The Next Wave of Cyberattacks Won’t Steal Data — They’ll Change It

[InfoSec News <alerts () infosecnews org>]

http://www.defenseone.com/threats/2015/09/next-wave-cyberattacks-wont-steal-data-theyll-change-it/120701/

By Patrick Tucker
DefenseOne.com
September 10, 2015

The big attacks that have been disclosed so far in 2015 involved the theft 
of data, and a lot of it. Some 21 million personnel records were taken 
from the Office of Personnel Management, likely by China, while 4,000 
records, some with “sensitive” information, were stolen from the Joint 
Chiefs civilian email system, a theft blamed on Russia.

But America’s top spies say the attacks that worry them don’t involve the 
theft of data, but the direct manipulation of it, changing perceptions of 
what is real and what is not.

Director of National Intelligence James Clapper spelled out his concerns 
in written testimony presented to the House Subcommittee on Intelligence 
today.

“Most of the public discussion regarding cyber threats has focused on the 
confidentiality and availability of information; cyber espionage 
undermines confidentiality, whereas denial of service operations and data 
deletion attacks undermine availability,” he wrote. “In the future, 
however, we might also see more cyber operations that will change or 
manipulate electronic information in order to compromise its integrity 
(i.e., accuracy and reliability) instead of deleting it or disrupting 
access to it.”

[...]

--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/