|By MAE ANDERSON, AP Technology Writer|
The hack, which a U.S. official has said investigators believe is linked to
This should signal to all U.S. businesses that they need to "take cybersecurity as serious as physical security of their employees or security of their physical facilities," says
The breach is particularly troubling in
"Movie studios have, by and large, behaved as high-security intellectual property purveyors; prints have been tightly controlled, screeners are watermarked, and bootleggers are prosecuted wherever possible," says
"The apparently laxity of Sony IT security — given the history of prior hacks — is unprecedented in the history of media technology," he says.
Studios are trying to tighten up procedures in the wake of the
Even so, some say there is little that corporations can do to prevent such a sophisticated cyberattack. The key may lie more in detection and limiting damage.
"There are very few companies that can withstand that kind of large assault," says
Companies also need to invest in identifying vulnerabilities on their networks and work quickly to address them.
"There is a lot of stuff just sitting there waiting to be taken and used for the kind of thing that has happened at
He says the
"We used to have to lead people to the idea that you need to protect this kind of data," he said. "Now we walk in and they're asking, 'How can I keep my data from ending up on the Internet like
Some customers have been wondering if they should reduce their reliance on email and switch over to other digital forms of communication, such as messaging systems that don't store the data. Sander doesn't believe that provides as much protection as making a telephone call to share passwords and other sensitive information.
Most importantly, companies need to focus on the ability to detect hacks quickly and limit them as fast as possible. Currently, the average amount of time it takes a company to detect a breach is 200 to 230 days,
While none of Weiner's clients have made large-scale changes to their security in reaction to the
One example companies could follow is in the technology sector, where most firms have been tightening their security measures during the past 18 months in response to revelations about the digital spying tactics of the U.S. government.
Documents leaked by former National Security Agency contractor
"I would say we have a higher level (of security) than some other companies do," says spokeswoman
A key to thwarting attacks is knowing your enemy and figuring out exactly who might want to hurt your company, adds
"In the past people were looking for a firewall or an individual product," for protection, says Chapman, a retired
|Copyright:||Copyright 2014 The Associated Press. All rights reserved.|