Early this year we witnessed major IT firms suffering from data breaches of one kind or another, and they have come out in the open about the breaches, as well. A couple of examples are Apple and Twitter. It’s going to be costly if the enterprises play according to the old book of rules—develop and deliver. The threat landscape has seen remarkable changes, especially with the cloud being the major form of technology sought after these days. Security threats have seen a marked evolution from botnets and spywares to advanced malwares and APTs. Firms such as Mozilla, Google, Facebook, and many others realized this simple fact and have started bounty programs to detect and prevent security breaches. Attacks have been engineered to steal trade secrets, insider information, authentication credentials, and other personal information of the targeted enterprises.
Gone are the days when an enterprise could be secured by a network-centric approach based on perimeter security. APTs have arrived and it’s all about data now! Hardly ever do we see any data-centric security approaches these days. In my previous two articles here, I have explained about APTs and how to crack their maze. Today, I am going to find out what we can learn from these APT-based attacks and what alternative approaches an enterprise needs to follow to combat them more effectively.
Read my full post at Infosec Institute.