Another day, another data breach. Just received another “We’re sorry you got hacked”…letter.
This is the fifth letter I have received in the past 3 months: Forbes.com, Target, Neiman Marcus, credit card company and a previous employer. What is going on?
Why aren’t firms investing in beefing up their predictive ability to spot the cyber-security intrusion threats? What’s taking them so long to identify? Why is the attack signature – sophisticated, self-concealing malware – so difficult to spot? Do firms need to invest in NSA PRISM type threat monitoring capabilities?
The three impediments to discovering and following up on attacks are:
- Volume, velocity and variety – Not collecting appropriate security data
- Immaturity and not identifying relevent event context (event correlation)
- lack of system awareness and vulnerability awareness
Obviously… where there is pain…there is opportunity for entrepreneurs see below – data from IBM). There is a growing focus on big data use case for security analytics after all the breaches we are seeing. General Electric announced it had completed a deal to buy Wurldtech, a Vancouver-based cyber-security firm that protects big industrial sites like refineries and power plants from cyber attacks.
Here are three recent examples that I was personally affected by – Forbes, Target, Neiman Marcus.