industry unlocked disposal to infiltrate organisations and the exploitation of remote services continues to be the easiest way in . It ’ s essential for organisations to adequately monitor and secure these . Merging vulnerability intelligence with security operations is the best way to thwart the most prevalent cyber-risks .
McPherson continued : “ Ransomware remains the biggest risk facing business in 2023 and the last quarter saw more victims than ever before . Utilising malware such as SocGholish has made their efforts more potent , which is why keeping abreast of the latest developments in tactics , techniques and procedures ( TTPs ) of ransomware activity , in addition to tracking groups known to be targeting your sector , is the best way to stay ahead of the curve from this pernicious activity .”
ReliaQuest further advises :
• Taking a patch-all approach to vulnerability management is an ineffective method of tackling vulnerability risk . Adding vulnerability intelligence can guide security teams in tackling the common vulnerabilities and exposures ( CVEs ) that represent the greatest chance of causing an impact to businesses . Getting a robust , consistent and repeatable vulnerability remediation programme in place can go a long way in raising overall cyber-resilience .
• Vulnerability management platforms discover known vulnerabilities and potential exploits , while breach and attack simulation capabilities highlight configuration weaknesses , detection and prevention gaps , and architectural issues . Organisations should ensure that an effective response and recovery plan is properly evaluated through tabletop exercises and is tested periodically and adjusted as the threat landscape , people , systems and business processes change . By combining threat and vulnerability management , organisations can increase their security confidence and decrease their overall risk .
• Pay attention to email security controls – initial access malware continues to be delivered through the delivery of phishing emails .
Mike McPherson , SVP of Technical Operations at ReliaQuest
Increasing resilience to this form of malware is best accomplished through a combination of email security controls , group policy to minimise the chance of a malicious file being delivered / opened and user awareness programmes .
• Keep abreast of the latest developments in the tactics , techniques and procedures ( TTPs ) of ransomware activity , in addition to tracking groups known to be targeted targeting your sector , this is the best way to stay ahead of the curve from this pernicious activity .
• Use the trends identified in this report to inform your own threat model and act accordingly . It ’ s always better to ‘ stay left of boom ’ and act in a proactive manner . Prevention is always a better approach than remediation . www . intelligentciso . com
45