Rapid rise in cyber attacks in recent times
- Covid19 has caused organizations to move to work from home or go online without adequate preparation and that has caused rapid change in attack surface for which organizations are not prepared. We had been relatively well prepared with (please put in the complete list) VPN, DLP, Red teaming/Pen Test and multiple other security programs in place.
Hackers are capitalizing the fear of Covid19 for social engineering
- There is a rapid rise in social engineering attacks leveraging Covid19 related messages. We had been preparing ourselves through regular awareness campaigns. However we need to be continuously aware since all it takes is a single lapse in judgement to cause a breach.
- We had seamlessly moved to work from home with a decent level of security in place including DLP, VPN, Bitlocker encryption, multiple awareness campaigns on secure work from home. Our BCP preparation and security preparedness came handy in this situation.
- Red teaming and attack simulation
- DLP
- Bitlocker encryption
- Security awareness campaigns
- Third party risk management
- Risk assessment for Rich Relevance
- Vulnerability management program
- Security program/architecture review
- Cyber crisis drill
- Security rating
- ISO 27001
- Backups including offline backup of Internal IT
- Cyber Insurance etc
- SOC/SIEM to detect attackers
- PIM/PAM
- WAF
- Please include some of the key areas we are focusing on includes
- Ongoing security management for all implemented solutions
- Management personnel are being widely targeted. Please remain on vigil and observe security best practices and maintain security hygiene
- Please do let me know if you notice any possible security weakness or alert us if you find anything suspicious.
- If you have any ideas please do share with our security team
Comments