RSA opens with apology

By

"What does not kill you makes you stronger", president says.

The RSA Conference Europe has opened with executive chairman Art Coviello quoting Nietzsche's epigram, "what does not kill you makes you stronger".

RSA opens with apology

Coviello said the attack earlier this year was just the tip of the iceberg in an escalating threat environment. He said  there needs to be a realisation that attackers have different motives and "current security technologies are not effective or not enough".

Also speaking was Tom Heiser, president of RSA, who called on the security industry to come together and share information.

He claimed reports on the RSA attack were not accurate and confirmed one RSA customer lost information as a result of the breach.

“Customers were told quickly and we identified the attack while it was in progress with an immediate move to mediate it. There were two groups involved and they were known to the authorities, but are now known to have worked together.

“They knew what to look for and where to go. They impacted people and process more than information and the malware was very fresh; we believe it was written a few hours before and it used very sophisticated technologies to complete the exfiltration with no evidence left behind that they were there.”

He said the motive was to gain access to defence-related IT, and RSA was not the final target. To customers who felt that they were inconvenienced, he said: "We truly apologise."

“People are our most viable asset and the quality of staff helped us as we moved the valuable people up. The security of our customers was first in our minds so we did not want to share information that could create a new type of attack.”

Heiser concluded by pointing out five actions to take in the event of an attack: "Reconsider your risk; rethink your security profile; deploy security and network analysis; tighten access control; and educate, educate, educate."

“We cannot blame each other for what happened, we need to come together. Our advocates are doing this and together we can ensure that our customers are the ones they can trust,” he said.

This article originally appeared at scmagazineuk.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
hackingrsasecuritytokens

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?