Cyber Defense eMagazine February Edition for 2022

More documents

Recommendations

Info

Partners, investors, and of course customers, all want to know that they are working with trustworthy folks. Winning over customers in the first place is hard enough, just ask your marketing and sales teams. Especially in markets where the customers are asked to share access to their data and the core of their products, they need to feel that your organization is trustworthy and their data protected. Having your system breached by a hacker can be a hard knock to customer trust. Regaining their trust after the damage came from the inside is an even bigger uphill battle, so this really might be a case where an ounce of prevention can be worth a pound of cure. 3 Tips for Mitigating Insider Threat Risks Risks from inside and out are always present, but there are steps that we can take to lower our potential for threats and mitigate damage when they do occur. 1. Train Your Team to Identify Risky Situations Whenever attackers approach a prospective insider to get them to expose their organization, they offer serious rewards while downplaying the severity of what they are doing. In some cases, an insider may know that they are doing something wrong but will not understand the repercussions of their actions. If the person approaching them is a friend or family member, then they may be even more likely to go through with it. Talk to your employees to explain the risks that can emerge from them taking steps that can compromise the organization. Give them tools to spot red flags before they may unwittingly take part in something destructive. Finally, clarify what your policy is and let them know that you have protections in place. 2. Use Solutions to Monitor User Actions Having the right tools in place to identify when a user is performing actions that may fall outside of their normal duties or another kind of anomaly, can help to stop them sooner. User and Entity Behavior Analytics can help to detect these threats, understanding what the baseline of normal behavior is and alerting when a user strays from their expected routine. 3. Use MFA Whenever Possible As we have noted, credentials will be compromised. In those instances, multi-factor authentication can play a serious role keeping the attackers out because having your credentials are no longer enough. Many organizations use SMS as their MFA solution, but this is against best practices that call for using an app to generate the one-time-codes. For extra points, get a Yubikey for your most privileged users, adding that extra layer of security. Cyber Defense eMagazine – February 2022 Edition 44 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Verify But Trust Managing insider threats is a balancing act. We hire our people because we believe that they will be good workers who will look out for the organization’s best interests. Putting protections in place to help keep folks honest or catch an external threat actor are common sense and can help avoid some uncomfortable situations. But at the end of the day we have to trust that we have the right people working with us, and it is up to us to make them feel that they are part of our team. Work with your team to have transparent conversations about the protections that you have in place so that everyone will be on the same page. In this case, honesty really is the best policy. Balancing the right mix of surveillance with trust is important for the long term success of the organization, if only because employees who feel that they are guilty until proven innocent simply will not stick around for long. About the Author Isaac Kohen is VP of R&D at Teramind, a leading global provider of employee monitoring, data loss prevention (“DLP”) and workplace productivity solutions. Follow on Twitter: @teramindco and LinkedIn. Cyber Defense eMagazine – February 2022 Edition 45 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: How Criminals Have Migrated Through
Page 3 and 4: Combining True MDR & SOC for Robust
Page 5 and 6: @CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8: Cyber Defense eMagazine - February
Page 17 and 18: How Criminals Have Migrated Through
Page 19 and 20: Quite often the perpetrator claims
Page 21 and 22: • Identity Access Management (IAM
Page 23 and 24: About The Author Active with the IC
Page 25 and 26: Given the rise in cyber-attacks, th
Page 27 and 28: Why is that? Let’s take COVID-19
Page 29 and 30: soon as possible and base it on str
Page 31 and 32: How Do I Reliably Identify You If I
Page 33 and 34: validation, what can be a very reli
Page 35 and 36: How To Improve Federal Endpoint Det
Page 37 and 38: What should agencies look for in a
Page 39 and 40: Decision Trees in Case of a Ransomw
Page 41 and 42: expertise’s recommended returning
Page 43: was sentenced to 12 years for payin
Page 47 and 48: We now live in a world where the in
Page 49 and 50: 2. Cryptographic Failures - Cryptog
Page 51 and 52: Conclusion Penetration testing is a
Page 53 and 54: 1. Increase enterprise security pro
Page 55 and 56: minimise the impact on business per
Page 57 and 58: Today's Digital Battlefield Demands
Page 59 and 60: UAE can be a cyber security powerho
Page 61 and 62: Why Ransomware is Only a Symptom of
Page 63 and 64: Response vendor that can leverage a
Page 65 and 66: Critical IT infrastructure had to b
Page 67 and 68: Killware is the Next Big Cybersecur
Page 69 and 70: The most effective way to defend ag
Page 71 and 72: Combining True MDR & SOC for Robust
Page 73 and 74: especially those who want to build
Page 75 and 76: intelligence, data logs, and advanc
Page 77 and 78: But when it comes to cybercrime, a
Page 79 and 80: of in 2022. In effect, ransomware h
Page 81 and 82: Detect Ransomware Data Exfiltration
Page 83 and 84: Advanced SQL Behavioral Analysis fr
Page 85 and 86: In contrast, the corresponding reac
Page 87 and 88: of how PCs, laptops, and other Wind
Page 89 and 90: Cyber Insurance: What Executives Ne
Page 91 and 92: Keeping Premiums Low Once Coverage
Page 93 and 94: Data Security Must Be a Priority as
Page 95 and 96:
sites like Facebook or LinkedIn. Cy
Page 97 and 98:
Why Building Managers Need to Prior
Page 99 and 100:
It should also provide the means fo
Page 101 and 102:
Cyber Defense eMagazine - February
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
CyberDefense.TV now has 200 hotseat
Page 125 and 126:
Books by our Publisher: https://www
Page 127 and 128:
Page 129 and 130:
show all

Cyber Defense eMagazine February Edition for 2022

Create successful ePaper yourself

Delete template?

Save as template?