Research Reports Stolen in Forrester Website Hack

Forrester, one of the world’s most influential market research and advisory firms, informed customers late on Friday that its main website had been breached.
According to Forrester Chief Business Technology Officer Steven Peltzman, a hacker accessed information provided to customers through the company’s website, Forrester.com, using stolen credentials.
The organization said the attacker managed to steal research reports made available to customers, but believes no confidential client data, financial information, or employee data has been compromised.
Forrester said the attack was detected while it was being carried out and the company took immediate action to limit its impact. The investigation is ongoing, but there is no evidence to date that the hacker stole anything other than research intellectual property.
Law enforcement has been notified and the firm is further strengthening its internal security processes and systems in response to the incident.

[增持评级]计算机应用行业点评:安全手机标准立项 硬件防护有望迎来…
“We recognize that hackers will attack attractive targets — in this case, our research IP. We also understand there is a tradeoff between making it easy for our clients to access our research and security measures,” said George F. Colony, chairman and CEO of Forrester. “We feel that we have taken a common-sense approach to those two priorities; however, we will continuously look at that balance to respond to changing cybersecurity risk.”
Forrester disclosed the breach on Friday after the market closed so the potential impact of the incident on the company’s shares has yet to be seen.
A major cybersecurity incident can have a significant impact on a company’s stock. The breach suffered recently by consumer credit reporting agency Equifax, which affected more than 140 million individuals, led to the company losing roughly $10 billion in market value within a few days of the hacker attack coming to light.
Related: Equifax Cybersecurity Failings Revealed Following Breach
Related: OneLogin Investigating Breach at U.S. Data Center
网络犯罪分子的目标是企业的商业机密,他们多是竞争对手派来的商业间谍和内部员工。
Related: Incident Response Plans Reduce Cost of Data Breach
全国信息安全标准化技术委员会组织制定和批准发布了多项信息安全技术标准,这批标准的发布实施,对于完善我国信息安全标准体系,规范和指导我国信息安全保障体系建设具有重要意义。

猜您喜欢

大数据的安全要求
网络信息安全小调
网络安全法普法宣传 004《网络安全法》的突出亮点
3D打印头盖骨,填补英国妹纸头上的巨大凹陷
PNSTECH XARTBLOG
正确认识信息数据“加密”