[ad_1]
Right this moment, we’re happy to launch our annual Defending In opposition to Essential Threats report. Inside, we cowl essentially the most important vulnerabilities and incidents of 2021, with skilled evaluation, insights and predictions from our safety and risk intelligence groups throughout Cisco Talos, Duo Safety, Kenna Safety, and Cisco Umbrella.
It’s clear that 2021 – and, certainly, the beginning of 2022 – has been very difficult for safety defenders. To convey our Defending In opposition to Essential Threats: Analyzing Key Incident Tendencies report back to life, I sat down with six skilled risk hunters and analysts from these groups, and requested them to inform me about their findings on one particular cybersecurity risk, or incident, from the previous 12 months. Every skilled selected to debate a subject which tells us lots in regards to the present priorities of risk actors – under you’ll discover a transient abstract on a number of the key themes we lined.
We additionally performed a survey amongst 190+ safety and know-how leaders by way of PulseQA to gauge their views on the present risk panorama. We discovered that 66% of respondents felt that the complexity and quantity of cybersecurity assaults had escalated in 2021, while 36% felt that assaults had stayed in line with the earlier yr.
Within the survey, we additionally requested in regards to the prime risk issues safety leaders had for 2022. Ransomware got here in as the highest concern, with 38% of respondents selecting that possibility. Within the report, we focus on the evolution of ransomware and the way it has reached a crucial degree for sure unhealthy actors, scary a extra extreme and structured governmental response. You’ll examine this in Matt Olney’s (Talos’ Director of Risk Intelligence and Interdiction) part in regards to the Colonial Pipeline assault.
Matt’s part additionally discusses provide chain assaults, which as Matt says, is likely one of the most difficult kinds of threats we face in the present day. Forty-three p.c (43%) of our Pulse respondents advised us that they had been impacted in a provide chain assault in 2021. Make sure to try this part for recommendation on learn how to make your group a smaller goal for attackers.
Zero-day vulnerabilities got here in because the second greatest concern for safety practitioners, in keeping with our survey. The report discusses the impression of Log4j with Talos’ Incident Response Observe Lead Liz Waddell, and the way it has continued to trigger an impression in 2022. Liz additionally gives an in depth seven-point motion plan on learn how to cope with future zero-day assaults.
Moreover, we additionally have a look at essentially the most impactful disclosed vulnerabilities of 2021 with Jerry Gamblin, Kenna’s Director of Safety Analysis (now a part of Cisco). This part is especially useful for defenders who want to transfer to a extra predictive-based, prioritized vulnerability administration plan.
You’ll additionally examine the impression of Emotet in Artsiom Holub’s (Senior Safety Analyst for Cisco Umbrella) part. Emotet is a really highly effective loader that got here again from the lifeless in 2021 to trigger numerous destruction, and the indicators are that it has some very nefarious plans for 2022.
Coping with legacy or unintegrated safety know-how, or ‘safety debt,’ is a subject we’re very keen about serving to our prospects to fight, and on this report, our Advisory CISO Dave Lewis discusses why it’s turning into an rising goal of alternative for cyber criminals. We requested respondents in the event that they had been coping with safety debt and to what extent; the overwhelming majority (75%) stated they had been – but it surely was manageable. Sadly, 13% stated that it’s an enormous challenge for them. Dave’s part accommodates loads of recommendation on learn how to tackle this challenge in your group.
Lastly, for readers interested by studying a few day within the lifetime of a Talos risk hunter, you’ll little doubt discover Ashlee Benge’s part on the rise of macOS malware very thought-provoking.
The skilled evaluation you’ll learn on this report highlights the essential function of our defenders, and the capabilities that we, as an business, have constructed primarily based on the meticulous examine of previous attacker habits.
The excellent news is that in keeping with our Pulse respondents, nearly all of cybersecurity professionals undertake common incident response testing. Forty-one (41%) are testing their plans twice a yr, and 29% are testing greater than 3 times a yr. Solely 4% stated they didn’t have an incident response plan in place.
In the event you’re a safety defender trying to prioritize your focus areas and tackle patterns of concern, we hope that this yr’s report shall be useful to you. It was put collectively by a devoted group of safety leaders, whose job it’s to identify key incident tendencies.
Right here’s what we cowl within the new Defending In opposition to Essential Threats:
- Colonial Pipeline: Transferring Past Ransomware Ideas and Prayers with Matt Olney, Director of Risk Intelligence and Interdiction, Cisco Talos
- Safety Debt: An Growing Goal of Alternative with Dave Lewis, Advisory CISO, Cisco Safe
- The Most Essential Vulnerabilities (You Would possibly Not Be Pondering About) with Jerry Gamblin, Director of Safety Analysis, Kenna Safety (now a part of Cisco)
- Log4j and How To Plan for Zero-Days with Liz Waddell, Observe Lead, Cisco Talos Incident Response
- What’s Emotet Doing Now? with Artsiom Holub, Senior Safety Analyst, Cisco Umbrella
- The Rise of macOS Malware with Ashlee Benge, Lead, Strategic Intelligence and Knowledge Unification, Cisco Talos
You’ll be able to obtain the complete report right here: Defending In opposition to Essential Threats: Analyzing Key Incident Tendencies
Word: Nearly all of the content material on this report is predicated on cyber-attacks that happened in 2021, and the report was written earlier than the occasions unfolded in Ukraine. We advise all readers to remain updated with new developments of cyber-attacks in Ukraine by following the Cisco Talos risk advisory weblog.
Along with the risk advisory, you possibly can examine Cisco Talos’ efforts to-date in data gathering, risk searching and the assigning of devoted Cisco engineers to Ukrainian organizations looking for to safe their operations.
We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Related with Cisco Safe on social!
Cisco Safe Social Channels
Share:
[ad_2]
