Story image

Attackers sharpen skills, so must CISO's

27 Sep 2013

Chief Information Security Officers (CISO’s) must increase their knowledge of the current vulnerability and attack landscape, such as mobile and social technologies, to more effectively combat emerging security threats.

For over 15 years, IBM X-Force has been tracking trends and emerging threats, with the tech giant releasing the 2013 mid-year trend and risk report which highlights some of the key findings in the industry.

For CISO’s, it’s no surprise that tried and true attack tactics can cause the most damage to an enterprise.

"Known vulnerabilities left unpatched in Web applications and server and endpoint software, create opportunities for attacks to occur," the report says.

"These unpatched applications and software continue to be facilitators of breaches year after year."

However, the latest X-Force report also recognises that attackers are improving their skills, which allows them to increase their return on exploitation, capitalising on users’ trust when it comes to new vectors like social media, mobile technology and waterhole attacks.

Attackers are optimising their operations around many key initiatives which include a path of least resistance to reach the largest number of potential targets for the minimal amount of exploit effort.

For example, attackers are optimising:

• The exploitation of trust via social media.

• Coordinated operations leaking user data as well as exploiting weak entry points into global brands such as foreign local language or franchise sites.

• Mobile malware with Android devices as the market expands.

• Take over of central strategic targets to access and exploit a broader base of end users.

• Diversion and distraction techniques which throw security administrators off path, while breaching targets under the cover.

To read the report in full click here

Protecting data centres from fire – your options
Chubb's Pierre Thorne discusses the countless potential implications of a data centre outage, and how to avoid them.
Opinion: How SD-WAN changes the game for 5G networks
5G/SD-WAN mobile edge computing and network slicing will enable and drive innovative NFV services, according to Kelly Ahuja, CEO, Versa Networks
TYAN unveils new inference-optimised GPU platforms with NVIDIA T4 accelerators
“TYAN servers with NVIDIA T4 GPUs are designed to excel at all accelerated workloads, including machine learning, deep learning, and virtual desktops.”
AMD delivers data center grunt for Google's new game streaming platform
'By combining our gaming DNA and data center technology leadership with a long-standing commitment to open platforms, AMD provides unique technologies and expertise to enable world-class cloud gaming experiences."
Inspur announces AI edge computing server with NVIDIA GPUs
“The dynamic nature and rapid expansion of AI workloads require an adaptive and optimised set of hardware, software and services for developers to utilise as they build their own solutions."
Norwegian aluminium manufacturer hit hard by LockerGoga ransomware attack
“IT systems in most business areas are impacted and Hydro is switching to manual operations as far as possible.”
HPE launches 'right mix' hybrid cloud assessment tool
HPE has launched an ‘industry-first assessment software’ to help businesses work out the right mix of hybrid cloud for their needs.
ADLINK and Charles announce multi-access pole-mounted edge AI solution
The new solution is a compact low profile pole or wall mountable unit based on an integration of ADLINK’s latest AI Edge Server MECS-7210 and Charles’ SC102 Micro Edge Enclosure.