Cyber Defense eMagazine January Edition for 2022

More documents

Recommendations

Info

Danny Lopez, CEO, Glasswall “If there is any topic the cybersecurity industry will continue to discuss in 2022, it’s the talent shortage. In the U.S., there are almost 500,000 jobs to be filled in this industry alone. What’s more troubling is that it’s not just organisations competing to secure talent anymore since ransomware-as-a-service (RaaS) has entered the market. Cybercriminal groups are heavily recruiting in tandem. In an attempt to respond to the skills shortage exacerbated by the ‘great resignation,’ commercial enterprises will find themselves also looking at the talent pool of former (and now reformed) hackers in an effort to improve their own cybersecurity systems and pad their teams. The most easily achieved response to addressing the labour shortage today, beyond getting creative with hiring, is to ensure that organisations have the correct products to protect their systems and data and automate more menial tasks for their security analysts and leadership -- so they can spend their time focusing on stopping digital adversaries. Overall, companies must be proactive in both their recruitment and building out their cybersecurity infrastructure.” Steve Roberts, chief financial officer at Glasswall “Many organisations are currently still figuring out what a hybrid working model means for them. Permanent office space and long term leases are likely to be a thing of the past and this will inevitably lead to a shift in budget allocation. My advice for businesses in 2022 is to ensure any budget that is no longer attributed to office leases is reallocated to effective collaboration tools, increasing security and employee wellbeing. An unused budget is not a net saving, so it should be applied elsewhere to ensure that the new hybrid working model is secure and healthy. Companies implementing a hybrid working model should ensure both their office infrastructure and remote working environments are secure. Remote working can result in security vulnerabilities, particularly if employees are using their own devices to connect to corporate systems. The budget should be reallocated to invest in security solutions that will close these gaps and keep systems and data secure. With the uncertainties around long-term working models, most organisations don’t want to be tied into long-term contracts. Technology providers will need to rethink and evolve how they are selling their products. Offering short-term contracts for SaaS solutions that can be deployed solely in the cloud or as a hybrid solution will enable businesses to better support their customers. Organisations aren’t going to transition to the cloud overnight, so technology solutions need to be able to protect them in every environment.” Cyber Defense eMagazine – January 2022 Edition 104 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Paul Farrington, chief product officer at Glasswall “We’re constantly seeing cybercriminals changing their methods, and this will continue in 2022. Not only do we anticipate the use of automation to create scale - for example in DDoS attacks and the communication of malware - but we’re seeing machine learning (ML) being used to make attacks more effective. It’s one thing for a human attacker to analyse email characteristics to work out what entices a reader to click on a malicious link - applying ML to this adds a completely new dimension. In doing so, attackers have an almost infinite ability to tweak variables and ultimately secure a better payoff for their efforts. This kind of analysis – where ML is used to make small changes to malware properties, for example in a PDF or a Word document – needs to be stopped in its tracks. Organisations need to seriously consider whether this type of malware will evade detection from their anti-virus tools. If the answer’s yes, the problem needs to be looked at in a new way. Polymorphic malware has been around for a decade – metamorphic malware, on the other hand, is a more recent phenomenon. It’s taking time for organisations to build up strategies to combat it. I predict that this form of malware will take off over the next few years, as cybercriminals increasingly leverage ML to make malware more personalised, and thereby easier to evade detection. At the extreme end, this will see every piece of malware become novel or unique. This makes it far more likely it will be able to slip through an unknown gap in the defenses. Delivered at scale, this has the potential to become a significant problem for organisations that are not taking a proactive approach to file sanitisation.” Paul Farrington, chief product officer at Glasswall “Cyber is now the weapon of choice for nation-state attacks and we can expect to see even more evidence of this in 2022. This means new cyber-focused legislation is, and will continue to be, a priority amongst governments, as reflected in Biden’s Executive Order. The positive side to this is that cybersecurity will continue to be spoken about more widely and openly among private sector organisations. At a high-level, businesses will need to take notice of the changing legislative landscape and adopt a compliance-first mindset, irrespective of whether cybersecurity is Cyber Defense eMagazine – January 2022 Edition 105 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
“Owning Your Identity” Through
Page 3 and 4:
WatchGuard Technologies’ 2022 Pre
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - January 2
Page 9 and 10:
MUST ATTEND REPLAY AVAILABLE ON-DEM
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
But in spite of this threat, consum
Page 41 and 42:
How To Thwart Fraud with Phone Numb
Page 43 and 44:
mutable and dynamic by continually
Page 45 and 46:
Phishing: How To Improve Cybersecur
Page 47 and 48:
organizations gather data all in on
Page 49 and 50:
offers comprehensive firmware prote
Page 51 and 52:
Why Hackers Attack Mobile Devices a
Page 53 and 54: the network. This is a good indicat
Page 55 and 56: About the Author Nicole Allen, Mark
Page 57 and 58: Know your customer As spam and phis
Page 59 and 60: Microsoft Successfully Defended The
Page 61 and 62: However, you can’t rely 100% on t
Page 63 and 64: Why Americans Joined Europe in Not
Page 65 and 66: Have a good backup policy. A good p
Page 67 and 68: Secure Apart from reporting, the af
Page 69 and 70: Taking a hard look at the current s
Page 71 and 72: There are plenty of organizations t
Page 73 and 74: 5. The impact of the talent shortag
Page 75 and 76: The industry is already embracing a
Page 77 and 78: WatchGuard Technologies’ 2022 Pre
Page 79 and 80: Users, especially professionals, ha
Page 81 and 82: What Are DeFi Flash Loans & How to
Page 83 and 84: DeFi hackers can easily exploit fla
Page 85 and 86: 3. Get audited Getting a smart cont
Page 87 and 88: Protecting Critical Infrastructure
Page 89 and 90: • They use penetration tools to g
Page 91 and 92: Three Key Facts About AI-Driven Net
Page 93 and 94: About the Author Eyal Elyashiv is t
Page 95 and 96: Tyler Farrar, CISO, Exabeam “What
Page 97 and 98: Protecting unstructured data will l
Page 99 and 100: change again before they’re done.
Page 101 and 102: Samantha Humphries, head of securit
Page 103: Due to their successes, adversaries
Page 107 and 108: In 2022, it is going to become cruc
Page 109 and 110: Our Cyber Defenses Need to Be Battl
Page 111 and 112: the exploitation aspect, but if tes
Page 113 and 114: 12 Tips for Improving Access Contro
Page 115 and 116: weak passwords. Password management
Page 117 and 118: Four Cybersecurity Predictions Fede
Page 119 and 120: 4. Cyber Funding Gets Granular In F
Page 121 and 122: Of course, these recommendations ar
Page 123 and 124: Cybersecurity Tips to Help Your Org
Page 125 and 126: Organizations can achieve true cybe
Page 127 and 128: quarter. Put simply, any organizati
Page 129 and 130: Cyber Defense eMagazine - January 2
Page 149 and 150: Free Monthly Cyber Defense eMagazin
Page 155 and 156:
THE Q1/Q2 GAME CHANGER… CYBERDEFE
show all

Cyber Defense eMagazine January Edition for 2022

Create successful ePaper yourself

Delete template?

Save as template?