Three major security incidents impact CIA:
Below I listed 3 major security incidents that impacts CIA alot in the last few years and the problem is these impacts had not solved completely yet..
Phishing attacks:
Kaspersky’s Anti-Phishing system was triggered 246,231,645 times in 2017. The security company states that over 91 million more phishing system triggers were set off in 2017 compared with 2016. With 76% of businesses reporting being a victim of a phishing attack in the last year, it should come as no surprise that many IT decision makers mark phishing attacks as their biggest current cyber security threat. phishing attack is a type of social engineering attack designed to steal user logins, credit card credentials, and other types of personal, business or financial information. Coming from a perceived trusted source, for example by impersonating well-known and trusted websites, banking institutions or personal contacts, these attacks are becoming more advanced and unfortunately more effective.By entering or using credentials, clicking links or replying to phishing emails with financial details, information is sent directly to the malicious source.Avoiding these attempted attacks is a big challenge. Raising awareness by running cyber awareness programmes is one way of reducing the risk of becoming a victim of phishing attacks. Besides that running awareness or cyber threat assessments can be a good starting point, to see how familiar the users within your organisation are with phishing attack tactics.
CIA Documents leaked:
In March 2017, WikiLeaks began releasing the CIA documents, which, in part, revealed how the CIA had developed custom malware to target iOS and Android devices, routers and smart TVs, as well as Windows, Mac OS X and Linux operating systems. The documentation also described some of the agency's zero day vulnerability practices, including its use of those flaws to gain access to smartphones and monitor encrypted messaging apps that it might not otherwise have been able to hack.When WikiLeaks began chronicling the attack tools via an estimated 8,000 CIA documents it had obtained, the organization said the leaker had hoped to trigger a public debate."In a statement to WikiLeaks, the source details policy questions that they say urgently need to be debated in public, including whether the CIA's hacking capabilities exceed its mandated powers and the problem of public oversight of the agency," WikiLeaks said. "The source wishes to initiate a public debate about the security, creation, use, proliferation and democratic control of cyberweapons."After the Justice Department announced on Monday that the list of charges against Schulte had been expanded to include sending classified information to WikiLeaks, WikiLeaks retweeted a series of tweets from March 2017, when it began releasing the Vault 7 tools in 25 installments.
Ransomware:
With around 4,000 ransomware attacks occurring every day, and estimates claiming that there will be a ransomware attack on businesses every 14 seconds by the end of 2019, building defenses against ransomware is a top priority. Ransomware has the potential to cause the permanent loss of company data, because it infects encrypted data and secure database systems and threatens to delete or corrupt files unless a ransom is paid.Defending against this type of malware, or ‘Endpoint Epidemic’ as some call it, can be successfully done by training employees in combination with using innovative endpoint security solutions. Instead of using traditional anti-virus systems, cloud-delivered endpoint protection can be used to stop this type of online extortion.
Thank you!!!
please list three major security incidents which results in regulatory and/or industry action. Also, how does...