5 Cybersecurity Risks Every Organization Needs to Prepare For 2020
The recently concluded CyberWeek (an annual worldwide event that took place in Abu Dhabi in the UAE last October 12-17, 2019) offered training and talks on a number of important issues that are highly relevant for today’s security professionals: cyber threats, hacking (ethical and otherwise), cloud security, application security, reverse engineering, addressing web attacks, cryptocurrency, artificial intelligence, social media, cyber careers, and more.
This Hack in the Box conference is crucial because organizations today face serious cybersecurity threats. In fact, cybersecurity threats affect every business, no matter the size. As the second most reported economic crime,cyber crime affects 32% of organizations around the world and costs the global economy over US $400 billion per year. In other words, this is not something that you can ignore.
It is necessary for every company to be proactive in their approach to cybersecurity and to make the required investments and plans to ensure they are prepared for when a cybersecurity attack inevitably happens. Keep in mind that due to the continual technological enhancements, the amount of touch points that cyber criminals can locate within a business is expanding.
To help reduce the chances of it affecting you and your business, read on to learn about the five cybersecurity risks every organization needs to prepare for.
1. Zero-Day Attacks
When it comes to cybersecurity risks, the most feared is the zero-day attack, as it can produce severe consequences for businesses, no matter their size. A zero-day attack gets its name from the fact that security teams have precisely zero days to respond before it becomes active. Therefore, these types of attacks have a very high likelihood of succeeding, creating extensive damage to networks, or facilitating data breaches.
Zero-day attacks target systems whose vulnerabilities are yet to be discovered or patched. To mitigate the risk of your organization suffering one, make sure to always use common sense when you receive suspicious emails or attachments. Many of these attacks spread through email or the internet; therefore, you and everyone else in your company should avoid opening them altogether. You also want to make sure you are using reliable security software that you keep current by installing updates and security patches right when they are issued.
2. Cloud-Data Leakage
Over the next few years, one of the most prevalent cybersecurity threats is going to be cloud-data leakage, which includes the uploading of sensitive company information to cloud services. Cloud data breaches occur because many organizations don’t leverage best practices. Hackers will always go for the weakest link, so you want to ensure that you are putting forth a robust security system.
One of the reasons for the influx of cloud-data leakage is due to the increase in the number of employees using their personal devices for work in the absence of a strict security policy. When they use their own devices to access storage services (perhaps when working from home or while commuting), there is an increased opportunity for a security breach, particularly if they are using older operating systems.
Additionally, to avoid data leakage, make sure you are encrypting data. Your company’s data should not be on the cloud without being encrypted. Moreover, you also want to change your passwords routinely.
3. Mobile Malware
The threat of mobile malware is increasing as hackers become more sophisticated with their ways of targeting operating systems on mobile devices. This then enables them to steal device information.
To improve mobile device security across your firm, you first need to establish a mobile device security policy that gives definite rules about what is considered acceptable use. Make sure also to explain the security risks of smartphone use to your employees and how these security measures are mitigating those risks. By educating employees with cybersecurity training, you are helping to build up your primary line of defense against mobile malware attacks.
If employees bring their own devices to work, then you also need to create a clear Bring Your Own Device (BYOD) policy and security plan. This should include provisions for installing software on any personal devices used to store or access company data, protocols for reporting lost or stolen devices, requirements for regular backups, and data protection practices.
4. Targeted Attacks
Targeted attacks are aimed towards a specific individual, company, system, or software. Instead of indiscriminately targeting companies with viruses and spam, these attacks generally utilize targeted email attacks that successfully penetrate a company’s network. For the most part, preventing these sorts of targeted attacks requires an advanced approach to email security that combines various layers of defense with up-to-the-minute threat intelligence.
Other steps you should take include providing training to your security teams to monitor your computer systems, networks, mobile devices, and backup devices. Implement training to employees on how to handle security risks as well as informing them of the repercussions related to malicious activity. Ensure that privileged access security systems and central servers are restricted to a minimum number of employees, while also monitoring access to all servers, no matter the privilege level.
5. SQL Injections
An SQL injection is an attack in which malicious code is inserted into an application and then transferred to the backend database. This can then produce database query results or actions that should never have occurred. The malicious code can also potentially steal, delete, or modify data on the affected server.
To prevent an SQL Injection, you want to ensure that you are using stored procedure instead of dynamic SQL. This will stop SQL injection from happening since the input parameters will always be treated as an actual text value, instead of as a command. Also, having to validate input can significantly increase your chances of preventing SQL injection as suspicious inputs will be filtered before submission or processing by the server. Consider adding an email validator.
Which of these cybersecurity risks is your business most concerned about? Or, are you currently struggling with something else entirely? What steps is your firm taking to protect itself from cybersecurity risks? Let us know your thoughts, insights, and any relevant experiences in the comments below!
Dhillon Andrew Kannabhiran (@l33tdawg on Twitter) is the Founder and Chief Executive Officer of Hack in The Box (http://www.hitb.org), organiser of the HITBSecConf series of network security conferences which has been held annually for over a decade in various countries including Malaysia, The Netherlands and the UAE.
How to find interim staff for your organization
With the enlistment of ranking staff, requiring a great deal of time and cash venture, a developing number of organizations…