UnHacked Episode 10 Summary – The Russians are Coming! and what to do about it.
Breach Details:
- Attackers targeted HPE's cybersecurity and go-to-market business segment mailboxes
- Believed to be Russian state-sponsored actors, similar to those behind SolarWinds attack
- Initial breach occurred through password spray attack, likely due to lack of 2FA
- HPE claims minimal financial impact
Response:
- HPE immediately activated incident response plan
- Brought in external cybersecurity team for investigation
- Quickly contained the incident
Schedule Your Free Security Assessment
Expert Discussion on Prevention:
- Importance of implementing and enforcing 2FA
- Need for continuous monitoring of Office 365 accounts
- Principle of least privilege access for all users, including executives
- Geofencing and location-based access restrictions
- Regular security assessments and vulnerability testing
Key Takeaways:
- Small businesses aren't "too small" to be targeted
- All internet-connected systems face constant attack attempts
- Importance of documented incident response plans
- Need for regular security testing and updates
- Value of having external security audits
The episode emphasizes the importance of proactive security measures and regular testing, regardless of business size