Lessons From the RSA Breach

    Date05 Oct 2011
    CategoryLatest News
    Posted ByAnthony Pell
    In the world of ICT security "the fundamental threat landscape has changed" -- again -- in the past 18 months, says Andy Solterbeck, Australia-NZ general manager for security specialist RSA. Embarrassingly, in March this year, RSA's own network was breached by an advanced attack, combining "social engineering" -- falsely gaining the confidence of employees -- with phishing, malware-infected emails and "privilege escalation" -- the attacker posing as one of the targeted personnel was able to use their network privileges to gain access indirectly to highly secure parts of the network.

    RSA, which sells the SecurID two-factor authentication system, is convinced the attack came from a "nation-state actor"; an agency of government in an overseas country, says Solterbeck.

    You are not authorised to post comments.

    LinuxSecurity Poll

    What is your favorite LinuxSecurity.com feature?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    [{"id":"65","title":"Feature articles","votes":"0","type":"x","order":"1","pct":0,"resources":[]},{"id":"66","title":"News","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"67","title":"HOWTOs","votes":"0","type":"x","order":"3","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350


    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.