Don’t count on people to prevent data breaches

Apr 24, 2015

Don’t count on people to prevent data breaches

Your company has been breached and your executives are in denial.

That is the phrase that came to mind the other day during breakfast at RSA with Intel’s security organization where I overheard the following story. My ears perked up when I heard the word “spearfishing,” which was key to a personal story being told by one of the Intel executives. Spearfishing is when an attack specifically targets someone in the firm in order to steal their credentials and/or compromise their hardware.  

Apparently, the Intel exec received an email with a PDF document from an alleged Chinese graduate student. The email contained personal information on the graduate program the executive had been in and enough personal information about the school that it looked legitimate. It requested he review the attached dissertation in PDF form. The PDF itself didn’t trigger any alarms and looked harmless but instead of opening it he sent it down to the McAfee lab to see if it was hostile.  

To read this article in full or to leave a comment, please click here

Don’t count on people to prevent data breaches

SERVICES

  • Virtual CDO
  • Virtual CIO/CTO
  • Strategy Consulting
  • Speaking and Writing Engagement

SOLUTIONS

  • Data Management
  • Data Append / Enhancement
  • Data Quality
  • Data Privacy & Compliance

IMPORTANT LINKS

  • About
  • Blog
  • Contact me

Copyright © 2020 Ray Estevez

Disclaimer:The opinions expressed here are my own or that of the independent authors. Content published here is not read or approved in advance by True Influence and does not reflect the views and opinions of True Influence.