Changing the Corporate Network Attacker’s Risk-Reward Paradigm

save
Share and earn Cybytes
Facebook Twitter LinkedIn Email

Large organizations with warehouses of our personal data continue to be breached. What’s going on here—why does this keep happening? In this post, we break down the risk/reward ratio for corporate attackers and what we can do to change it.

As Verizon’s Data Breach Investigation Report (DBIR) continues to tell us, the primary motivator for hackers these days is coin, pure and simple. Selling Excel spreadsheets on the black market is extremely lucrative, especially if an attacker can get “fresh” credit card numbers that are likely to still be active. ersonal information like a person’s home address and social security number can be even more lucrative, since no one can turn off their social security number like they can a credit card. This gives personal data an extremely long shelf life. Company secrets stolen under the aegis of corporate espionage is another big slice of the reward pie for hackers.

On the risk side, cracking a corporate network doesn’t require a very sophisticated attacker. The fact is, keeping a corporate network secure is hard. These systems, especially if they’re international, are complicated. And as with any complicated system, a corporate network is only as secure as its weakest point. It’s easy for attackers to move within a network undetected once it has been compromised; even if the weakest point in the system is located in a small remote office, once compromised it can be used as a beachhead to gain access to the critical systems deeper in the network.

Read the rest of the blog here >

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
Follow
322 Followers
About Rapid7
Rapid7 (NASDAQ:RPD) powers the practice of SecOps by delivering shared visibility, analytics, and automation that unites security, IT, and DevOps teams. The Rapid7 Insight platform empowers these teams to jointly manage and reduce risk, detect and contain attackers, and analyze and optimize operations. Rapid7 technology, services, and research drive vulnerability management, application security, incident detection and response, and log management for more than 7,000 organizations across more than 120 countries, including 52% of the Fortune 100.
Promoted Content
30-Day Trial: UBA-Powered SIEM with Rapid7's InsightIDR
Rapid7 InsightIDR delivers trust and confidence: you can trust that any suspicious behavior is being detected, and have confidence that with the full context, you can quickly remediate. From working hand-in-hand with security teams, we understand how painful it is to triage, false-positive, vague alerts and jump between siloed tools, each monitoring a bit of the network. InsightIDR combines SIEM, UBA, and EDR capabilities to unify your existing network & security stack. By correlating the millions of events your organization generates daily to the exact users and assets behind them, you can reliably detect attacks and expose risky behavior - all in real-time.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel