AI und Cyber Security im kommenden Jahr
"Geopolitische Spannungen und Handelskriege werden das Wachstum der kommerziellen Cyberspionage vorantreiben," sagt Gerard Bauer, Vizepräsident der EMEA-Region von Vectra. "Diese Angriffe werden von vielen Opferunternehmen nicht erkannt, da sie keine versteckten Bedrohungen in Netzwerken erkennen können."
Back to the future for 2019
"We will see an increase in the use of deep learning, such as recursive neural nets, that enable algorithms to continuously learn and evolve," says Chris Morales, head of security analytics at Vectra. "2019 will see deep learning become the best practice for detecting cyberattacks."
Security holes at U.S. missile defense systems data centers shocks experts
The problem wasn't that the data centers lacked the authentication or encryption tools. "The controls existed but were not implemented and used equally and regularly," Chris Morales, head of security analytics at Vectra, says.
Emotet-Malware: Hohe Schäden in Unternehmensnetzen
Für Gérard Bauer, Vizepräsident von EMEA bei Vectra, zeigt der Erfolg alter Malware eines der grundlegenden Probleme vieler IT-Sicherheitslösungen, die immer noch auf klassischen Cybersecurity-Konzepten beruhen.
Smartphones and the new cybersecurity threat
Chris Morales, head of security analytics at Vectra, says the biggest risk posed by mobile devices in a corporate network is malicious apps gaining access to enterprise data. Make sure mobile devices do not share network connectivity with critical infrastructure or systems with sensitive information.
Best security software: How 25 cutting-edge tools tackle today's threats
The Vectra Cognito platform incorporates artificial intelligence (AI), deep machine learning and traffic monitoring into a tool that is able to detect threats that other programs miss, even if they are already entrenched inside a protected network.
Alphabet's VirusTotal: A security solution for your small business?
"VirusTotal provides value only if you have the necessary staff to extract value from it," says Oliver Tavakoli, chief technology officer at Vectra. "This is reflective of the fact that the VirusTotal data repository is of most value to large and expert IT security teams."
Cyberattacke auf Marriott-Hotelkette politisch motiviert?
"Dieser Cyberangriff ist eine Form der Spionage von Nationalstaaten", sagt Gerard Bauer, Vizepräsident von EMEA bei Vectra. "Der einzige Unterschied ist jetzt, dass es im Cyberspace passiert, anstatt in ein Gebäude einzubrechen und physische Dokumente zu stehlen."
As manufacturing moves into cyberspace, so do security threats
Vectra’s artificial intelligence-based platforms detected “a higher-than-normal rate of malicious internal reconnaissance behaviors” from attackers inside of manufacturers’ systems and that this “indicates that attackers are mapping-out manufacturing networks in search of critical assets to steal or damage.”
China suspected of massive Marriott data breach
"Hacks are getting bigger because the volume of data generated on the Internet every single day is so large," says Chris Morales, head of security analytics at Vectra. "Just like a user employs a search engine to get information, a cyber spy will search massive online databases for information."
Clemson's cautionary cryptomining tale
“Cryptomining efforts are popular across higher education," according to a study published in March from Vectra. Vectra reported that 85% of cryptocurrency mining instances happened in higher education between August 2017 and January 2018, compared to just three percent in the technology sector.
Former Equifax CEO blamed for 'entirely preventable' data breach
"Prevention will never be 100%," says Chris Morales, head of security analytics at Vectra. "That is unrealistic. The report states the breach was entirely preventable. I don't believe that is true. It is the same notion as building a wall would stop the drug trade. The criminal build tunnels instead."
Damning report on Equifax security failures is a lesson for all enterprises
"We can improve our ability to detect and respond to breaches by looking for the type of behaviors an attacker performs," says Chris Morales, head of security analytics at Vectra. "The most critical threat behaviors should be correlated with compromised hosts in real time before they become a problem."
Equifax breach was ‘entirely preventable,’ congressional report says
“It is a classic ‘could have, should have’ scenario,” says Chris Morales, head of security analytics at Vectra. “As long as a motive exists, attackers will continuously attempt to compromise networks until they succeed. The failure comes down to people and process, not necessarily technology."
Emotet-Malware verursacht schwere Schäden in Unternehmensnetzwerken
Für Gérard Bauer, Vizepräsident von EMEA bei Vectra, zeigt der Erfolg der "alten" Emotet-Malware eines der grundlegenden Probleme vieler IT-Sicherheitslösungen, die immer noch auf klassischen Cyber-Sicherheitskonzepten basieren.
The next big risk to your security is your child’s video-game habit
“Gaming has always been an arena for hacking and attacks,” says Chris Morales, head of security analytics at Vectra. “In today's competitive and financially lucrative gaming world, that means bypassing developer controls to gain a competitive advantage or disrupt other players.”
