IT Today Catalog Auerbach Publications ITKnowledgebase IT Today Archives infosectoday.com Book Proposal Guidelines IT Today Catalog Auerbach Publications ITKnowledgebase IT Today Archives infosectoday.com Book Proposal Guidelines

IT Today is brought to you by Auerbach Publications

IT Performance Improvement

Management

Security

Networking and Telecommunications

Software Engineering

Project Management

Database


Free Subscription to IT Today





 
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks by Kenneth; ISBN 9781420046595
The Practical Guide to HIPAA Privacy and Security Compliance, Second Edition by Rebecca Herold and Kevin Beaver; ISBN 978-1-4398-5558-4
Managing the Insider Threat: No Dark Corners by Nick Catrantzos; ISBN 9781439872925
Big Data: A Business and Legal Guide by James R. Kalyvas and Michael R. Overly: ISBN 978-1-4665-9237-7
Investigations in the Workplace, Second Edition by Eugene F. Ferraro; ISBN 9781439814802
Program Governance; ISBN 9781466568907

Ten Tips to Avoid Massive Data Breaches. Donít Be the Next Sony!

By Benny Czarny, Founder and CEO, OPSWAT

With Sony recently setting aside $15M to investigate the reasons for and remediate the damage caused by last year's data breach, many organizations—from large enterprises to small business—are wondering what they need to do make sure they arenít the next big data breach headline. The good news is that most data breaches can be prevented by a common sense approach, coupled with some key IT security adjustments.

  1. Employee security training is an absolute necessity. I cannot emphasize this point enough. Even the most sophisticated security systems can be compromised by human error. The Sony breach started with phishing attacks. People still use USB devices from unknown sources, which is allegedly how the Stuxnet worm was delivered. Your network is only as safe as your most gullible employee.
  2. Access to executable files should be limited to those who need them to complete their duties. Many threats are borne via self-extracting files, therefore limiting the number of employees who are allowed to receive this file type limits your exposure. Your IT department absolutely needs the ability to work with executable files. Bob in accounting? Not so much!
  3. MSOffice documents and PDFs are common attack vectors. Vulnerabilities are identified in MSOffice and Adobe Reader on a regular basis. While patches are typically released very quickly, if the patches are not applied in a timely fashion the vulnerability can still be exploited. As an everyday precaution, document sanitization is recommended to remove embedded threats in documents.
  4. Data workflow audits are essential. Data can enter your organization through many different pointsóemail, FTP, external memory device, etc. Identifying your organization's entry points and taking steps to secure them is a critical step in avoiding data breaches. At a minimum, scanning incoming and outgoing email attachments for viruses and threats and implementing a secure file transfer solution should be considered.
  5. Store sensitive data in separate locations. Simple data segregation could have mitigated the impact of the Sony breach. The hack exposed both internal communications and unreleased video files. Had the videos and emails been stored on two separate systems some of the damages may have been prevented.
  6. Internal and external penetration tests are critical. Internal testing is valuable tool, but hiring an outside party to attempt to breach your network will identify security holes your team may have missed.
  7. Keep your security architecture confidential. You may be excited about your innovative networking solution or new cloud-based storage system, but think twice about making any of that information public! The more your attacker knows about your systems the easier it is for them to tailor the attack.
  8. Remember that traffic generated internally to your security system may still be suspect. The Sony malware connected to an internal security system to impersonate legitimate traffic to disguise its malicious nature.
  9. Multilayer defense is needed. I like to describe defense in depth by comparing it to the defense systems you might see at a castle; it could be defended by a large stone wall, followed by a deep moat, followed by a draw bridge, followed by an Iron Gate, etc. A single layer of defense is not sufficient for your data; it must be protected by multiple systems working in parallel. That way if one layer of defense is breached your data is not exposed.
  10. Finding your weakest security link is your top priority. Every office has one, and it will vary wildly from organization to organization. It might be that employee with their passwords taped to their monitor. It might be the deprecated Linux server everyone seems to have forgotten about. You might not be looking for those weak links, but rest assured that cyber attackers are. The question is: Who will find them first?

Add a Comment

Name:

Comment:


© Copyright 2015 Auerbach Publications