securitythisweek

Cloud Security This Week – October 6, 2017

Cybersecurity made for some compelling headlines this week with global political intrigue, massive numbers, and the continuing saga of Equifax.

We’ll start with the obvious – Equifax. Look, we take no joy in seeing others falter, but this cautionary tale keeps adding chapters of how NOT to do security. This week we found out that accounts of an additional 2.5 million were compromised. In comparison to the original 143 million, this new revelation seems almost like a footnote, but that’s the size of Qatar. And Houston. It’s a lot. This is part of other revelations coming out this week as Equifax’s former CEO Richard Smith spent days on the hot seat in front of congress.

Large numbers dominated the disclosure that the Yahoo account breach of 2013 impacted more than the 1 billion accounts originally reported. Turns out it affected 3 billion. Since we’re doing population comparisons, that’s like two of China. Yeah, that’s a lot too.

And then we also discovered that hackers working for the Russian government stole information about the operations of U.S. national security agencies. This story will unfold for some time, but some solid reporting is provided in the links below.

New from Evident.io
Our Post-Equifax World
In the wake of the massive Equifax data breach, there’s a lot we can learn about what to do, what not to do, and how to move forward in an increasingly digital world.

ESP @ Work: Keeping People Safe and Businesses Running Faster with Cloud Infrastructure Security
An overview of an Evident.io customer who is gaining valuable insight and dynamic visibility into their cloud infrastructure, and gaining better control over their platform at all times.

What We Can Learn From 3 Billion Compromised Accounts
New information came to light about Yahoo’s 2013 data breach. But there’s a story behind all of this, one of remediation and communication. It’s instructive for all enterprises in terms of how they continuously manage security and treat customers.

Evident Security Platform for Microsoft Azure
On the heels of the announcement of our support for Microsoft Azure, Prashant Ketkar, Evident.io’s SVP of Product, will provide an overview in this webinar. He will go into detail on cloud security and compliance challenges and explore how customers are using the Evident Security Platform to adapt their SecOps, DevOps and compliance functions to meet the needs of today’s public clouds.

What’s New in ESP?
This webinar, on October 12, will provide a comprehensive overview of ESP’s Azure support, S3 Bucket Fitness Report, new dashboard widgets, trend line views and more features.

Ransomware 2017 Report
Ransomware attacks, in which hackers encrypt an organization’s vital data until a ransom is paid, have become a billion dollar cybercrime industry according to the FBI. This new report, sponsored by Evident.io, reveals the latest ransomware trends and offers valuable guidance on effectively addressing the ransomware threat.

News and Perspectives on Cloud Security
October is National Cyber Security Awareness Month
Again, we can all benefit from brushing up on our cybersecurity best practices and protocols, so please share this information with friends, family and colleagues – we are stronger together. #NCSAM #CyberAware

Russian Hackers Stole NSA Data on U.S. Cyber Defense
We’re just cracking the story on this, but it looks like this hugely damaging breach could enable the Russian government to collect valuable data and infiltrate U.S. government networks.

6 Fresh Horrors From the Equifax CEO’s Congressional Hearing
There’s no fun in kicking someone when they’re down, but this story just goes from bad to worse, and redefines “worse.”

There Are 2.5 Million More People in the Equifax Breach Than We Thought
For those keeping score at home, the breach is now up to almost 146 million compromised accounts.

WannaCry Ransomware Was the Biggest Challenge of the Year, Says Cybersecurity Center
An overview of WannaCry; damage, repercussions, and what to expect next.