Today, most of our defenses are designed to prevent attackers from accessing data or systems from which they could derive a profit. Purely destructive attacks like Shamoon, however, require much deeper defenses. Since they're all about making mayhem, not making money, the attacker shifts to hitting you anywhere it hurts instead of hitting where it benefits them financially.
Assuming Shamoon is the start of something new, CISOs need to adjust their thinking. Are you communicating this higher threat to your senior management? Has your organizations risk profile been fundamentally altered?
Sign up for CIO Asia eNewsletters.