Newer forms of advanced persistent threats (APTs) are very much on my mind these days. Maybe they should be on your mind, too.
Over the weekend, RSA's Uri Rivner posted some very sobering details ("Anatomy Of An Attack") regarding EMC's recent experience. I don't often do this, but -- please -- go read this post.
I'd encourage you to resist the usual human tendency to assume that someone made a huge mistake (not true), or the people involved might be incompetent (they most definitely aren't) or that -- somehow -- the circumstances don't apply to you or your organization. .
I am told that one of the key actors in this episode was EMC IT's use of NetWitness to detect and isolate the attack while it was occurring. Lest you assume this was some sort of cause-and-effect scenario, the business discussions were well advanced at the time of the event.
From an IT security perspective, I think we live in a new era. And anyone who purports to have a simplistic answer really doesn't understand the magnitude of the challenge.
You can learn more here.