In light of today’s news on the Jewson cyberattack, Niall MacLeod, Enterprise Solutions Architect EMEA at Anomali commented below.
Niall MacLeod, Enterprise Solutions Architect EMEA at Anomali:
“What’s interesting in the Jewson case is the timeframes of the events. The breach looks likely to have occurred in late August, with the breach detected on 3rd November, a week before the ICO were informed. The longer the lag time cyber criminals have to lurk in an organisation’s internal environment, the more chance they have of accessing valuable information that can hit a business hard, in terms of finances and reputation. But critically as organisations prepare for the 25th May 2018 GDPR deadline, the time from detection to reporting will need to improve to a maximum of 72 hours. There is serious need to improve this defence cycle.
More effective, efficient, and accurate threat detection is needed and in many cases, breaches are detectable and preventable well before damage occurs. Having the appropriate security software in place, such as Real Time Forensics, can reduce this reduce the window of vulnerability down to a matter of minutes, distilling historical and instantaneous malicious activity into actionable data to inform defences.”