In a recent Computerworld article entitled Security tools can’t keep hackers at bay, Jaikumar Vijayan writes about malware that struck Schnucks supermarket chain. It took the experts from Mandiant two weeks to plug the security holes exploited by this malware.
Why was this malware so difficult to find and fix? Because the bad guys are using ever more sophisticated means to hide their evil work. The article quotes Avivah Litan, an analyst at Gartner:
Increasingly, attackers are resorting to techniques like hiding stolen data inside legitimate files and encrypting data to evade detection. They cloak their malware or hide it within seemingly innocuous files so that it’s very difficult to detect. [Today’s] network and enterprise security tools are not smart enough to detect the hacking when it occurs and they might not even uncover such activity in a matter of hours or even days.
Companies need to be sure they are using latest tools and techniques to uncover nefarious activities. However, they also need to take strong preventative measures. Prevention is crucial when one considers that, according to Verizon, 95% of state affiliated cyber-espionage is accomplished using spearphishing. In cyber-security, as elsewhere, an ounce of prevention is worth a pound of cure.
Employees’ email decisions can compromise security. IT needs to help employees make better email processing decisions. That is where SP Guard comes into play. Using SP Guard, IT can determine a list of trusted senders and provide this information to staff in a simple and highly effective manner.
You can contact us at 408-727-6342,ext 3 or use our online form.