DATA SECURITY

Security experts discovered a 1,500%+ upsurge attacks towards VPN due to remote work

Nuspire | June 15, 2021

A leading managed security services provider (MSSP), Nuspire, has announced its 2021 Q1 Threat Landscape Report release. The report includes techniques and procedures (TTPs) with additional insight from its threat intelligence partner, Recorded Future, and new cybercriminal activity and tactics sourced from 90 billion traffic logs.

Nuspire had a 1,527% increase in Pulse Connect Secure VPN and a 1,916% increase in attacks against Fortinet's SSL-VPN in Q1 2021. Various vulnerabilities happen to allow a threat actor to get access to a network. They exfiltrate information and install ransomware once they are in.

Due to the increase in RDP and VPN vulnerabilities, threat reports of Nuspire find out botnet, malware, and suspicious activities are down compared to Q4. But still, threat actors are on the prowl. Other significant findings included in Nuspire's 2021 Q1 Threat Landscape Report are:


• Emotet botnet activity dropped -99.96% after the announcement of Law Enforcement seizing their infrastructure.
• ZeroAccess Botnet activity rushed during one week by 619,460% before trailing down into the end of the quarter.
• SMB Login Brute Force efforts contained 69.73% of all exploit activity witnessed in Q1.


About Nuspire

Nuspire, a security services provider (MSSP), is revolutionizing cybersecurity involvement by taking a hopeful and people-first approach. Nuspire offers complete services that syndicate award-winning threat recognition with more excellent response competencies to deliver end-to-end security across the gateway, network, and endpoint ecosystem. Our customer base spans thousands of enterprises of all sizes across numerous businesses and realizes the extreme risk reduction per cyber-dollar spent. At Nuspire, we are laser-focused on bringing a fantastic cybersecurity experience that surpasses the expectations of the clients.

Spotlight

Many organizations still follow an outdated approach to cyber security, relying solely on a defensive perimeter to protect their infrastructure. We recommend a more robust, iterative approach, which can be broken down into four phases [1] — Predict, Prevent, Detect, and Respond.In sequence, the phases are:PREDICT A corporate exposure analysis is performed to assess the attack surface of the organization’s infrastructure. The findings of these analyses are used to plan theconstruction of a solid defensive perimeter for the organization.

Spotlight

Many organizations still follow an outdated approach to cyber security, relying solely on a defensive perimeter to protect their infrastructure. We recommend a more robust, iterative approach, which can be broken down into four phases [1] — Predict, Prevent, Detect, and Respond.In sequence, the phases are:PREDICT A corporate exposure analysis is performed to assess the attack surface of the organization’s infrastructure. The findings of these analyses are used to plan theconstruction of a solid defensive perimeter for the organization.

Related News

DATA SECURITY

To prevent cyber attacks caused by compromised passwords, Enzoic and OneLogin partner

businesswire | November 18, 2020

Enzoic, a main supplier of bargained certification screening arrangements, today reported an association with OneLogin, a cloud-based character and access the board supplier. The joint effort will see Enzoic's qualifications screening administration incorporated into OneLogin's SmartFactor Authentication item, guaranteeing that accreditations uncovered in an earlier break can't be utilized. Verizon's 2020 Data Breach Investigations Report distinguished that taken certifications are associated with 29 percent of information breaks and that 80% of hacking-related penetrates include bargained and feeble qualifications. These discoveries underscore that forestalling the utilization of uncovered qualifications is basic to diminish the probability of an effective assault. The Enzoic and OneLogin association is intended to dispose of the danger of bargained accreditations. Through the arrangement, OneLogin will coordinate Enzoic's API so that each time a client makes a secret phrase, it will naturally be screened against Enzoic's live information base of different billions of uncovered username and secret phrase mixes. On the off chance that the qualifications are uncovered, it will request that the client make another exceptional secret phrase. This altogether decreases the danger of fruitful accreditation stuffing, account takeover or different types of information break occurring without adding superfluous contact. “Preventing the use of exposed credentials is the key to shoring up password vulnerabilities,” said Josh Horwitz, COO, Enzoic. “As the number of breaches and cyber attacks show no sign of abating, it's critical that organizations take steps to protect against this threat by screening credentials. We are excited to partner with OneLogin to deliver this peace of mind to its customers that use SmartFactor Authentication." “Cybersecurity threats are a part of our digital world,” said Venkat Sathyamurthy, Chief Product Officer OneLogin.“By integrating Enzoic’s intelligent technology, we’re preventing our users from inadvertently deploying credentials that have already been breached and exposed on the Dark Web. As a result, the risk of account takeover from compromised credentials is reduced while ensuring that the authentication process remains smooth for our customers.” About Enzoic Enzoic is an enterprise-focused cybersecurity company committed to preventing account takeover and fraud through compromised credential detection. Organizations can use Enzoic solutions to screen customer and employee accounts for exposed username and password combinations to identity accounts at risk and mitigate unauthorized access. Enzoic is a profitable, privately held company in Colorado. About OneLogin OneLogin is the number one value-leader in Identity and Access Management. Our Trusted Experience Platform provides everything you need to secure your workforce, customers, and partners at a price that works with your budget. Headquartered in San Francisco, OneLogin secures over 2,500 customers worldwide, including Airbus, Stitch Fix, and AAA.

