Yahoo Data Theft linked to Blackhat Group

Yahoo Data Theft linked to Blackhat Group In Eastern Europe

In a recent report released by InfoArmor, Yahoo Data Theft has been linked to a group of hackers code name “Group E”. InfoArmor says the group apparently ex-filtrated the data via a remote attack.

When asked to explain the cause of the attack that led to the compromise of 500 Million User Accounts, Yahoo had previously fingered state sponsored organ linked to the Russian federation.

Full details of InfoArmor investigation can be downloaded here

How (in)effective are today’s defense-in-depth deployments?

security

A Real-world Assessment of Organization’s Defense-in-Depth Model: Snippets from FireEye Recent Data Analysis

  1. Nearly all (97 percent) organizations had been breached, meaning at least one attacker had bypassed all layers of their defense-in-depth architecture.
  2. More than a fourth of all organizations experienced events known to be consistent with tools and tactics used by advanced persistent threat (APT) actors.
  3. Three-fourths of organizations had active command-and-control communications, indicating that attackers had control of the breached systems and were possibly already receiving data from them.
  4. Even after an organization was breached, attackers attempted to compromise the typical organization more than once per week (1.59) on average.

Extensive update on this report can be downloaded from fireEye website