APIs, DDoS Attacks Top February Cyber Security News



Dan Gunderman
02/28/2018

Just two months into 2018, we have already seen a wealth of cyber security headlines, from malware strains to DDoS attacks. What’s more, governance, risk management and compliance (GRC) appears to be at the forefront, as we inch closer toward the rollout of the General Data Protection Regulation (GDPR).

While GDPR could institute steep fines on global organizations handling European Union (EU) data, the broader question of compliance – including third-party risk profiles – has dominated the news cycle. In the same breath, security practitioners appear poised to sniff out future attack vectors, while also absorbing content on interdepartmental communication and lax security protocols.

Cyber Security Hub’s February coverage included a close look at an emerging threat vector, an evaluation of third-party cyber risk management and insightful Q&As.

Of course, February, like most months, was also filled with cyber-attacks. The Cyber Security Hub’s “Incident of the Week” column captured much of this chaos, translating how breaches affect the enterprise. February saw Dutch banks falling within the crosshairs of hackers in a DDoS attack. A media site also fell victim to a similar offensive.

What follows is an in-depth look at the month of February and the cyber security headlines that stole the show. Click on each headline to read the full story.

APIs: Cyber Security’s Emerging Threat Vector
It appears a new – and pervasive – threat vector is emerging, and a recent Imperva survey has the proof to back it up. The target: an organization’s application programming interface (API).

DDoS Attack Hits 3 Banks Simultaneously
We investigate a string of apparent distributed denial of service (DDoS) attacks that struck Dutch banks, along with the nation’s tax office. The events took place in late January, puzzling security teams and financial professionals alike.

Media Site Targeted In DDoS Attack, Method On The Rise
Another DDoS attack struck a leading business press release wire, owned by Warren Buffett’s Berkshire Hathaway. Cyber Security Hub also highlighted the recent surge in the attack method, which can be hard to mitigate as it carries out its data overload.

‘It Comes Back To You’: Evaluating Third-Party Cyber Risk Management
Third-party risk management is both crucial and subject to frequent change. Achieving high maturity and a stable, resilient security posture is the chief concern of today’s CISO. We spoke with two authorities in the cyber space about alleviating risk and building maturity.

Beware Of ‘Assumption-Based’ Cyber Security: Q&A With Verodin’s Brian Contos
To get his take on the wider state of cyber security, we spoke with Verodin, Inc.’s CISO and Vice President of Security Strategy, Brian Contos. Over the last two decades, Contos helped build successful and disruptive security companies. He is a seasoned executive, board advisor, security company entrepreneur and author.

Similarly, click here for a look at the biggest headlines of January!

See Related: 'Complete The Puzzle': Tackling GDPR, Improving Security Posture