One Article Review
| Source |  AlienVault Lab Blog |
|---|---|
| Identifiant | 8397627 |
| Date de publication | 2023-10-19 10:00:00 (vue: 2023-10-19 10:08:54) |
| Titre | Pourquoi les organisations ne détectent-elles pas les menaces de cybersécurité? Why are organizations failing to detect cybersecurity threats? |
| Texte | The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. With the changing security landscape, the most daunting task for the CISO and CIO is to fight an ongoing battle against hackers and cybercriminals. Bad actors stay ahead of the defenders and are always looking to find new vulnerabilities and loopholes to exploit and enter the business network. Failing to address these threats promptly can have catastrophic consequences for the organization. A survey finds that, on average, it takes more than five months to detect and remediate cyber threats. This is a significant amount of time, as a delayed response to cyber threats can result in a possible cyber-attack. One can never forget the devastating impacts of the Equifax breach in 2017 and the Target breach in 2013 due to delayed detection and response. This is concerning and highlights the need for proactive cybersecurity measures to detect and mitigate rising cyber threats. Amidst this, it\'s also crucial to look into why it is challenging to detect cyber threats. Why do organizations fail to detect cyber threats? Security teams are dealing with more cyber threats than before. A report also confirmed that global cyber attacks increased by 38% in 2022 compared to the previous year. The increasing number and complexity of cyber-attacks make it challenging for organizations to detect them. Hackers use sophisticated techniques to bypass security systems and solutions - like zero-day vulnerabilities, phishing attacks, business email compromises (BEC), supply chain attacks, and Internet of Things (IoT) attacks. Some organizations are unaware of the latest cyber threat trends and lack the skills and resources to detect them. For instance, hackers offer professional services like ransomware-as-a-service (RaaS) to launch ransomware attacks. Surprisingly, two out of three ransomware attacks are facilitated by the RaaS setup, but still, companies fail to have a defensive strategy against them. Enterprises relying on legacy devices and outdated software programs are no longer effective at recognizing certain malicious activities, leaving the network vulnerable to potential threats. Additionally, the lack of trained staff, insider threats, and human errors are other reasons why many organizations suffer at the hands of threat actors. Besides this, much of the company\'s data is hidden as dark data. As the defensive teams and employees may be unaware of it, the hackers take complete advantage of dark data and either replicate it or use it to fulfill their malicious intentions. Moreover, cloud migration has rapidly increased in recent years, putting cybersecurity at significant risk. The complexity of the cloud environments, poorly secured remote and hybrid work environments, and sharing security responsibilities between cloud service providers and clients have complicated the situation. In addition, cloud vulnerabilities, which have risen to 194% from the previous year, have highlighted the need for organizations to look out for ways to strengthen their security infrastructure. Security measures to consider to prevent cyber threats Since businesses face complex cyber threats, mitigating them require |
| Envoyé | Oui |
| Condensat | 194 2013 2017 2022 access accessing across actions activities actors addition additionally address adequate adhere adopt adopting advancement advantage against agency ahead all allows also always amidst amount analytics any anyone approach are article at&t attack attacks authentication authenticators author average background backup backups bad based basic battle bec because becoming before behavior besides best better between breach breaches business businesses but bypass call can catastrophic cba centric certain chain challenging chances changing checks chief cio cisa ciso clients cloud combat comes common companies company compared complete complex complexity complicated comprehensive compromised compromises concept concerning conduct confirmed consequences consider containing content control controls cost creating critical crucial csos cyber cybercriminals cybersecurity cybersecurity; dark data daunting day dealing decision dedicated defenders defensive defined delayed details detect detect cyber detecting detection devastating develop developed devices different disaster disconnects does dspm due easier easy edr educating education effective effort; either element email employ employee employees enables endorse endpoint ensure ensuring enter enterprises entity environments equifax error errors especially establish event ever evolving exist exploit face facilitated factor fail failing failure fido2 fight final find finds five focus focuses focusing follow following forget found framework from fulfill function fundamental further future gamification general get global good great guaranteeing guide guidelines hackers had hands has have having help helps here hidden high highlighted highlights hindrance how however human hybrid hygiene ibm idea immutable impacts implemented implementing improper incident incidents includes including increased increases increasing information informed infrastructure insider instance institute intentions internet introduce introduced introduction invaluable investigate investigation involve involved iot irp irps issue its know lack landscape latest launch layer layers leaks leaving legacy levels leveraging like long longer look looking loopholes lower main mainly make malicious manage management manifest many may measures members mere mfa migration mitigate mitigates mitigating models monitor monitoring months more moreover most much multi multilayered multiple must national ndr necessary need network never new nist not now number offer officers one ongoing organization organizational organizations other out outdated overall overcome panic people perform persons phishing pki place plan planned playfully policies poorly positions possible post posture posture: potential practice practicing prevent preventing previous proactive procedure process professional programs progress promptly proper properly protect protection provide provided providers putting raas range ransomware rapidly reasons recent recognize recognizing recovering recovery reduce regular relying remediate remember remote replicate report requires resistant resources respond response responsibilities responsibility result reveals risen rising risk risks robust roles safe safeguard sans secured security sensitive service services sessions setting setup severity sharing siem significant similarly since situation sizes skills smbs soar soc software solely solution solutions some sophisticated staff stakeholders standards stay staying step steps stop strategy strengthen strict stringent successfully such suffer sum supply support surprisingly survey systems tactics take takes target task teach team teams techniques technology termination than them therefore these things thoughts threat threats three through time tips tools trained training trends two types ueba unauthorized unaware understand updated updates use used user usually variety various vendor verizon views visibility vital vulnerabilities vulnerable way ways well what when where which who why without work workers workflow wrong year years zero |
| Tags | Ransomware Data Breach Tool Vulnerability Threat Cloud |
| Stories | Equifax |
| Notes | ★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.