Over the last six weeks, we have seen the hustle and bustle of the holidays subside only to make way for the flurry of breaking news stories about major cyber crime heists. These stories can certainly speculate on what happened, who is going to get sued and who was ultimately responsible for stealing massive amounts...
Target, Neiman-Marcus, Sally Beauty, Michaels, Aaron Brothers: the series of high-profile breaches that have plagued the retail industry since December has pointed out the ever-greater need for threat intelligence sharing among vendors and enterprises alike. Barmak Meftah, CEO of AlienVault, has emailed an open letter to the security community urging security technology providers to make threat sharing a wider proposition for everyone, preferably free of charge.
A Russian group of hackers known as Energetic Bear is attacking energy companies in the U.S. and Europe and may be capable of disrupting power supplies, cybersecurity researchers said. The hackers, also called Dragonfly, appear to have the resources, size and organization that suggest government involvement, security company Symantec said in a blog post this week. The hackers also went after academics globally, European governments, defense contractors and U.S. health care providers, it said. Dragonfly's tactics are similar to the Stuxnet attacks, a computer virus that was found to target Iranian nuclear facilities in 2010, Symantec said.
In a roundtable hosted by the SEC on cybersecurity and the related challenges for market participants, SEC Chairman Mary Jo White highlighted in her opening remarks that cybersecurity threats are global and pose a grave risk to our economy, including “our critical infrastructures, our financial markets, banks, intellectual property and . . . the private data of the American consumer.” She noted that these risks are “first on the Division of Intelligence’s list of global threats, even surpassing terrorism.” Panelists from a wide array of backgrounds, including government officials, professional service providers, academics, investors, preparers and market exchange representatives, shared their experiences with evaluating and addressing these cybersecurity challenges.
The aviation industry and government will share classified intelligence about cyber threats in the Air Domain Intelligence Integration Center. As cyberthreats continue to grow, industry and government are modeling efforts to share information on methods established in the financial services sector.
Investing in new tools and solutions and making sure they’re doing their job may be top-of-mind in your security department, but older, less-used systems could be quietly costing you money and putting you at risk