1 October 2019
There are Only two Types of Organisations: Those that Have Been Hacked and Those that Don’t know it Yet!
In ITProPortal, Sebastian Bucur, Security and Software Consultant at DataArt, discusses three main types of cyberattacks and ways to mitigate risk and improve security.
"This attack exploits the frequent ‘weakest link’ in the security chain – people. The attacker psychologically manipulates staff members into performing actions or divulging confidential information. These attacks take place over the phone, via email or even face to face... The first step to protecting against these types of attacks is by educating the people within the organisation, increasing awareness of these attacks and exposing their nefarious methods."
"Malware is a piece of software that is specifically designed to disrupt, damage, or gain unauthorised access to a computer system; such software is typically referred to as a virus. Malware likes to make its way inside an organisation via email attachments and downloads from shady websites. It is essential to protect against this type of threat with a good antivirus program and staff awareness training."
"Ransomware is another type of malicious software designed to deny access to data until a ransom is paid. Most often, ransomware will encrypt the pictures or all the files on a computer and its attached storage devices and will release the decryption key only once the ransom is paid…"
"Government organisations, financial institutions, healthcare, the military, travel companies and political groups are the prime target for attackers. Trend Micro explains that targeted attacks are a type of threat in which bad actors actively pursue and compromise a target entity’s infrastructure while maintaining anonymity. The attackers have a great level of expertise and sufficient resources to conduct their schemes over a prolonged period of time. Often they adapt, adjust and improve their attacks to counter their victim’s defense. In this case, the IT department, the CIO and CISO must constantly be on guard and elevate the level of the organisation’s security."
View original article.