{"id":3201,"date":"2020-10-16T13:32:10","date_gmt":"2020-10-16T17:32:10","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=3201"},"modified":"2020-10-16T15:16:54","modified_gmt":"2020-10-16T19:16:54","slug":"what-the-barnes-and-noble-breach-can-teach-us-about-siem","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/","title":{"rendered":"What the Barnes and Noble Breach Can Teach Us About SIEM"},"content":{"rendered":"<p style=\"text-align: justify\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-3058\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\" alt=\"What the Barnes and Noble Breach Can Teach Us About SIEM\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg 800w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">What can the recent Barnes and Noble breach teach us about <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">SIEM<\/a>, security analytics, and the threat landscape? Recently, we spoke with several experts about the identity management lessons IT decision-makers could learn from the attack on the U.S. bookseller. However, we found that several experts saw this episode as a jumping-off point for critical lessons in SIEM as well.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Here, we present commentary about the Barnes and Noble Breach, SIEM, risk management, and more.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n<h2 style=\"text-align: justify\"><b>What the Barnes and Noble Breach Can Teach Us About SIEM<\/b><\/h2>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<h3 style=\"text-align: justify\"><b>Vinay Sridhara<\/b><\/h3>\n<p style=\"text-align: justify\"><i><span style=\"font-weight: 400\">Vinay Sridhara is CTO of <\/span><\/i><a href=\"https:\/\/www.balbix.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><i><span style=\"font-weight: 400\">Balbix<\/span><\/i><\/a><i><span style=\"font-weight: 400\">.\u00a0<\/span><\/i><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cCompanies in the retail industry have noticed a recent increase in online consumer buying patterns due to COVID-19, and with the holiday season fast approaching, this trend will only continue to rise. Today&#8217;s unfortunate reality is that the enterprise attack surface is massive, and there are nearly unlimited things that can go wrong. According to a <\/span><a href=\"https:\/\/www.balbix.com\/resources\/2020-state-of-enterprise-security-posture-report\/\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">recent report<\/span><\/a><span style=\"font-weight: 400\">, nearly half (46%) of organizations find it hard to tell which vulnerabilities are real threats versus ones that will never be exploited. This leaves security teams flying blind when it comes to prioritizing risk and leaves organizations vulnerable to unexpected attacks. To manage risk across their networks as well as a growing array of partners, the enterprise needs tools that can proactively monitor and prioritize vulnerabilities across the entire threat ecosystem. Taking a proactive approach towards managing risk must become the new norm and is required for good security posture.\u201d<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<h3 style=\"text-align: justify\"><b>Jonathan Reiber<\/b><\/h3>\n<p style=\"text-align: justify\"><em>Jonathan Reiber is Senior Director of Cybersecurity Strategy and Policy at <a href=\"https:\/\/attackiq.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">AttackIQ<\/a>.<\/em><\/p>\n<p style=\"text-align: justify\"><i>\u201cWe have seen a massive uptick in e-commerce under the onset of the coronavirus, and retailers are at risk of cyber-attack with peak online holiday shopping season around the corner. Today, retailers need to make a cognitive leap past the election and realize that they are the next logical target in the adversaries&#8217; sites. With limited investments, they can adopt a threat-informed cyber defense strategy and focus on the threats most likely to impact their operations.\u00a0\u00a0<\/i><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<h3 style=\"text-align: justify\"><b>Paul Martini<\/b><\/h3>\n<p style=\"text-align: justify\"><i><span style=\"font-weight: 400\">Paul Martini is CEO and Cofounder of <\/span><\/i><a href=\"https:\/\/www.iboss.com\/\"><i><span style=\"font-weight: 400\">iboss<\/span><\/i><\/a><i><span style=\"font-weight: 400\">.\u00a0<\/span><\/i><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;The indication that this breach may have been the result of ransomware should come as no surprise as these malicious attacks are becoming harder to spot and increasing in frequency. As a result, an untold number of Nook customers whose email addresses may have been exposed are now at further risk of being targeted by sophisticated phishing campaigns. Notably, this news comes after it was revealed that the U.S. government took direct action to disrupt a botnet, which has generally been used in ransomware attacks. To help prevent these types of attacks, organizations of all sizes should consider modern cybersecurity solutions that protect user internet connections regardless of location.\u201d<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Thanks to these experts for their time and expertise on the Barnes and Noble breach and SIEM. For more on the top vendors and capabilities in cybersecurity, please download the <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">Solutions Review SIEM Buyer\u2019s Guide<\/a>. We provide a Bottom Line analysis for each of the top vendors as well as several guiding questions and factoids.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Recently, we spoke with several experts about the identity management lessons IT decision-makers could learn from the attack on the U.S. bookseller. However, we found that several experts saw this episode as a jumping-off point for critical [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3058,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[551,3],"tags":[1130,675,1436,1437,353,95,145,112,1434,86,21,57,22],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What the Barnes and Noble Breach Can Teach Us About SIEM<\/title>\n<meta name=\"description\" content=\"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What the Barnes and Noble Breach Can Teach Us About SIEM\" \/>\n<meta property=\"og:description\" content=\"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/\" \/>\n<meta property=\"og:site_name\" content=\"SIEM Tools &amp; Security Event Management | Solutions Review\" \/>\n<meta property=\"article:published_time\" content=\"2020-10-16T17:32:10+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-10-16T19:16:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/\",\"name\":\"What the Barnes and Noble Breach Can Teach Us About SIEM\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"datePublished\":\"2020-10-16T17:32:10+00:00\",\"dateModified\":\"2020-10-16T19:16:54+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Panther Labs Releases State of SIEM 2021 Report\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What the Barnes and Noble Breach Can Teach Us About SIEM\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\",\"name\":\"SIEM Tools &amp; Security Event Management | Solutions Review\",\"description\":\"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What the Barnes and Noble Breach Can Teach Us About SIEM","description":"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/","og_locale":"en_US","og_type":"article","og_title":"What the Barnes and Noble Breach Can Teach Us About SIEM","og_description":"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.","og_url":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/","og_site_name":"SIEM Tools &amp; Security Event Management | Solutions Review","article_published_time":"2020-10-16T17:32:10+00:00","article_modified_time":"2020-10-16T19:16:54+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/","url":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/","name":"What the Barnes and Noble Breach Can Teach Us About SIEM","isPartOf":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","datePublished":"2020-10-16T17:32:10+00:00","dateModified":"2020-10-16T19:16:54+00:00","author":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"What can the recent Barnes and Noble breach teach us about SIEM, security analytics, and the threat landscape? Find out here.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#primaryimage","url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","width":800,"height":400,"caption":"Panther Labs Releases State of SIEM 2021 Report"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/what-the-barnes-and-noble-breach-can-teach-us-about-siem\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/security-information-event-management\/"},{"@type":"ListItem","position":2,"name":"What the Barnes and Noble Breach Can Teach Us About SIEM"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website","url":"https:\/\/solutionsreview.com\/security-information-event-management\/","name":"SIEM Tools &amp; Security Event Management | Solutions Review","description":"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/3201"}],"collection":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/comments?post=3201"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/3201\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media\/3058"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media?parent=3201"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/categories?post=3201"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/tags?post=3201"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}