Thursday, February 18, 2016

Hackers Hold a California Hospital’s Network Hostage for $3.6 million. Are You Next?

As we have been seeing over the past few years, cyber criminals continue to breach their targets and demand ransom. Most recently, hackers held a California hospital’s network hostage for $3.6 million. Are you or is your organization next? How can you avoid being a victim?

The adversary knows no boundary. Face it, whether you are a tiny organization with one (1) computer or a very large enterprise with 250,000 computers, hackers want you! If you have what they need, they will come after you.

Based upon my real-world experience in network exploitation exercises and data breach investigations, some data breaches have been possible because basic security primitives have not been implemented. What good does it do if a network has layered security at the perimeter with a robust Threat Operations Center (staffed to the gill) if one or few systems that contain sensitive PII/PHI records is not fortified? For example, I have seen scenarios whereby no one in the target organization knows (all the locations) where sensitive data is stored, who has access to the data, who logs into the system, what trust relationship exists between these “sensitive data containers” and the rest of the network. The list of problems goes on and on. Passing HIPAA, PCI, SOX, or other compliance/audit does not necessarily demonstrate good security, in my opinion. Not able to exploit a network during a penetration testing exercise does not necessarily demonstrate that your network has not already been breached.

To avoid being a victim of data breach or to reduce the likelihood of a breach, every system from time to time needs to be combed (breach assessment/readiness) to determine whether or not attackers’ campaign, behavior, indicators, tools and tactics, are active on the target system or enterprise. Once we have a clean slate, we can then fix the pumpkins, like my friend, Ray Vazquez always say, and develop some sort of security roadmap. For any cyber security program to be successful, internal politics must be removed and the most senior leadership (not just the CSO, but CFO, CEO, and COO) should be held culpable for security liability. I believe that if the head of Security reports directly to the CEO or Legal, majority of the security breaches will go away.

Posted by at

11 comments:

  1. HimuOctober 8, 2016 at 9:54 PM

    We've listed below all of the St Petersburg Social Security Offices. The links below will give you information that includes the office address, telephone number, hours, and driving directions to the closest locations in St Petersburg, FL Florida. Find the original page here

    ReplyDelete
  2. The BloggerJuly 29, 2018 at 8:34 AM

    The cumbersome size of c-mount cameras can be utilized further bolstering your good fortune.best poe security camera system

    ReplyDelete
  3. kevinDecember 30, 2018 at 5:40 AM

    This sort of spy camera can come in exceptionally convenient when you are in a circumstance where wearing a couple of glasses would be strange and waving around a pen would be viewed as impolite, best case scenario. WittySpy.com

    ReplyDelete
  4. SmithFebruary 16, 2019 at 4:21 AM

    The most mainstream sort of spy camera, shrouded spy caretaker cams are the spy cameras that are incorporated with ordinary articles which can mix in impeccably and flawlessly inside any home or office condition.http://smartwatchwithcamera.strikingly.com/blog/the-characteristics-of-a-smartwatch-with-camera

    ReplyDelete
  5. The BloggerApril 28, 2019 at 11:13 AM

    Pieces of equipment tailored to meet specific business needs are referred to as local devices. These devices are ready to deploy and are apt for both home and small business applications. https://www.techpally.com/windows-and-door-smart-security/

    ReplyDelete
  6. SankarJune 6, 2019 at 8:39 PM

    Great Article
    Cyber Security Projects Ideas for CSE
    Project Centers in Chennai



    JavaScript Training in Chennai
    JavaScript Training in Chennai

    ReplyDelete
  7. MikethomsonJuly 19, 2020 at 11:50 AM

    I like this post,And I figure that they having a ton of fun to peruse this post,they might take a decent site to make an information,thanks for sharing it to me. How to recover my stolen bitcoin

    ReplyDelete
  8. Lorriel SimsJanuary 20, 2021 at 1:39 AM

    This article shall discuss the basic criminal law that applies to such conduct in California. www.sidingcontractorseattlewa.com/

    ReplyDelete
  9. Chicks in DubaiJuly 29, 2021 at 5:18 AM

    Independent Escorts in Dubai is the right decision. the top Dubai Escorts at your one Click. Log on to us for entertainment

    ReplyDelete
  10. ITGOLD SolutionsNovember 24, 2021 at 6:21 AM

    I got some valuable points through this blog. Switch to NBN

    ReplyDelete
  11. K7 ComputingNovember 27, 2021 at 1:17 AM

    Great blog ! I am impressed with suggestions of author. best antivirus for android mobile

    ReplyDelete

Subscribe to: Post Comments (Atom)