Cyber Defense eMagazine March Edition for 2022

More documents

Recommendations

Info

Ransomware — Encrypt Your Data Before Others Do Don’t let them look at your data. By Robert Freudenreich, CTO and Founder, Secomba GmbH | Boxcryptor A single malicious email, with the sender of the mail disguised as a colleague or client, can have severe consequences for a company. With a fraudulent link that transmits sensitive account data in the wrong hands or malware disguised as a seemingly ordinary Microsoft Office file, hackers will gain access to business systems and servers within minutes. In this article, we will take a look at how the cloud and encryption can help prevent or reduce damage in case of a ransomware attack on your company. What is Ransomware and Why is it so Dangerous? Ransomware is malicious software that gives unauthorized people access to company data, programs, or even the entire computer system. In case of an attack, business operations are severely affected and exclude personnel and organizations from accessing their files and systems. Ransomware attacks not only have an impact on individual company processes but can also affect the entire supply chain. The damage usually also affects external stakeholders of the company that was the victim of the attack, for example customers, suppliers, and partners. With most operations coming to a complete hold, companies are forced to pay high ransoms in order to regain control over their data and devices. Cyber Defense eMagazine – March 2022 Edition 32 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
According to Cybereason’s “Ransomware: The true cost to Business” (Source: https://www.cybereason.com/hubfs/dam/collateral/ebooks/Cybereason_Ransomware_Research_2021. pdf), it is estimated that there is a ransomware attack on a business every 11 seconds on average, with global ransomware damage losses projected to reach $20 billion in 2021. The FBI reported an increase of more than 225% in total losses from ransomware in the U.S. in 2020 alone. While the huge amount of ransom is already critically affecting companies, pressure is further increased when sensitive data is threatened to be publicized. While, in theory, the ransom payment can be settled rather inconspicuously, data protection laws like the European GDPR require very strict measures when data of citizens of the European Union is breached. The company, whether American or European, must notify all affected individuals or businesses about the data loss, which not only results in high inconveniences but more importantly a loss in trust. According to Cybereason, 53% of all attacked reported their brand suffered. How Can Businesses Prevent Ransomware Attacks? The likelihood of being affected by viruses or malware can be kept within limits if some internal company rules are observed. Even smaller measures can protect companies and organizations from severe consequences. Such measures can be comprehensive security software that detects unknown vulnerabilities or so-called zero-day gaps and prevents their execution. With a growing number of businesses allowing their employees to work from home, new security challenges arise. Therefore, companies need to sensitize their staff to the issue of proper cyber-security. This can include everything from a well-protected network to VPNs or data encryption solutions. Furthermore, companies should offer regular training and conduct random tests to raise awareness of ransomware and similar malware amongst employees. If despite all security measures, a company still falls victim to a ransomware attack, it is advised to have an emergency plan at hand. This way, those responsible in the company can act faster and keep the damage caused by ransomware as low as possible. Companies can implement the following steps into their data breach emergency plan: 1. Immediately disconnect or remove any potentially affected or suspicious devices from the network. 2. Inspect the damage that has been caused. 3. Identify the ransomware to determine which relevant authorities or individuals need to be notified. 4. Inform all relevant authorities and affected persons. How Can the Cloud and Encryption Help Against Ransomware Attacks? Many companies have already shifted their work into the cloud to benefit from increased flexibility, efficiency in team communication, and optimized workflows. Company data can be accessed at any time and from any location. One cloud feature that comes in handy in case of a ransomware attack is versioning. When your company data is encrypted by malicious software, you can simply switch back to Cyber Defense eMagazine – March 2022 Edition 33 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Why Changing Classified Document St
Page 3 and 4: Tips And Trends for OT Cybersecurit
Page 5 and 6: @MILIEFSKY From the Publisher… De
Page 7 and 8: Welcome to CDM’s March 2022 Issue
Page 9 and 10: Cyber Defense eMagazine - March 202
Page 19 and 20: level of concern while working remo
Page 21 and 22: The Fragility of a GPS Centric Worl
Page 23 and 24: Formerly known as LOng-RAnge Naviga
Page 25 and 26: The Role of The CFO In Enterprise C
Page 27 and 28: Help them mitigate potential risks
Page 29 and 30: The Safest Ways for Bitcoin Trading
Page 31: and clear instructions through a "N
Page 35 and 36: If you implement these three tips,
Page 37 and 38: • Nearly half of zero-day malware
Page 39 and 40: Don’t Become a Horrible Headline:
Page 41 and 42: pandemic era. By empowering profess
Page 43 and 44: Have We Learned from Our Past Mista
Page 45 and 46: internet, etc. How much training is
Page 47 and 48: How to strengthen cyber resilience
Page 49 and 50: A BCDR solution with automated disa
Page 51 and 52: 1. Cybersecurity Incidents Will Bec
Page 53 and 54: Is XDR The Right Solution for Today
Page 55 and 56: How Open XDR Helps Open XDR address
Page 57 and 58: A very small set of next-gen SIEM s
Page 59 and 60: • What are my options for data la
Page 61 and 62: Additionally, we’ll witness the r
Page 63 and 64: Top 10 Reasons Cyber Defense Firms
Page 65 and 66: 4. Teamwork and individual responsi
Page 67 and 68: 5 Reasons Organizations Need Compre
Page 69 and 70: systems to manage identity and acce
Page 71 and 72: Directed Analytics - The Future of
Page 73 and 74: Directed analytics allow these insi
Page 75 and 76: InDesign and uploaded to indd.adobe
Page 77 and 78: Are You Prepared for the New Normal
Page 79 and 80: • Find Unseen Risk - The hardest
Page 81 and 82: intruders were able to gain control
Page 83 and 84:
About the Authors Michael Cheng is
Page 85 and 86:
Why am I rehashing this old trope?
Page 87 and 88:
1. Look for and minimize attack sur
Page 89 and 90:
On The Frontline in The War Against
Page 91 and 92:
How to Fix Mid-Market Security Usin
Page 93 and 94:
the particular victims being target
Page 95 and 96:
5 Ways Cybersecurity Will Change In
Page 97 and 98:
#3: Supply chains will be the big r
Page 99 and 100:
Executive Order Instructs Certain O
Page 101 and 102:
• Stay ahead of fraud. Fraud cost
Page 103 and 104:
Too Hot to Handle:The case for Zero
Page 105 and 106:
Critically, endpoint security only
Page 107 and 108:
To prevent lateral movement attacks
Page 109 and 110:
Redefining Resilience in The New Wo
Page 111 and 112:
About the Author Andrew Lawton is C
Page 113 and 114:
Cyber Defense eMagazine - March 202
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
CyberDefense.TV now has 200 hotseat
Page 137 and 138:
Books by our Publisher: https://www
Page 139 and 140:
show all

Cyber Defense eMagazine March Edition for 2022

Create successful ePaper yourself

Delete template?

Save as template?