Abundance of cybersecurity tools puts enterprises at risk

techradar | December 11, 2019

Abundance of cybersecurity tools puts enterprises at risk
New research from the enterprise security firm ReliaQuest has revealed that a rapid increase in the number of security tools used by enterprises is limiting their return on investment while also increasing the risk of cyber threats.To compile its new 2019 ReliaQuest Security Technology Sprawl Report, the firm surveyed 400 security decision makers at companies with over 1,000 employees to discover there is a “security tool tipping point” where the number of cybersecurity solutions becomes overwhelming and increases organizational risk levels. As a result, enterprises are under utilizing their technology, wasting valuable security resources and leaving their teams overwhelmed. Security teams are also spending more time trying to manage their wide range of tools than proactively defending against threats.

Spotlight

Threat actors have access to malware development tools that make it cheap and easy to develop customized targeted malware that is undetectable by traditional security systems. These same tools also include features which enable malware to become undetectable by the most popular sandbox products, such that with the check of a box, your investment in advanced threat detection becomes worthless, and the bad guys breach your network.

Related News

Coronavirus-themed Cyberattacks on Businesses Rise, Experts Recommend Beefing Up Network Security

chamberbusiness | May 06, 2020

In recent weeks reveal the need for businesses to double down on security to ensure their networks are protected, a leading cyber security expert said. . Many of the attacks were ransomware, holding companies’ network systems hostage until a payout was made. . Under COVID-19, cyber criminals are having a field day, honing in on companies in countries like the United States that are in the throes of fighting the virus.. An uptick of coronavirus-themed cyber attacks on hospitals, pharmaceutical laboratories and even the trucking industry in recent weeks reveal the need for businesses to double down on security to ensure their networks are protected, a leading cyber security expert said. Many of the attacks were ransomware, holding companies’ network systems hostage until a payout was made. Some companies, particularly small and mid-sized businesses, might not survive such an attack, said John Zanni, CEO of Scottsdale-based Acronis SCS, a leader in edge data security and cyber protection in the U.S. public sector. Zanni strongly advises organizations to beef up network safety. The cost is minimal and today’s technology is highly effective. A large organization that has its IT system knocked out can pay in the “hundreds of thousands to millions of dollars” to fly in a forensics firm to fix the damage, Zanni said. For smaller private sector entities, the cost can put them out of commission. Learn more: SINGLE LAYERS OF SECURITY AREN’T ENOUGH TO PROTECT YOUR ORGANIZATION’S DATA . “The pandemic has increased impacts on businesses significantly. Unfortunately, many are not equipped to deal with them” . ~ Zanni says A large organization that has its IT system knocked out can pay in the “hundreds of thousands to millions of dollars” to fly in a forensics firm to fix the damage, Zanni said. For smaller private sector entities, the cost can put them out of commission.“If someone breaks into your business, you call 911,” he said. “If you call 911 and say, ‘I’m suffering a ransomware attack,’ they don’t know what to do. It’s a big problem.” COVID-19 has brought the issue into the limelight as more employees work from home, doctors conduct telemedicine appointments, and online purchases soar. “So now we’re all working at home and the bad guys have realized there are a lot of holes in being connected to a corporate network or other business from home systems.” Under COVID-19, cyber criminals are having a field day, honing in on companies in countries like the United States that are in the throes of fighting the virus. To illustrate the threat, only 190 domain names included the word ‘corona’ last year, Zanni said. In March, there were more than 30,000. “Some are legitimate but most of them are not,” he said. “We’ve also seen a 127 percent increase in exposed desktop protocol endpoints. Anyone with connectivity is at risk. Phishing scams claiming to be from the Centers for Disease Control and the World Health Organization are a common ruse right now. While all businesses are at risk, the majority of cyber attackers target government agencies in search of sensitive data, Zanni said. That impacts businesses as well. When Baltimore had to shut down operations after a cyber attack last year, companies were unable to carry out everyday transactions like getting permits approved and bills paid. The city lost millions of dollars in potential and delayed revenue. Atlanta and New Orleans also were hit by cyber attacks in the past two years, also costing millions of dollars in recovery costs. Learn more: HOW ORGANIZATIONS CAN PREPARE FOR CYBERSECURITY .

