The Need for Cybersecurity Continues to Evolve
The constant in the cybersecurity world is that there is no constant. Cybercriminals are constantly evolving with the times, taking advantage of the exploited populations every day and finding the vulnerabilities of new and existing technologies.
NTT’s annual “Executive Guide to the 2020 Global Threat Intelligence Report” gives six factors to consider to keep your company out of harm’s way for the foreseeable future.
- Threat actors are innovating – Attack volumes increased across all industries between 2018 and 2019. The most common techniques observed worldwide were remote code execution (15 percent) and injection (14 percent) attacks. These attacks are mostly effective due to businesses’ poor practices in network, operating system, and application configuration, testing, security controls, as well as overall security hygiene.
- The weaponization of the Internet of Things – Botnets like Mirai and Echobot have advanced in automation, improving their propagation capabilities. Mirai and variants targeted network backbone devices from several different vendors.
- Old vulnerabilities remain active targets – Attackers are still focused on leveraging vulnerabilities that are several years old, have patches available, but still are not being addressed by organizations patch and configuration management programs.
- Content management systems are at risk – Malicious actors leverage compromised web servers to steal valuable data and use these powerful resources to conduct additional cyberattacks. Popular CMS platforms like WordPress, Joomla!, Drupal and non-CMS account for about 70 percent of CMS market share.
- The evolution of governance, risk and compliance – Global health emergencies like the coronavirus outbreak do, and should, affect the way organizations manage security-related initiatives. Health and safety concerns over employees and the public override many compliance initiatives and should be taken into account when designing and implementing security controls, business continuity and disaster recovery plans.
- Shift in sector targeting – Technology was the most attacked industry in 2019, accounting for 25 percent of all attacks, compared to 17 percent last year. Also, attacks on the government sector have been driven by geopolitical activity, and now represent 16 percent of all attacks, compared to 9 percent in 2018.
2W Tech is a technology service provider that has Security experts on staff that have experience conducting gap analysis as part of our Cybersecurity Compliance program. Give us a call today to learn more about how we can fortify your cybersecurity and ensure you are using the best security solutions.