Cyber Defense eMagazine July 2021 Edition

More documents

Recommendations

Info

Threat Intelligence Should Be Shared Not Shamed By Nuno Povoa, Eurofins Cybersecurity US When the DarkSide ransomware group shut down the Colonial Pipelines’ gas distribution that stretches from Texas to New Jersey, something rather remarkable happened: the criminals apologized. The DarkSide group issued an apology, saying its goal was not in "creating problems for society" but "to make money." According to Newsweek, the hacker’s statement released on the Darkweb read in part, "Our goal is to make money, and not to create problems for society. From today we introduce moderation and check each company that our partners want to encrypt to avoid social consequences in the future." The world witnessed a cyber-terrorist organization playing a type of PR game to frame their attack as a ‘Robin Hood’-type of good deed. Cyber Defense eMagazine – July 2021 Edition 48 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Applying PR tactics is a new page in the hacker playbook to mask the organizational root causes of cyberattacks. Within these companies being targeted, it’s not a factor of negligence, it’s a lack of a clear understanding as to what these cybersecurity risks mean and how to translate them into impact. There's a big gap between the IT side of the house and the operational departments; each side has a separate administration department that doesn't always share security-related information in a timely manner. In the Colonial Pipeline’s case, their corporate exposure to the internet was most likely very tight, but exposure through its refineries—where they probably have their own security rules and procedures— was weaker and may not have matched up more stringent corporate security policies. Threat intelligence remains very compartmentalized and there's no central repository to share information. In many of these cybersecurity instances, investigators have to go to multiple sources, in multiple departments, to begin pinpointing the root cause of the attack. The highly operationalized companies who prioritized what is only important to their specific part of the organization prolong the attack identification process. From the IT department down to the industrial control systems, there needs to be a better accountability structure in place and support for corporate-wide threat/risk data sharing— especially in utilities. Attackers - A Victimless Mindset Oftentimes, criminals who do these types of attacks are under the impression that it’s a victimless crime and at one point, the company will get reimbursed by their cyber insurance provider. In the Colonial Pipeline case, the hackers are hitting the company’s bottom line as well as affecting the price of gas all along the U.S Eastern seaboard. “We are sorry. We wanted to start a little fire not a big fire” is far from an already morally dubious ‘Robin Hood’ act. Imagine what would have happened if this was a wellcalculated attack on purpose, like the 2015 attack on the Ukraine power grid. To combat criminal hackers there needs to be a real-time, institutional understanding of what the threats are and a universal repository of data shared among all organizations, similar to how the National Oceanic and Atmospheric Administration (NOAA) shares all weather-related information to benefit everyone. But the fact remains that companies don't want to talk about their cybersecurity issues fearing bad PR and shareholder repercussions. All organizations need to share information on security breaches to create resiliency that enables quicker and more effective attack responses. To achieve this resiliency and collective response, companies need to have an overall risk management strategy—not just a bunch of vendor management tools—to create a reasonable strategy. Conclusion We live in a world where virtually everything is connected to the internet and there will always be bad actors looking for a way in. Companies need to embrace this reality, but a lot of organizations chose to downplay their chances of being hacked. The minute devices are connected to the internet there is an Cyber Defense eMagazine – July 2021 Edition 49 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Colonial Key Business Pipeline, Les
Page 3 and 4: Ransomware, the Ultimate Cyber Thre
Page 5 and 6: @MILIEFSKY From the Publisher… Ne
Page 7 and 8: Welcome to CDM’s July 2021 Issue
Page 9 and 10: Cyber Defense eMagazine - July 2021
Page 33 and 34: Colonial Pipeline, JBS Cyber Attack
Page 35 and 36: is clear: Cyberattacks will continu
Page 37 and 38: of management complexity for any bu
Page 39 and 40: Flipping the Cyber Script Getting A
Page 41 and 42: Trust strategies, they will prevent
Page 43 and 44: The growing threat In the last 12 m
Page 45 and 46: Common Sense Cybersecurity Steps fo
Page 47: The next big thing: addressing remo
Page 51 and 52: NATO to Consider Military Response
Page 53 and 54: The number of open positions in var
Page 55 and 56: 3. Delivery - Transmission of the p
Page 57 and 58: Uncovering the Dark Side of the Col
Page 59 and 60: Energy and Utilities - You Have No
Page 61 and 62: a cyberattack that shut down approx
Page 63 and 64: Ransomware and the Cybersecurity In
Page 65 and 66: About the Author Jack Blount is Pre
Page 67 and 68: The airline industry’s poor recor
Page 69 and 70: Ransomware, the Ultimate Cyber Thre
Page 71 and 72: About the Author Yehudah Sunshine,
Page 73 and 74: A second reason for the increase in
Page 75 and 76: A Case of Identity: A New Approach
Page 77 and 78: Implementing a digital trust ecosys
Page 79 and 80: A 3-Part Plan for Getting Started w
Page 81 and 82: As threats continue to evolve, it
Page 83 and 84: 1. Endpoint and user protection Des
Page 85 and 86: The Risks of The Vulnerable Iot Dev
Page 87 and 88: Insecure Data Transfer and Storage
Page 89 and 90: Three Steps to Building Email Cyber
Page 91 and 92: Plan Ahead and Avoid Disaster The H
Page 93 and 94: NDR technology is built on three pr
Page 95 and 96: Hardware Trojan Detection By Sylvai
Page 97 and 98: the properties (user mode, memory a
Page 99 and 100:
About the Author My Name is Sylvain
Page 101 and 102:
outside coaches - to help them impr
Page 103 and 104:
Tips for Avoiding Online Scams Duri
Page 105 and 106:
Phishing Example 1 Phishing refers
Page 107 and 108:
About the Author Cindy Murphy is th
Page 109 and 110:
The recent Feedzai report confirms
Page 111 and 112:
Why Cyber Risk Is the Top Concern o
Page 113 and 114:
(BEC) attacks, also known as “fak
Page 115 and 116:
What Educational Institutions Need
Page 117 and 118:
Firewall Security VPN connectivity,
Page 119 and 120:
Business Continuity: Where InfoSec
Page 121 and 122:
● ● ● ● How educated are em
Page 123 and 124:
Biometrics Challenges By Milica D.
Page 125 and 126:
Epic V. Apple Trial - Impact of Big
Page 127 and 128:
About the Author Brad Ree is the Ch
Page 129 and 130:
eaches because large amounts of hig
Page 131 and 132:
• securing mobile and remote work
Page 133 and 134:
This topic has great relevance beca
Page 135 and 136:
I recommend that leaders of private
Page 137 and 138:
fail that promptly. After, say, sev
Page 139 and 140:
1. Infosecurity Europe Where: Olymp
Page 141 and 142:
leaders, and help each other advanc
Page 143 and 144:
Cyber Defense eMagazine - July 2021
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
You asked, and it’s finally here
Page 155 and 156:
9 Years in The Making… Thank You
Page 157 and 158:
show all

Cyber Defense eMagazine July 2021 Edition

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?