Security check: Defending against more than spray and pray tactics
As attackers move beyond “spray and pray” tactics to advanced persistent threats -- having better security than your competitors is no longer enough. Targeted attacks today are often for financial gain through extortion and threats to expose or delete sensitive data, and organizations need to make sure they’re prepared. We cover countermeasures to help organizations defend against evolving attack techniques and detect intrusions faster to minimize the damage. Johannes Ullrich, SANS Institute CTO and head of the Internet Storm Center, outlines the top emerging cyberthreats in 2015, from the Internet of Things and bring your own device to subtle data manipulations that influence business decisions and enterprise ransomware.
Another big problem with security continues to be social engineering, which we also look at in this issue. Many organizations are moving beyond prevention to detection strategies, including automated breach detection and data-centric security measures. We also look at cybersecurity hiring strategies, employee development and ways to address geographical shortfalls.
As some salaries skyrocket after a breach-laden 2014, is cybersecurity hiring in a state of crisis? Rebecca Herold, the “Privacy Professor,” shares her take on third-party security measures with Marcus Ranum. She offers solid advice on ways to hold contractors accountable. Finally, Editorial Director Robert Richardson looks at big data analytics as commercial tools, whose origins can be traced to NSA engineers, start to become available for large enterprises.
- Vendor:
- TechTarget Security
- Posted:
- Feb 8, 2021
- Published:
- Mar 25, 2015
- Format:
- Type:
- Ezine
