ALL >> Computers >> View Article
100,000 Tweets In 1 Day – How One Company Discovered A Security Breach Using Big Data Analytics
As the recent breach involving millions of Target customer credit cards illustrates, security breaches leave a pattern of activity that is mathematically unusual. As cyber criminals increasingly use the cloud as an attack vector, these attacks also create anomalous activities that indicate something is wrong. In mathematical terms, they produce outliers that are several standard deviations away from normal user activity. A breach is usually at the edge of the bell curve and stands out as unusual.
The challenge for today’s companies is to identify these anomalous events quickly and then take immediate steps to investigate, take action, and limit the damage. With billions of transactions to look at, how do companies find the needles in very large haystacks? They need scalable cloud analytics to analyze large volumes of transaction data and automatically find anomalous activity.
Interesting Usage Anomalies Actually Evidence of Breaches
Using Skyhigh’s cloud analytics, Fortune 2000 companies have identified security breaches and taken corrective action before they threatened their businesses. Here ...
... are some of the most creative attacks we’ve uncovered:
Malware stealing data via Twitter – At a large financial institution, Skyhigh identified a single IP address at the company that was sending over 100,000 tweets per day. The corporate Twitter account only had few thousand tweets since inception. Investigating further, they discovered that it was malware exfilterating data 140 characters at a time via a Twitter account.
Command and control using GoToMyPC – At a retail company, Skyhigh identified a single device attempting to connect to GoToMyPC 11 million times in a single week. After investigating, they discovered the computer was infected with malware and attempting to connect so it could be used to infiltrate the company.
Blocked attempts to use Facebook – At an energy company, a single device made 3.8 million attempts to access Facebook, all of which were blocked. The computer was infected with malware and was attempting to connect to exfiltrate data from the company.
Author :
Lauren Ellis is a research analyst covering the technology industry’s top trends & topics, focusing on Cloud Security, Cloud Computing, Data Loss Prevention etc.,
Add Comment
Computers Articles
1. Future-proof Your Legacy Systems With Expert Foxpro Migration Services By Tech GazebosAuthor: Tech Gazebos
2. Why Fortigate 40f And Fortigate 60f Are The Best Choices For Business Network Security
Author: Stacklink uk
3. Why Modern Facilities Rely On Environmental Monitoring And Remote Temperature Probes For Compliance And Control
Author: Chris Miller
4. Spark Matrix™: Autonomous Mobile Robots (amr)
Author: Umangp
5. Spark Matrix™: Ai Observability Solutions
Author: Umangp
6. The Future Of Asset Intelligence: How Iot And Rfid Are Transforming Modern Operations
Author: TrackerIoT
7. Your Partner For Reliable Dynamics 365 Solutions!
Author: brainbell10
8. Download Pst Splitter Software (windows) – Split Large Pst Safely
Author: vSoftware
9. Buy Epson Thermal Printer: What To Know
Author: pbs
10. Pst To Mbox Conversion Without Losing Email Headers
Author: vSoftware
11. How Telecom Custom Order Management Software Is Transforming Customer Experience In The Digital Era
Author: Kevin
12. How To Launch A Successful Food Delivery App In Usa
Author: swizajoy
13. Flexible & Affordable Desktop Rental Solutions For Businesses | Renton Technologies
Author: Renton Technologies
14. Importance Of Good Identity And Access Management System In 2026
Author: adlerconway
15. What Is Vapt? Guide To The Introductory Vulnerability Assessment And Penetration Testing
Author: Lorcam Securities