The details of the China hack on Google’s information assets reveal that it began with a link in an IM that ended up in a compromised employee desktop. How do we as security professionals prevent users from inadvertently putting the network at risk? Read more here and share your insights.
Center of Excellence
Capella has been designated a National Center of Academic Excellence in Information Assurance Education (CAEIAE) by the National Security Agency and the U.S. Department of Homeland Security. Capella’s information security curriculum meets the NSA Committee on National Security Systems standards 4011, 4013, 4014.
CNSS Certification
The NSA’s Information Assurance Courseware Evaluation (IACE) Review Committee has validated that Capella’s information security curriculum meets the Committee on National Security Systems (CNSS) National Standards 4011, 4013. Additional courses are needed for 4014. Learn what it means to a Capella learner.
This entry was posted in Current Topics, Security and tagged hack, security. Bookmark the permalink.
2 Comments
The details of this attack seem suspect. We are told that an IM was sent containing a link, an employee in turn clicked on said link which contained bad code. Why I say this seems suspect is due to the report not stating whether or not the IM came from internal or external sources. The importance of this is night and day. Either way, we can all agree that in order for the IM to be sent to a Google PC, the attacker(s) needed access to the Google Network.
Link:
http://www.theregister.co.uk/2010/04/20/reports_says_cyberattack_on_google_lifted_code_for_password_system/
I was assuming that the source was external to Google but I have no real reason to make that assumption now that you point it out