I have said it before, and I will say it again, the end-user is your most significant threat to your company. Let’s take a look at some fun statistics:
Let’s highlight two recent attacks that have happened and are very preventable!
According to Barkly, the city of Atlanta was targeted by ‘SamSam’ which attacks servers exposed to the internet via brute force attacks on RDP or other exploits. ‘SamSam’ has logged eight attacks in 2018 with the primary targets being healthcare and government organizations. The interesting thing about ‘SamSam’ is it is NOT spread by emails or an employee clicking a link, instead the ransomware targets servers on the internet with weak or stolen credentials. The error and question that needs to be asked is, why expose critical servers to the internet?
According to the New York Times Saks was targeted by a Russian group known as Fin7 or JokerStack. This breach resulted in 5 million records stolen. It is not clear on how the records where obtained but is suspected via phishing emails sent to employees. A phishing email is simple; a user gets a seemingly legitimate email that encourages them to click on a link. When a user falls for this tactic, the link unknowingly installs software onto the computer giving the hackers a backdoor into the systems. The question that needs to be asked is, how can we prevent phishing attacks?
The great thing about being a ‘Valued Added Reseller’ (VAR) and consulting partner is I can propose the best solution stack for my customers. Let’s take a look at some technologies that can help mitigate these attacks:
I have heard it all from “SaaS application X can never be hacked,” to “Why do I need to secure web sessions,” to “I cannot prevent users from clicking the wrong thing”. While these statements are true in a perfect world, the truth is, most hacks can be prevented. The question is, how seriously does your organization take it and do they want to be a headline!