DELOITTE HACK: CYBERSECURITY INDUSTRY NEEDS TO STEP UP, EXPERT SAYS
27 September 2017, Written by David Simmons
IN the wake of revelations of a widespread hack on accounting firm Deloitte's internal systems, a cybersecurity expert says his industry needs to step up its own systems to provide further protection for at-risk businesses..
The hack, which compromised the confidential emails and documents of Deloitte's blue-chip clients, reportedly went unnoticed for months.
Reports of the scope of the cyber-attack raised serious concern as the firm specialises in delivering high-end cybersecurity advice to some of the world's biggest banks and multinational corporations.
Deloitte has attempted to downplay the impact of the attack, claiming it impacted "very few" clients.
So far, six clients of the "big four" accounting firm have been told their information was impacted by the hack.
Following the attack on Deloitte this week, and the hack of Equifax's servers earlier in the month, Brandon Swafford, CTO of Data Protection and Insider Threat Security at Forcepoint, says the cybersecurity industry needs to quickly address several problems.
"The industry must quickly focus on the crossroads between people, process and technology to adequately address these unyielding security threats," says Swafford.
"News of Deloitte's breach, reportedly resulting from a lack of multi-factor authentication that led to access of sensitive data in the cloud, highlights that a focus on one security risk point is not adequate."
It is reported that hackers accessed usernames, passwords, IP addresses, architectural diagrams, and health information, via an administrator's account. The initial report from The Guardian says the administrator account required only a single password and did not have "two-step" identity verification.
Swafford says one solution is to increase focus on training around cybersecurity for all employees.
"Organisations must start with a focus on their people and how they use and access critical data and systems," says Swafford.
"The only way to stop these cyber threats is to first understand normal user behaviour and normal movement of data in and out of the company.
Business News Australia
Author: David Simmons