Actu
Comment from OpenText Security Solutions on Uber investigating ’cybersecurity incident’
September 2022 by Matt Aldridge, Principal Solutions Consultant, BrightCloud at OpenText Security Solutions
Uber disclosed that it’s responding to a cybersecurity incident involving a breach of its network and that it’s in touch with law enforcement authorities.
The comment from Matt Aldridge, Principal Solutions Consultant, BrightCloud at OpenText Security Solutions:
“Yet again, we see the power of social engineering to bypass security controls through the exploitation of poorly trained users. Combine that with the carelessness to leave privileged credentials on a network share, and you have the perfect storm for even a relatively inexperienced attacker to cause great harm to an organisation. This highlights why it is so critical to provide quality, regular security awareness training to all workers, and to operate regular penetration tests to find any lurking credentials or backdoors for attackers so that these can be locked down.
Further, IT teams must implement cybersecurity technology such as email filtering, anti-virus protection, and sensible password policies to grapple with cybersecurity. Security awareness training should be implemented for staff from day one, ensuring they are vigilant in scrutinising the types of emails, messages and phone calls they receive. Additionally, data must always be securely backed up, so systems can be restored if needed. Finally, multi-layered cybersecurity controls must be deployed to help detect or block anything that breaches the first line of defence – the people of the organisation.”
Related articles:
