Protecting your customers from the business of malware
Fri, 29th Jun 2012
FYI, this story is more than a year old
The growing trend of cybercrime has changed the reality of security for business in New Zealand and around the world. Whether cybercrime is driven by hacktivists or cyber gangs targeting brokerage firms, one thing is for certain: understanding them is critical to taking them down.
Cybercrime is an increasing worry for organisations. To work effectively with customers, it’s important for the channel to understand what is involved in cybercrime, how cybercriminals work, how it affects organisations and to provide the best security advice to help customers protect themselves.
Understanding cybercrime
In today’s cyber underworld, the motivation for attackers largely revolves around getting credit card numbers, email credentials, logins for banking sites and other information that can be turned into quick cash. In this marketplace of illicitly-obtained information, a mix of independents and organised groups driven by money, and in some cases politics, has emerged.
It’s good to keep in mind that criminally-motivated hacking crews come in all shapes and sizes. Some even feature operations you might expect to see in a legitimate enterprise, like a quality assurance team and project managers.
In most cases, these different teams work independently, with central figures overseeing the operation as a whole to keep it on track. But not everyone involved in the cyber underground is part of a group. Some stick to themselves and rent out portions of botnets they’ve assembled. Others make money by uncovering new software vulnerabilities and making offensive tools for other hackers.
In some cases, attackers will compromise legitimate websites and try to redirect users to malicious sites serving up the exploit kit. The effect of these attack kits on businesses has been tremendous.
In general, the goal of attackers remains valuable data. With banks and other organisations using multi-form authentication to verify online transactions, credit card data shares space on the shelves of virtual hacking stores with items such as Facebook logins and email credentials. Not surprisingly, the more information attackers have about a target, the more tailored their attack is — and the increased likelihood of its success.
The channel’s role in fighting cybercrime
Understanding the structure of these groups offers security experts an opportunity to disrupt them by targeting various links in the chain of hacker activity. This can include monitoring sites where credit card information is sold, to targeting rogue internet service providers known to be friendly to criminal groups with takedown efforts.
Highlight the importance to your customers of identifying risks in their current network and help them run analysis on which high risk Web 2.0 applications are being used within their organisation.
With hackers focused on gaining information, it is imperative for organisations to secure their data. Talk to your customers about the need to identify their critical information and put the proper safeguards around it, from firewalls to encryption to activity monitoring technologies.
The final, important role for the channel is helping customers educate users in order to reduce the exposure of unintentional data leaks.