Every single information security breach investigation that the team at Integrity was a part of in 2014 had a malware component. This isn’t to say that the hack was the result of the malware attack. It just means that the security breach was aided in some way by the malware. How in the year 2015 is a statistic like this still possible?
Quite simply, finding mismanagement of the anti-malware tools and a lack of security monitoring is common in security breach investigations. In all cases we investigated in 2014, the anti-malware tools were either not configured properly or not updated on a regular basis. Couple that with the fact that no one was checking to make sure the tools were working properly or looking for malware detections and you see the problem. Folks are betting the farm on a flawed system.
Lots of money is spent on technology each year. However, if you don’t have the right people and process behind the technology, your risk of getting hacked and being the victim of a security breach rises exponentially. People, Process, Technology. There’s a balance to be found. Do you have it?