Cyber Defense eMagazine February Edition for 2023

More documents

Recommendations

Info

With difficult decisions ahead, here are four cybersecurity trends that organizations should prepare for in 2023: 1. Rising costs may trigger an influx of cyber hustlers and money mules, fueling the cybercrime economy and putting users at risk. With its shift to platform business models, the cybercrime gig economy has made cybercrime easier, cheaper, and more scalable. Cybercrime tools and mentoring services are affordable and plentiful, enticing cyber hustlers – opportunists with low levels of technical skill – to access what they need to turn a profit. As we face another global downturn, easy access to cybercrime tools and know-how could increase the number of scam SMS messages and emails we see in our inboxes. Drawn by the promise of quick money, we may also see more people recruited into money-muling schemes, inadvertently fueling the cybercrime economy by enabling cybercriminals to launder ransom payments and fraudulent transactions. As an industry, we know that email is the most common attack vector, particularly for opportunists looking to make money fast like cyber hustlers, who favor simpler techniques like scams and phishing. The interconnectedness of the cybercrime ecosystem means threat actors can easily monetize these types of attacks. And if they strike gold and compromise a corporate device, they can sell that access to bigger players, like ransomware gangs. This all feeds into the cybercrime engine, giving organized groups even more reach. As attacks against users increase, having security built into devices from the hardware up will be essential to prevent, detect and recover from attacks. Fostering a healthy security culture is vital for building resilience – but only when combined with technology that reduces an organization’s attack surface. By isolating risky activities like malicious emails, entire classes of threats can be eliminated without relying on detection. Threat containment technologies ensure that if a user opens a malicious link or attachment, the malware can’t infect anything. This way organizations can reduce their attack surface and protect employees without hindering their workflows. 2. Established hackers to invest in advanced attacks below the operating system. In 2023, organizations should take control of firmware security. Once, firmware attacks were only used by highly advanced threat groups and nation states. But over the last year, we’ve seen early signs of increased interest and development of attacks below the operating system in the cybercrime underground – from tools to hack BIOS passwords, to rootkits and trojans targeting a device’s firmware. We now see firmware rootkits advertised on cybercrime marketplaces for a few thousand dollars. Advanced threat actors are always aiming to keep their attack capabilities ahead of the curve. Unfortunately, organizations often overlook firmware security, creating a large attack surface for adversaries to exploit. Access to the firmware level enables attackers to gain persistent control and hide below the operating system, making them very hard to detect – let alone remove and remediate. Cyber Defense eMagazine – February 2023 Edition 58 Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
Organizations should follow best practices and standards to secure device hardware and firmware. They should also understand and evaluate state-of-the-art technologies that protect, detect, and recover from firmware attacks. 3. Remote access machines will be on the frontline. We expect session hijacking – where an attacker commandeers a remote access session to access sensitive data and systems – will grow in popularity in 2023. By targeting users with privileged access to data and systems – such as domain, IT, cloud and system administrators – these attacks are higher impact, challenging to detect and more difficult to remediate. In an attack scenario, the targeted user will typically be unaware that a compromise has occurred. It takes milliseconds for an attacker to inject key sequences that could create a backdoor within a privileged environment. These attacks are all the more dangerous because they can bypass Privileged Access Management (PAM) systems that employ multi-factor authentication, such as smart cards. Suppose such an attack involves an industrial control system operating within a factory or industrial plant. The intrusion could impact availability and, potentially, physical safety. Carefully segregating access to systems is the only way to counter these attacks. Traditionally, organizations would achieve this through physically separate systems, like privileged access workstations, but now hypervisor-based approaches use virtualization to enforce strong virtual separation too. 4. Overlook print security at your peril in 2023 2023 will demand more actionable intelligence to spot threats, proactively protect assets and support decision-makers. Currently, print security is at risk of continuing to be an overlooked piece of the overall cybersecurity posture. And with workers connecting corporate devices to printers beyond the control of IT teams due to hybrid working, those risks are increasing. Organizations