron Hale, author of ISACA’s Blockchain Fundamentals research report.

He says that enterprises are interested in adopting technology - job postings that require blockchain skills have tripled in the past year.

“Early beneficiaries will likely be found in developing countries that have not invested as heavily in current technologies and infrastructures, and will be able to jump technology generations,” Hale adds.

Data61, an Australian data innovation group, believes that blockchain will be important for business and government. The company's chief executive, Adrian Turner, says that Australia can't afford to be a follower.

“It has potential to reframe existing industries like financial services and seed new ones like food provenance and personalised health."

However, blockchain may be secure in and of itself, Proofpoint researchers have discovered that hackers are getting in on the game.

They have found a number of phishing templated and email lures that resemble online wallets such as Blockchain.com and cryptocurrency exchanges such as Poloniex. The fake sites attempt to steal login credentials and use them to withdraw funds or conduct fraudulent transactions.

"While economists debate whether cryptocurrency is really ‘currency’, threat actors are already looking for ways to steal it. The increase in phishing attacks associated with Bitcoin and other types of cryptocurrency is arguably proof of the world’s views of the legitimacy and value of these digital assets," comments Proofpoint's vice president of threat operations, Kevin Epstein.

"Bitcoins aren’t just for paying ransoms to ransomware actors. The rapid rise in the value of cryptocurrencies and their increasing popularity with consumers and businesses alike makes them an increasingly popular target for fraud and cybercrime."

Link image
Why performance monitoring is essential to keep cloud costs down
Cloud comes with many different associated costs, which can sneak up on organisations and drive down efficiency. Here's how to reduce costs by up to 50%.More
Story image
CrowdStrike integrates with ServiceNow program to bolster incident response
As part of the move, users can now integrate device data from the CrowdStrike Falcon platform into their incident response process, allowing for the improvement of both the security and IT operation outcomes.More
Story image
Revealed: The behaviours exhibited by the most effective CISOs
As cyber-threats pile up, more is being asked of CISOs - and according to Gartner, only a precious few are 'excelling' by the standards of their CISO Effectiveness Index.More
Story image
The SASE triangle: How a CASB protects managed apps
Enterprises that fail to adapt to the modern business world when it comes to security are likely to fall prey to data breaches and experience a host of other problems, writes Bitglass product marketing manager Will Houcheime.More
Story image
75% of IT execs 'worried' about being targeted in cyber-attack
A new report from ConnectWise has shed light on the widespread concern about cyber-attacks, with 91% of SMB executives considering a move to an MSP if it provided the 'right' solution.More
Link image
Phishing campaigns aren't stopping - but neither are their opponents
COVID-19 is presenting the perfect opportunity to cyber attackers to mount potentially devastating spear-phishing campaigns against organisations via their remote workers. Learn how to fight back.More