These days, businesses aren’t just defending against motivated hackers or rogue criminal organizations, they are facing attacks from nation states themselves. In a CNN Money story1 in early March, former NSA Director Mike McConnell was quoted as saying, “the Chinese have penetrated every major corporation of any consequence in the United States and taken information. We’ve never, ever not found Chinese malware.” North Korea was cited as the primary suspect in the Sony breach. And given these attacks, as well as the revelations revealed by Edward Snowden about NSA snooping, it’s clear that governments are now major players on this battlefield.
There is little question that the severity, frequency, and capability of attacks on corporate data security will continue to get worse. The state-based attacks get a lot of publicity, as do breaches that release credit card or personal information, but there are attacks coming from innumerable sources every day, all looking for access to corporate networks and data.