Following the news about Yahoo Cyber Indictment Jeremiah Grossman, Chief of Security Strategy at SentinelOne commented below.
Jeremiah Grossman, Chief of Security Strategy at SentinelOne:
“As I look at the way this story is unfolding, there are strong parallels between this and the Google Aurora attacks in 2010. Nation-state sparring continues playing out on private systems like Yahoo’s because they can provide a valuable source of intelligence on your opponent’s or other people of interest. Also, if you are a nation-state and want to determine if any of your spies have been burned, you put taps on Google, Yahoo, Microsoft etc — not just the telecom networks. Of course, there is always the motivation to deanonymize political dissidents by oppressive regimes.
Another aspect of this story that concerns me is that allegedly, Yahoo hackers were able to ‘mint’ auth cookies, which indicates a very deep level of intrusion and that there was probably not a lot that they couldn’t access. If this was the case, there’s absolutely nothing users could have done to protect themselves, which would be true for any website.”
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Celebrating Data Privacy Day – 28th January 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Most Active Commenters
A worrying trend for Australians The Latitude Financial attack clearly…
It is not unusual for companies to keep hold of…
“First of all, it should be praised that Ferrari have…
These findings aren’t very surprising given that unpatched zero-days provide…
These figures from Mandiant highlight how attackers are continuing to…