Connecticut Office CALL US AT (203)-295-5050 | New York Office (646)-693-1950
Home - Article

Featured Article

April 17, 2019

Huge New Cybersecurity Risks Emerge Says FireEye and JP Morgan


We’ve already warned readers that this year will be one for the record books when it comes to cybersecurity and sadly our prediction was spot on.

Since our prediction, we’ve had an insider threat in Baltimore, learned half of companies aren’t aware of their IoT breaches, the government shutdown in the U.S. might increase spear phishing attacks, the education market is seeing cybersecurity threats skyrocket, China is attacking the U.S., our home state of Connecticut had a major breach, DHS says the U.S. is not prepared for current cyber attacks, hackers are threatening users with child porn, industrial systems are being hacked and so on.

More recently, the former Homeland Security Secretary Janet Napolitano said, “I think one key gap was our inability to have formulated national cybersecurity standards that were mandatory, not voluntary.” She advocates for some sort of international understanding or global treaty on cybersecurity.

This is especially important because new threats are emerging.

For example, the Luhansk People’s Republic, a region that has claimed independence from Ukraine with the backing of Russia’s military, isn’t recognized by the United States, the European Union or NATO. But it has a hacking army and it’s targeting the Ukrainian government and military via phishing attacks and other means. “This is probably the most extreme case to date of an ultra-small group targeting a national government with a sophisticated hacking operation,” John Hultquist, FireEye's director of intelligence analysis said.

Many suspect this could usher in a new era of small nations or nonstate actors developing sophisticated hacking operations. This could mean a big headache for the United States and other global powers, which will have to defend themselves against a new slate of digital adversaries.

Willie Sutton is credited for the statement in response to a question about why he robbed bankc, “Because that’s where the money is.” This is exactly why western companies are targets – all of them. Because relatively speaking, that’s where the money is and hackers typically know the English language making hacking easier than hitting an organization in Japan.

Virtually every industry and company is a target. Healthcare made up 41% of 2018 cyber incidents according to specialty insurance company Beazley. JPMorgan Chase CEO Jamie Dimon has singled out cybersecurity as the biggest threat to the financial services industry.

The bottom line is companies are being quite reactive. They are waiting for attacks before responding. They are getting insurance and hoping for the best. Sadly – insurers aren’t always going to pay says the New York Times– leaving a company out in the cold.

The simplest thing every manager in a business can do is to train users on cybersecurity best practices. They should further use a phishing simulation tool monthly to test workers.

Prevention is crucial. Every company must take these additional steps:

  1. Auditing and documentation must be performed regularly to ensure systems are secure.
  2. Anomaly detection should be running constantly to detect threats as they emerge.
  3. Penetration testing shows if systems can easily be reached from the outside. Here is a case where this test might have saved two company’s’ reputations from being destroyed.
  4. An action plan to follow when a breach does occur. Once it happens, few will have the clear heads needed to “wing it” correctly. Equifax botched it’s response in what is being called a PR catastrophe.

Protect your organization – even if you have internal IT, hire an experienced MSP or MSSP.

If you do get infected, be sure to hire an MSP with forensic experience who can handle the problem and get you back and running as soon as possible.


 

Apex Technology Services
Choose from comprehensive, affordable solutions for IT consulting, network services and computer help desk support in Fairfield county including Norwalk, Darien, Stamford, Greenwich, Ridgefield and Bridgeport. Also Westchester county including Rye, New Rochelle, White Plains, Yonkers and New York including Manhattan and the five boroughs.
IT SERVICES

IT SERVICES

Apex Technology Services is a cutting edge MSP offering quality IT support to financial, medical, legal, Fortune 500 and government agencies while adhering to the highest of quality...

LEARN MORE
CYBERSECURITY Services

CYBERSECURITY

Apex Technology Services has the cybersecurity expertise to help your business in a world filled with attackers looking to shut down your business hold it ransom or steal your valuable...

LEARN MORE
CLOUD SERVICES

CLOUD SERVICES

Apex Technology Services delivers a combination of traditional IT functions such as infrastructure as a service (IaaS), applications, software, security, monitoring, storage...

LEARN MORE

Ranked Top 10 Network security Solution Provider

One Stop Shop For All Your Technology Needs


Contact us Now!