One of the largest retail hacks in the United States, the breach on Target caught the attention of the world. The event itself proved how common these types of attacks are no matter the size of an organization. Just recently, the restaurant chain P.F. Chang’s China Bistro found themselves in a similar position as Target. Unfortunately, they had been too late and the payments breach had taken place before they were able to discover any suspicious activity. The breach had led to payment card fraud and subsequent poor headlines for the chain. Once an organization has a breach it must spend a great deal of money to launch an investigation as to what happened. There’s a long list of negative outcomes that coincide with a breach; any company with sensitive information needs to be more than just compliant if they truly want to avoid a breach.
These companies had elaborate security systems already in place and were compliant, so what could they have done to avoid the data leakage?
Simply being compliant does not mean you are safe from a breach nor mean you have a completely secure system. Time and time again, compliant corporations have lost sensitive data as a result of accepting this bare minimum level of security. Any organization that wants to keep ahead of the culprits of these breaches needs to go above and beyond compliance. An organization can now catch previously undetectable malware operating within their network by taking advantage of a Proactive Compromise Detection service. In the case of Target and PF Chang’s, a service like this could have prevented their loss of sensitive data. These corporations and many others have proven to be a lesson as to why a compromise detection service could be so beneficial.
By: Aaron Bruck