Cyber Defense eMagazine March Edition for 2022

More documents

Recommendations

Info

servers, databases, websites, and systems updated with the latest patches to limit vulnerabilities for attackers to exploit. • Ransomware, Ransomware, Ransomware – After a steep decline in 2020, ransomware attacks reached 105% of 2020 volume by the end of September (as WatchGuard predicted at the end of the prior quarter) and are on pace to reach 150% once the full year of 2021 data is analyzed. Ransomware-as-a-service operations such as REvil and GandCrap continue to lower the bar for criminals with little or no coding skills, providing the infrastructure and the malware payloads to carry out attacks globally in return for a percentage of the ransom. • The quarter’s top security incident, Kaseya, was another demonstration of the ongoing threat of digital supply chain attacks – Just before the start of the long 4 th of July holiday weekend in the US, dozens of organizations began reporting ransomware attacks against their endpoints. WatchGuard’s incident analysis described how attackers working with the REvil ransomware-as-a-service (RaaS) operation had exploited three zero-day vulnerabilities (including CVE-2021-30116 and CVE-2021-30118) in Kaseya VSA Remote Monitoring and Management (RMM) software to deliver ransomware to some 1,500 organizations and potentially millions of endpoints. While the FBI eventually compromised REvil’s servers and obtained the decryption key a few months later, the attack provided yet another stark reminder of the need for organizations to proactively take steps like adopting zero-trust, employing the principle of least privilege for vendor access and ensuring systems are patched and up to date to minimize the impact of supply chain attacks. In Q3, malware per device skyrocketed and was up for the first time since the pandemic began. Looking at 2021, it’s clear cybersecurity continues to challenge users. Its critical organizations think about the long-term ups and downs as well as focus on persistent, concerning trends factoring into their security posture. A strong cybersecurity strategy includes endpoint protection, multi-factor authentication and secure Wi-Fi – all important components in a layered approach to security. When implemented properly, users can drastically mitigate outsider threats. About the Author Corey Nachreiner is the CSO of WatchGuard Technologies. A front-line cybersecurity expert for nearly two decades, Corey regularly contributes to security publications and speaks internationally at leading industry trade shows like RSA. He has written thousands of security alerts and educational articles and is the primary contributor to the Secplicity Community, which provides daily videos and content on the latest security threats, news and best practices. A Certified Information Systems Security Professional (CISSP), Corey enjoys "modding" any technical gizmo he can get his hands on and considers himself a hacker in the old sense of the word. Corey can be reached at @SecAdept on Twitter or via https://www.watchguard.com. Cyber Defense eMagazine – March 2022 Edition 38 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Don’t Become a Horrible Headline: Some Tips on Redesigning Your Threat Posture for The 2022 Threat Landscape By Omar Zarabi, Founder and CEO, Port53 Technologies As in previous years, the DefCon of the cybersecurity industry is best illustrated by the headlines – each a cautionary tale. The past two years were witness to a virtual House of Horrors that has propelled cybersecurity to the top of corporate agendas. The 2020 supply-chain attack on SolarWinds' network monitoring application Orion affected thousands of the company's customers around the world, including several government agencies here in the US. And the list goes on. March 2021: Verkada, a Silicon Valley start-up that provides cloud-based CCTV systems, was compromised through the simple hijacking of privileged credentials. Attackers were able to browse the real-time footage of every Verkada customer, including health clinics, psychiatric treatment centers, and the premises of hybrid and electric car manufacturer Tesla. Also available for viewing: Verkada's own offices. Another example of stolen credentials was May's DarkSide ransomware attack on the Colonial Pipeline. It led to panic-buying of gas by the public, and cost the operator $5 million, in a payout characterized by The New York Times as a red flag to other threat actors who may see a lucrative pay day on the horizon. Abnormal times Even in normal years, this series of events – and others too numerous to mention – would have CISOs scurrying to the drawing board to reimagine their threat postures. But we are not living in normal years. In the midst of the dramatic contortions we were seeing in the threat landscape, nature threw a curveball Cyber Defense eMagazine – March 2022 Edition 39 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Why Changing Classified Document St
Page 3 and 4: Tips And Trends for OT Cybersecurit
Page 5 and 6: @MILIEFSKY From the Publisher… De
Page 7 and 8: Welcome to CDM’s March 2022 Issue
Page 9 and 10: Cyber Defense eMagazine - March 202
Page 19 and 20: level of concern while working remo
Page 21 and 22: The Fragility of a GPS Centric Worl
Page 23 and 24: Formerly known as LOng-RAnge Naviga
Page 25 and 26: The Role of The CFO In Enterprise C
Page 27 and 28: Help them mitigate potential risks
Page 29 and 30: The Safest Ways for Bitcoin Trading
Page 31 and 32: and clear instructions through a "N
Page 33 and 34: According to Cybereason’s “Rans
Page 35 and 36: If you implement these three tips,
Page 37: • Nearly half of zero-day malware
Page 41 and 42: pandemic era. By empowering profess
Page 43 and 44: Have We Learned from Our Past Mista
Page 45 and 46: internet, etc. How much training is
Page 47 and 48: How to strengthen cyber resilience
Page 49 and 50: A BCDR solution with automated disa
Page 51 and 52: 1. Cybersecurity Incidents Will Bec
Page 53 and 54: Is XDR The Right Solution for Today
Page 55 and 56: How Open XDR Helps Open XDR address
Page 57 and 58: A very small set of next-gen SIEM s
Page 59 and 60: • What are my options for data la
Page 61 and 62: Additionally, we’ll witness the r
Page 63 and 64: Top 10 Reasons Cyber Defense Firms
Page 65 and 66: 4. Teamwork and individual responsi
Page 67 and 68: 5 Reasons Organizations Need Compre
Page 69 and 70: systems to manage identity and acce
Page 71 and 72: Directed Analytics - The Future of
Page 73 and 74: Directed analytics allow these insi
Page 75 and 76: InDesign and uploaded to indd.adobe
Page 77 and 78: Are You Prepared for the New Normal
Page 79 and 80: • Find Unseen Risk - The hardest
Page 81 and 82: intruders were able to gain control
Page 83 and 84: About the Authors Michael Cheng is
Page 85 and 86: Why am I rehashing this old trope?
Page 87 and 88: 1. Look for and minimize attack sur
Page 89 and 90:
On The Frontline in The War Against
Page 91 and 92:
How to Fix Mid-Market Security Usin
Page 93 and 94:
the particular victims being target
Page 95 and 96:
5 Ways Cybersecurity Will Change In
Page 97 and 98:
#3: Supply chains will be the big r
Page 99 and 100:
Executive Order Instructs Certain O
Page 101 and 102:
• Stay ahead of fraud. Fraud cost
Page 103 and 104:
Too Hot to Handle:The case for Zero
Page 105 and 106:
Critically, endpoint security only
Page 107 and 108:
To prevent lateral movement attacks
Page 109 and 110:
Redefining Resilience in The New Wo
Page 111 and 112:
About the Author Andrew Lawton is C
Page 113 and 114:
Cyber Defense eMagazine - March 202
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
CyberDefense.TV now has 200 hotseat
Page 137 and 138:
Books by our Publisher: https://www
Page 139 and 140:
show all

Cyber Defense eMagazine March Edition for 2022

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?