Following the news that US nuclear weapons contractor Sol Oriens has suffered a cyberattack allegedly at the hands of the REvil ransomware gang, which claims to be auctioning data stolen during the attack, expert commented below.
<p>A small, veteran owned company, most likely bound by multiple NIST Standards, working on nuclear weapons secrets, is probably one of the more secure manufacturers out there. And yet, we see the same story repeat itself when the Big Game Hunter cybercriminals target an organization, they are likely to get in.</p> <p> </p> <p>The scary part is that Sol Orien is only 1 of the 300,000+ companies sitting in the same boat. Our Defense Industrial Base (DIB) is a crucial part of our national defense, and in general, leads the way in security is many facets, including cybersecurity.</p> <p> </p> <p>Sometimes it’s a global DIB manufacturer with big budgets for high tech tools and cybersecurity programs trying to defend a massive global footprint. Other times it’s smaller, secretive, defendable footprints. But the storyline is the same. A lapse in security led to a breach, and facilities with more visibility fared better than those without.</p> <p> </p> <p>Knowing when to give up and pay the ransom, what systems to shut down, versus when to fight for your network generally depends on what tools were implemented prior to last year.</p> <p> </p> <p>If defenders aren’t ready when the attackers arrive tomorrow, which they will, the cost of recovery will far outweigh the cost of today’s inaction.</p>
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics