07/16/2022
Securing your network against cyber threats can be challenging โ but taking care of the basics can go a long way towards keeping hackers out ๐๐ป
๐ Remote work is making easy targets for hackers
For many businesses, hybrid and remote working has become the norm in recent years and organisations have shifted towards cloud-based applications and services to enable this โ๐ป
But while this shift has been effective for productivity and improving employee happiness, hybrid working also comes with additional cybersecurity risks that organisations might not be thinking about โ and that's making life easier for cyber criminals ๐
"The main concern that remains for me around remote work is inadvertent exposure and public-facing applications," says Jamie Collier, senior threat intelligence advisor at Mandiant ๐๐ป
๐ Simple cybersecurity updates are being ignored
Applying security patches as quickly as possible is often said to be one of the best things to help protect networks from cyberattacks โ but new vulnerabilities regularly appear, and many information security teams aren't keeping up โ๏ธ
๐ Business email compromise attacks cost billions
Those risks potentially include data theft, malware attacks, ransomware and even nation-state backed cyber espionage. But one of the most significant cybersecurity threats is also one of the most simple attacks that cyber criminals can carry out: phishing ๐ง
Phishing is used in several ways, from stealing sensitive information like bank details and passwords from individuals to being used as the opening stage in sophisticated cyberattacks targeting whole organisations ๐คจ
All it takes is a convincing email lure and a well-designed fake version of a real website, or any other online service that people use a login name and password to access, and data falls right into the hands of the attackers โ๐ป
*Image: Mandiant
Exposed and misconfigured services that cyber criminals can exploit for attacks as discovered across Mandiant customers' external assets from January to March 2022
