Coronavirus-themed Cyberattacks on Businesses Rise, Experts Recommend Beefing Up Network Security

chamberbusiness | May 06, 2020

  • In recent weeks reveal the need for businesses to double down on security to ensure their networks are protected, a leading cyber security expert said. .

  • Many of the attacks were ransomware, holding companies’ network systems hostage until a payout was made. .

  • Under COVID-19, cyber criminals are having a field day, honing in on companies in countries like the United States that are in the throes of fighting the virus..


An uptick of coronavirus-themed cyber attacks on hospitals, pharmaceutical laboratories and even the trucking industry in recent weeks reveal the need for businesses to double down on security to ensure their networks are protected, a leading cyber security expert said. Many of the attacks were ransomware, holding companies’ network systems hostage until a payout was made. Some companies, particularly small and mid-sized businesses, might not survive such an attack, said John Zanni, CEO of Scottsdale-based Acronis SCS, a leader in edge data security and cyber protection in the U.S. public sector.


Zanni strongly advises organizations to beef up network safety. The cost is minimal and today’s technology is highly effective. A large organization that has its IT system knocked out can pay in the “hundreds of thousands to millions of dollars” to fly in a forensics firm to fix the damage, Zanni said. For smaller private sector entities, the cost can put them out of commission.



Learn more: SINGLE LAYERS OF SECURITY AREN’T ENOUGH TO PROTECT YOUR ORGANIZATION’S DATA .
 

“The pandemic has increased impacts on businesses significantly. Unfortunately, many are not equipped to deal with them” .

~ Zanni says


A large organization that has its IT system knocked out can pay in the “hundreds of thousands to millions of dollars” to fly in a forensics firm to fix the damage, Zanni said. For smaller private sector entities, the cost can put them out of commission.“If someone breaks into your business, you call 911,” he said. “If you call 911 and say, ‘I’m suffering a ransomware attack,’ they don’t know what to do. It’s a big problem.” COVID-19 has brought the issue into the limelight as more employees work from home, doctors conduct telemedicine appointments, and online purchases soar.

“So now we’re all working at home and the bad guys have realized there are a lot of holes in being connected to a corporate network or other business from home systems.”


Under COVID-19, cyber criminals are having a field day, honing in on companies in countries like the United States that are in the throes of fighting the virus. To illustrate the threat, only 190 domain names included the word ‘corona’ last year, Zanni said. In March, there were more than 30,000. “Some are legitimate but most of them are not,” he said. “We’ve also seen a 127 percent increase in exposed desktop protocol endpoints. Anyone with connectivity is at risk. Phishing scams claiming to be from the Centers for Disease Control and the World Health Organization are a common ruse right now.


While all businesses are at risk, the majority of cyber attackers target government agencies in search of sensitive data, Zanni said. That impacts businesses as well. When Baltimore had to shut down operations after a cyber attack last year, companies were unable to carry out everyday transactions like getting permits approved and bills paid. The city lost millions of dollars in potential and delayed revenue. Atlanta and New Orleans also were hit by cyber attacks in the past two years, also costing millions of dollars in recovery costs.


<

Learn more: HOW ORGANIZATIONS CAN PREPARE FOR CYBERSECURITY .
 

Spotlight

Radware’s DefenseFlow is a network-wide detection and DDoS protection solution that supports SDN/Openflow networks by providing new ways of detecting and mitigating network-wide, multi-vector cyber-attacks. Overcome the challenges associated with network-wide security via a single, automated security solution that leverages network technologies to provide attack mitigation as a native network service.

Spotlight

Radware’s DefenseFlow is a network-wide detection and DDoS protection solution that supports SDN/Openflow networks by providing new ways of detecting and mitigating network-wide, multi-vector cyber-attacks. Overcome the challenges associated with network-wide security via a single, automated security solution that leverages network technologies to provide attack mitigation as a native network service.

Related News

SOFTWARE SECURITY

Cymulate Bolsters Proactive Cybersecurity Exposure Management with Advanced Analytics

Cymulate | August 12, 2022

Cymulate, the leader in Continuous Threat Exposure Management, today announced the expansion of its Extended Security Posture Management (XSPM) Platform to include advanced insights and analytics capabilities. As businesses struggle to manage attack surfaces and validate security controls, these new data-driven capabilities significantly improve risk visibility and deliver actionable insights for reducing remediation time. Businesses also now gain enhanced levels of granularity for setting and tracking cybersecurity performance metrics and KPIs, which are required for improving cyber resilience. "Now, more than ever, organizations require automated contextual reporting of exposure findings to understand and optimize their security posture. "Our new analytics layer provides critical data for prioritizing mitigations and fine-tuning configurations for closing security gaps. This prioritization is key for effectiveness in times of skills shortage. Additionally, technical jargon is translated into meaningful reports that can be used to more effectively inform business stakeholders." Avihai Ben-Yossef, CTO and Co-Founder of Cymulate Cymulate's platform, the industry's gold standard for continuous threat exposure management (CTEM) programs, provides customers with an efficient way to validate their cybersecurity posture continuously and on-demand. Proven to reduce operational drain and cost, Cymulate automatically tests networks, applications, and endpoint security against the latest threats in the wild. Plus, its native, offensive security technology and capabilities accelerate response time by dynamically assessing and responding to security posture risks. Customers benefit from Cymulate Security Posture Management Analytics capabilities with the ability to quickly normalize, aggregate, and analyze data across the platform's automated cyberattacks functionality. The holistic solution combines Attack Surface Management, automated red-teaming, Breach and Attack Simulation, automated security validation, and vulnerability prioritization, providing a clear and holistic view of the business's security posture. Based on global analytics findings, users can improve security readiness by Establishing baselines on multiple attack vectors and gaining consistency in measuring against them Viewing and building dynamic dashboards for insights and visualization of results Demonstrating trends and improving awareness of security posture drift Tracking remediation efforts with ticketing systems' integrations Generating customized reports so security teams can rerun attacks to assess whether remediation efforts have been successful Justifying security spending in a quantifiable manner and showcasing security achievements over a specified period of time. About Cymulate The Cymulate SaaS-based Extended Security Posture Management (XSPM) provides security professionals with the ability to continuously challenge, validate and optimize their on-premises and cloud cyber-security posture with end-to-end visualization across the MITRE ATT&CK® framework. The platform provides automated, expert, and threat intelligence-led risk assessments that are simple to deploy, and easy for organizations of all cybersecurity maturity levels to use. It also provides an open framework for creating and automating red and purple teaming by generating tailored penetration scenarios and advanced attack campaigns for their unique environments and security policies.

