In-depth

RSA does the inevitable: Nation state blamed for hack

Tom Brewster thinks RSA has said nothing much at all about the hacks, which will most likely only hurt the company more.

RSA

COMMENT RSA has finally gotten round to claiming a nation state was behind the attacks on the company earlier this year, basically saying what everyone else was thinking.

Talking at the RSA Security Conference in London, executive chairman Art Coviello and other execs said the vendor had been targeted by two groups from one nation state.

Advertisement - Article continues below

In reality, very little new information emerged. We had already suspected a foreign power of wrongdoing here. The biggest indicator was the fact that the SecureID information taken was used to target US contractor Lockheed Martin. We are, of course, guessing. RSA is still guessing to some extent too no actual extra evidence has emerged to implicate a nation state.

With these new statements from Coviello, which confirmed nothing much at all, RSA hasn't made itself look much smarter.

Questions will now turn to what nation state was to blame. We haven't had to wait for conjecture to spew out of onlookers' mouths, with fingers already pointing at China.

Some may have been surprised by Coviello's reticence over which nation was to blame, but it should have come as no shock to anyone.

RSA has again highlighted a major issue with attacks purportedly involving a nation state: it is close to impossible to blame anyone. When China was recently questioned over its involvement in a hit on Mitsubishi Heavy Industries, with Chinese characters even found in the implicated malware's code, the country could easily deny the accusations by saying someone else planted those ideograms there. Nations accused of attacks can simply claim they themselves were the victims of clandestine actions of others.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Everything is so nebulous around these kinds of attacks that there is little one can take away with surety from the whole nefarious saga.

Out of control

There is one thing we can be sure of though: RSA has not come out of this well.

When the company's admission came out in March, the company came under fire for not informing the world sooner.

And with these new statements from Coviello, which confirmed nothing much at all, RSA hasn't made itself look much smarter. Given the initial breach, which appeared to trick RSA employees into opening a malicious attachment with a very simple piece of social engineering, made EMC's security arm look a tad silly, you'd have hoped it would have come out looking in control.

Yet RSA gave some confusing messages. If it was able to see there were two hacking groups were involved, one said to be more visible than the other and known to "authorities", then why could it not track down, or at least have a strong idea, of which nation state was involved?

Advertisement - Article continues below

On the surface, it seems as though Coviello and Co know plenty about how and why the attack happened, possibly who the perpetrators were. So why do we still know so little?

RSA should be using this week as a chance to show its teeth and prove it has a firm grip on the case. We should all hope it gets back on the right track soon - if security companies aren't in control, then everyone should worry.

Featured Resources

Preparing for long-term remote working after COVID-19

Learn how to safely and securely enable your remote workforce

Download now

Cloud vs on-premise storage: What’s right for you?

Key considerations driving document storage decisions for businesses

Download now

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Transforming productivity

Solutions that facilitate work at full speed

Download now
Advertisement

Recommended

Visit/security/ransomware/356292/university-of-california-gets-fleeced-by-hackers-for-114-million
ransomware

University of California gets fleeced by hackers for $1.14 million

30 Jun 2020
Visit/security/cyber-security/356289/australia-announces-135b-investment-in-cybersecurity
cyber security

Australia announces $1.35 billion investment in cyber security

30 Jun 2020
Visit/cloud/cloud-security/356288/csa-and-issa-form-cybersecurity-partnership
cloud security

CSA and ISSA form cyber security partnership

30 Jun 2020
Visit/security/ethical-hacking/356252/poorly-secured-banking-apps-lead-to-cyber-threats
ethical hacking

Mobile banking apps are exposing user data to attackers

26 Jun 2020

Most Popular

Visit/business-strategy/careers-training/356422/ibm-job-ad-calls-for-12-year-experience-with-6-year-old
Careers & training

IBM job ad calls for 12-years of experience with six-year-old Kubernetes

13 Jul 2020
Visit/business/business-operations/356395/nvidia-overtakes-intel-as-most-valuable-us-chipmaker
Business operations

Nvidia overtakes Intel as most valuable US chipmaker

9 Jul 2020
Visit/security/cyber-attacks/356417/trump-confirms-cyber-attacks-on-russia-election-trolls
cyber attacks

Trump confirms US cyber attack on Russia election trolls

13 Jul 2020