Cyber Risk & Ransomware In 2023

Uploaded on 2023-10-30 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

Every 11 seconds a business falls victim to a ransomware attack. In today's interconnected world, cybersecurity looms as an ever-present concern that organisations can no longer afford to sideline. A staggering 48% increase in cyber risk last year should serve as a wake-up call.

Yet, despite increased investments in cybersecurity technologies, significant breaches continue to make headlines. 

The Real Costs of Cyber Crime: Beyond Financial Impact

Whether a business pays hackers a ransom or not, there are significant costs involved which will include items such as digital forensics and data restoration, threat actor negotiation, IR counsel and legal costs as well as credit monitoring, PR and crisis management.

The scale and audacity of cyberattacks in 2023, ranging from the Twitter fiasco to the shocking NHS data breach, underline the multi-faceted nature of the risks involved. While the financial costs are easily quantifiable, the erosion of public trust and long-term reputational damage represents a deeper level of impact. When confidential health records of over a million NHS patients are compromised, the ensuing damage to public trust becomes an unquantifiable liability.

The Criminal Enterprise: A New Age of Cybercrime

Cybercriminals have evolved from isolated hackers to well-structured organisations that operate on an enterprise-level scale. These new-age criminal enterprises pour billions into R&D, ensuring that they remain ahead of the defensive measures that cybersecurity firms deploy. This unsettling evolution heightens the need for organisations to constantly reassess their security measures.

LockBit, the ransomware group responsible for, among others, the recent Royal Mail attack, also targeted The Lagan Specialist Contract Group, a multi-sector firm with global reach.  LockBit currently leads the ransomware landscape with 39% of all victims, due to its advanced techniques and aggressive tactics, including triple extortion and DDoS attacks.

Time-to-Detection: A Critical Measure of Resilience

A major concern in cybersecurity is the alarming time-lapse between the occurrence of a breach and its detection. Reports suggest that the average time from breach occurrence to identification hovers around nine months. This prolonged window provides malevolent actors ample opportunity to exploit the stolen data, multiply the scale of the attack, and deepen its impact.

Every business response needs to start beyond the endpoint, giving IT teams much broader visibility over the entire corporate estate to detect and investigate breaches faster.  The question should no longer be “Will my firm face a cyberattack?” but “When in the kill chain will I detect it?”

It’s well known that the difference between an attack failing or succeeding largely depends on the speed of action.

  • 2 in 5 businesses are overwhelmed by security alerts.
  • 55% of businesses ignore cybersecurity issues to prioritise other business activity.
  • 1 in 5 businesses ignore security alerts.
  • 73% of in-house teams are unable to fend off cyber threats.

The Need of the Hour

In an environment that continually evolves, organisations can't afford to have a myopic view of cybersecurity.  They need to quickly detect and remediate cyber attacks to stay protected. Endpoint security or firewall measures alone can't ensure safety. What's needed is a comprehensive security strategy that encompasses robust Security Operations Centres (SOC), cloud security protocols, and an educated end-user base.

Overcoming Challenges: Achieving True Resilience

Reactive approaches to cybersecurity are no longer sufficient. The current environment calls for an active approach, requiring ongoing evaluations of risk and frequent adjustments to security protocols. This is where partnerships with specialized SOC providers can offer a strategic advantage. Not only do they help with immediate threat containment, but their significant expertise also aids in foreseeing and planning for potential risks.  

Topical Insights: What 2023 Has Taught Us So Far

To stay ahead of the evolving threat landscape, we must recognize the key trends shaping it.  Here are some takeaways:

1.    Critical Infrastructure Attacks:   The focus on MOVEit and the NHS is a testament to the evolving focus of cybercriminals on high-stakes targets.

2.    AI in Cybercrime:   Just as defensive technologies evolve, so do the offensive capabilities that cybercriminals wield.

3.    Supply Chain Vulnerabilities:   JD Sports serves as a cautionary tale of how interconnected, yet isolated, our security ecosystems can be.