UK spy agency joins NSA in sharing zero-day disclosure process
"Zero days are saved for the most critical needs," says Chris Morales, head of security analytics at Vectra. Most attackers don’t like to waste this type of knowledge when they can simply convince a user to give them access to their system instead."
30 years ago, the Morris worm changed our view of cybersecurity
“Enterprises are unable to spot worm reconnaissance and lateral movement behaviors," says Matt Walmsley, EMEA director at Vectra. "Security analysts can't operate at the speed and scale required to manually identify the threat and close down their lines of communication and movement."
AI companies race to get upper hand in cybersecurity before hackers do
To detect cyberthreats, their AI software sifts through massive stores of computer network data. Wall Street analysts are eyeballing and a handful of other private firms. With AI tools, the new AI companies are taking customers away from cybersecurity industry incumbents, analysts say.
Marriott: Quelles conséquences de la violation de données de 500 millions de clients?
"La réponse aux incidents prend trop de temps et, dans de nombreux cas, les équipes de sécurité tentent de comprendre ce qui s'est passé et comment l'empêcher de se reproduire plutôt que de détecter et d'intervenir tôt dans le cycle de l'attaque pour éviter le vol et les dommages," a déclaré Gregory Cardiet. un expert en cybersécurité chez Vectra.
Violation massive de données des clients Starwood
"Les attaquants avancent lentement et par étapes pour obtenir des privilèges et adopter une variété de comportements avant d’accéder aux données souhaitées, de les exfiltrer," explique Gregory Cardiet, expert en cybersécurité chez Vectra. "La détection de ces comportements à un stade précoce est essentielle."
500 millions de clients des hôtels Marriott piratés
"Si les dates sont vraies, entre la date de détection initiale ou le 8 septembre 2018 et la divulgation publique de la faute, l'exigence de notification GDPR de 72 heures était très loin d'être respectée," déclare Gregory Cardiet, expert en cybersécurité chez Vectra.
Marriott reconnaît une brèche affectant 500 millions de clients
"Disposer de systèmes qui surveillent le comportement d'exfiltration plutôt que d'essayer d'inspecter les charges utiles de données peut être un moyen de relever ce défi," déclare Gregory Cardiet de Vectra. "La détection de ces comportements à un stade précoce est essentielle."
500 Millionen Datensätze bei Marriott ausgecheckt
"Was die Datenschutzverletzung selbst anbelangt, war die Exfiltration der Daten innerhalb der Verschlüsselung möglicherweise ein Versuch, Sicherheitskontrollen wie Systeme zum Schutz vor Datenverlust zu umgehen", sagt Gerard Bauer, Vizepräsident der EMEA.
Marriott Starwood data breach details: What was taken?
Incident response continues to take too long as security teams try to figure out what happened and how do we stop it happening again, says Chris Morales, head of security analytics at Vectra. "It's important to spot and close down an attacker earlier in its lifecycle to minimize or stop a breach from occurring."
Marriott: 500 million guest records compromised in data breach
"Data exfiltration inside encryption can circumvent security controls like data loss prevent," Morales says Chris Morales, head of security analytics at Vectra. "Systems that watch for exfiltration behaviors, rather than trying to inspect the data payloads, can provide a way to handle this challenge."
Marriott Starwood reservation system data breach exposes 500 million customer records
Although Marriott reported the malware resided in its U.S.-based reservation system, if any EU guests were involved it could open the company up to fines due to GDPR, said Chris Morales, head of security Analytics at Vectra.
Industry reactions to the enormous Marriott data breach
"With a real treasure trove of valuable personal information having been lifted, this is undoubtedly going to damage the Marriott Starwood brands, and could have a significant direct impact for their affected customers identity assurance," says Matt Walmsley, EMEA director at Vectra.
Marriott hack reaction: “It’s likely that every living human has been hacked”
“With a real treasure trove of valuable personal information having been lifted, this is undoubtedly going to damage the Marriot Starwood brands, and could have a significant direct impact for their affected customers identity assurance,” says Matt Walmsley, EMEA director at Vectra.
DOJ takes down online ad fraud ring, indicts 8
Among the victims of ad fraud are companies that have to pay for every user who views their ads. "Every company has a budget for online ads, and this type of scheme would cannibalize that budget with no return on leads or sales," says Chris Morales, head of security analytics at Vectra.
Industry reactions to USPS exposing user data
"Misconfiguration of systems is as big of a risk as system vulnerabilities," says Chris Morales, head of security analytics at Vectra. "APIs for external service integration is important to offer services to customers, but poor security practices in API access and design puts enterprises in danger."
IA et cybersécurité: Info ou intox?
Vectra se démarque de Darktrace en proposant des modèles mathématiques de détection développés et testés sur un groupe de sociétés utilisant la solution, testés et calibrés avant d'être déployés en production pour l'ensemble du client de base.
