Despite your fancy-schmancy security tech, passwords still weakest link in IT defences

  • 23 April 2014
  • 0 replies
  • 578 views

Userlevel 7

So concludes Verizon's new global data-breach probe

By John Leyden, 22 Apr 2014  The use of stolen login credentials continues to be the most common way for network intruders to access sensitive information. Two out of three breaches were the result of weak or swiped passwords, making a case for strong two-factor authentication, according to Verizon’s latest annual Data Breach Investigations Report.
 
The telco's researchers reckon 94 per cent of all security **bleep**-ups last year each fall into one of nine basic attack patterns: a malware infection; an insider's misuse of privilege; physical theft or loss of gear; web-app compromise; denial-of-service attacks; cyber-espionage; point-of-sale intrusions; payment-card skimmers; and miscellaneous errors such as sending an email to the wrong person.
 On average, just three threat patterns cover 72 per cent of the security incidents in any one industry, although the exact mix varies from industry to industry.
 
For example, in the financial services sector, 75 per cent of security headaches were caused by attacks on web application, distributed denial of service (DDoS) assaults, and card skimming. Meanwhile, 54 per cent of all manufacturing sector attacks were attributed to cyber-espionage and DDoS floods. In the retail sector, the majority attacks are tied to DDoSing (33 per cent) followed by point-of-sale intrusions (31 per cent).
 
 
 
Full Article
 
Obviously...I hear you cry...yes, perhaps so...but still a good and shocking read!

0 replies

Be the first to reply!

Reply