Data Security

Security experts discovered a 1,500%+ upsurge attacks towards VPN due to remote work

A leading managed security services provider (MSSP), Nuspire, has announced its 2021 Q1 Threat Landscape Report release. The report includes techniques and procedures (TTPs) with additional insight from its threat intelligence partner, Recorded Future, and new cybercriminal activity and tactics sourced from 90 billion traffic logs.

Nuspire had a 1,527% increase in Pulse Connect Secure VPN and a 1,916% increase in attacks against Fortinet's SSL-VPN in Q1 2021. Various vulnerabilities happen to allow a threat actor to get access to a network. They exfiltrate information and install ransomware once they are in.

Due to the increase in RDP and VPN vulnerabilities, threat reports of Nuspire find out botnet, malware, and suspicious activities are down compared to Q4. But still, threat actors are on the prowl. Other significant findings included in Nuspire's 2021 Q1 Threat Landscape Report are:


• Emotet botnet activity dropped -99.96% after the announcement of Law Enforcement seizing their infrastructure.
• ZeroAccess Botnet activity rushed during one week by 619,460% before trailing down into the end of the quarter.
• SMB Login Brute Force efforts contained 69.73% of all exploit activity witnessed in Q1.


About Nuspire

Nuspire, a security services provider (MSSP), is revolutionizing cybersecurity involvement by taking a hopeful and people-first approach. Nuspire offers complete services that syndicate award-winning threat recognition with more excellent response competencies to deliver end-to-end security across the gateway, network, and endpoint ecosystem. Our customer base spans thousands of enterprises of all sizes across numerous businesses and realizes the extreme risk reduction per cyber-dollar spent. At Nuspire, we are laser-focused on bringing a fantastic cybersecurity experience that surpasses the expectations of the clients.

Spotlight

Spotlight

Related News

Platform Security

Verizon Holds Cybersecurity Event at NJ Executive Business Center

Verizon | October 13, 2023

Verizon Business has announces hosting a special cybersecurity event on October 18, 2023, marking two decades of cybersecurity consulting services at its New Jersey Executive Business Center. Participants will gain valuable insights into how Verizon is empowering companies to harness the potential of 5G network solutions. Alongside the cybersecurity panel discussion, attendees can expect live demonstrations highlighting Verizon's proficiency in developing exceptionally secure solutions. Verizon Business will host a special media event on October 18, 2023, marking two decades of cybersecurity consulting services and honoring Cybersecurity Awareness Month. The event will feature a panel discussion led by industry experts, including Chris Novak, Managing Director of Verizon Cyber Security Consulting; Sean Atkinson, Chief Information Security Officer at the Center for Internet Security; and Krista Valenzuela, Cyber Threat Outreach and Partnerships at The New Jersey Cybersecurity and Communications Integration Cell (NJCCIC). The panel promises an engaging dialogue encompassing critical themes such as data privacy, AI's influence on cybersecurity, the emergence of voice security, evolving security controls, and other pertinent subjects. Furthermore, the discussion will shed light on the strategies employed by local New Jersey organizations to counteract emerging cyber threats. Attendees will also gain insights into Verizon's role in empowering businesses through innovative 5G network solutions, enhancing security measures, and elevating their overall operations. Managing Director of Verizon Cyber Security Consulting, Chris Novak, said, Raising greater awareness about cybersecurity is the first step in assisting organizations defend against these cyber threats. [Source – Globe Newswire] Novak mentioned that Verizon is utilizing its network's extensive visibility to collect, report, and disseminate actionable insights. These insights can be used by customers and other businesses to tackle advanced cyber threats related to vulnerability exploitation and social engineering. Furthermore, demonstrations highlighting Verizon's proficiency in developing highly secure solutions will be presented in addition to the cybersecurity panel. They include: Coach-to-Coach Communications: Introducing a dependable and secure wireless network solution tailored for NFL coaches, enabling confidential communication on the field. Cashierless Checkout: Utilizing advanced machine learning and computer vision technologies, this innovative solution facilitates autonomous stores at any location. Integrated with 5G UWB and 5G Edge, it redefines the retail experience. Private Wireless Networks: Explore the benefits of premise-based equipment, highlighting the significance of private dedicated networks in enhancing business connectivity and security. Cyber Threat Outreach and Partnerships, NJCCIC, Krista Valenzuela, mentioned, One of the ways we’re harnessing the power of AI in New Jersey is in identifying suspicious and malicious websites to help the State and its critical infrastructure in better defending against these cyber threats. [Source – Globe Newswire]