Cyber tzar in cabinet called for to give CNI a policy lead
"The cybersecurity skills gap is alive and well, it’s challenging to hire and retrain cybersecurity talent," says Matt Walmsley, EMEA director at Vectra. "Within the next three years there will be in excess of 350,000 unfilled European cyber-security jobs than candidates."
Threat actors are exploiting IT networks to attack energy, utilities
The findings in the Vectra 2018 Spotlight Report on Energy and Utilities “underscore the importance of detecting hidden threat behaviors inside enterprise IT networks before cyberattackers have a chance to spy, spread and steal,” says Chris Morales, Vectra head of security analytics.
Three AI-infused security solution providers named IDC innovators
Vectra leverages its automated and self-learning algorithms to provide real-time detection and response capabilities. It can also score every detection and host in terms of the threat severity and enrich threat investigation and threat hunting scenarios.
Google shows off new Android dev tools
Smaller yet expanding devices may be more appealing to hackers than to consumers, warned Mike Banic, vice president of marketing at Vectra. The number of mobile vulnerabilities is highest on Android apps, largely due to its open source nature and the questionable security of third-party app stores.
Biometrics and AI firm team up for first U.S. biometric database amidst criticism
"Our best course of action is to work with the national governments to ensure any biometric system is highly secure and has auditing and oversight to ensure the proper use of the biometric data,” says Chris Morales, head of security analytics at Vectra.
Autonomous apps and infrastructure: Who is in control?
"Organizations are moving towards more automation for very rational reasons," says Matt Walmsley, EMEA director at Vectra. "We need to understand how new AI tools work. This is new technology and we need to understand the fundamentals so we can understand how they work."
Cyberattacks in the utilities sector are thriving inside IT networks
“When attackers move laterally inside a network, it exposes a larger attack surface that increases the risk of data acquisition and exfiltration,” says Branndon Kelley, CIO of American Municipal Power.
NIS directive gets real after OES deadline
“Nation-state actors are well-resourced, innovative and highly motivated, and organizations have limited time, finite human and technical resources and capabilities with which to protect their rapidly expanding attack surface," says Matt Walmsley, director of EMEA at Vectra.
Energy infrastructure at risk
“Manually monitoring the network creates a challenge for resource-constrained organizations that cannot hire large security teams,” says Chris Morales, head of security analytics at Vectra. “Numerous security analysts are needed to perform the manual analysis required in identifying attacks."
Hackers are increasingly targeting energy companies – here’s how
When looking specifically at the enterprise networks of energy and utility companies, Vectra detected 194 command-and-control attack behaviours against energy and utility companies for every 10,000 host devices – 25 more attack behaviours than the average across all industries.
Pentagon draws back the veil on APT malware with sudden embrace of VirusTotal
“Rest assured that they won’t be submitting their own offensive samples," says Vectra CTO Oliver Tavakoli. "And they won’t be submitting bespoke samples that were crafted to target them except for well after the fact so as not to tip their hand to the attacker."
Saint Gobain confie sa détection d'incident à IA
Tirant les leçons de l'attaque NotPetya, Saint-Gobain a revu son plan de cyberdéfense. Sur la partie détection, le SOC peut maintenant compter sur l'IA de Vectra pour affiner les remontées d'alertes. Un changement pas uniquement technologique.
National Labs bring emerging tech to bear on grid security
Critical infrastructure Supervisory Control and Data Acquisition systems are a perennial target for hackers. According to a study released by threat monitoring firm Vectra on Nov. 1, there were almost 200 network hacking attempts for every 10,000 SCADA host devices.
Utility and energy firms highly exposed to cyberattacks
Usually, such attacks are meticulously planned months in advance and under-protected networks are allowing criminals to cross the threshold of infrastructure networks, according to a new research report from Vectra.
Cybersecurity, blockchain and the industrial internet of things
The recent 2018 Spotlight Report on Manufacturing from Vectra suggested that the manufacturing industry suffers an inordinate volume of malicious internal network activity, lateral movement and reconnaissance activity; Deloitte also touched on these vulnerabilities in a recent article.
Vectra selected as a 2018 Red Herring Top 100 Global
"We believe Vectra embodies the vision, drive and innovation that define a successful entrepreneurial venture. Vectra should be proud of its accomplishment,” says Alex Vieux, Red Herring publisher and CEO. Red Herring’s Top 100 Global list has become a mark of distinction for identifying promising companies and entrepreneurs.
Energy sector's IT networks in the bulls-eye
Recent attack activity tracked by security threat monitoring firm Vectra of more than 4 million devices and systems shows that the IT networks in energy and utilities are being hit regularly by attackers intent on blending in as they conduct deep reconnaissance on their ultimate targets: The industrial networks.
Addressing the 3-million-person cybersecurity workforce gap
"AI augments the human capabilities to work at the scale and speed that manual approaches simply can't touch," says Chris Morales, head of security analytics at Vectra. "This would invaluable, given that a lack of time is one of the top job concerns being cited from IT and security professionals."