360° Coverage : How To Prevent Becoming The Next Target

1 Updates
How To Prevent Becoming The Next Target
Photo Credit: Forbes Business

How To Prevent Becoming The Next Target

Feb 20 2014, 3:41pm CST | by

Welcome to another installment in my cybersecurity for business owners series. Black Hat held a good webinar today on securing POS (Point of Sale) Systems.  I published an article on this topic (...

Filed under: news

 
 
 

35 weeks ago

How To Prevent Becoming The Next Target

Feb 20 2014, 3:41pm CST | by

Welcome to another installment in my cybersecurity for business owners series. Black Hat held a good webinar today on securing POS (Point of Sale) Systems.  I published an article on this topic (with input from one of our security engineers, Scott “Shagghie” Scheferman) a couple of weeks ago but this webinar had some additional soundbites that may be useful to business owners, particularly those who use POS systems.

Eric Fiterman was the first presenter, and he brought up some interesting points:

  1. Initial results indicate that the compromise Target's network and the initial attach vector may have been the energy control systems.  As we’ve noted in other scenarios and after discussions with many vendors, energy control systems, microgrid systems and other clean energy systems are emerging everywhere, and security implications seems to be a secondary concern at best when they are installed and integrated with existing networks.  In a previous post I noted this is a similar situation with networked medical devices being installed in hospitals.
  2. Eric mentioned the heavy emphasis on compliance vs actual security.  We’ve noted this after more than a decade of securing information systems for the Department of Defense, where the emphasis on “doing things right” in the security realm outweighs the importance of “doing the right things” in security.
  3. The push towards the cloud expands the attack surface significantly, often in ways that are not immediately obvious or understood.
  4. Anything that holds a credit card number should be considered a POS system.

Mr. Fiterman recommended the following ways in which to reduce one’s risk as a business owner:

  1. Reduce exposure by getting rid of data that is not required for immediate business purposes and using third party vendors (PayPal, etc) to process credit card payments.
  2. Encrypting credit card numbers at the point of acceptance.
  3. Focusing on security in addition to compliance (you can’t really ignore compliance or else the regulatory agencies get mad at you).
  4. Understanding how your network and domain infrastructure can work against you.
  5. Locating the initial attack vector asap, rather than focusing on the end target (although that also needs to be fixed).  Otherwise you can be chasing a number of feints and actual attacks that are all originating from the same initial entry point and spend for more money and time trying to eliminate the threat.

Jeffery Guy, a former Air Force cyber ninja and current security expert, also spoke.  His message was that every company should expect to be breached and that although a compromise may only take seconds, it will take months of time and an average of $341,000 to fix each breach (as Target is finding out now).

70% of all cyber attacks against businesses happen against small businesses, and although many business owners feel they “aren’t worth the time” of an attacker, the reality is that they are the primary targets and victims of cybercrime.

Source: Forbes Business

 
Update
1

8 weeks ago

Khazanah throws MAS RM6b lifeline

Aug 29 2014 5:01pm CDT | Source: Business Times Singapore

August 30, 2014 1:15 AMKHAZANAH Nasional will inject RM6 billion (SS$2.4 billion) over three years to resuscitate loss-making Malaysia Airlines (MAS) under a recovery plan that includes even an Act of Parliament. Other key moves are migrating its operations, assets and liabilities to a new company (NewCo ...
Source: Business Times Singapore   Full article at: Business Times Singapore
 

 

Don't miss ...

 

<a href="/latest_stories/all/all/30" rel="author">Forbes</a>
Forbes is among the most trusted resources for the world's business and investment leaders, providing them the uncompromising commentary, concise analysis, relevant tools and real-time reporting they need to succeed at work, profit from investing and have fun with the rewards of winning.

 

blog comments powered by Disqus

Latest stories

WHO welcomes approval of Ebola vaccine trial in Switzerland
Geneva, Oct 28 (IANS) The World Health Organisation (WHO) Tuesday welcomed the approval of a Swiss regulatory authority for a trial with an experimental Ebola vaccine at the Lausanne University Hospital.
 
