Weekend Reading: Verizon Breached, Cloud Threats and More


Posted on by Jennifer Lawinski

We know your work days are so busy that many of the week's best cybersecurity stories often get lost in the shuffle. That's where Weekend Reading comes in. Each Friday, we'll bring you the best news and analysis from the cybersecurity world to help you stay on top of industry issues.

This week's big cybersecurity news comes from security journalist Brian Krebs, who broke the news this week that Verizon Enterprise Services has been the latest victim of cybercrime. Hackers made off with 1.5 million customer records and are selling them online for $100,000. Sets of 100,000 customer records can be had for $10,000. 

“Verizon recently discovered and remediated a security vulnerability on our enterprise client portal,” the company said in an emailed statement to Krebs. “Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible.”

Not good news for the company known for keeping tabs on cybercrime. You can read Krebs' piece here: Crooks Steal, Sell Verizon Enterprise Customer Data

"If one of the leading providers of cloud security solutions in the world can itself be compromised, then anybody can be," Andrew Pryfogle, senior vice president of cloud transformation for Petaluma, Calif .-based Intelisys, told CRN's Gina Narcisi and Sarah Kuranda. They take a look at the telecom ecosystem to see how other providers are reacting to the breach in Telecom Partners Say Cloud Security Is Top Of Mind In Wake Of Verizon Breach.

For a comprehensive look at the risks of cloud security, check out InfoWorld's Fahmida Y. Rashid's piece: 12 Cloud Security Threats

How do you feel about cyberthreat intelligence sharing? The McAfee Labs Threats Report March 2016 says many security pros find value in sharing threat intelligence, but misunderstandings seem to stymie efforts. ZDNet's Danny Palmer takes a look at the issue here: To stop the hackers, security teams need to share more data on attacks.

And if there had been any fear in your heart that your cybersecurity job would be obsolete any time soon (Which there should not be, the world needs millions more of you...) you can rest assured that your company's other employees: Workers Don't Care Too Much About IT Security.

And in case you missed it, after weeks of very public controversy after Apple rejected its request to crack the encryption on an iPhone that belonged to one of the terrorists who attacked a San Bernardino, Calif., office, the FBI said "Eh, nevermind."  Check out Julia Greenberg's piece over at Wired: To Fight the FBI, Apple Ditched Secrecy for Openness.


Contributors
Jennifer Lawinski

Director of Social Media & Community, Arculus

cloud security security awareness

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.


Share With Your Community

Related Blogs