As we all have seen in the media, as well as heard from our customers, cyberthreats are an escalating problem for enterprises, financial institutions, governments and even individuals. These threats are as basic or as sophisticated as necessary to perpetrate the desired outcome of those doing the attacks.
In the past, these attacks focused on finding methods to compromise individual identities or entire organizations via different types of phishing, malware or social engineering. These sophisticated schemes have enjoyed a high level of success over the years and continue to find ways to morph into other forms to continue their effectiveness.
Targeting Security Experts
However, the latest rash of cyberattacks has taken a different approach: hacking the security providers and vendors themselves. This year alone we have seen RSA, Comodo, Star and Barracuda fall victim to advanced cyberattacks. In these real-world cases, the hacker isn’t trying to steal the identity of one of these companies’ employees or trying to bring down their infrastructure or website, but something much more dangerous — exploiting their security solutions and, in turn, their customers.
This can be a very big problem for a security provider that has thousands of customers using their solutions to protect critical information and data of employees, partners and, in many cases, customers.
The Breach of RSA
The breach of one our competitors in the security space, RSA, “The Security Company of EMC,” is the topic of this message today. In March of this year, RSA released information regarding an “Advanced Persistent Threat (ATP)” that successfully compromised RSA’s SecurID hardware token solution.
At the time, RSA offered very limited information and assured the public that their tokens were not at risk. In the months that followed, Lockheed Martin, L3, Northrop Grumman and others experienced breaches to their system due to the new vulnerability of RSA tokens. It was only at that time that RSA came forward and admitted that the vulnerability was, in fact, putting their token customers at risk.
As you can imagine, this did not sit well with RSA customers and caused dramatic fallout within their installed base of more than 40 million token users. RSA has been quick to respond with a replacement program, which is being received with lukewarm enthusiasm. In some cases, customers are getting new tokens but they are not free, and are only valid for the remaining life of that token.
The customer also has to cover all the administrative costs of replacement, and many customers are forced to wait at least six months for those replacements. Couple this with their difficulty in going to a different form factor off their (so-called) platform, there is a real opportunity for Entrust.
Yesterday, Entrust announced a hard token replacement program for organizations switching to Entrust IdentityGuard and our other authentication and fraud detection solutions.
Our focus is not only to give organizations an alternative to replacing tokens, but also providing the opportunity to trade up, to a true software platform. This program also puts an emphasis on mobility, which is one of the biggest issues organizations face today.