Read More

DATA SECURITY

AirSlate Announces SignNow Partnership with Defa3 Cyber Security

airSlate | April 15, 2021

airSlate, a pioneer partner and preferred provider of information technology and security solutions and services in the Middle East, reported today that its award-winning eSignature solution, signNow, is now available to customers of Defa3 Cyber Security. The collaboration will help to raise awareness of airSlate in the area while also increasing the importance of Defa3 Cyber Security's technology portfolio to its customers. “Knowing Defa3 Cyber Security's leadership in the region, we saw an opportunity to partner with their offering and aggressively expand our presence in the Middle East,” said Scott Owen, airSlate's Vice President of Business Development and Channel. “We are thrilled to collaborate with Defa3 Cyber Security and help their clients meet the growing need to digitize and simplify their document processes.” signNow provides a stable and compliant eSignature solution that enables users to accept, deliver, and e-sign documents in seconds. Teams can conduct business anywhere, at any time, and on any device, since it can be configured as a stand-alone application or combined with any other application through API. SignNow's tracking, analytics, and data governance give users more visibility, and its intuitive, customer-friendly user interface and API allow for a more smooth, efficient experience. “The Middle Eastern information technology space is increasingly evolving,” said Haytham Hussein, Sales Manager at Defa3 Cyber Security. “Accelerated cloud adoption, mergers and acquisitions, and other big industry projects require new and innovative methods in digital transformation strategies for businesses.” About AirSlate airSlate is a global SaaS technology company that provides no-code workflow automation, electronic signature, and document management solutions to tens of millions of innovators worldwide. The company's award-winning products, including airSlate, pdfFiller, and signNow, enable teams to develop, innovate, and automate to digitally reinvent their companies and make them work faster and easier. About Defa3 Cyber Security Defa3 Cyber Security is a market leader in cybersecurity solutions and services, exclusively representing cutting-edge IT and security technology from around the world. Defa3 Cyber Security has developed a reputation as the chosen IT and security partner in the Middle East, Turkey, and Africa, due to a strong commitment to customer success.

Read More

DATA SECURITY

Brane Capital, a Crypto Custody Company, Recently Earned Cyber Security Recertifications as well as Smart Contract Validation

Brane Inc. | April 05, 2021

Brane Inc., a major cryptocurrency custody provider, has earned important cyber-security recertifications that validate the company's rigorous security and risk management procedures. Brane completed third-party validation of its Ethereum smart contract code, the technology that drives non-fungible tokens (NFTs), by auditor Solidified, in addition to recertification at ISO 27001 and 27017 and NIST level 4 standards by audit and certification firm BSI. "We are fully committed to security as our top priority, and these third-party certifications validate Brane as a world-class pioneer in secure cryptocurrency custody," said Chris Desjardins, Vice President, Product. "As cryptocurrencies grow more prevalent in the global economy, our clients and partners are certain that Brane is one of the most accredited, verified, and security-focused companies in the sector." "Brane's key benefit is the blend of bank-grade security and cutting-edge technology, both built on a fundamental view of blockchain's unique opportunities and challenges," said Dave Revell, a Brane board member, and former EVP and Global Chief Information Officer for CIBC. "Brane has created a custody solution that satisfies the needs of banks and other financial institutions as cryptocurrency acceptance grows." "Obtaining ISO and NIST certifications will take several years and millions of dollars for major businesses. Brane's fast completion of these certifications demonstrates the power of our blockchain-native technology and information security management systems "Brane's founder and Chief Innovation Officer, Patrick McLaughlin, made the announcement. "With this primary strategic advantage, Brane is the perfect partner for financial institutions looking for a truly safe, user-friendly solution for digital asset custody." "As Brane becomes a bank for the world's newest asset class, security and accountability are woven into our company's DNA," said Brane President Jerome Dwight, who previously led Bank of New York Mellon's Canadian operations. "By combining an exceptional internal team with partnerships with other business players, Brane is committed to retaining its place of Canadian and global supremacy in crypto custody services." About Brane Brane is a blockchain innovation company that was established in 2017. Brane assists companies in understanding and utilizing the potential of blockchain and digital assets. Brane Vault, the digital asset custody facility, is ISO 27001 certified – the first in the world with cryptocurrency in scope – ISO 27017 certified, and NIST Tier 4 certified – the first company in any industry in Canada to achieve such certification. Brane Vault provides advanced proprietary technology and processes for over 20 preliminary patents, as well as being fully insured from fraud and crime.

Read More

Spotlight

Threat actors have access to malware development tools that make it cheap and easy to develop customized targeted malware that is undetectable by traditional security systems. These same tools also include features which enable malware to become undetectable by the most popular sandbox products, such that with the check of a box, your investment in advanced threat detection becomes worthless, and the bad guys breach your network.