Friday, July 14, 2017

Winning the battle

There is a typical scene in the movies that takes place when our spy (James Bond, Jason Bourne or Ethan Hawke) looks at his enemy, who is defeated on the ground, and he screams in full of rage: “You may had won the battle, but not the war!” This phrase has been pictured in everyone's mind. But, what this means? In the entertainment and fiction business means that this bad guy will escape and turn the world upside down again, until our favorite hero stops him one more time. In the real world ... well... ok. Vietnamese might not win many battles but it is clear that they won the war.

Today we remember this phrase because after taking a look at the best of the week in cybersecurity, we found mixed feelings, as we have seen that many battles have been won, but the war is still to be decided.

This Wednesday morning we woke up with the notice that Microsoft has patched 50 vulnerabilities.
These flaws were found throughout his software:  Internet Explorer, Microsoft Edge, Offices, SharePoint and the list that goes on. The best of all is that of that half a hundred, 19 of them were critical, so we could say that we are facing a victory against cybercrime.

In addition, that same day was the annual report on web applications conducted by WhiteHat Security. We discovered that the vulnerabilities found in web applications had dropped 25% since 2016. This means that for every 4 vulnerabilities found, there are now 3. However, although it is not a bad data, we cannot say that it is a positive result. Like the president of the WhiteHat Security threat and technical support center said, "Three sounds like a low number, but even a vulnerability can be exploited to give criminals access to your credit card or other personal information." It doesn't seem like good news anymore…

What was, for sure, not a good way to start the week is that on Monday in Android landed 3 variants of SpyDealer, a malware that will easily keep your data if you are infected. It take access to the primary privileges of your device, this Trojan can steal data from applications such as WhatsApp, Facebook, Skype, Telegram...

However, this was not the worst news that the week brought us, since a security breach at Verizon on Thursday exposed the data of more than 6 million customers. The company, one of the most important US telecommunications companies in the industry, has announced that this vulnerability was due to the fact that its provider, NICE Systems, misconfigured its server in the cloud.

Obviously, the achievements of cybersecurity experts should not be overturned. They work hard every day to make the network a safer place. Even so, we should not ring the bells for every "victory" we get against cybercriminals. There is still a long way until the war ends, if it ever does.


Post a Comment