 
Salt-degraded farm soil now equals the size of France
Toronto, Oct 28 (IANS) Every day for more than 20 years, an average of 2,000 hectares of irrigated land in arid and semi-arid areas across 75 countries, including in India, has been degraded by salt, a research has found.
 
 
Radiation exposure ups aggressive thyroid cancer risk
New York, Oct 28 (IANS) Nuclear power plant accidents could be devastating and researchers have now found that exposure to radioactive iodine is associated with more aggressive forms of thyroid cancer.
 
 
French medical personnel who treated Ebola victim free of virus
Paris, Oct 28 (IANS/EFE) Dozens of medical personnel who took care of a French nurse while she was being treated for the Ebola virus disease have finished their observation period and are free of the virus, French health officials said Tuesday.
 
 
 

Latest from the Network

Benedict Cumberbatch: Sherlock can't have sex
Benedict Cumberbatch says Sherlock Holmes doesn't have sex - because he's more interested in crime. The 38-year-old British actor was catapulted to global fame playing a modern version of the fictional detective in the...
Read more on Celebrity Balla
 
Melissa McCarthy was robbed at gunpoint
Melissa McCarthy was robbed at gunpoint when she moved to California. The 'Bridesmaids' actress was working at a dry cleaners on a quiet street in Santa Monica when she first moved to Hollywood to pursue a movie career...
Read more on Celebrity Balla
 
Russell Brand: I wish I was bisexual
Russell Brand wishes he was bisexual. The 39-year-old comedian - who was married to Katy Perry for 14 months until December 2011 - has confirmed he is single at the moment but is keen to experiment more with his...
Read more on Celebrity Balla
 
Woman saves Indian from Bangladeshis' captivity in Baharin
Manama, Oct 28 (IANS) An Indian, allegedly tortured and held hostage in Bahrain by five Bangladeshis for a paltry BHD800 ransom (about $2,000), was rescued with the help of his co-worker, an Indonesian woman, in an...
Read more on Politics Balla
 
Billiards: Bhaskar shocks Gilchrist, joins Advani in semis
Leeds, Oct 28 (IANS) For long the bridesmaid in Indian billiards, Balachandra Bhaskar, the 43-year-old from Bangalore, authored a big upset when he knocked out defending champion Peter Gilchrist 797-586 to enter the...
Read more on Sport Balla
 
WHO welcomes approval of Ebola vaccine trial in Switzerland
Geneva, Oct 28 (IANS) The World Health Organisation (WHO) Tuesday welcomed the approval of a Swiss regulatory authority for a trial with an experimental Ebola vaccine at the Lausanne University Hospital. According to...
Read more on Business Balla
 
Indian in US gets 15 years in jail for backing Hezbollah
New York, Oct 28 (IANS) An Indian citizen residing illegally in the US has been sentenced to 15 years in prison for allegedly trying to provide material support to Hezbollah, a designated foreign terrorist...
Read more on Politics Balla
 
Another body recovered from sunken South Korean ferry
Seoul, Oct 28 (IANS/EFE) South Korean rescue teams Tuesday recovered one of the 10 bodies still missing from the Sewol ferry which sunk off the country's southwest coast April 16 this year leaving 304 people dead, most...
Read more on Politics Balla
 
Iraqi Kurdish force moves to help fight IS militants in Kobane
Baghdad, Oct 28 (IANS) A group of Iraqi Kurdish fighters, known as Peshmerga, headed Tuesday to the Syrian border town of Kobane via Turkey to help local Kurdish people who have been struggling to fend off attacks by...
Read more on Politics Balla
 
Al Qaeda affiliate seizes seven villages in Syria
Beirut, Oct 28 (IANS/EFE) The Nusra Front, Al Qaeda's affiliate in Syria, has seized seven villages in the northern Syrian province of Idlib over the past few hours, the Syrian Observatory for Human Rights reported...
Read more on Politics Balla