ITBusinessEdge: Lessons For SMBs From RSA Security Breach
Paul Mah identifies two important learnings from a sophisticated, multi-part attack on RSA: staff training about phishing attacks should not be optional, and keeping software patched is crucial to protecting your company.
“RSA, the security division of EMC Corp, has furnished additional details about the security breach that resulted in the theft of information related to its SecurID products. RSA has billed what took place as an “extremely sophisticated cyber attack” at that time, even as observers questioned whether its SecurID two-factor authentication technology had been effectively compromised.
Dropping the company’s veil of silence to date on the matter, Uni Rivner, head of new technologies, consumer identity protection at RSA has retraced the various stages of the security breach in a blog entry titled: “Anatomy of an Attack.” This is commendable since few enterprises are willing to divulge such information. Before we ask if there is anything that SMBs can learn from the security breach though, let us first take a look at what actually happened…”
