Connect with us

CISO Blog

The Troublemaker CISO: Getting Hacked

Published

on

Before we delve deeper into getting hacked, I guess you will need my bonafide’s.

I’ve been in the trenches of cybersecurity for over three decades, and I’ve seen it all. From the early days of dial-up internet to the rise of cloud computing, I’ve been there, done that, and got the t-shirt (and the scars).

I’ve worked with everyone from tiny startups to massive corporations, and I’ve got the certifications to prove it. I’ve been a consultant, a CISO, and even a Group CISO, so I know what it takes to keep an organization safe.

These days, I’m focused on helping telecom operators navigate the treacherous waters of cyber security. It’s a tough gig, but someone has to do it. And that someone is me.

During my time on the front lines, before security became sexy, I defended companies against all the good attacks, NIMDA, Code Red, SQL Slammer, Hart Bleed, and the list goes on and none of the companies I defended got hacked…. Yes I might have been lucky but also I know what should be in place, because all of the stuff being relied on now we pioneered…..and it all start here.

So…. On with my rant for today

Are we getting hacked because we now work remotely in the new normal? No, we’re being hacked because we’re not managing our risks and being lazy – and because the CISO is not being heard.

Why do we say we manage risks when the evidence shows we don’t? It is more than fair to say that the CISO, CIO and CTO are accountable to ensure that the information and technology risks are properly defined, managed and reported. That means that standards, processes and procedures that are geared toward reducing risk must be approved and followed. These include controls to stop shadow IT, which is most likely the biggest risk to business today. Then there is the missing or not applies default systems hardening or minimum secure baselines build per system class, role-based access control, centralised asset management, application and systems management controls – and the list goes on.

Think this through: To be hacked, you to have skipped a step somewhere. Yes. there are acts of God but those are few and far between. You installed hardware and software without following the approved secure configuration. Or worse – there is none, leaving the system with services running that are not needed and default user IDs and passwords. Perhaps you commissioned a server onto the network without following proper deployment processes, i.e., plan, build, test, deploy – yes, with all the security gates in there. Or worse still – the proof-of concept became production.

Systems maintenance, such as patching, is only done after the hack. Software and systems are not put through a stringent DEV/SIT/UAT process before going into production. Identity management is not being done, role management even less so, and the principles of least access are haphazardly applied.  “Position does not equal access” has fallen by the wayside. I could go on and on with the list of things that we are just too lazy to do or that we allow to be circumvented.   

Have you ever wondered why the first questions asked by an auditor are: Where are your processes, policies and procedures documented? Who approved them? When were they last reviewed? They ask those questions because they know the biggest risk is people, or as we put it” the “insider threat.” They also know that in 99% of the cases they will find that those processes, policies and procedures are not being followed.

Again: We are getting hacked because we are lazy and because we don’t manage the risks.

In the next post from The Troublemaker CISO, I will be on a rant about how the CISO role is misunderstood in business and what a CISO should be.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

CISO Blog

The Importance of Digital Transformation in Today’s Business World

In today’s rapidly evolving business landscape, digital transformation has become a necessity, not just a trend. It is the integration of digital technologies into every aspect of a business, fundamentally changing how it operates and delivers value to customers. From evolving customer expectations to increased competition and the need for agility, digital transformation is essential for businesses to thrive. By leveraging data as a strategic asset, embracing technological advancements, and shifting to digital business models, organizations can gain a competitive edge, improve efficiency, and enhance customer experiences.  

However, successful digital transformation requires more than just technology adoption.

It involves a cultural shift, a skilled workforce, and a focus on cybersecurity and ethical data practices. By embracing digital transformation and addressing these key considerations, businesses can navigate the challenges of the digital age and position themselves for long-term success.  

Sources and related content

Published

on

Digital transformation is not just a trend but a necessity for businesses seeking to thrive in today’s rapidly evolving landscape. It involves the integration of digital technologies into every aspect of a business, fundamentally changing how it operates and delivers value to customers.

Here’s why digital transformation is crucial:

  1. Evolving Customer Expectations:

Customers are increasingly tech-savvy and demanding personalized experiences across all communication channels. Businesses must be faster in all phases of the customer journey, from interaction to delivery and re-engagement, to meet these expectations.

  1. Increased Competition and Disruption:

Competition is fierce, with new players, especially “insurtech” companies, leveraging technology to disrupt traditional models. These disruptors often offer easy-to-use digital products and target the inefficiencies of established businesses.

  1. The Need for Agility and Resilience:

Businesses must be agile and adaptable to cope with rapidly changing market dynamics and customer preferences. The COVID-19 pandemic highlighted the importance of digital transformation in providing resilience and fallback options for businesses.

