{"id":3515,"date":"2016-05-02T07:23:15","date_gmt":"2016-05-02T07:23:15","guid":{"rendered":"https:\/\/www.happiestminds.com\/blogs\/?p=3515"},"modified":"2026-05-15T07:36:14","modified_gmt":"2026-05-15T07:36:14","slug":"what-can-we-learn-from-some-of-the-most-devastating-cyber-attacks","status":"publish","type":"post","link":"https:\/\/www.happiestminds.com\/blogs\/what-can-we-learn-from-some-of-the-most-devastating-cyber-attacks\/","title":{"rendered":"What Can We Learn From Some of The Most Devastating Cyber Attacks?"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div><p><span style=\"font-weight: 400;\">Over the past two years, we\u2019ve witnessed some of the largest cyber-attacks in history. Some of these attacks have been very well publicised and are probably already familiar to you \u2013 Target, Home Depot, eBay, JP Morgan Chase, Sony Pictures, US Office of Personnel Management, Ashley Madison, and T-Mobile. However, with cyber security, one can never claim to have witnessed the largest attack, because a larger one may already be in progress.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">With this in mind, I thought it would be prudent to look into some of these cyber-attacks and see what we can learn from them to help cybersecurity services, <\/span><span style=\"font-weight: 400;\">supported by c<\/span><a href=\"https:\/\/www.happiestminds.com\/services\/cyber-intelligence-platform\/\"><span style=\"font-weight: 400;\">yber threat intelligence<\/span><\/a><span style=\"font-weight: 400;\">,<\/span><span style=\"font-weight: 400;\"> detect future attacks before they even happen.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">While it might seem that all cyber-attackers have the same objective, it is very important that the motive behind each attack is clearly understood. For example, a retail company is more likely to be hacked for access to its customers\u2019 card information than it is for company information. Alternatively, if your organisation is a healthcare provider that handles both credit card information and health records,<\/span> <a href=\"https:\/\/www.happiestminds.com\/blogs\/smart-defense-using-generative-ai-to-outsmart-cyber-threats-false-alarms\/\"><span style=\"font-weight: 400;\">threat intelligence integration <\/span><\/a><span style=\"font-weight: 400;\">can help identify whether a <\/span><span style=\"font-weight: 400;\">cyber attack is going to be aimed at gaining access to these, either separately or simultaneously. As such, when it comes to company and customer information, it is important to not only identify what information is at stake, but also what reasons cyber criminals may have for coming after it.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">So taking this on board, here are my top three recommendations outlining what organisations need to do to in order to protect themselves from becoming the next victim of a very well publicised attack.<\/span><\/p>\n<h2 style=\"font-size: 25px;\">1.Employee Awareness and Training \u2013 it is still not happening nearly enough<\/h2>\n<p><span style=\"font-weight: 400;\">A trend that is common among cyber-attacks is that the first step usually involves a phishing or a spear-phishing attempt from the attackers. The attacker sends a seemingly innocuous email to employees (at varying levels of seniority, depending on the target), who then access the email and inadvertently download malware that gives the attackers access to secure data, sometimes using the employees\u2019 own credentials. Even today, with all the publicity around attacks, email security and secure policies and practices are lacking. It may seem blatantly obvious, but organisations need to make sure that all employees, specifically those with access to sensitive information, go through proper training on secure practices. This training should be just as important a part of the organisation\u2019s cyber security policies as the technology and solutions the company is using to protect itself.<\/span><\/p>\n<h2 style=\"font-size: 25px;\">2.Security Checks and Password Power \u2013 inadequate passwords leave you open to attack<\/h2>\n<p><span style=\"font-weight: 400;\">Another major access point for attackers is weak security practices, such as weak passwords or flawed verification and authentication processes<\/span><span style=\"font-weight: 400;\">, which can often be identified early through cyber threat intelligence<\/span><span style=\"font-weight: 400;\">. When it comes to weak passwords, I can only reiterate what the whole security community has always said, that is to ensure you have a long password using a combination of alpha-numeric and special characters, and to change this regularly. The importance of this practice needs to be made very clear to those handling sensitive data. As for flawed security processes, it is essential that all protocols are checked thoroughly and regularly.<\/span><\/p>\n<h2 style=\"font-size: 25px;\">3. Third Parties can Compromise Security \u2013 make sure that you have the necessary security practices in place<\/h2>\n<p><span style=\"font-weight: 400;\">A vulnerability that your organisation cannot directly control, but nonetheless must attempt to defend against, is access to your company through an external or third-party individual \u2013 such as a PoC with access to your organisation\u2019s website. It is imperative that absolutely anyone with access to any part of your organisation\u2019s secure data be thoroughly aware of necessary security practices. This is one of the most overlooked yet most difficult threats for companies to protect themselves against, with data boundaries today extending to home networks, personal and mobile devices, third parties and various other points of exposure, <\/span><span style=\"font-weight: 400;\">making threat intelligence integration essential for monitoring and correlating risks beyond the organisation\u2019s internal perimeter.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Many well-known cyber-attacks can be traced to inadequate security controls, human error and deviations from set procedures, and so rigidly following established security practices can go a long way to ensuring that cyber attackers have a tough time breaching your organisation\u2019s data. In today\u2019s world of ever-increasing security threats, it is no longer a question of if, but when. The combination of strict adherence to security policies and procedures, as well as strong and reliable <\/span><a href=\"https:\/\/www.happiestminds.com\/services\/cyber-security\/\"><span style=\"font-weight: 400;\">cyber security services<\/span><\/a><span style=\"font-weight: 400;\"> and products, will help your organisation to stay secure and to carry on with business as usual, without worrying about whether your data and applications are about to be the next big hit.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Published In : <strong>Digitalisation World<\/strong><\/span><\/p>\n<div class=\"pld-like-dislike-wrap pld-template-2\">\r\n    <div class=\"pld-like-wrap  pld-common-wrap\">\r\n    <a href=\"javascript:void(0)\" class=\"pld-like-trigger pld-like-dislike-trigger  \" title=\"Like\" data-post-id=\"3515\" data-trigger-type=\"like\" data-restriction=\"cookie\" data-already-liked=\"0\">\r\n                        <i class=\"fas fa-heart\"><\/i>\r\n                <\/a>\r\n    <span class=\"pld-like-count-wrap pld-count-wrap\">0    <\/span>\r\n<\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>Over the past two years, we\u2019ve witnessed some of the largest cyber-attacks in history. Some of these attacks have been very well publicised and are probably already familiar to you \u2013 Target, Home Depot, eBay, JP Morgan Chase, Sony Pictures, US Office of Personnel Management, Ashley Madison, and T-Mobile. However, with cyber security, one can [&hellip;]<\/p>\n","protected":false},"author":131,"featured_media":999,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[546,139],"tags":[400,908,919,1521],"class_list":["post-3515","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-security-2","category-security","tag-cyber-security","tag-cyber-security-services","tag-cyber-attacks","tag-security-2"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3515","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/users\/131"}],"replies":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/comments?post=3515"}],"version-history":[{"count":6,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3515\/revisions"}],"predecessor-version":[{"id":15692,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3515\/revisions\/15692"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/media\/999"}],"wp:attachment":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/media?parent=3515"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/categories?post=3515"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/tags?post=3515"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}