will need to develop security policies and processes for monitoring and defending print devices from attack, both in the office and at home. One challenge is that the volume of security telemetry coming from endpoints, including printers, is increasing daily. That's why security teams need contextual insights to identify the highest-level risks, the steps to mitigate them and support boardroom decision-making in allocating budget. As a result, we'll see organizations focus investments on solutions and services that deliver actionable intelligence rather than simply providing more and more security data. Combatting rising threats In 2023, organizations need to take a targeted approach to security. Most breaches start at the endpoint, so enterprises can reduce the burden on security teams by layering protection from the hardware up. No matter what threats organizations face in 2023, the way we protect devices and data needs to evolve. Managing budgets will be a big challenge for organizations. Boardrooms will need to be smart about how Cyber Defense eMagazine – February 2023 Edition 59 Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
Time to Build an Unhackable Interne
Page 3 and 4:
Emerging API Security Trends: What
Page 5 and 6:
@MILIEFSKY From the Publisher… De
Page 7 and 8: Welcome to CDM’s February 2023 Is
Page 9 and 10: Cyber Defense eMagazine - February
Page 33 and 34: Banco Banrisul’s thirty-six domai
Page 35 and 36: Why Cybersecurity Remains a Persist
Page 37 and 38: Robust Cybersecurity is Essential f
Page 39 and 40: 1. Facing the Cyber Crisis No compa
Page 41 and 42: About the Author Amitabh Sinha is t
Page 43 and 44: 1. Risk Assessment Government agenc
Page 45 and 46: 8. Incident Response Plan Preventio
Page 47 and 48: This is what happened to Dropbox la
Page 49 and 50: trust and growth, the board can hel
Page 51 and 52: etween governments and operators wi
Page 53 and 54: Accelerating Machine Learning Advan
Page 55 and 56: Secondly, MLOps platforms record al
Page 57: Cybercriminals Are Ramping Up Their
Page 61 and 62: 7 Biggest Cyber Attacks of 2022 By
Page 63 and 64: 4. Ex-Amazon worker convicted over
Page 65 and 66: About Salt Communications Salt Comm
Page 67 and 68: saw this most recently through a ra
Page 69 and 70: CPRA/CCPA Compliance in A Cloud-Fir
Page 71 and 72: having an excessive amount of permi
Page 73 and 74: In the coming months and beyond, on
Page 75 and 76: Emerging API Security Trends: What
Page 77 and 78: malicious communication pattern thr
Page 79 and 80: Free Consumer Apps Are Not Safe for
Page 81 and 82: But simultaneously - and unlike ema
Page 83 and 84: lives and works. The topic is tough
Page 85 and 86: and tendencies. The good question h
Page 87 and 88: others or the situation among some
Page 89 and 90: eing pushed into heavy criminalitie
Page 91 and 92: preparing and analyzing such a coll
Page 93 and 94: words, behind those high-tech crimi
Page 95 and 96: always make new and new damage if t
Page 97 and 98: References: [1] Djekic, M. D., 2017
Page 99 and 100: How Government Agencies Can Leverag
Page 101 and 102: The result leads to optimal perform
Page 103 and 104: A linchpin of Biden’s cyber-defen
Page 105 and 106: An effective observability platform
Page 107 and 108: Section 3553(h) of title 44, U.S. C
Page 109 and 110:
Exchange (MX) and Name Service (NS)
Page 111 and 112:
Looking Ahead to 2023: Cyber Trends
Page 113 and 114:
we’re falling behind, especially
Page 115 and 116:
Old vulnerabilities are not being d
Page 117 and 118:
Insider Threats are a Primary Vulne
Page 119 and 120:
The first step in insider threat mi
Page 121 and 122:
“We’re happy to announce MIRACL
Page 123 and 124:
The organisers of Europe’s most i
Page 125 and 126:
usable by everyday people. I think
Page 127 and 128:
Quentyn Taylor, Senior Director Pro
Page 129 and 130:
SDR for Cyber Defense By Kaue Morce
Page 131 and 132:
Figure 2: Cyan SDR - from Per Vices
Page 133 and 134:
as it allows the SDR to capture and
Page 135 and 136:
Security at the Enterprise Edge: To
Page 137 and 138:
This behavior makes it essential to
Page 139 and 140:
Shields Up: Organizations Need to D
Page 141 and 142:
eport, domains with the terms “bi
Page 143 and 144:
The Anti-Fraud Frontline Predictive
Page 145 and 146:
Cloud vendors' features can be depl
Page 147 and 148:
About the author Ryohei Fujimaki, F
Page 149 and 150:
The resulting phishing sites mirror
Page 151 and 152:
The javascript code in which the da
Page 153 and 154:
The Top Secrets of CISOs By Pat McG
Page 155 and 156:
About the Author Pat has more than
Page 157 and 158:
The latest analysis shows that Nort
Page 159 and 160:
What Role Can AI Play in Data Objec
Page 161 and 162:
Avoiding bias Objectivity and credi
Page 163 and 164:
As more and more data moves to the
Page 165 and 166:
to know where a document or other r
Page 167 and 168:
Cyber Defense eMagazine - February
Page 169 and 170:
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
Page 177 and 178:
Page 179 and 180:
CyberDefense.TV now has 200 hotseat
Page 181 and 182:
Books by our Publisher: https://www
Page 183 and 184:
Page 185 and 186:
show all

Cyber Defense eMagazine February Edition for 2023

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?