 |
|
|
| |||||||||
| |||||||||
Current Filter: Network>>>>>News> ‘Proactive not reactive’ approach is needed to address targeted cyber attacks Editorial Type: News Date: 09-2014 Views: 1628  |  | ||
| In order to ensure a firm is able to protect the data of its customers and the livelihood of its business, they must start employing a proactive, as opposed to reactive approach when it comes to enforcing better cyber security practices, says Fran Howarth, a senior analyst specialising in security at the Bloor research group. Recently, it emerged that eBay had been hit by a cross-site scripting cyber attack, which redirects users to a spoof web site designed to steal their credentials. This is the second attack this year to hit the online retail giant after it suffered a massive security breach in February which resulted in 233 million people having their personal data stolen. While the menacing nature of this attack will no doubt trigger much discussion, Howarth states that the real concern lies with who has been targeted: “The implications of a second attack on eBay will be very concerning to its customers and ultimately it could have serious consequences on the organisation’s long-term future if it was to suffer from further attacks. “The concern behind this is not so much the attack itself, it is how eBay has, or more so, hasn’t handled it. It took them 12 hours to respond after it was initially flagged by a customer and given the attack they suffered earlier in the year this could prove very damaging to the reputation and brand of the business. “For the rest of the retail world looking in they need to take note of what has happened as attacks of this nature are likely to become more frequent and if proper precautions are not taken, they too could become targets for cyber criminals themselves. “Largely, this represents a move away from the more opportunistic cyber attacks as we start to see more advanced targeted cyber attacks taking place that are often more complex and harder to defend. Reacting to an attack is not enough – we need to see firms taking a more preventative approach when it comes to cyber security. “Vendors are responding to this by bringing out new advanced automated detection and remediation options which can provide organisations with greater visibility over their networks and in-turn, provide them with the capabilities to make more informed decisions when it comes to cyber security. Adopting such an approach minimises the opportunity of incidents taking place and allows firms to contain and fix much earlier. “For eBay, a lot of questions will be asked of the procedures it implements when it comes to cyber security but hopefully it will also act as a catalyst for other firms to review their policies and ensure better cyber security. Countermeasures need to be developed and deployed that can help organisations defend against even the most advanced attacks.†| |||
| Like this article? Click here to get the Newsletter and Magazine Free! | |||
| Email The Editor! OR Forward Article | Go Top | ||
PREVIOUS | NEXT |
||