Read More

Software Security

SAIC Announces New Zero Trust Edge Capability

Business Wire | November 03, 2023

Science Applications International Corp. (NYSE: SAIC) today announced new, purpose-built Zero Trust security capabilities, which provide a solution to answer the Zero Trust pillars addressing data, identity, devices, networks, applications and workloads. The new Zero Trust security capabilities have been tested and validated on an AWS Snowball Edge and AWS Snow Family device with on-board storage and compute power for select Amazon Web Services (AWS) capabilities. AWS Snowball Edge can support local processing and edge-computing workloads in addition to transferring data between a user’s local environment and AWS. SAIC has brought together the best-in-class tools to deliver a mission-ready Zero Trust Edge capabilities that provides multi-level secure data processing and analytics and prioritizes data in a DDIL environment to transport back to the cloud, said Lauren Knausenberger, chief innovation officer at SAIC. This provides warfighters with a critical capability to extend their enterprise OCONUS, with the ability to run disconnected ops and rapidly adopt technologies and capabilities needed for mission success. This capability has the potential to be a critical enabler for Combined Joint All-Domain Command and Control (JADC2), with the ability to deploy at forward operating bases, on air platforms and at sea. Through the combined efforts of AWS; SAIC; Koverse, an SAIC company; Okta; CrowdStrike; Zscaler and Splunk, ready-to-install cybersecurity and Zero Trust technologies combine data and provide multi-level security from the edge through the enterprise. This capability meets the challenges of Wide Area Network (WAN) or no WAN connectivity by enabling offline compute capabilities and replicates mission-critical data after connectivity is restored. These components of software and hardware allow the capabilities to address the five pillars of the Zero Trust Maturity Model and therefore help increase cybersecurity posture at the edge. SAIC is an industry leader in cloud and cybersecurity, addressing Zero Trust security capabilities, including the latest capabilities which have been validated and tested on an AWS Snowball Edge device.

Read More

Software Security

Fortinet Unveils High-Performance Switches for Modern Campus Security

Fortinet | October 11, 2023

Fortinet has announced the introduction of two new campus switches, the FortiSwitch 2000 and 600. These systems are designed with high performance and port density, ensuring they meet the requirements of modern campuses and can easily scale as connectivity demands increase. Organizations require high-performance switches that smartly manage AP traffic and prevent bottlenecks to ensure network availability and a favorable user experience. Fortinet, a leading global cybersecurity provider pioneering the integration of networking and security, has unveiled two new campus switches, the FortiSwitch 600 and 2000. These switches cater to the expanding connectivity and security requirements of campus, offering embedded intelligence, high performance, and seamless integration with FortiGuard AI-Powered Security Services and Fortinet’s AIOps management tools. The FortiSwitch 600 series is an innovative multi-gigabit secure campus access switch featuring up to 5GE access and 25GE uplinks. This switch optimizes network performance by smartly managing traffic from next-generation APs to crucial business destinations. On the other hand, the FortiSwitch 2000 series is a robust campus core switch specifically designed for larger, intricate campus setups. It aggregates high-performance access switches such as the FortiSwitch 600. Both series come with a dual power supply, ensuring the redundancy essential for today's high-performance campuses. Chief Marketing Officer and EVP of Product Strategy at Fortinet, John Maddison, stated, Fortinet has delivered secure switching solutions for 20 years, making it uniquely positioned to enable customers with a robust secure connectivity solution for the entire LAN. We’re the only vendor providing fully converged wireless and wired AI-powered security and networking through a single platform, providing security and visibility from the moment a user or device connects to the network. [Source – Globe Newswire] Numerous organizations are investing in next-gen wireless access points (APs) to offer increased connectivity as users demand more bandwidth than ever before. However, legacy switching solutions often cannot keep up. To ensure positive user experience and network availability, organizations require high-performance switches that intelligently coordinate AP traffic and prevent bottlenecks in order. Jeff Howlett, Chief Information Officer at Meredith College, said, Our campus environment supports thousands of faculty and students, and Fortinet switches assisted us modernize our infrastructure to provide the consistent connectivity and Power-over-Ethernet they require. And by managing all of our switches through FortiGate NGFWs, we consolidated point products into a unified platform that provides more visibility into potential security risks than we have ever had before. [Source – Globe Newswire] For the past two decades, Fortinet has been at the forefront of integrating networking and security in both wired and wireless LAN solutions. The newly introduced switches are the latest enhancements to its secure connectivity platform, offering complete access control, security, and unified management across the entire LAN infrastructure.

Read More