  1. Data as a Strategic Asset:

Data is a valuable asset that can drive business decisions, improve customer experiences, and fuel innovation. Digital transformation enables organizations to effectively collect, manage, and analyze data to gain valuable insights.

  1. Technological Advancements:

Rapid technological advancements, such as AI, machine learning, blockchain, and the Internet of Things, offer significant opportunities for businesses to optimize operations, reduce costs, and create new revenue streams.

  1. The Shift to Digital Business Models:

Digital transformation allows businesses to move away from traditional models and embrace new, digitally enabled models. This includes offering digital products and services, utilizing data analytics to personalize offerings, and adopting subscription-based business models.

  1. The Importance of Continuous Improvement:

Digital transformation is an ongoing journey, requiring continuous learning, adaptation, and a focus on optimizing processes and technologies. Businesses must be constantly evolving and improving their digital capabilities to stay ahead of the curve.

  1. The Potential for Enhanced Competitiveness:

Embracing digital transformation can lead to increased efficiency, productivity, and profitability. Businesses that effectively leverage digital technologies can gain a competitive advantage in the market and drive sustainable growth.

In addition to the points mentioned above, it’s important to consider the following:

  • Cybersecurity: As businesses become increasingly reliant on digital technologies, cybersecurity becomes a critical concern. Strong cybersecurity measures are essential to protect sensitive data and prevent cyberattacks.
  • Data-Driven Culture: A data-driven culture is essential for successful digital transformation. Employees at all levels should be empowered to use data to make informed decisions. Data literacy and analytics skills should be prioritized in training and development programs.
  • Ethical Implications: As businesses collect and analyze vast amounts of data, ethical considerations become important. Companies must ensure that data is used responsibly and ethically, and that privacy rights are protected.
  • Skilled Workforce: Digital transformation requires a skilled workforce with the ability to adapt to new technologies and ways of working. Businesses need to invest in training and development programs to upskill their employees.
  • Collaboration and Partnerships: Successful digital transformation often involves collaboration with external partners, such as technology providers and consultants. Partnerships can help businesses access the expertise and resources they need to succeed.

By embracing digital transformation and considering these additional factors, businesses can navigate the challenges of the digital age and position themselves for long-term success.

Continue Reading

CISO Blog

The Troublemaker’s Take on Liminal Panda

Published

on

Liminal Panda? More like Liminal Pandaemonium! These cyber-ninjas are sneaking around the telecom world, stealing secrets and causing chaos. They’re like digital pickpockets, slipping into networks and making off with sensitive data.

These Chinese hackers aren’t just stealing your data; they’re stealing your future. They’re compromising critical infrastructure, disrupting services, and undermining national security. It’s like a real-life cyber thriller, but without the cool gadgets and the witty one-liners.

So, what can you do to protect yourself from these digital ninjas? Well, you could start by following some basic security practices. Things like keeping your software up-to-date, using strong passwords, and being wary of phishing attacks. But let’s be real, that’s not enough. You need to be proactive and think like a hacker.

Here are a few tips to help you stay ahead of the curve:

  • Know your enemy: Understand the tactics, techniques, and procedures (TTPs) of advanced threat actors like Liminal Panda.
  • Embrace zero-trust security: Don’t trust anyone, not even your own employees.
  • Invest in advanced security tools: Use tools like endpoint detection and response (EDR) and security information and event management (SIEM) to monitor your network for threats.
  • Stay informed: Keep up-to-date on the latest cyber threats and vulnerabilities.

Remember, cybersecurity is an ongoing battle. Don’t let the Liminal Pandas win.

Download the report here

Continue Reading

CISO Blog

The Dirty Little Secrets of Cybersecurity

We’ve all heard the horror stories: massive data breaches, ransomware attacks, and identity theft. But what are the real reasons behind these cyber catastrophes? It’s not always about some shadowy hacker genius; often, it’s about simple mistakes and oversights.

Published

on

The Dirty Little Secrets of Cybersecurity

We’ve all heard the horror stories: massive data breaches, ransomware attacks, and identity theft. But what are the real reasons behind these cyber catastrophes? It’s not always about some shadowy hacker genius; often, it’s about simple mistakes and oversights.

The human element is a significant factor in many cyberattacks.. From clicking on malicious links to falling victim to social engineering tactics, people can inadvertently open the door to cybercriminals.

Here are the mistakes being made and funnily enough the Top 3 (According to me) has to do with People…

  1. Underestimating the Human Factor
  2. Ignoring Insider Threats
  3. Overlooking Physical Security
  4. Neglecting Patch Management
  5. Weak Password Policies
  6. Phishing Susceptibility
  7. Failing to Back Up Data
  8. Neglecting Mobile Device Security

    Continue Reading

    Trending

    Copyright © 2017 Keller Holdings