Cyber-attack Group Lulz Sec Targets United States Senate Website

By Author: eccuni
Total Articles: 211
Comment this article

Recently, the website of the United States (U.S) Senate suffered security breach. Intruders were reportedly successful in gaining access to the configuration file of the website. Cyber-attack group Lulz Sec has claimed responsibility for the attack, and has published the file online. Over the recent times, the Lulz Sec has been vibrant in targeting major sites including Public Broadcasting Service (PBS), Fox news, Sony, InfraGard, Nintendo and Bethesda Softworks. The U.S government has confirmed the security breach, and has ordered review of all the sites hosted on the affected server. Counter crime agencies and Computer Emergency Readiness Team are investigating the latest security incident. Preliminary investigations indicate that attackers did not gain access to the Senate's computer networks, nor were able to compromise any sensitive information. Attackers allegedly exploited a security flaw in a portion of the website. Security professionals have initiated steps to mitigate the identified vulnerability. Recently, Leon Panetta, the Director of Central Intelligence Agency (CIA) alerted that cyber-attacks targeting power ...
... grids, security and financial systems may be the next 'Pearl Harbor' that U.S may confront. Cyber-attacks have continued despite U.S warning that it may consider some of the cyber-attacks as an act of war.

Cyber security experts have expressed concern that frequent and indiscriminate cyber-attacks may undermine the confidence in Internet, which has revolutionized business and communications. Attackers, Lulz Sec has been boldly publishing collected information online. Other attackers may use the published information to initiate more sophisticated and target-based cyber-attacks. Organizations must be proactive in understanding the security environment, and identification of security threats. Lack of understanding of risks in the IT environment may lead to wrong security choices, and put the security of the IT infrastructure at risk. Professionals qualified in IT degree programs and security certifications may help organizations in understanding security risks, proactive identification of potential threats, and initiation of appropriate preventive measures.

Cyber-attackers constantly look out for weaknesses and security flaws. Lack of regular technological upgrades may also cause vulnerabilities in the network infrastructure. As such, regular technological upgrade of organizational networks is crucial to improve productivity and strengthening the defenses against cyber threats. Attackers constantly evolve their modus operandi and attack techniques. As such, organizations must place emphasis on training of the IT professionals. Online IT degree programs and security certification programs may help professionals in keeping themselves abreast of latest technical skills and improve their know-how.

Cyber-attackers are increasingly making use of social engineering to perpetrate target-based attacks. Usually, attackers masquerade as a customer, stakeholder or peer to gain access to confidential information. Attackers may use voice, and online channels such as e-mail, instant messaging and social networking to impersonate as legitimate users and seek privileged information. Businesses are actively using blogs and social media sites for business promotion, making employees susceptible to social engineering threats. Increasing awareness on security threats among employees through training sessions, huddle meetings, and e-learning programs may go far in creating security conscious culture in organizations. Employees may leverage online IT courses to improve their understanding of security fundamentals. They may also keep themselves abreast of latest security incidents, threats, best practices and advisories through security blogs, and online tutorials.