4.    Regulatory Implications:    Increasingly stringent regulations like GDPR are adding another layer of complexity to cybersecurity.

5.    Sophisticated Social Engineering:    Psychological manipulation, often exploiting real-time events, has become a major tool in a cybercriminal’s arsenal.

Building a Cyber-Resilient Future

As we progress through 2023, it's crucial that we don't just react to cyber threats but anticipate them. The need of the hour is a culture shift that places cybersecurity at the forefront of organisational strategy. This involves not just technology but people, processes, and continual learning.

The adage that prevention is better than cure has never been more relevant. As the cyber landscape keeps evolving, preparedness is your best weapon. Because in today’s world, it's not a question of 'if' but 'when' a cyber-attack will occur. Comprehensive preparation is not just a strategic move; it's an absolute necessity.

Rob Smith is CTO at Creative ITC                           

Image: Elchinator

You Might Also Read:

Enterprise Cybersecurity Today: A Vast Landscape To Secure:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« The Security Measures Professionals Use To Prevent Being Attacked
Senior Managers Need Higher Cyber Security Awareness Than Other Employees »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

L3Harris United Kingdom

L3Harris United Kingdom

L3Harris UK (formerly L3 TRL Technology) designs and delivers advanced electronic warfare and cyber security solutions for the protection of people, infrastructure and assets.

FireEye

FireEye

FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform.

National Cyber-Forensics & Training Alliance (NCFTA)

National Cyber-Forensics & Training Alliance (NCFTA)

NCFTA is a trusted alliance of private industry and law enforcement partners dedicated to information sharing and disrupting cyber-related threats.

Komodo Consulting

Komodo Consulting

Komodo Consulting specializes in Penetration Testing and Red-Team Excercises, Cyber Threat Intelligence, Incident Response and Application Security.

Optiv

Optiv

Optiv is a market-leading provider of end-to-end cyber security solutions. We help clients plan, build and run successful cyber security programs that achieve business objectives.

Sikur

Sikur

Sikur have developed a communication platform that sets new boundaries for corporate privacy and security.

Kingsley Napley

Kingsley Napley

Cyber crime is an area of growing legal complexity. Our team of cyber crime lawyers have vast experience of the law in this area.

Asvin

Asvin

Asvin provides secure update management and delivery for Internet of Things - IoT Edge devices.

Learn How To Become

Learn How To Become

At LearnHowToBecome.org, our mission is to help any job-seeker understand what it takes to build and develop a career. We cover many specialist areas including cybersecurity.

Crypto Quantique

Crypto Quantique

Crypto Quantique's ground-breaking technology radically simplifies the process of generating a hardware root of trust in an IoT device.

InfoExpress

InfoExpress

InfoExpress provides network security solutions that enhance productivity and security through better visibility, improved security, and automating device and mobile access to the network.

3Lines Venture Capital

3Lines Venture Capital

3Lines Venture Capital invests in exceptional founders and startups working on broad disruptive themes of Future of Work, AI enabled enterprises, and Industry 4.0.

ENSCO

ENSCO

The ENSCO group of companies provides engineering, science and advanced technology solutions that guarantee mission success, safety and security to governments and private industries worldwide.

Halcyon

Halcyon

Halcyon is the industry’s first dedicated, adaptive security platform focused specifically on stopping ransomware attacks.

OccamSec

OccamSec

OccamSec is a leading provider in the world of cybersecurity. We provide accurate, actionable information to reduce risk and enable better informed decisions.

ARC Risk and Compliance

ARC Risk and Compliance

ARC Risk and Compliance is a consulting company comprised of a team of AML Specialists completely focused on anti-money laundering compliance and the technologies used to support compliance programs.

Scality

Scality

Scality storage unifies data management from edge to core to cloud. Our market-leading file and object storage software protects data on-premises and in hybrid and multi-cloud environments.