The week in security: Breach costs arrested but CISOs risk the axe over reporting

The latest study of data-breach costs found Australian businesses bucking global trends by driving down the average cost of data breaches. There was little shelter for CISOs however, with warnings that they could increasingly risk losing their jobs if they can't improve their reporting of security postures before the breaches happen.

Might be time to not only invest in training, but to consider the best way to develop a digital risk plan and sell it to the board. And that includes more than simply pointing out that the average breach now costs over $4 million – although one CEO decided to take a stand against a DDoS extortion attack over a far smaller potential loss.

A study concluded that the majority of companies lack adequate controls to protect their business-confidential documents, while Gartner warned that DDoS defences are weak albeit starting a turnaround and other work concluded that 60 percent of businesses had a security breach in 2015.

This, as the malevolent Angler exploit kit inexplicably went silent – leading some to suspect its author or authors had been arrested. Also arrested was a Chinese worker who is alleged to have stolen the source code of a clustered file system from his US employer for the benefit of a Chinese government body. And, along related lines, 'spam king' Sanford Wallace was sentenced to 2.5 years in prison for a Facebook phishing scam.

A Flash Player zero-day exploit was found to be used in the wild by a cyberespionage group and even Adobe was warning of the risks, while security wonks at Kaspersky Labs said they knew who had created it. Meanwhile, Apple made moves to hasten the extinction of Flash by announcing it would turn off Flash in Safari 10 by default.

Security giant Symantec snatched up security vendor Blue Coat for $US4.65 billion, while VMware launched a new endpoint-security tool and security vendor Recorded Future was partnering with other vendors to strengthen the use of threat intelligence.

Also attracting interest in the new-technology department is blockchain, which some warned isn't ready for mainstream development yet. Another emerging trend in security is machine learning, which some see as a way of improving the corporate response to new attacks by ransomware that, by some accounts, is now hiding in email attachments with .JS extensions.

It's all part of a ransomware explosion that is requiring businesses to take a new approach to their usage of SIEM platforms and new approaches to cloud file-storage security, such as those that are gaining traction amongst government agencies here and abroad.

A new US bill to protect cloud-based documents from government searches was stalled in the US Senate in the wake of the Orlando shootings. This, ironically, as revelations suggested a massive FBI facial recognition database was not measuring up to privacy and accuracy requirements. Yet that's still better than in China, Gartner said, where privacy is still an elusive goal for those doing business in the country.

Also in US political news, a group of Russian hackers breached Democrat Party computers in an apparent search for documents relating to the party's strategy against rival Donald Trump; a rival hacker claimed responsibility and posted the files online to prove it.

Join the CSO newsletter!

Error: Please check your email address.

Tags data breachesflash playerattacksCISOsadobepatch managementCost of a data breachransomwarehacking

More about AppleFacebookFBIGartnerKasperskySymantec

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by David Braue

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place