Cyber attacks target ISIS in a new line of comba... » Security experts react to The New York Times article, “US Cyberattacks Target ISIS in New Line of Co... FAST and V.i. Labs join forces to educate market... » The Federation Against Software Theft (FAST) and long-term industry member V.i. Labs, have launched ... Wick Hill Wins ‘Distributor of the Year’ at IT E... » Woking, Surrey: Wick Hill has won the strongly contested ‘Distributor of the Year’ title at the IT E... Thales delivers digital trust across connected ... » Samsung Developer Conference, San Francisco, CA: Thales has announced that the SAMSUNG ARTIK™ platfo... BeyondTrust contributes threat analytics to the ... » PHOENIX: BeyondTrust has announced today that the 2016 Verizon Data Breach Investigations Report (DB... Construction hoist standard for transporting ... » BSI, the business standards company has revised BS 7212:2016 Code of practice for the safe use of co... FireMon delivers record 2015 Revenue...adds secu... » London, UK: FireMon CEO Jim Lewandowski has announced the security management firm achieved record g... PALFINGER achieves new record levels of revenue » - Revenue grew by 9.1 per cent to EUR 318.8 million - EBIT showed extraordinarily strong increase o... Industry leader covers nearly 700 compliance pol... » London, UK: Tripwire, Inc. has announced that Tripwire® Enterprise coverage for security policy and ... Varonis to stifle ransomware with new threat model... » London, UK: Varonis Systems, Inc. has announced the beta availability of more than 20 new threat mod...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

London: Commenting on the system compromise of US-based security vendor Bit9, Venafi says that the cybercriminal incursion – whilst unfortunate – signals the significant changes in the threat landscape that have been taking place over the last few years.

 

According to Calum Macleod, EMEA Director with the Enterprise Key and Certificate Management (EKCM) solutions specialist, just as the hacktivist force behind the Anonymous collective has gathered pace in recent times – culminating last April with Time classifying the cause in its top 100 of the world’s most influential people (http://ti.me/WGnERB) - so the cybercriminal landscape has also changed.

“It’s a much darker threats landscape that IT security professionals are now dealing with, with trust – amongst clients, peer organisations and employees – having become an incredibly fragile, but essential, part of the security fabric of business,” he said.

“This situation is compounded by the fact that executives - even those in IT security arena - have little to no understanding of how truly fragile trust is today. A few kilobytes of cryptographic data can mean the difference between a company losing millions from the serious financial and reputational consequences that result,” he added.

The Venafi EMEA Director went on to say that, every business and government now relies on cryptographic keys and certificates to provide and ensure these levels of trust.

These technologies, he explained, are behind what makes society function today —from card payments, online shopping, all the way to smartphones and cloud computing.

And in parallel with this, he says, the ability to measure and track trust has also changed in what is an increasingly global and interconnected world.

Unfortunately, adds Macleod, cybercriminals now understand how fragile our ability to control trust has become.

“Malware like Flame and Stuxnet - and targeted attacks such as those on Bit9 - are just some of the examples of the escalating and accelerating attacks on trust in a business landscape that relies on technology,” he said.

“The only certainty that can be drawn from this event is that these types of attacks – and their underlying methodologies - will explode as more cybercriminals become aware of their success,” he added.

 

“The inability to detect these attacks, take action - and ultimately the pervasiveness of cryptographic keys and certificates, plus the protocols that depend on them – means that criminals of all types will increasingly continue to turn their attention to these attacks.