Get Support

Blog

Argentum IT LLC Blog

Argentum IT LLC has been serving the Louisville area since 2010, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Categories
Tags
Categories:   All Categories
Suggested keywords
x

What We Can All Learn from the VirusTotal Data Leak

What We Can All Learn from the VirusTotal Data Leak

In 2004, a service called VirusTotal was launched and swiftly became a popular antivirus and malware scanner to help detect threats in various files and URLs. It became popular enough that it was officially acquired by Google in 2012 and ultimately assimilated into Chronicle, a cloud-based security operations suite for enterprise businesses. Despite this impressive pedigree, however, we find ourselves able to look to VirusTotal as a sobering reminder of how fickle cybersecurity can be, with the service being the source of some limited data exposure.

Let’s consider the situation, and what it helps illustrate for us.

VirusTotal Had Some Registered Customers’ Data Exposed

On July 17, VirusTotal disclosed that a database composed of some 5,600 customer names and addresses—a collection of cybersecurity experts from various law enforcement agencies, intelligence agencies, and military staff from all around the world—had been leaked. What’s worse, it was the VirusTotal service itself that enabled the leak.

It all comes down to VirusTotal’s functionality. In addition to scanning files for malware using tools from various other companies, VirusTotal also shares these samples directly with these other companies, making them available for speedy download so that they can be used to help further research efforts.

When used in this way, this is all well and good. However, if someone were to accidentally use VirusTotal to share a file that should not have been shared, dozens to hundreds of companies could suddenly find themselves receiving data they should not be able to access.

This is precisely what happened to VirusTotal when an employee accidentally uploaded the aforementioned database of Premium-level users into the VirusTotal system. Fortunately, the list was promptly removed and was only visible to their partners and corporate clientele, but it still happened in the first place.

How to Prevent a Similar Issue in Your Own Business

Protecting your own organization from such circumstances is not going to be simple and seamless, particularly because the primary source of your vulnerability comes from simple human error. To prevent this from becoming the same kind of issue that it did for VirusTotal, you need to reinforce procedure—potentially through firewall rules, endpoint security warnings to give users a chance to reconsider what they are doing, and restricting upload permissions for certain users based on their roles.

If this sounds complicated, it can be… but that’s what a managed service provider like us helps to simplify.

In addition to assisting you with setting up the requisite safeguards, we can help you maintain your business’ essential technology, supporting it and, by extension, you and your business. Learn more about what we have to offer by reaching out to us at (502) 473-6407.

Tags:
Data Privacy Information

About the author

Dean Lause

Dean Lause

Dean Lause is a technologist to the highest degree. When he was in middle school, he learned and developed small programs using BASIC programming code on his Commodore 64. He was one of the first to post to bulletin boards on the newly emerging “Internet” and built a mini-network in his home. He competed in his senior year of high school, placing 1st regionally, 2nd in State and 17th Nationally in computer specialist competitions. Today, he enjoys technology as much as he did then. In fact, he has a “Smart Home,” with connected devices controlled by A.I., mobile apps, and voice commands. When he is ready to go to sleep, all he needs to say is “Good night,” and Voila! all of the lights in the entire house turn off, the doors lock, the TV/DVR turn off, the house alarm is set and the alarm clock for the morning is ready to go! After a 4-year stint in the Army as a computer specialist, Dean spent the next 20 years in Fortune 500 Enterprise IT environments. He quickly building his IT skill set, becoming an expert in VMWare and Citrix and various other technologies. Dean served as the Director of Network Infrastructure & Security of North American Operations in his last role before joining Argentum IT and completing his MBA with a specialty in Accounting in 2011. Dean understands not only the technical side of how devices work together and integrate within an environment, but also understands and designs the environment from a business point of view for productivity. He strives to provide cost-savings, efficiency and practicality to solve the real issues that are present for each individual client he works with. Leveraging his 20+ years’ of enterprise-level experience, for the past ten years, Dean has consulted with numerous Fortune 500 companies across the country on issues relating to network infrastructure and security, Citrix XenDesktop, VMWare implementation and capacity planning, Office 365/Exchange Email Migrations as well as Mobile Device Management and Disaster Recovery Planning. He has also been engaged to develop and improve technology processes as well as accomplish technology projects on time and budget. Today, Dean uses all of these skills and more to aid small to medium-sized businesses to utilize technology to run their companies more profitably and efficiently. As Chief Technical Officer of Argentum IT, LLC for the past ten years, Dean has supervised a proactive service desk who educates clients on technology best practices, designed multiple infrastructure environments for clients (both big and small), to fit their needs and built a sizeable hosted infrastructure environment – including VMWare and Citrix “products”. Dean’s breadth of experience affords him a unique view of IT and business challenges, which allows him to help customize and develop unique solutions to solving IT and Cyber Security challenges.

Author's recent posts

More posts from author
 

Comments

No comments made yet. Be the first to submit a comment
Guest
Already Registered? Login Here
Guest
Sunday, 28 April 2024

Captcha Image

Customer Login

News & Updates

On A Mission To Simplify IT, Dean Lause Turned His Parents IT Struggles Into Inspiration And Became The Premier IT Solution For Small and Medium Sized Businesses in Louisville, Kentucky

Back in the 1980’s, despite owning one of the first home computers, the Tandy TRS-80, society found technology more of a hindrance than a help. But Dean loved technology and from an early age understood it could help.

Read More

Contact us

Learn more about what Argentum IT can do for your business.

Argentum IT
1141 S. 2nd Street
Louisville, Kentucky 40203

Copyright Argentum IT. All Rights Reserved.