Read More

SOFTWARE SECURITY

Exabeam Partners with Google Cloud

Exabeam | June 09, 2022

Exabeam, a pioneer in Next-Generation SIEM and XDR, announced today its intention to construct and evolve its modern cloud-native security information and event management (SIEM) and cybersecurity analytics solutions on Google Cloud. The move provides global security teams with endless data ingestion, speed, and scale options in their continuous battle against more sophisticated cybersecurity threats over an ever-expanding attack surface. “Exabeam is unlike any other SIEM vendor in that we leverage our machine learning-based, cyber analytics product to help security teams be more efficient. With this next version of our product, we will now become completely cloud-native offering unparalleled performance, scale, and cost efficiency. Exabeam is built by security people for security people.” Michael DeCesare, CEO and president, Exabeam Gerrit Kazmaier, Vice President and General Manager, Data Analytics and Business Intelligence at Google Cloud said that “Addressing and protecting data from security threats and attacks is a business-critical focus that is constantly evolving. We look forward to continuing our work together to create products that help companies securely leverage their data at cloud scale.” Adam Geller, chief product officer, Exabeam said that “After looking at several cloud players in the market, we selected Google Cloud, specifically the Data Analytics family of products including BigQuery, Dataflow, and Looker, because of its hyperscale, speed, and ability to support the type of technically advanced products we build at Exabeam. Google Cloud has enabled us to greatly accelerate our own security platform and product innovation resulting in state-of-the-art features and capabilities that can finally overcome the data proliferation and threat detection, investigation, and response (TDIR) challenges faced by security operations teams today.” Exabeam has been named a Leader with the highest ability to execute in the 2021 Gartner Magic Quadrant for SIEM for the third time in a row, joining a rapidly growing list of technology companies that power their products and businesses with Google data cloud products like BigQuery, Looker, Spanner, and Vertex AI.

Read More

SOFTWARE SECURITY

Atera Launches New Integration with Malwarebytes

Atera | July 08, 2022

Atera, a remote-first IT management company, today announced a new integration with Malwarebytes, a provider of real-time cyber protection. Atera is the first remote management company to offer an integration that automates licensing and provisioning of the Malwarebytes OneView platform. This partnership plays an integral role for Atera to provide streamlined and maximized security operations for its community of more than 10,000 customers across 105 countries. "With workplaces continuing to evolve and employees working from anywhere in the world, the risk of ransomware attacks continues to climb. At Atera, we are committed to providing a platform with unmatched security and transparency for our customers," said Gil Pekelman, CEO of Atera. "An integration with Malwarebytes has been one of the most requested by our users, and we're thrilled to roll this out for our customers so they can easily install and manage their endpoint security solutions." This latest integration by Atera will include the option for users to deploy Malwarebytes' products directly through Atera, providing additional ease of use within the Atera platform. Customers will gain access to Malwarebytes' OneView platform, enabling license management, detailed, value-driven reporting that can be shared with their end users, and customer site administration. The integration will include Incident Response, Endpoint Protection, and Endpoint Protection and Response — the latter two being available for both Mac and Windows workstations and Mac/Windows/Linux servers. "As a leading provider of software and solutions to combat malware, we are continuously looking for opportunities to streamline and simplify cybersecurity, making it available for everyone. "Integrations with RMM providers are one way to help achieve this simplicity. Through our latest partnership with Atera, we are furthering the ability of global organizations with limited resources to successfully combat malware and manage endpoints at scale." Brian Thomas, Vice President of Worldwide MSP and Channel Programs for Malwarebytes About Atera Atera is the developer of a Remote Monitoring and Management (RMM) and Professional Services Automation (PSA) platform, built with a dispersed workforce in mind. With more than 10,000 customers in over 105 countries, Atera's intuitive all-in-one platform offers IT professionals and businesses improved operational efficiency, seamless integrations, and end-to-end management at industry-disruptive pricing. Atera's platform empowers IT teams of all sizes to maximize efficiency while transforming to a streamlined remote work environment by analyzing over 60,000 data points per second, 24/7. To learn more, visit atera.com. About Malwarebytes Malwarebytes believes that when people and organizations are free from threats, they are free to thrive. Founded in 2008, Malwarebytes CEO Marcin Kleczynski had one mission: to rid the world of malware. Today, that mission has expanded to provide cyber protection for everyone. Malwarebytes provides consumers and organizations with device protection, privacy, and prevention through effective, intuitive, and inclusive solutions in the home, on-the-go, at work, or on campus. A world-class team of threat researchers and security experts enable Malwarebytes to protect millions of customers and combat existing and never-before-seen threats using artificial intelligence and machine learning to catch new threats rapidly.

Read More