Breaches are Inevitable
Posted by: Andy Alsop in Breaches, Links to articles, NetFlow for Security, tags: Alerts, Flow, Logs, netflow, network securityDon’t believe me? Just ask TJX or Monster.com or The Department of Homeland Security or Salesforce or TD Ameritrade or…..still don’t believe me? Well, check out what Sal Iannuzzi, CEO of Monster.com had to say (he agrees with me):
“I wish I could say…there will be absolutely no way that the Monster site can be compromised. I cannot ever make that promise, and no Internet company can.” 08/29/07, Reuters
If you still don’t believe me then feel free to move on. If you do, then read on.
Let’s reflect back on the past 12 months to perform that so-called “rocking chair test.” It certainly was a busy year! In fact, the Threats Watch Blog even went as far as to call 2007 “The Year of the Data Breaches.” Additionally, CSO magazine has a excellent summation of the past year in their article: The Top 10 Data Breaches of 2007.”
So, what can we learn from this past year? Three things:
- Breaches are Inevitable.
- Organization can no longer rely solely on Protection (Firewalls, IPS, etc) & Detection (IDS, Event correlation, Alerting) for security.
- Organizations must have a comprehensive breach recovery plan in place.
Entries (RSS)