“I hope ICAO has strong evidence that no data was leaked,” Ulrich said. “The best tactics to protect sensitive information are to encrypt as much data as possible and automate the movement of data from a public environment to a closed, secure environment as quickly as possible.” He added that the goal is to implement the established mechanism.
Ulrich also questioned parts of the ICAO statement that said it had not been leaked. Considering that data breach reports are regularly updated and expanded, we believe it is much safer to first clearly identify data that has been leaked rather than mentioning items that may not appear to have been leaked in the first place.
Sophisticated and skilled cybersecurity personnel are needed to respond to data leaks, but it is difficult to find specialized personnel at outsourcing companies that handle job application data.
Considering that the data was stolen over a period of more than eight years, it is likely that it was stored for an extensive period of time.
Ulrich also questioned whether the attackers were actually targeting the United Nations agency, or whether they had discovered a hole in the platform of a third-party job search company and systematically targeted all of its customers. He also said the attackers “may have targeted sites created by specific vendors.” It is claimed that it is very likely that they did not target ICAO but rather sites with specific vulnerabilities.
dl-itworldkorea@foundryco.com
Source: www.itworld.co.kr
