Businesses Must Prioritise Safeguards Against Common Threats

Uploaded on 2024-02-19 in TECHNOLOGY--Resilience, FREE TO VIEW

The rise of cyberattacks using old tricks and proven methods is expected to continue. Criminal organisations are relentlessly seeking access to your systems, aiming to exploit vulnerabilities in your environment and disrupt your supply chain.

Businesses, regardless of size, must prioritise safeguards against common threats like business email compromise and compromised user accounts.

Detecting unusual behaviour is crucial for preventing invoice fraud and session hijacking, which could lead to reputational and financial damage. Moreover, ransomware attacks are proliferating, facilitated by professional groups offering easy-to-use ransomware kits to a growing number of affiliates. Businesses need to embed resilience into all aspects of their operations to mitigate the impact of such attacks.

Deepfake technology, which creates convincing fake videos, is rapidly advancing. It poses various risks, including tricking business users into fraudulent transactions, as seen in a case where a Hong Kong multinational was duped into paying $25 million to fraudsters using deepfake videos of executives.

Furthermore, deepfakes can be employed to spread misinformation and sow fear, particularly during times of uncertainty such as election years. To counter these threats, enhanced monitoring and targeted protection measures are essential to ensure both systems and personnel are resilient and informed.

Failure to implement a comprehensive cyber resilience program leaves businesses vulnerable to increased cybercrime and significant financial losses.

Despite the growing threat landscape, many executives continue to overlook cybersecurity risks and underinvest in resilience measures. This stems from a lack of awareness about the severity of potential risks and complacency due to past incidents going unnoticed.

Legislation addressing cyber risk is expected to expand globally, although its effectiveness remains subjective. Collaborative efforts between industries and policymakers are crucial to develop practical and relevant laws that keep pace with technological advancements. However, the slow pace of legislation could render it outdated by the time it's enacted.

Artificial intelligence (AI) has become a prominent tool in cybersecurity, offering both opportunities and challenges. Poorly implemented AI solutions can compromise data security, leading to unauthorised access and breaches.

Attackers are leveraging generative AI to enhance their tactics, while defenders are increasingly relying on AI to detect threats quickly amid the growing volume of network traffic. However, effective use of AI requires continuous management and monitoring to remain effective.

Partnering with established cybersecurity technology firms can bolster a company's capacity and provide enhanced visibility into potential threats. By leveraging proven solutions and expertise, businesses can better protect themselves against evolving cyber threats and mitigate the risks.

John McLoughlin is CEO of J2 Software

Image: CherriesJD

You Might Also Read: 

The Power Of Unified Cloud Protection:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cyber Warfare & The Future Of AI
23andMe Sparks A Rethink About Safeguarding Critical Data »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Cymbel

Cymbel

Cymbel provides businesses and government agencies with the tools and expertise they need to manage the most complex security and compliance challenges.

Dataglobal

Dataglobal

Dataglobal is an industry-leading provider of Information Archiving/Governance and Unified Data Classification solutions.

Rafael

Rafael

Rafael has more than 15 years of proven experience in the cyber arena providing solutions for national security as well as commercial applications.

Delta Risk

Delta Risk

Delta Risk is a global provider of managed security services and cyber security risk management solutions to government and private sector clients.

Cyber Security Malta

Cyber Security Malta

Cyber Security Malta is part of Malta's National Cyber Security Strategy which aims to combat cybercrime, strengthen national cyber defence and provide cyber security awareness and education.

United Nations Office on Drugs & Crime (UNODC)

United Nations Office on Drugs & Crime (UNODC)

UNODC promotes long-term and sustainable capacity building in the fight against cybercrime through supporting national structures and action.

ChainSecurity

ChainSecurity

ChainSecurity provides products and services for securing smart contracts and blockchain protocols and conducts R&D in the areas of security, program analysis, and machine learning.

SparkLabs Cyber + Blockchain

SparkLabs Cyber + Blockchain

SparkLabs Cyber + Blockchain accelerator is located in Washington D.C. which is one of the world's top cybersecurity ecosystems.

Kaspersky Industrial CyberSecurity (KICS)

Kaspersky Industrial CyberSecurity (KICS)

Kaspersky addresses all the cybersecurity needs of industrial organizations in its Kaspersky Industrial CyberSecurity (KICS) portfolio.

Humming Heads

Humming Heads

Humming Heads offers a complete solution to fight the advanced threats that target a company's endpoints and servers.

UKsec: Virtual Cyber Security Summit

UKsec: Virtual Cyber Security Summit

Join 100s of UK Cyber Security Leaders Online for Expert Cyber Security Talks, Strategy Insights, Cyber Resilience Tips and More.

Cyber Security Forum Initiative (CSFI)

Cyber Security Forum Initiative (CSFI)

CSFI is a non-profit organization with a mission to provide Cyber Warfare awareness, guidance, and security solutions through collaboration, education, volunteer work, and training.

GrayMatter

GrayMatter

GrayMatter provides Advanced Industrial Analytics, OT Cybersecurity, Digital Transformation and Automation & Control services to clients across the U.S. and Canada.

Noerr

Noerr

Noerr is one of the top European law firms with 500 professionals in Germany, Europe and the USA. We provide solutions to complex and sophisticated legal matters including cyber risks.

Nitel

Nitel

Nitel is a leading next-generation technology services provider. We simplify the complex technology challenges of today’s enterprises to create seamless and integrated managed network solutions.

GTT Communications

GTT Communications

GTT are a global network provider that serves thousands of multinational and national enterprise, government and carrier customers with a portfolio of advanced connectivity and security services.