Latest Banking Hack Illustrates the Value of CompTIA CySA+

by Debra B. McCraw | Feb 20, 2017

A hacker typing codeFebruary began with the Polish banking industry uncovering and responding to what is being called the most serious cyber-attack in Polish history. Hackers planted malicious files on the servers of the Polish Financial Supervision Authority (KNF), which regulates the country’s banking industry. Anyone who visited the KNF website would unknowingly load a JavaScript file into their browser, which would then download malware from an external malicious server and install it. This is known as a waterhole attack.

While authorities are still investigating who is responsible, they believe the hackers are from another country. The Polish attack may even be related to similar ones in Mexico and Uruguay.

This latest news is just another example of the need for CompTIA Cybersecurity Analyst (CySA+), which launched last week. With CySA+, IT pros can get the training they need to combat, and even prevent, these attacks and prove to employers they have the skills it takes to protect their servers.

CySA+ applies behavioral analytics to improve IT security and validates the knowledge and skills required to protect an organization's network. IT pros use security analytics to create threat visibility across a network. This new visibility allows them to identify and combat malware and advanced persistent threats (APTs). Behavioral analytics helps detect bad behavior on your network so you can stop the problem as quickly as possible. If a system is infected, connections it makes with a malicious server can be immediately identified and severed.

CySA+-certified professionals know how to use the right tools to perform these tasks, such as intrusion detection systems (IDS), packet sniffers and security information and event managers (SIEM). Someone who has CompTIA CySA+ can go beyond simply reading the data that these tools produce. They know how to interpret it and use it to make decisions and take action.

The malicious server is often a command-and-control center on the dark web, and in the case of KNF, it attempted to download malware on visitors' web browsers. CySA+ tools would allow an IT pro to identify the IP address or domain of the malicious server, classify it as a “bad IP address or domain” and even terminate the connection before any malware is downloaded and installed.

The importance of cybersecurity continues to grow with each of these attacks that surfaces. Opportunities abound for those with the right skills. If you don’t have the skills yet, consider CompTIA CySA+ or the CompTIA Cybersecurity Career Pathway to set you on your way to a cybersecurity career.

6 Comments

  • Vladimir

    Wednesday, February 22, 2017

    Sounds great, are there any study materials we can use?

  • Wednesday, February 22, 2017

    Hi, Vladimir! Thanks for your comment. You can begin by downloading sample questions and exam objectives here: https://certification.comptia.org/certifications/cybersecurity-analyst In terms of books and courses, over the coming weeks you'll see more training materials and courses becoming available. Check out our self-study and training page for more info: https://certification.comptia.org/training/self-study-training Good luck!

  • Trevor Chandler

    Thursday, March 16, 2017

    This is a very eye-opening article. Although I am CASP certified, I still intend to attempt the CySA+ certification. Also, with intentions to eventually teach a CySA+ course, I can see how this article can be used to promote the course. Thanks for sharing.

  • John

    Friday, March 17, 2017

    What IT experience is needed to take this course.

  • dmccraw

    Friday, March 17, 2017

    Hi, John! CySA+ is not a course, but a certification. You can take training courses or do self-study to prepare for the exam, and if you pass the exam, you receive your certification. CySA+ is a mid-level certification for IT pros with 3-4 years of security experience. For those who have less experience, Security+ is a great option. Take a look at the CompTIA Cybersecurity Career Pathway for more info: https://certification.comptia.org/it-career-news/post/view/2016/10/11/introducing-the-comptia-cybersecurity-career-pathway

  • DCam

    Tuesday, March 21, 2017

    Thank you for sharing this article. It provided provides a great insight for the need to remain current on cyber threats which rapidly change day to day.

Leave a Comment

Boost your Career with a Certification

Find out more about our Certifications

How to get Certified

4 Steps to Certification

Already certified? Let us and others know!

Share Your Story