What have we learned from 2018’s chaotic cybersecurity tableau?

What have we learned from 2018’s chaotic cybersecurity tableau?

In a famous painting by French Post-Impressionist painter Paul Gauguin, he asked, “Where do we come from? What are we? Where are we going?” These three questions have always been relevant to us living in the modern world. For businesses in this digital and data-driven economy, these are the most pressing questions for cybersecurity, as cyberattacks such as ransomware, phishing, and data breaches have become a significant threat to businesses and individuals.

We looked back at some significant events of the past year to understand the state of cybersecurity and to draw some lessons moving forward in 2019.

“Where do we come from? What are we? Where are we going?” Paul Gauguin, 1897, Oil on canvas, 139 cm × 375 cm

Awareness is still the best security measure

Google may have eliminated phishing among its employees by replacing two-factor authentication (2FA) with a USB physical key, but phishing was still one of the biggest threats in 2018. A blatant example of this vulnerability was the $3 billion in intellectual property and 31 TB of data stolen and sold on Megapaper.ir and Gigapaper.ir following a series of phishing attacks on professors and staff from various universities.

Related article: Phishing 101: Training Employees on Company Data Safety

Even the most robust security systems are not enough to protect from these scams. The best online protection is knowing how phishing works and learning how to spot malicious links, programs, emails, and websites.

Organizations were largely unprepared for ransomware

2018 was the year of ransomware, a malicious program that holds data hostage until money is paid. Ransomware caused unprecedented damage to several industries such as healthcare, transportation, state agencies, and businesses.

The most notable example is the NotPetya ransomware. Starting in Ukraine, it quickly spread worldwide, crippling infrastructure and services and causing billions of dollars in damage across Europe, Asia, and the Americas. Similar strains also emerged, proving that businesses were largely unprepared. Many of these attacks also go unreported, as companies would rather pay a ransom than risk reputation damage, halted operations, data loss, and fines.

Ransomware should not be underestimated. A ransomware attack that demanded $52,000 dollars caused damages of almost $10 million to the city of Atlanta.

Related article: 6 Poor Security Habits that Lead to Data Breaches

The effectiveness of ransomware shows that traditional solutions such as antivirus software or firewalls cannot keep up with the cyberthreats today. To detect and defend against ransomware, organizations need multilayered protection that only a managed services provider (MSP) can offer. These often include measures like intrusion prevention systems, data backup, data recovery, encryption, password management, virtualization, network security, and more.

Healthcare breaches such as those suffered by CarePartners highlighted that businesses still fail to update their software. CarePartner’s software was un-updated for two years, making them highly susceptible to ransomware attacks. However, important software updates have indispensable security patches that address some of the latest threats and vulnerabilities. MSPs take care of this so that their partners’ hardware and software have the necessary patches and updates.

Make sure your devices are safe

Securing hardware is also absolutely essential. Meltdown and Spectre were two major vulnerabilities found in Intel, AMD, and ARM computer chips. Meltdown lets hijackers access higher privileged parts in a computer’s memory, while Spectre lets hijackers access data from other apps. Patches were issued to address these, but those who were unaware of these threats were most likely affected.

Android operating systems also had many vulnerabilities, especially since several vendors neglected to install security patches to them and deliberately hid this lapse from consumers. In a time where bring your own device (BYOD) is the norm, this puts entire organizations at risk.

Related article: How your employees' smartphones put your company at risk

That's why it's vital to work with a well-established MSP that can make sure your vendors, hardware, and devices are trustworthy. Hardware procurement, updates, and upgrades are some of the core services an MSP offers. Meanwhile, mobile device management services help keep mobile devices, especially those used for remote work, from becoming a security risk.

Don’t put your data in the hands of random companies

2018 saw major services that handle user’s unique personally identifiable information (PII) fall prey to data breaches. Equifax had 2.4 million records breached. Under Armour, 150 million accounts. MyHeritage, 92 million email addresses and passwords. Exactis, 340 million records with PII. Many of these services collect PII, such as names, date of birth, and Social Security numbers. Unlike credit card details and addresses, information like these cannot be changed and they can easily be used for identity theft, which is why it's important for individuals and businesses to be cautious of whom they share their data with.

Related article: Tips for developing a successful cybersecurity plan in 2019

At Spectrumwise, we are up to date on cybersecurity threats and trends. Small-and medium-sized businesses that don't have the expertise and resources to protect their digital assets can rely on us to handle the most complicated aspects of cybersecurity. Find out more today.

Like This Article?

Sign up below and once a month we'll send you a roundup of our most popular posts