In the wake of undiscovered data breaches and subsequent public exposure, a layered approach to security is becoming every more important to protecting critical assets.

Despite the increase in the number of data breaches via illicit means, internal controls seem to fail when it comes to the assurance that critical assets remain uncompromised.

According to the Identity Theft Resource Center a total of 336 breaches have been reported in 2008 alone, putting the overall number at 69% greater then this time last year . This is a concern for security teams especially given the fact that a lack of dedicated resources exist to combat and revert this trend.

The problem as it exists today – hidden threats from within

The variable of hidden and unidentified infections will almost certainly introduce a degree of unknowingness and concern when it comes to the protection of sensitive information and adherence to regulations.

More and more malware seen on the market today is designed to target specific platforms and the users that interact with them. Banker Trojans for example are an increasing concern for the financial and e-commerce communities; as a result malware is targeting specific payment or banking platforms advertently stealing credentials, therefore; fueling a rise in financial and economic fraud.

According to a recent study, annual revenue loss due to online fraud in 2007 amounted to $3.6 billion and is a trend that is to be consistent for 2008 and beyond . Online fraud and the use of targeted phishing campaigns have evolved in parallel to each other and are expected to continue to steadily increase. Furthermore, these tactics have become very popular amongst the hacker elite and have taken an evolutionary step forward in sophistication and complexity.

What’s more of a concern is when tailored malware is involved in a targeted attack against a corporation’s intellectual property. These threats most often will remain under the radar for long extended periods of time, thus, going undetected by resident security software until it’s too late. The number one reason as to why these undiscovered or hidden threats exist is due to the limited distribution and the complexities involved with the attack – always targeting a few key individuals.

Therefore, resulting in malcode that researchers never see nor analyze, thus, no signature defense is created.

Targeted Phishing Campaigns

Targeted phishing scams on the other hand against corporate executives or better known as whale phishing, recently has been seen as a means of introducing malicious code into the environment. As the target is often intellectual property, financial records & personal employee data, these attacks are well thought of and planned ahead to ensure the highest possible success rate.

According to MessageLabs in a recent quarterly phishing and spam report , an increasing number of smaller state-level banks and credit unions continue to receive attention from hackers. In addition in another MessageLabs report, targeted attacks have gone from what used to be 2 per day to over 900 in less then a 24hr period .

These attacks are using a wide variety of social engineering tactics that consist of fake subpoenas, tax complaints and many other types of bait to lure victims into executing the attached Trojan. Spear phishing tactics have begun to replace generic forms of phishing as users began to recognize they were not legitimate. When targeting a company to obtain specific information, hackers will develop a phishing campaign designed for that company alone; researching and obtaining information concerning their targets to ensure the message sent is believable. In this case even the most educated user may not realize the message is phony and should be deleted making the chances for success much higher.

Subsequently the payload delivered

You do not have flash or javascript support.

Average (0 votes)

Reply