Assume you're next: RSA
Companies need to reconsider their security focus to concentrate on dealing with hackers once they're in, rather than assuming that they can always keep them out, according to Australia and New Zealand RSA general manager Andy Solterbeck, sending the message that if it happened to them, it could happen to anyone.
The company this week released a report, "When Advanced Persistent Threats Go Mainstream" (PDF), which RSA developed based on discussions with the Security for Business Innovation Council. It defines an Advanced Persistent Threat (APT) as "a cyber attack that is highly targeted, thoroughly researched and tailored to a particular organisation".
RSA itself was the target of an APT earlier this year in March, when hackers found the details of the company's HR staff via social media channels, and then, using social engineering and a zero-day exploit, took control of one of RSA's computers to launch an attack.