Read More

DATA SECURITY

New Enterprise Security Program Review Offering to address overlooked cyber risks by DirectDefense Launches

businesswire | January 27, 2021

DirectDefense, Inc., a data security administrations organization that gives endeavor hazard appraisals, entrance testing, consistence the executives, and every minute of every day oversaw administrations, reported today the dispatch of the Enterprise Security Program Review (ESPR), a joint security offering with IronNet, Unlimited Technology and Exero. A first-of-its-sort in the Managed Security Services Provider (MSSP) space, the ESPR estimates the current and wanted future condition of an association's framework against the National Industry Standards and Technology (NIST) network safety controls. The ESPR will evaluate, test, and survey an association's current security controls, break down danger openness, and help actualize separately customized security arrangements. Applying an all encompassing way to deal with network safety, this contribution addresses digital dangers missed by single-arrangement suppliers. ESPR is the solitary far reaching answer for help both huge and little undertaking clients, guaranteeing the establishment, change and activity of an effective network safety guard stage.

Read More

SOFTWARE SECURITY

OPSWAT to Unveil Next Gen Cybersecurity Kiosk for Protecting Critical Infrastructure

OPSWAT | July 08, 2021

The global leader in Critical Infrastructure Protection, OPSWAT, has announced the availability of the L1001, its next-generation MetaDefender Kiosk. It offers an important option for cybersecurity prevention for both Operational Technology (OT) environments and Industrial Control Systems (ICS). Both have experienced an bigger number of ransomware AND cybersecurity attacks ewcwntly.. Such as cyberattacks surge, among the critical infrastructure sectors, there is a heightened sense of security. Malware, targeted attacks, and ransomware have recently interrupted the service of food and agriculture, energy, defense industrial base, and healthcare. all 16 critical infrastructure sectors now being threatened by copycat attacks. MetaDefender Kiosks of OPSWAT used to protect critical infrastructure environments and ICS that include over 98% of US-based nuclear facilities, from various zero-day attacks and malware. The mainstream of these settings modernize their air-gapped or OT settings through the practice of movable media devices, which OPSWAT can scan, audit, and clean before malware spreads a highly serious OT network. The L1001 deals a totally reshaped form feature which structures better-quality manageability choices, automatic updating, and quicker file and device scanning for enhanced cybersecurity. Further advancements and benefits also include: • Simplified deployment and manageability • Lower maintenance requirements • Higher performance and security The MetaDefender Kiosk, L1001, is combined into the wider OPSWAT Cross Domain portfolio of solutions for ICS environments and Critical Infrastructure. About OPSWAT OPSWAT, the global leader in critical infrastructure cybersecurity, helps protect the world's mission-critical establishments from zero-day attacks and malware. More than 1,000 organizations worldwide spanning Defense, Financial Services, Energy, Manufacturing, Transportation Systems, and Aerospace trust OPSWAT to secure their files and devices.

Read More