2013-2014'de US Office of Personnel Management'a yapilan ve milyonlarca federal calisanin kisisel bilgileriyle parmak izlerinin calinmasiyla sonuclanan siber saldiriyla ilgili bir yazi:
https://www.wired.com/2016/10/inside-cyberattack-shocked-us-government/ Yazinin tamami guzel. Sonuc kisminda da onemli tavsiyeler var: (multi-factor auhentication'a ek olarak) ... But the plan pays too little attention to a fundamental flaw in our approach to security: We’re overly focused on prevention at the expense of mitigation. One reason these attackers can do so much damage is that the average time between a malware infection and discovery of the attack is more than 200 days, a gap that has barely narrowed in recent years. “We can’t operate with the mindset that everything has to be about keeping them out,” says Rich Barger, ThreatConnect’s chief intelligence officer. “We have to operate knowing that they’re going to get inside sometimes. The question is, how do we limit their effectiveness and conduct secure business operations knowing they’re watching?” Accomplishing that means building networks that are designed to limit a hacker’s ability to maneuver and creating better ways to detect anomalous behavior by allegedly authorized users. ... -- Sent from my mobile
--------------------------------------- Bilgi Güvenliği AKADEMİSİ 2017 Eğitim Takvimi Yayınlandı. https://www.bgasecurity.com/egitim-takvimi/
