ARMONK, N.Y. (1/9/15)--Sony. Home Depot. Target. The list of businesses affected by cyberattacks grows longer nearly daily, with consumers and financial institutions taking the hit from fraudulent activity.
Two cybersecurity firms separately released findings of retail and corporate attacks in 2014.
IBM reported that despite a 50% decrease in the number of attacks against retailers, the number of compromised records topped out at more than 61 million--apparent evidence of cyberthieves' sophisticated efforts.
"The threat from organized cybercrime rings remains the largest security challenge for retailers," said Kris Lovejoy, general manager, IBM Security Servwices. "It is imperative that security leaders and [chief information security officers] in particular, use their growing influence to ensure they have the right people, processes and technology in place to take on these growing threats."
The Credit Union National Association continues to urge Congress to pass legislation that would require merchants to meet the same security standards as those imposed upon financial institutions.
When data breaches occur, financial institutions are left paying the bill, rather than the merchants where the breaches occur.
Between the recent cyberattacks on Target and Home Depot alone, credit unions nationwide paid roughly $90 million in breach-related costs.
Meanwhile, Kaspersky Lab reported that corporate sector cyberattacks more than doubled in 2014 (Business Tech Jan. 7). Seven advanced persistent cyberattack (APT) campaigns accounted for more than 4,400 corporate sector targets in at least 55 countries.
Targeted attacks and malicious campaigns affected government and diplomatic offices, energy, research, industrial, manufacturing, health, construction, telecommunications, information technology, military, airspace, finance and media companies, Kasperky noted. Passwords, digital files and content were stolen, and other identifiable information was intercepted.
It also forecast the evolution of ATM attacks in 2015, where APTs are used to manipulate ATMs in real time to steal cash. In October, a Kaspersky Lab team discovered millions had been taken from ATMs in Asia, Europe and Latin America.