Growing array of cyber attacks makes search for security ever more bewildering

Source:Global Times Published: 2017/7/2 19:43:39

Who'd be in charge of a corporate IT network, with hacks, phishing and now a double dose of so-called ransomware to contend with? Last week's cyber attack hit targets from Ukraine to the US and more than 60 other countries. Human error enables hacking of today's network setups. A shift to the cloud reduces that danger, but brings others.

The latest rogue software, a variant of something called Petya, locks computers and posts a message demanding $300 in bitcoins to recover the data. Like the WannaCry virus that hit National Health Service computers in the UK, among others, it gets into PCs using code known as Eternal Blue, which security experts believe was developed by the US National Security Agency.

The fact that this wasn't done earlier is a reminder that current IT architecture depends on people to maintain it. And people can let the bad guys in, too. Malevolent phishing e-mails abound. Though it was done in fun, the fact that the CEOs of Goldman Sachs, Citigroup and Barclays recently responded to prank e-mails purporting to be from colleagues underlines the human factor.

The cloud, comprising infrastructure managed by the likes of Amazon, Alphabet and Microsoft, ought to be immune from much of this. Advanced detection tools should be in place. Software run in the cloud doesn't need users to update it. Data should be recoverable even if one copy is corrupted.

Yet there are new concerns, too. With today's hybrid system, cloud-based software can propagate Petya or other malicious agents rapidly. A cloud outage can affect far more users than a cyber attack. Companies may need to hire multiple cloud-services providers to minimize this risk.

And of course cyber criminals and unfriendly state actors will simply set their sights higher. After all, holding the entire cloud to ransom sounds a lot more lucrative than targeting any number of individual computers.

The author is Richard Beales, a Reuters Breakingviews columnist. The article was first published on Reuters Breakingviews.

Posted in: INSIDER'S EYE

blog comments powered by Disqus