BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Utilizing Social Media Platforms Carry Security Threats to Organizations

Posted June 15, 2012    Peter McCalister

Social Media is transforming the way businesses are branding and marketing their products, and with 900+ million users on Facebook, most of the workforce is participating. These platforms, including Twitter and LinkedIn provide a bridge for relaying information from companies to consumers, and the potential for future growth is prevalent. There are however security risks that need to be addressed in order to avoid catastrophe within.

A large part has to do with the increase of internet use from mobile devices and BYOD. Employees access their social profiles on the same mobile device that they are downloading sensitive documents, and there isn’t much in place to secure the information. Not to mention, the creation of malware for mobile devices went up 273 percent in the first half of 2011 and is still rising according to recent eEye Security Report. Mobile is a new frontier of security and cybercrime, and is still in the growth stage. The technology for security is there, but companies need to keep the pace with their policies.

It is also apparent that hackers and malicious software developers are targeting social media platforms to commit cybercrimes and pilfer information. The rapid growth and recent big IPOs in social technology has received mass attention, both good and bad. In a June 6 article in CNET, it was reported that approximately 6.5 million LinkedIn passwords were hacked and posted on the web. Not a good vote of confidence in leveraging the platform for your business.

Identity and access management truly becomes a crucial piece to perimeter security when you don’t know how safe you really are. In the 2012 Strategic Security Survey by InformationWeek, 86 percent of IT professionals believe that social media sites pose a threat to security. The top threat was 72 percent of cite malware infection was via malicious links. If you can’t monitor the sites that your workforce is visiting, manage the perimeter within in order to maintain safety.

Social media’s infiltration into the enterprise isn’t slowing down, and taking proper precautions, vulnerability management, mobile device management, and privilege access management is essential to keeping the pace against the dark side of innovation and malicious attackers.

Leave a Reply

Additional articles

6

A Quick Look at MS14-068

Posted November 20, 2014    BeyondTrust Research Team

Microsoft recently released an out of band patch for Kerberos.  Taking a look at the Microsoft security bulletin, it seems like there is some kind of issue with Kerberos signatures related to tickets. Further information is available in the Microsoft SRD Blogpost So it looks like there is an issue with PAC signatures.  But what…

Tags:
, , , ,
Password Game Show

Managing Shared Accounts for Privileged Users: 5 Best Practices for Achieving Control and Accountability

Posted November 20, 2014    Scott Lang

How do organizations ensure accountability of shared privileged accounts to meet compliance and security requirements without impacting administrator productivity? Consider these five best practices…

Tags:
, , , , , ,
Triggering MS14-066

Triggering MS14-066

Posted November 17, 2014    BeyondTrust Research Team

Microsoft addressed CVE-2014-6321 this Patch Tuesday, which has been hyped as the next Heartbleed.  This vulnerability (actually at least 2 vulnerabilities) promises remote code execution in applications that use the SChannel Security Service Provider, such as Microsoft Internet Information Services (IIS). The details have been scarce.  Lets fix that. Looking at the bindiff of schannel.dll, we see a…

Tags:
, , , , ,