Blog

Mid-year Threatscape Assessment and Review of Significant Cyber Incidents

June 25, 2020
Jeff Ahlerich

It’s obvious every industry and business around the globe has been directly impacted by the COVID-19 pandemic in some way shape or form. However, many organizations are facing a stark reality, coupled with the need to address new vulnerabilities and mounting security gaps. CSO has published the latest cybersecurity numbers, and the results are pretty staggering:

  • Every minute, $17,700 is lost due to social engineering attacks.
  • 60% of data breaches occur when a security patch was available, but not applied.
  • Attacks on IoT devices tripled this last year alone.
  • 94% of malware is delivered to your employees via email.
  • Data breaches cost enterprise organizations an average of $3.92 million each year.

Today’s threatscape is murky; with the COVID-19 virus forcing many companies to go remote, new vulnerabilities, from social engineering to personal device hacks, give IT leadership some entirely new worries to endure.

Let’s look at some of the cyber incidents that we’ve seen thus far in 2020. What can we learn and how can we improve our response?

2020 CYBERSECURITY INCIDENTS

The Common Vulnerabilities and Exploits (CVE) database lists over 11,000 cybersecurity vulnerabilities in commonly used hardware and software products. While high volumes of data breaches occur because IT teams fail to upgrade security patches, many of the vulnerabilities highlighted in the CVE database still lack the necessary security upgrades to mitigate these risks.

Not surprisingly, the first half of 2020 launched with several security incidents already on the books, including:

January

  • The FBI reported nation-state hackers leveraged a CVE-2019-064 vulnerability in Microsoft SharePoint servers and took advantage of a missing website patch to breach two U.S. municipalities. These local governments suffered the theft of Active Directory databases and administrative credentials.
  • Mitsubishi suffered a massive attack in January that leaked emails between Japan’s Defense Ministry and Nuclear Regulation Authority, as well as other infrastructure clients including utilities and railways. Hackers also got their hands on personal data from more than 8,000 within the company. The Japan Times reported that a Chinese cyber terrorism group were the likely thieves. The same article also stated, “Japan lags behind other countries in addressing cyberattacks.”

February

  • The U.S. Defense Information Systems Agency, that is the entity responsible for secure White House communications, was hacked. CNBC stated Social Security numbers and personal data were accessed. The responsible party was not named at this time.

March

  • Cyber terrorist organization APT41 targeted more than 75 organizations around the globe during the thick of COVID-19. CPO Magazine reports, “The team of Chinese hackers is among the most skilled and prolific in the world.” The attack targeted vulnerabilities in Cisco and Citrix cloud services and routers, with a global outcome that is still being determined.

April

  • Iranian government-sponsored hackers attempted to break into the personal email accounts of World Health Organization (WHO) staff. Reuters stated, “Hacking attempts against the United Nations health agency and its partners had more than doubled since the beginning of the coronavirus crisis.”

In short, cyber criminals are showing no mercy during the global pandemic. Info Security Magazine reports online cyber threats have increased by six times in the last month. The magazine reported phishing attempts have skyrocketed by more than 600% since the end of February. IT teams are now operating in full-on crisis mode to mitigate these risks. To put fuel on the fire, most companies continue their stay at home order, so tech networks must mitigate the added insecurity of personal devices. However, it’s still not too late to be proactive and consult a third-party expert who can help to maintain a healthy security posture - even within a remote organization that has it’s employees work from home.

«  Back To All Articles
Next Article
  »
Misconfigurations for Office 365
5 Most Common Attacks That Dodge Your Firewall.
4 Pentest Paradoxes You Must Get Right
Do a Risk Assessment before buying MDR
6 Rules of Engagement for any Penetration Test
Cyber Alliance Program
Your Perimeter is Disappearing
Cybersecurity Acronyms for Retirement Administrators
XDR, MDR, SOAR - Acronyms of Cybersecurity Detection & Response
Test Blog Post 3
Test Blog Post 2
White Paper - XDR for Retirement Systems
The Total Cost of Ransomware - 7 Categories
The Power of Data Continues to Grow
Who Shares Responsibility for Data Security in a Health Crisis?
Identifying Cloud Security Gaps in a Remote Workforce
Mid-year Threatscape Assessment and Review of Significant Cyber Incidents
Front Line Report: 2020 Election Cybersecurity Threats
The Rising Stakes of Compliance: GDPR, CCPA, and Others
Increasing Healthcare Cybersecurity With a Proactive Defense Strategy
5 Ways to Lower Risk and Maintain Privacy in Your Organization
9 Tips for Detecting and Preventing DDoS Attacks
5 Ways to Secure Your Access Control Vulnerabilities
6 Strategies to Prevent SQL Injection Attacks
7 Commonly Neglected Security Tasks: DMARC, DNS Calls, And More
The Impact Of A Cyber Attack On A Nation
History Matters: Cyber Attacks From The 1980S
What Healthcare Organizations Need To Know About Samsam Attacks
Reflecting On 2019: Blockchain, AI, Machine Learning, Cryptojacking, And More
California Consumer Privacy Act (CCPA): What You Need To Know
Why Covid-19 Phishing Criminals Love Machine Learning (Ml)
Malicious Bot Activity Continues To Rise As Employees Work From Home
How Crypto-Agile Is Your Organization?
How Businesses Can Prepare For The Coming Iot Surge
Where To Find Cybersecurity Help: Addressing The Security Expert Shortage
Ransomware: To Pay Or Not To Pay?
How Expensive Is A Data Breach?
Looking Ahead: The Cybersecurity Landscape In 2021
Attack On Solarwinds Infiltrated U.S. Government Networks: What It Means For You
5 Best Practices To Secure Your Remote Workforce
Top 5 Most Dangerous Ransomware Attacks — And How To Protect Your Business
Reduce Data Breach Costs With Artificial Intelligence
5 IoT Trends To Continue Watching In 2021
AI Poisoning: What You Need To Know To Protect Your Business
Zero Day Exploits: Advanced Cyberattacks
Why Users Should Never Auto-Fill Forms: Browser Exploit Overview
Don't Be Fooled By Padlocks And SSL Certificates
5 Ways To Shield Executives From Whaling Attacks
How Artificial Intelligence (AI) Is Helping Cyber-Criminals
Why Breaches Are Becoming More Difficult To Defeat
History Matters: Cyber Attacks From The 1960S
History Matters: Cyber Attacks From The 1970S
History Matters: Cyber Attacks From The 1990s
History Matters: Cyber Attacks From The 2000S
The Rise Of Mobile Malware
Growing Concerns Over Voice Phishing Scams
Stopping The Spread Of 5G Security Vulnerabilities
Why Small Business Is A Big Cyber Crime Target
Feeling The Heat: Geopolitical Cybersecurity Threats
The Role Of Artificial Intelligence In Effective Cyber Attacks
Absolute Zero: Zero Trust And Zero Standing Privileges
Data Security Challenges in the New Era of Remote Work
Why Penetration Testing Has Never Been More Important
5 Ways to Protect Your Business From Phishing Attacks in 2021

join our email list

Security Pursuit logo
LinkedIn iconlinkedintwitter logoTwitter iconFacebook iconFacebook icon
Professional ServicesProduct Solutionsaboutpartnersblogcontact
denver office
2000 Araphahoe Street, Suite 1
Denver, CO 80205
720-675-7668
LinkedIn iconlinkedintwitter logoTwitter iconFacebook iconFacebook icon
san francisco office
2315 Montgomery Street, 10th Floor
San Francisco, CA 94104
415-735-4225
© 2021
Designed by H1 Web Development