Are Philippine institutions being targeted or simply being probed?
We don't know for certain. It could be either or both. Whichever comes first?
What we can understand, with the success of such attacks, is that they have found their way. Really.
How hard or easy? The attacker knows, but probably, also, those being attacked. Inclination should be there no matter how sophisticated our security systems are.
In cybersecurity, we do a very focused job. Making sure we disappoint whoever is trying to gain access to any resource without permission and authority regardless of the environment we are in. What happened is that every asset deemed to have every variant of resource built-in, operating, that makes up the entire system working whatever it is trying to employ, in that case the primary purpose.
Meaning, we have to know if we are running our system in a manner that is really secure, provisioned properly during design stage and managed continuously afterwards, post-implementation. Not just when we first run them. But a continuing assessment of the criteria that we've set the first time and then only that time we can truly say we are managing our system and the security we've, hoping we didn't generally, plopped it up.
Anyway, targeted or probed, security systems should recognize them. How fast should they be to upset, or notify security staff for, the attacks being utilized?
How effective security systems are now in detecting and preventing classic and novel cybersecurity attacks?
If no answer to any of that can be provided, then something within an organization must be devised or made available, as a last resort, at least to protect, if not quickly salvage, critical resources and assets.
Comments