Modern challenges and cyber threats

 Information security is one of the key tasks of any organization. It was important before, and during the pandemic it acquired particular importance, since the number of cybercriminals increased - those who were already engaged in online fraud were joined by newly minted virtual criminals who had previously carried out their criminal activities in reality. According to the head of the representative office of Check Point Software Technologies in Russia and the CIS countries, Vasily Diaghilev , the cyber world attracted many by the fact that it is possible to earn in it no less than in the real one, but with a lower level of risks. The opportunities that have opened up have allowed criminal groups to obtain additional funding and significantly expand the variability of attacks using phishing and social engineering.

This was facilitated by the forced transition of most organizations to remote work. And if in large companies with independent information security services, reliable communication channels and sufficient material resources, such a transition did not cause any particular difficulties, then for small and medium-sized businesses with from 30 to 200 computers, it became problematic. It was the latter that all the experts who took part in the round table recognized as the main target for malefactors.

The Computer Network Support Specialists are the trained experts and are extremely helpful in the computer networking of an organization.

According to representatives of the IT sphere, the vulnerability of SMEs was mainly due to:


the need for prompt decision-making. "We are accustomed to the fact that we have been implementing information security projects for months, quarters and years, but in the current conditions it was actually necessary to make decisions within a few days or weeks, provide employees with equipment and revise approaches to work organization," Vasily Diaghilev noted;

blurring the boundaries between corporate and personal devices, corporate and personal data - this is due to the fact that many employees work from home on their personal laptops and computers, which a priori have a lower level of protection than corporate resources;

the dependence of information security on people and the insufficient level of knowledge of employees about threats to information security, about methods of their recognition based on their primary characteristics and ways of countering them;

insufficient funding for information security or even a reduction in the cost of this;

problems with import substitution, in particular, a shift in the timing of the replacement of imported hardware, etc.

Meanwhile, experts believe that during the period of the spread of the new coronavirus infection, the role of information security has significantly increased in general. "The fact that information security has become more serious in the life of business in connection with remote work is a fact," said Lev Matveev , Chairman of the Board of Directors of SearchInform, member of the Board of the Association of Software Manufacturers "Russoft"... Statistics speaks in favor of this thesis - for example, in the first half of 2020, the number of court cases related to information leakage in financial institutions has increased than in the entire last year. At the same time, practically all organizations during their remote work faced attempts to "drain" information - both intentional (collusion of employees with malefactors) and unintentional.


As for the types of threats, the experts emphasized that the scammers did not come up with anything new. For example, Alexey Novikov , director of the Positive Technologies security expert center , focused on the fact that all those attack methods that are encountered now (phishing, malware, spam, social engineering, etc.) have existed before, simply due to By the peculiarities of the transition to remote work, with new services for working from personal laptops and workstations within the corporate perimeter, there was a distribution of emphasis in terms of how to attack more effectively. 

Konstantin Ignatiev, head of the content analysis department at Kaspersky Lab, agreed with this., noting that cybercriminals are acting within the framework of the practice that has been developed over the years, but taking into account the specifics of public interest in the topic of coronavirus. For example, there were cases when employees received mailing allegedly from the HR department of their company with information about their dismissal in connection with the decision made by the head of staff optimization in difficult pandemic conditions, and they were asked to find out more detailed information in the infected file attached to the letter or when clicking on a link to a site stealing personal data. The employees themselves, whose personal data fell to third parties, and the companies that received local and network infections in this way suffered damage from such mailings.

Comments

Post a Comment

Popular posts from this blog

International English Language Testing System (IELTS)

 It has existed for almost 30 years and is one of the most widespread tests around the world. It aims to test a candidate's level of communication in English using four language skills with a real context: oral interpretation (30 minutes), text interpretation (60 minutes), writing (60 minutes) and conversation (15 minutes). Developed by the British Council in partnership with the University of Cambridge, it is applied in 16 cities in Brazil. See more:  Amazon Saheli Quiz Answers The score ranges from 0 (most basic) to 9 (most advanced). The score required by universities varies widely. However, there are reports that renowned institutions require a score higher than 8. It is also important to say that IELTS is applied in two formats: academic and general training. The academic is aimed at those people who are looking for opportunities to study master's, doctorate and postdoctoral studies abroad. General training, on the other hand, is focused on those who seek professional impr
Read more

Prevention and Recovery: How can security tools help?

 Heavy rains, floods, landslides, devastating fires, blackouts that left an entire state without electricity. Unfortunately, the list of disasters that occurred in Brazil during the year 2020 is long. Disasters appear unexpectedly, generating terrible results and, often, irreversible damage. Within a company's scenario, it is not much different. Just as nature is subject to disasters and risks, so are companies. Therefore, information security works to protect data and information within the business environment, through tools and actions that act in the prevention and recovery of data in disaster situations. In this article, you will understand how security tools can help in a disaster scenario, and why it is important to have complete and continuous actions to protect your company's data. There are two reasons why people underestimate threats and risks: ignorance and minimizing results. Although we are in the information age, the significant increase in the cost of data leaks
Read more

How to increase visibility and mitigate risks in the corporate network?

 Corporate networks are changing rapidly as companies embark on Digital Transformation, expanding on the Cloud, incorporating IoT devices and increasing wireless access. All of this increases the attack surface, making the environments more complex.  Protecting this new environment and blocking more sophisticated and intelligent cyber threats has been a major challenge for IT. Therefore, it is necessary to invest in tools capable of giving quick and accurate responses to any type of attack. The problem is that, as the context and visibility are compromised by the complexity of the environment, the IT team ends up having trouble screening many alerts at the same time.  As a result, response times are delayed and teams are often unable to accurately screen all alerts, allowing potential threats to go unnoticed. To deal with this new reality, companies need robust and efficient protection solutions, such as Gigamon's ThreatINSIGHT. It is the cloud's first native high-speed network
Read more