Zone-H Explains Defacement

Web site defacement mirror Zone-H posted a revealing report on the recent defacement of their own site. The intrusion resulted from a combination of human and technical failures.

The moral of the story is that anyone can be compromised, because the attacker has the initiative. The attacker is usually more motivated and has more time, and resources than the defender. In a world where anyone can be compromised, there is no excuse for not monitoring and preparing for incident response. Every digital resource is a future victim.

The "solution" to intrusions is analog: arresting the intruders. It is not technical.

Comments

Unknown said…
I can't read that site at work, but excellent example. This drives home the claim that, "you *will* suffer an incident." Whether due to automated code scripts running rampant on the Internet to exploit things you've forgotten to a determined attacked spending even YEARS to penetrate your systems, the assumption in security must be that attacker success is inevitable.

Popular posts from this blog

Zeek in Action Videos

New Book! The Best of TaoSecurity Blog, Volume 4

MITRE ATT&CK Tactics Are Not Tactics