Imperva’s senior security strategist Barry Shteiman comments on New York Times hack
News provided by Rocket Pop PR on Wednesday 28th Aug 2013
In response to news of the New York Times hack, Barry Shteiman, Senior Security Strategist at Imperva, offered the following analysis and comment:
Based on available resources, the New York Times hack is in fact a DNS service breach. If you go directly to NYT via their IP Address, the site is up and running. This is unfortunately a validation to a prolonged security problem inherited in the way that companies rely on 3rd public services to conduct their business. While a company like NYT may be able to secure their own platforms, harden their systems and regularly check for vulnerable components on premise - it is a much harder practice when some of that infrastructure is provided by a third party like an ISP or a DNS Hoster.
At some point, CIO's need to realize that critical pieces of their online entities are controlled by vendors, and that security policies should apply to them as well.
Companies should create contingency plans, and check the security measurements taken by their 3rd party content and infrastructure providers. A DNS is unfortunately, a great example.
It makes lots of sense for a Hacktivist group that wishes to display their message and show that they exist - to go after high end media. The Syrian Electronic Army have been actively hacking Twitter accounts of news sites and have recently escalated to hacking into the websites themselves to create awareness. This is in an essence, what Hacktivism is. There is no profit involved however making all of us aware of the Syrian rebellion is their goal. The Syrian Electronic Army is very successful in creating the awareness that they are after.
- Ends -
For further comment from Barry Shteiman or for more information, please contact:
Lucy Harvey
Eskenzi PR Ltd.
T: +44 20 71 832 840
E: lucy@eskenzipr.com
Based on available resources, the New York Times hack is in fact a DNS service breach. If you go directly to NYT via their IP Address, the site is up and running. This is unfortunately a validation to a prolonged security problem inherited in the way that companies rely on 3rd public services to conduct their business. While a company like NYT may be able to secure their own platforms, harden their systems and regularly check for vulnerable components on premise - it is a much harder practice when some of that infrastructure is provided by a third party like an ISP or a DNS Hoster.
At some point, CIO's need to realize that critical pieces of their online entities are controlled by vendors, and that security policies should apply to them as well.
Companies should create contingency plans, and check the security measurements taken by their 3rd party content and infrastructure providers. A DNS is unfortunately, a great example.
It makes lots of sense for a Hacktivist group that wishes to display their message and show that they exist - to go after high end media. The Syrian Electronic Army have been actively hacking Twitter accounts of news sites and have recently escalated to hacking into the websites themselves to create awareness. This is in an essence, what Hacktivism is. There is no profit involved however making all of us aware of the Syrian rebellion is their goal. The Syrian Electronic Army is very successful in creating the awareness that they are after.
- Ends -
For further comment from Barry Shteiman or for more information, please contact:
Lucy Harvey
Eskenzi PR Ltd.
T: +44 20 71 832 840
E: lucy@eskenzipr.com
Press release distributed by Pressat on behalf of Rocket Pop PR, on Wednesday 28 August, 2013. For more information subscribe and follow https://pressat.co.uk/
Barry Shteimanat Security Business & Finance Consumer Technology
Published By
Rocket Pop PR
rocketpoppr@outlook.com
Jean Matthews
Samantha Jones
Beehive Mill
Jersey Street
Manchester
M4 6AY
rocketpoppr@outlook.com
Jean Matthews
Samantha Jones
Beehive Mill
Jersey Street
Manchester
M4 6AY
Visit Newsroom
Media
No media attached. Please contact Rocket Pop PR for more information.
You just read:
Imperva’s senior security strategist Barry Shteiman comments on New York Times hack
News from this source: