Preventing Information Security Breaches
November 6, 2018
Modern information security breaches follow a very specific pattern and most organizations are simply not designed to stop these attacks. Unfortunately they are not even able to detect them for months and sometimes years later. In short, hackers today use malware rather than direct attacks to compromise organizations like Equifax, Uber, Anthem, Target, Home Depot, JP Morgan Chase, eBay and most others over the past several years. Why? Direct attacks require hackers to compromise firewalls, subvert intrusion detection systems and a host of other edge based/perimeter based security layers. This requires vulnerability detection and exploit and a host of skills and tools to accomplish.
Malware on the other hand is really quite easy. You get someone on the inside of the company you want to compromise to install malware, and you are in! And this can be as easy as sending a link in email or social media. It can be getting the user directed to a malicious or compromised website that infects their computer. Firewalls can’t stop it. IDS/IPS systems can’t detect it. The traditional layered security model has little value from these attack types.
Organizations attempt to protect the end user systems with updated patches and anti-virus software. Unfortunately these solutions are less than effective. A Senior Vice President of Information Security at Symantec told the Wall Street Journal that “antivirus software only catches 45% of malware attacks” and is “dead”1. Because organizations are left with a major gap in their information security posture which needs to be addressed if they have any hope of stopping attacks.
Understand where your sensitive data is.
Solutions such as data loss prevention and dynamic malware protection are designed to stop the data in motion threat. However this strategy is basically saying that you believe the attackers are going to get access to your data, and you want to prevent the data from leaving your network. For data at rest, we must do more to stop unauthorized users from accessing the sensitive data in the first place.
Most organizations see major changes to their executive management teams because of a breach. Stock prices plummet and sometimes do not recover. Customer trust is lost and the brand is tarnished. Fines and fees are assessed. Usually class-action lawsuits are filed. Revenue and profits are dramatically impacted. Regulatory and industry compliance is impacted. In other words, the cost of implementing the right solutions to protect your organization against these latest threats are extremely small compared to the impact of a breach.
Our solution is designed to work with large and small networks. If you have a 2000 server farm with NPI data or whether you have a single server or database in your office, we can secure these systems without any infrastructure or capital costs. Best of all, our solution is completely transparent to the end users. No need for PC based agents or key management. All the security has handled seamlessly without any change in end user behavior.
Breaches can be avoided when up-to-date security measures are in place. Traditional thinking with the use of a layered network security model will not stop hackers. Almost every single reported hacker breach over the past several years has used this method. To find out more, visit our Security Services Page.
1 Antivirus software is dead, says security expert at Symantec