Industry and government information security professionals have observed that hackers are using more sophisticated methods and tools in their attacks on enterprise data, Federal News Radio reported Friday.
Dena Levitz write that cyber experts from both public and private sector organizations talked about different types of hacking tactics during a recent panel discussion hosted by the radio station.
“They’re doing incredibly successful cyber intelligence collection, very successful cyber intelligence analysis of how the organization’s network is configured, knowing exactly what versions of what antivirus software they’re running and then crafting very specific APT [advanced persistent threats] against a specific individual, branch or part of that organization,” said Bob Bigman, a former CIA chief information security officer, according to the station.
Darren Van Booven, CISO for the House of Representatives, told the forum audience that some cyber criminals try to collect details by calling potential victims on their home phones.
Ben Rubin, director of cyber operations at information technology firm CGI, warned that simple attacks can also pose serious security risks to an organization.
Tony Cole, Fire Eye vice president and global government chief technology officer, advised government agencies to analyze and translate data feeds into meaningful network defense strategy.
National Geospatial-Intelligence Agency CISO Lance Dubsky called for collaboration in thwarting cyber attackers.
“When agencies and industry communicate what they’re seeing, and then you apply the right sets of people, process and technology, you can buy down the amount of risk you face,” Dubsky said, according to the station.