The world of cybercrime is changing fast; it’s ever-evolving. As we step into the new year, we need to discuss things that need to be done, to ensure better cybersecurity, for individuals, for organizations and businesses.
In this piece, we discuss some basic tips that could help organizations protect themselves against cyberattacks in 2019. Here we go…
Cybersecurity Tips for Protecting Organizations
- Be prepared to battle IoT botnets
- Go for corporate cyber extortion insurance, but remain vigilant
- Linux-targeted attacks would continue, be prepared
- In addition to preventing Wi-Fi- based attacks, focus on attacks via other wireless protocols too
- Hackers increasingly target cryptocurrencies, be on the guard!
In today’s world, IoT devices are getting increasingly connected to enterprise networks. There have been many instances, in the recent past, when cybercriminals have used IoT botnets to launch successful attacks against organizations. Experts had warned of this in 2018 as well.
As the years go by and more and more IoT devices get connected to organizational networks, the tendency to target these devices for launching attacks go on increasing, especially since these devices have weak or no security at all, both in development and deployment. Hence, it becomes very important for organizations to be geared up to battle IoT botnets. This can be done by securing IoT devices, dissuading employees from connecting IoT devices to critical networks, disconnecting devices that are not in use etc. Governments are also gearing up to come up with IoT device regulations that could prove helpful.
Cyber extortion insurance helps a lot, especially when there are ransomware attacks. But then, experts have been pointing out that while on the one hand insurance helps cover the costs of ransomware and other cyber extortion, such insurances sometimes fuel attacks too. There is at present a drop in the number of organizations that pay up following a ransomware attack. Hence some ransomware authors target insurers and identify organizations that have extortion insurance. Then they would attack these organizations and get them to pay out of the insurance money. In short, insurance may help hackers identify organizations that might pay up following a ransomware attack. This has already been happening and will continue to happen. Hence, organizations that opt for cyber extortion insurance should remain vigilant and do all that is needed to prevent cyberattacks. They should not do away with the best security practices and security controls that they have hitherto been depending on.
In recent times, there has been a dramatic increase in cyberattacks targeting Linux systems. This is actually a result of the plan to target inexpensive IoT devices that use embedded Linux and are released with highly insecure defaults as well. Such attacks have been happening in 2018 and will continue in 2019 as well. Organizations should do what all is needed to combat Linux-targeted attacks and should have all necessary security protocols in place.
Wi-Fi-based attacks are very common, but experts point out that hackers have started focussing their attention on other wireless protocols too, including Zigbee, Bluetooth and Sigfox. This is because of an increase in the commoditization of new wireless tools like SDR (Software Defined Radio) etc. Hackers now get from the market tools that are needed for targeting and attacking via such wireless protocols. Hence organizations should gear up to protect themselves from attacks via all wireless protocols.
Cybercriminals today show a tendency to increasingly target cryptocurrency blockchains and wallets. Experts even think that this could ultimately lead to the wiping out of some prominent cryptocurrencies. In this context, it’s advisable for organizations to be on the guard against such attacks in the new year.