Wednesday, January 17, 2018

Action... reaction?

The idea on which the third Law of Newton is based, which refers to the basic principles of physics, was already mentioned by Socrates, named as the “Law of cause and effect”. Currently this same idea remains thanks to the Law of Karma, which is an anesthetic for the mind of the most suffered. There is a sense of redemptions and justice that accompanies this belief that defends that every action generates an amount of energy that returns to us with the same force.  

Behind every action there is a reaction and behind almost every cyberattack there is financial motivation. There is a type of attack called ransomware, and for the lucky one who doesn´t know what they are, they suppose an extraction of information for which a ransom is subsequently requested. Ransomware attacks are on the rise and it is already half of the companies worldwide that have experienced it in the last year according to this Radware study.

Radware's Global Application Security and Network Report, now in its seventh year, is an inter-sector report compiled by Radware's Emergency Response Team (ERT), leveraging data from supplier surveys of 605 ICT executives covering various industries around the world.

This growth of ransomware goes hand in hand with the increase in the value of cryptocurrencies, which provides the opportunity for hackers to collect lucrative profits months after the theft of information. As the vice president of security solutions at Radware, Carl Herberger, explains: "The rapid adoption of cryptocurrencies and their subsequent increase in price has presented hackers with a clear advantage that goes beyond the anonymity of cryptocurrencies. A hacker in these situations not only encourages more attacks, but also provides criminals with the vital funds they need to continue their operations. "

If we take into account the data obtained from the same study in 2016, the results are clearly alarming. An increase of 40% in the number of companies that have reported ransomware attacks is a considerable increase that makes a very graphic presentation of the problem we are currently experiencing. According to this study, companies do not expect this threat to disappear in 2018 as one in four executives considers that this type of ransomware is the biggest threat to its commercial sector in the next year.

Herberger explains that criminals during this year have used various exploits and hacks to encrypt vital systems, steal intellectual property and close commercial operations, all with rescue demands linked to these actions. Textually, he says the following about the situation after an attack: "Between service interruptions, interruptions or IP theft, hackers are leaving companies staggering, looking for solutions after an attack occurs. As hackers and their methods become increasingly automated, it is now more important than ever for organizations to be proactive in protecting their businesses. "

One of the points that most concern companies when it comes to being attacked is the data leakage which can have a great influence on their commercial scope, although they also include in their lists of fears the loss of reputation and service interruptions. Although 24% of companies report cyber attacks daily or weekly, almost 80% of companies have not calculated the cost of attacks, and one in three lacks a pln emergency response in case of attack .

Another issue that we have already discussed in previous articles is the security of the IoT devices and on whom the weight of the obligation to keep them updated and safe rests. This is another aspect that also treats this study and that one more verse, shows little consensus and very different opinions about it. While the network and the manufacturer took 34% of responses each, there is still a small percentage (21%) that throws balls out and believes that the responsibility for the safety of these devices lies with the consumer.

Although we started the article talking about the third theory of Newton, the law of action and reaction, when measuring, avoiding and acting once the attacks occurred, it would be encouraging to see more reaction from the companies. The ransomware takes time sticking and should already be included in the action plans of companies. The fact that a high percentage continues to consider ransomware as unworthy of this attention, makes us consider the lack of more action to obtain a reaction.


Post a Comment