The highlights of the sessions are an interpretation by InfoArmor and not necessarily those of any government agencies or representatives. The second annual (and only forum of its kind) Incident Response Forum held true to form by providing informative and interactive panel discussions without death by PowerPoint and it proved to be thought provoking with open and lively conversations.
BY CHRISTIAN LEES, SPECIAL TO THIRDCERTAINTY
The most common credentials are a combination of username and password, but those have lost a good bit of their protective powers. Next-generation credentials also are edging toward a precarious place. Here’s what you need to know about the dangers of compromised credentials and how to mitigate those risks.
In InfoArmor’s report, “Healthcare Is Under Attack,” our underground research team identified multiple instances where cyber criminals had infiltrated EHR systems and leveraged the compromised data for extortion and ransom. In this report by InfoArmor regarding further risks to the national healthcare infrastructure, InfoArmor has identified substantial infiltration by cyber criminals into peripheral systems.
A new phishing and social engineering scam has emerged. Scammers are targeting companies and causing internal data, including employee credentials (logins and passwords) to be compromised and ultimately exposed.
Using TOR services, ProPublica allows visits to sites that are hidden from eavesdroppers and Internet service providers. ProPublica’s move appears to be a reaction to the increasing surveillance of private citizens by governments worldwide. Read more, including comments from Andrew Komarov, InfoArmor’s Chief Intelligence Officer, in TechNewsWorld’s article.
Byron Rashed, Senior Director of Marketing for the Advanced Threat Intelligence unit at InfoArmor, explains the process of destroying hard drives and recovering data in light of reports that the recent San Bernardino, California attackers did just that, to cover their tracks. Read more from Byron Rashed and Information Security Buzz here.
InfoArmor’s CISO Christian Lees details the findings of the GovRat APT report that identifies underground malware vendors selling digital certificates for code signing, adding a new dimension in malware for cyber espionage campaigns. GovRat malware is an advanced malicious threat that is extremely difficult to detect by modern security solutions.
Within the past few years, hacking has become a major security problem. “We are the No. 1 data-breached country,” said Drew Smith, founder and CEO of InfoArmor, a Scottsdale-based cyber-security company. “Hackers constantly scan the entire Internet, regardless of the size of a company, in search of people to exploit.”
By Drew Smith, CEO of InfoArmor
Cyberattacks are more prevalent than ever in the United States, with more people worried about them than any other type of crime.