Wednesday, October 29, 2014

Bad people last longer

There is a popular saying: "Bad people last longer." This is an individual or group who is always hanging around, offering a negative reading on everything they touch, and on top it, there is no way to get rid of them.

Something similar happens with many cyber evils. Phishing is an example of it. It exists since the neccesary tools are available, and keeps making headlines since then. Fidelity National Financial has been hit by recent phishing campaigns on various of its workers. Cybercriminals gained an unknown number of account numbers and personal information.

Botnets are common bugs on the netwok. In this case, at ESET they talk about the evolution of such attacks in Argentina, Chile and Uruguay, with a clear predominance of Dorkbot and VBS as most active botnets using USBs to spread. They communicate with their server via IRC despite HTTP or P2P.

Bad people who last longer, and others who just come out as a new group of Chinese cyber criminals, called Axiom, which was discovered by a joint action of Novetta Solutions, Microsoft, FirefEye, F-Secure and Symantec. At least 43,000 computers were infected, mainly government agencies, environmental NGOs, Fortune 500 companies, technology companies and security forces.

Continuing uncertainty about the strategies taken by countries to monitor their citizens have a new front to attend to. hoax about a spyware preinstalled on Sony Xperia devices which is apparently stored on Baidu folder ran like wildfire yesterday. Numerous media picked up the story, without thinking that Baidu offers various APIs like geolocation or directory browser to Sony.

To combat this, you have INCIBE, the new National Institute for Cyber ​​Security, which arises from former INTECO (National Institute of Communication Technologies) within the Ministry of Industry of the Government of Spain, called to become a world leader within the sector.

That is at government level. At corporate level, there are still critical issues to solve. How will we be able to fight cybercrime if we are not yet able to manage security and privacy on the cloud? The Ponemon study returns to alert small, medium and large companies. Only 38% of them have clearly defined roles for data protection. Among those, 71% say they have problems to implement measures to protect actively or passively information, although the pattern of use of such architectures is increasing exponentially.

Here you have a complex picture, with both good and bad people. Two fronts with numerous branches whose constant confrontations have either positive or negative consequences. 


Post a Comment