Cyber Defense eMagazine March Edition for 2022

More documents

Recommendations

Info

Why Changing Classified Document Status Can Affect Risk Levels and How Proactive Cybersecurity Methods Can Help By Sam Hutton, SVP, Glasswall As ransomware attacks, insider threats, data breaches and phishing attacks against government agencies continue to skyrocket, organisations are at constant risk. There are many recent events such as the JBS Foods, the Colonial Pipeline and SolarWinds in 2020, proving that organisations need to be aware of any possible vulnerabilities that could potentially affect sensitive data. Security risks for remote federal employees and government agencies Since there is a discussion on keeping federal workers remote, there are concerns around the decreased level of precautions being taken toward cyber risks and the legal implications associated with cyberattacks. The 2021 Thales Data Report: Global Edition stated that 82% of people expressed some Cyber Defense eMagazine – March 2022 Edition 18 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
level of concern while working remotely. This number is even higher for federal employees at 84%. Remote work can harbor more risk for cyber attacks than for those in offices because at home connections are generally less secure, making access easier for cybercriminals to find. The report also notes that only 44% of employees were not confident in their existing security protocols. For companies, organisations and government agencies, there can be legal repercussions for cyberattacks too. According to The Securities and Exchange Commission and Commodity Futures Trading Commission, while state and federal regulations vary, there may be further reporting required depending on the conditions of the cyberattack and the type of data that was compromised. The impact of malware on classified files Malware operates by infiltrating a point of weakness through a network, beginning the journey of lateral movement. Bad actors understand this and will intrude through an organisation, undetected, attempting to gather as much data as possible. For federal agencies, documents that enter government systems at an unclassified point are viewable for a wider audience, however, once they enter into a classification level -- whether confidential, secret or top secret -- there is a chance of malware being attached. “Classified” determines information specifically designated by a U.S. government agency for limited, restricted dissemination or distribution. When documents are being taken up or down to higher or lower confidentiality levels, there is valuable information at stake. If files that were previously unclassified carry hidden viruses, there is an opportunity for digital adversaries to break into top-secret networks and infiltrate government information. This could enable them to steal trade secrets, learn about secret foreign policies or military tactics, which in turn can put lives at risk. SolarWinds, one of the most catastrophic cyberattacks in U.S. history, resulted in the hacking of major enterprises and government agencies including the Department of Homeland Security and the Treasury Department for over 14 months before being discovered. The hackers were able to break into the SolarWinds systems by implementing a malicious code into a system known as “Orion” which was commonly known by companies to handle IT resources. This code is what created an opening for the hackers to install malware that allowed them to spy on companies. Due to the stealth movement of the hack, some of those involved may still be unaware. Bad actors know how to identify loopholes in the system to gain access to sensitive information. This further proves the value of implementing strict cybersecurity methods to ensure that sensitive data is protected. There needs to be proactive, zero-trust cybersecurity methods in place as government documents go through the confidentiality cycle to ensure that all files are protected and monitored. How Content Disarm and Reconstruction (CDR) technology can help It is imperative that federal agencies take a proactive approach in their file security methods. CDR technology works to clean and rebuild files to a ‘known good’ industry standard by automatically removing Cyber Defense eMagazine – March 2022 Edition 19 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Why Changing Classified Document St
Page 3 and 4: Tips And Trends for OT Cybersecurit
Page 5 and 6: @MILIEFSKY From the Publisher… De
Page 7 and 8: Welcome to CDM’s March 2022 Issue
Page 9 and 10: Cyber Defense eMagazine - March 202
Page 17: Cyber Defense eMagazine - March 202
Page 21 and 22: The Fragility of a GPS Centric Worl
Page 23 and 24: Formerly known as LOng-RAnge Naviga
Page 25 and 26: The Role of The CFO In Enterprise C
Page 27 and 28: Help them mitigate potential risks
Page 29 and 30: The Safest Ways for Bitcoin Trading
Page 31 and 32: and clear instructions through a "N
Page 33 and 34: According to Cybereason’s “Rans
Page 35 and 36: If you implement these three tips,
Page 37 and 38: • Nearly half of zero-day malware
Page 39 and 40: Don’t Become a Horrible Headline:
Page 41 and 42: pandemic era. By empowering profess
Page 43 and 44: Have We Learned from Our Past Mista
Page 45 and 46: internet, etc. How much training is
Page 47 and 48: How to strengthen cyber resilience
Page 49 and 50: A BCDR solution with automated disa
Page 51 and 52: 1. Cybersecurity Incidents Will Bec
Page 53 and 54: Is XDR The Right Solution for Today
Page 55 and 56: How Open XDR Helps Open XDR address
Page 57 and 58: A very small set of next-gen SIEM s
Page 59 and 60: • What are my options for data la
Page 61 and 62: Additionally, we’ll witness the r
Page 63 and 64: Top 10 Reasons Cyber Defense Firms
Page 65 and 66: 4. Teamwork and individual responsi
Page 67 and 68: 5 Reasons Organizations Need Compre
Page 69 and 70:
systems to manage identity and acce
Page 71 and 72:
Directed Analytics - The Future of
Page 73 and 74:
Directed analytics allow these insi
Page 75 and 76:
InDesign and uploaded to indd.adobe
Page 77 and 78:
Are You Prepared for the New Normal
Page 79 and 80:
• Find Unseen Risk - The hardest
Page 81 and 82:
intruders were able to gain control
Page 83 and 84:
About the Authors Michael Cheng is
Page 85 and 86:
Why am I rehashing this old trope?
Page 87 and 88:
1. Look for and minimize attack sur
Page 89 and 90:
On The Frontline in The War Against
Page 91 and 92:
How to Fix Mid-Market Security Usin
Page 93 and 94:
the particular victims being target
Page 95 and 96:
5 Ways Cybersecurity Will Change In
Page 97 and 98:
#3: Supply chains will be the big r
Page 99 and 100:
Executive Order Instructs Certain O
Page 101 and 102:
• Stay ahead of fraud. Fraud cost
Page 103 and 104:
Too Hot to Handle:The case for Zero
Page 105 and 106:
Critically, endpoint security only
Page 107 and 108:
To prevent lateral movement attacks
Page 109 and 110:
Redefining Resilience in The New Wo
Page 111 and 112:
About the Author Andrew Lawton is C
Page 113 and 114:
Cyber Defense eMagazine - March 202
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
CyberDefense.TV now has 200 hotseat
Page 137 and 138:
Books by our Publisher: https://www
Page 139 and 140:
show all

Cyber Defense eMagazine March Edition for 2022

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?