Sicurezza

IDG Contributor Network: Nothing new to (Wanna)Cry about

Pubblicato il

The WannaCry outbreak has been troubling in many regards – exposing flaws, and opening doors to much finger-pointing and blaming that have gone well beyond the handling and disclosure of nation-state cyber weapon stockpiling. The attackers likely had a good idea of how quickly and widely the attack would spread, evidenced by the fact that […]

Sicurezza

Area 1 Security stops phishing campaigns before they become attacks

Pubblicato il

This column is available in a weekly newsletter called IT Best Practices. Click here to subscribe. Anyone who has spent any amount of time trying to secure their organization’s endpoints or network would not be surprised to learn that phishing is now the #1 delivery vehicle for malware and ransomware. According to Mandiant, phishing was used […]

Sicurezza

Splunk on SOAPA (part 1)

Pubblicato il

I’ve written a lot about ESG’s security operations and analytics platform architecture (SOAPA).  SOAPA is happening because enterprise organizations are surrounding SIEM with lots of other security analytics and operations tools to accelerate incident detection and response.  As this occurs, many organizations are actively integrating these technologies together with the goal of building an end-to-end, […]

Sicurezza

Splunk’s position on SOAPA – Part 1

Pubblicato il

I’ve written a lot about ESG’s security operations and analytics platform architecture (SOAPA). SOAPA is happening because enterprise organizations are surrounding SIEM with lots of other security analytics and operations tools to accelerate incident detection and response. As this occurs, many organizations are actively integrating these technologies together with the goal of building an end-to-end, […]

Sicurezza

Microsoft to NSA: WannaCry is your fault

Pubblicato il

Microsoft’s top lawyer has blamed the government’s stockpiling of hacking tools as part of the reason for the WannaCry attack, the worldwide ransomware that has hit hundreds of thousands of systems in recent days. Brad Smith, president and chief legal officer, pointed out that WannaCrypt is based on an exploit developed by the National Security […]

Sicurezza

WannaCry makes me want to cry!

Pubblicato il

As I read about the WannaCry ransomware attack, my brain is racing with thoughts about the causes and effects of this global incident. Here are my two cents: 1. Ransomware continues to be a growth business, and a bit of work can provide a serious return. The FBI estimated that ransomware payments topped $1 billion […]

Sicurezza

Why WannaCry won’t change anything

Pubblicato il

The tally of damage from the WannaCry ransomware attack keeps growing, but it’s still not even close to bad enough to force real changes in cybersecurity. According to The New York Times, more than 200,000 machines in more than 150 countries around the world have been infected, but the responses being discussed still center around […]

Sicurezza

Shadow Brokers announce monthly data dump service

Pubblicato il

The Shadow Brokers are back once again, offering buyers not just exploits, but also “compromised network data from Russian, Chinese, Iranian, or North Korean nukes and missile programs.” Seemingly capitalizing on the success of WannaCry ransomware, which used EternalBlue and DoublePulsar—tools developed by the NSA’s Equation Group—the Shadow Brokers want to sell new exploits every […]

Sicurezza

Cybercrooks fight over DDoS attack resources

Pubblicato il

As more groups get into the denial-of-service attack business they’re starting to get in each other’s way, according to a report released this morning. That translates into a smaller average attack size, said Martin McKeay, senior security advocate at Cambridge, Mass.-based Akamai Technologies Inc. There are only so many devices around that have the kind […]