This week on our blog, we have a guest post from Mike Hrabik, CTO and Regional CEO, U.S. at NTT Security.
In today’s environment, the cyber threat to our world is real. Our adversaries are well financed, patient and have a wide range of skills, and the sophistication of their attack techniques continues to rapidly evolve. Simply put – the cyber threat affects every one of us.
We have more data than ever before as the number of connected devices increases daily. Organizations and end users benefit from innovation in the Internet of Things, cloud, automation, mobile, and other forms of modernization. Yet these innovations are increasing the challenges to secure the interconnected and expanding attack surface.
Although organizations are working hard to make their environments more secure and protect their assets and clients’ data, the adversary still has the upper hand with time and motivation to persist. These were the observations that came out of our newly formed Global Threat Intelligence Center (GTIC), which focuses on delivering actionable threat intelligence. This enables us to proactively identify and stop security threats earlier, contextualize information in our Managed Security Services and enable effective incident response capabilities to support organizations’ rapid response to targeted attacks.
The result has been the publication of our new Global Threat Intelligence Report (GTIR) and, with analysis of data from over 3.5 trillion logs and 6.2 billion attacks, it is our most comprehensive yet.
Our research showed that ransomware played a large part in the most prevalent types of attacks observed in the Americas during 2016. NTT Security observed that many organizations were prepared to combat this threat, but there is a long way to go until organizations are truly resilient. The Americas also received attention from Business Email Compromise (BEC) attacks. BEC attacks were the second most common type of spear phishing attack, also referred to as whaling or CEO fraud. Deeply researched attack plans are executed against key employees due to business authority or access allowing attackers quick attainment of their objectives while reducing the ability for detection. Here at NTT Security, we can support with proactive defense, detection and incident response engagements both globally, and in the Americas specifically.
The threats observed as mentioned above clarify the need for detection policies and procedures along with an orchestrated defense which includes advanced response capabilities to ensure that all technologies are properly protected from evolving threats. Developing a mature and proactive security approach is essential to protecting and defending agile and dynamic environments against increasingly opportunistic and targeted threats. For more details, download our Global Threat Intelligence Report (GTIR): https://www.nttsecurity.com/GTIR2017.