When it comes to enterprise security, encryption is supposed to be a good thing.
Except when it's not.
A growing concern for many enterprises is an attack that is hidden in an encrypted file that is traveling through the network. In the coming year, about 80% of all enterprise network traffic will be encrypted, and that means a lot more places for cyberattacks to hide.
To help counter the problem of cyberthreats wrapped in encryption, Cisco Systems Inc. (Nasdaq: CSCO) is offering what it calls Encrypted Traffic Analytics or ETA. The network security tools work by analyzing traffic and then flagging anomalies, without having to de-encrypt the traffic.
Wagner notes that while Cisco's ETA tool could not prevent the types of attacks associated with the recently disclosed vulnerabilities in Intel's x86 processors, it should be able to detect attempts to exfiltrate that information over the network. (See Meltdown & Spectre News Gets Worse – & Better.)
For more information about cloud computing and cloud security, visit Security Now's sister publication, Enterprise Cloud News.
Research from ESET has uncovered a new group called GreyEnergy, which appears to have targeted power plants in the Ukraine and Poland. The malware has also been linked to a previous group dubbed BlackEnergy.