Advanced Persistent Threats (APTs) shouldn’t be new to anyone reading security blogs. Despite all the coverage, though, the media’s late on this one. APTs have been around for years, and malicious hackers have been good at establishing digital footholds in organizations since networking began. We’re talking about Basic Attacker Fu: find a vulnerability by any means (ranging from external services to phishing emails), then branch out to other machines on the network. Funny thing is the cure for APTs has been around for a long time, too… since 1999! [Read more...]
As the world becomes more and more connected by developments in network technology, cyber-attacks and malicious online threats are increasing at an exceptional rate.
Whether it’s Denial of Service (DDOS) attacks by “Hacktavists” or individual phishing attacks and state-sponsored cyber-espionage, the global threat environment has never been more hostile. [Read more...]
A cyber-attack won’t announce itself or happen when it’s more convenient for you. In fact it’s far more likely that you’ll be unaware of it until a supplier or customer notices a problem and raises the alarm. Anywhere between 90-100% of breach victims are notified by an external entity – even their own customers in some cases!
Chances are that you’ll then discover that the source of the problem has been hidden deep within your organisation for months or even years. The 2012 M-Trends™ Evolving Threat report states that a“typical advanced attack goes unnoticed for 12 months or more”. [Read more...]
Not a day goes by without the media reporting high profile attacks, emphasized by last week’s revelations that NSA has been gathering users’ online data and telephone records for the past 6 years. Everyone is talking about cyber security: indeed Obama’s meeting with China’s president Xi Jinping had cyber security high on the agenda. Cyber security has gone mainstream – you don’t need to be a security professional to be in the know anymore. But opinions are divided…
Cyber security tools are often viewed as a double-edged sword, causing polarisation of opinions about how to deal with the malicious threats that the networks of organisations – and indeed nations – face. [Read more...]
The threats organisational networks face are becoming far more targeted and far more persistent than they once were.
It’s a message that CEOs and BODs need to grasp quickly if they’re to truly understand just how imperilled the lifeblood (information) of their organizations is.
Based on the apparent reluctance of organizations to adequately address the insecurity of their organisations, it’s a reality that they’re yet to grasp. They don’t seem to understand how important their information is, and how threatened and vulnerable it really is. [Read more...]