Organisations need to step up their game as data leak becomes recurring issue
SYDI ALIF22 Sep 2022 05:04pm
Palo Alto Networks logo at their headquarters in Silicon Valley - 123RF
The recent incident in Malaysia is a group of hackers code-named "grey hat” breaking into the civil servants' ePaySlip system and extracting nearly two million payslips and tax forms.
"Organisations must develop an effective security strategy to uphold the integrity of their data while it is at rest, in use and in motion.
"By upgrading defences consistently to keep up with the evolving threats, IT teams can stay ahead of the attack curve and minimise the risks associated with such attacks,” Palo Alto Networks Principal Unit 42 Threat Intelligence JAPAC Vicky Ray said in a statement.
Among others, Palo Alto is also recommending that organisations centralise security management efforts such as threat detection and security alerts, control user activities with the least privilege given and implement multi-factor authentication besides email for the verification of third-party applications.
According to Palo Alto Networks 2022 Unit 42 Ransomware Threat Report, cybercriminals increasingly turned to the dark web "leak sites” to post the leaked data in addition to demanding ransom from their victims.
The research also found that last year, 2,566 organisations’ data were leaked on the dark web globally an 85 per cent increase from the previous year.