Skip to main content

Cyber Wars -- RSA and Yahoo breach

Last week we had two big news coming out, which for some reason, never got any traction in the main stream media or for that matter even in the mainstream technology world. The technology world in today's world is all about gadgets and Apple!
The two big news were related to Security breaches at two major corporation that supports a huge clientele and considered by some security companies as the pioneer in their vertical. I am talking about Comodo Security and RSA Secure ID.
Comodo Security is the major digital certificate authority and security software maker. The digital certificate is used by Google, Yahoo, Microsoft, Skype and Mozilla. Digital certificates are used to authenticate a website and facilitate encrypted communications between sites and their users. 
The details are few and far between, but Comodo was able to trace the hacks of the digital certificate to a state-backed operation in Iran.. I hope they come forward and clarify the methods of claims and give details of it. If that claim is true - then I will be inclined to see the details that the hackers were able to leak out. Companies like Google were able to clarify that no digital certificates were compromised on their site. Yahoo was forthcoming in the information. They did acknowledge that their yahoo mail was breached. Now, this is a little bit concerning to me, as an individuals personal information was compromised. This can really jeopardize once's identity and in cases be life threatening. As far as Comodo is concerned - they have stopped the digital certification and fixing the certificates.
The second news coming out was the breach in the RSA Secure ID tokens. Now RSA secure ID tokens are two step identification and authentication process implemented by most fortune 2000 companies. The two-step authentication is considered to be the golden standard in security. RSA has issued a statement stating that no client information was compromised. I would like to believe them. 
They have stopped issuing any more tokens and asked clients to lock down Secure ID management database that powers the tokens till they resolve the issue. 


This brings us to one major point -- Are we really in to Cyber War here? Is the intent to hurt a country financially more advantageous then attacking them? Isn't it the irony that the country that pioneered the cyber technology is left behind in cyber warfare, outdated thinking, policies, and strategies that make them so vulnerable to losing any cyber contest with a hostile nation?


I hope we collectively create a plan and secured not only the critical information, but also make internet a safer place?
I hope they don't  "butcher"  it like they are doing with net-neutrality!


Comments

Popular posts from this blog

Interesting Articles - April 20th 2017

1. Codeine and Kids - What can go wrong?

Deep down we all knew the side effects of the painkillers and cough syrup, now the FDA has come out slinging against Codeine and Tramadol. On one hand FDA has decided to come against the painkillers, but on the other hand, it did nothing to stop pharmaceuticals to sell OTC cough syrups and drugs that do contain those chemical elements.

http://www.npr.org/sections/health-shots/2017/04/20/524376484/dont-give-kids-cough-syrup-or-pain-meds-that-contain-codeine-fda-says

2. Emirates - The problem begins

This was my fear when the current administration signed the executive order to ban tablets and laptops for three middle eastern airlines. How long before the other two airlines cut down the stops in US and concentrate more in Europe and the rest of the world? What it means for passengers? More expensive flights for world travelers. The tourism industry is already hit with anxiety and a lot of travelers are definitely avoiding the hassle to come to thi…

Email is the new Fax

Do you see this picture when you sign-in to your Gmail account? 



I see it every single time I sign-in to Gmail, no matter the speed of connection. At some point this started happening to my Gmail account a year or so back and every time I log-in, it gets bad. Gmail is my preferred account and I have around 10000 emails in my inbox, which is not a whole lot. I love to clean my inbox and organize it as much as possible. All the marketing, forums, registered mails are deleted rather than just sitting there. I had plenty of filters before, but when google introduced 6 tabs, I decided to go simpler and just use the default tabs. It is working well so far, but the lag and that picture still appears every single time.
But this post if not about Gmail or how slow it has become. It's about email and I can positively say that Gmail/email has become less important in my personal life. Last year Google introduced a nice little dashboard service to let you know your email activity for the week/m…

Books read in 2014

Understanding Michael Porter - Joan MagrettaAge of Spiritual Machines - Ray KurzweilConfessions of a Public Speaker - Scott BerkunQueit: The Power of Introvert in a World That Can't Stop Talking - Susan Cain