The recent attacks against the New York Times allegedly carried out by the Chinese military highlight the importance of layered security to protect sensitive systems and data. Read More ..
The New York Times outlined in a Jan. 30 report how attackers stole passwords belonging to every employee, read company emails, and accessed several computers in order to find information relating to China's leaders and corporations over a four-month period. Employee data and files related to the publication's coverage of China's prime minister were not exposed, Jill Abramson, executive editor of the Times, said in the report. The attackers appeared to be looking for the names of people who may have spoken with the reporters who wrote a series of stories on the prime minister.
The New York Times noted in the report that during the course of the breach, attackers installed 45 pieces of malware. It appears the company's antivirus product—from Symantec— detected and quarantined only one of them. In response, Symantec pointed out that the New York Times should not have just relied on the antivirus product for its security.