Tag Archive for: grow

Impacts Continue to Grow Louder

/in


Was that major cyber incident a ransomware attack, a data breach or both? How many records were impacted? Did personally identifiable information (PII) get compromised? How long were they down? Were backups usable? Did the business survive? When was the business able to fully restore their operations? What did the incident cost?

I often get asked these questions (and more), and the answers can take months or years to be released after an event. In some instances, the specific details remain hidden from public view — concealed inside the databases of cyber insurance companies or classified files guarded by three-letter government agencies.

And yet, as the cyber attack headlines just keep pouring in from universities, banks, governments, hospitals, public utilities and more, the rising impacts to society increase — even as many have become almost numb to the overall affect.


Here are just a few of the recent incident headlines I am talking about:

No doubt, this is just a very small sampling of the number of cyber attacks that hit the mainstream and technology media every week. Critics oftentimes argue, “Show me the data. What are the trends? Are things getting better or worse?”To which I generally reply, “It depends.” (I know. A good lawyer’s answer.)

Allow me to first provide you with a plethora of recent information, data and trend reports before providing my take on what’s going on right now regarding global cyber attacks. After each of these headlines, I offer a brief excerpt to help.

Security Week: Cybersecurity Companies Report Surge in Ransomware Attacks
“Ransomware attacks continue to be highly profitable for cyber-crime groups and the recent reports released by various cybersecurity firms show that they are increasing both in terms of volume and sophistication.”

The HIPAA Journal: IBM: Average Cost of a Healthcare Data Breach Increases to Almost $11 Million
“The 2023 IBM Security Cost of a Data Breach Report shows the average data breach cost has increased to $4.45 million ($165 per record), with data breaches in the United States being the costliest at an average of $9.48…

Source…

Global Computer Security Software Market [2023 to 2030] | Industry Predicted to Grow at a Remarkable Pace

/in


The Global Computer Security Software Market Insights [2023-2030] –

Global Computer Security Software Market [2023-2030] research report delivers a comprehensive analysis of the market structure along with a forecast of the various segments and sub-segments of the Computer Security Software market. The report covers a strategic profiling of key players in the market, comprehensively analyzing their core competencies, and drawing a competitive landscape for the market. Key players in the market have been identified through secondary research, and their market shares have been determined through primary and secondary research. All percentage shares, splits, and breakdowns have been determined using secondary and verified primary sources. This report includes the estimation of market size for value and volume. Top-down and bottom-up approaches have been used to estimate and validate the market size of the Computer Security Software market, and to estimate the size of various other dependent submarkets in the overall market. [104 Pages Updated Report]

The Global Computer Security Software Market is Forecasted to Reach a Multimillion-Dollar Valuation by 2030, Exhibiting an Unexpected CAGR During the Forecast Period of 2023-2030, as Compared to Data from 2018 to 2022. With tables and figures helping analyze worldwide Global Computer Security Software market trends, this research provides key statistics on the state of the industry and is a valuable source of guidance and direction for companies and individuals interested in the market. Ask for a Sample Report

Key Players in the Global Computer Security Software Market Covered in Chapter 9:

AVG Technologies
Kaspersky Lab
Symantec
Cylance
Teramind
McAfee
TunnelBear
Salesforce
Webroot
MiniTool

Get a Sample PDF of the Report athttps://www.researchreportsworld.com/enquiry/request-sample/24317141

About Computer Security Software Market and Insights:

According to the latest research, the global Computer Security Software market size was valued at USD million in 2022 and is expected to expand at a CAGR of Percent during the forecast period, reaching USD million by 2028.

This report elaborates on the market size, market…

Source…

Ransomware attacks have room to grow, Verizon data breach report shows

/in


Ransomware attacks now make up an huge chunk of all recorded security incidents, the Log4j vulnerability was used in 3 in 4 digital espionage campaigns and employees continue to pose more of a practical cyber threat to most organizations than the Russian GRU or Chinese Ministry of State Security.

Those are some of the conclusions gleaned from the latest annual Verizon Data Breach Investigations Report released this morning.

Verizon’s findings are drawn from 16,000 security incidents over the past year, including over 5,000 data breaches from Nov. 1, 2021 to Oct. 31, 2022.

A plurality of 15,000-plus incidents (42%) were distributed-denial-of-service (DDoS) attacks, which can disrupt service from or access to websites and other systems.

There are solid indicators that DDoS attacks are getting worse, or at least more intense, as the internet of things (IoT) give attackers billions of zombie devices to hijack and incorporate into botnets. Over the past two years, companies like Cloudflare and Yandex have observed increasingly larger and record-breaking  DDoS attacks, while the U.S. Department of Justice recently highlighted its interest in the problem when it targeted and seized 13 domains used in various “DDoS for hire” operations earlier this year.

Ransomware holding steady

A number of threat intelligence and cybersecurity firms have said their internal data, gleaned from customers and incident responses, indicate that ransomware activity dropped off in 2022, before jumping back up in the first half of 2023. Verizon’s data shows a similar trend, with reported ransomware incidents plateauing over the past 24 months at 24%, after years of steady growth.

After steady growth since 2019, reported ransomware activity has plateaued over the past two years.(Source: Verizon Data Breach Investigations Report 2023)
After steady growth since 2019, reported ransomware activity has plateaued over the past two years.(Source: Verizon Data Breach Investigations Report 2023)

However, if someone does break into your system, the most likely cause will be ransomware. Encryption and extortion overall have risen to 15.5% of all reported cybersecurity incidents, the second most frequently reported action after DDoS. It’s also the No. 1 most-frequent action taken by hackers during incidents system intrusion incidents.

These results are “staggering,” and…

Source…

Ransomware Hits and Initial Access Listings Grow

/in


But If Hydra Takedown Is a Guide, Fresh Disruptions May Take Big Bite Out of Market

Mathew J. Schwartz
(euroinfosec)


April 11, 2023    

Cybercrime: Ransomware Hits and Initial Access Listings Grow
Image: Shutterstock

The cybercrime economy is alive and well, if counts of known ransomware victims and initial access sales are good gauges of its health.

See Also: Webinar | The Evolution of Network Architecture: What You Don’t Know Can Hurt You


Compared to the first quarter of 2022, the first three months of this year featured a 30% increase in known ransomware victims, totaling 900 organizations, threat intelligence firm Kela reported.


What gets counted: victims who come to light publicly – for example, via ransomware groups’ data leak sites or when a victim issues a public alert. How many victims pay a ransom to avoid being “named and shamed” and publicly outed by attackers is unclear. Also, not all groups run data leak sites. Even when they do, not every nonpaying victim gets listed, for reasons only clear to the extortionists themselves.

Common sources of access to victims’ networks remain dedicated stolen-credential marketplaces and initial access brokers. Both continue to be cornerstones of the cybercrime economy.

Kela counted during the first quarter more than 600 initial access listings for victims. Not all such listings can be tracked, since some vendors don’t advertise what they have for sale on cybercrime forums, but only share them privately. Some brokers also have exclusive arrangements or give right of first refusal to business partners, such as ransomware groups.


A purported member of the Royal ransomware group, using the handle “Baddie,” has been advertising for brokers who can offer network access to victims that have $20 million or more in revenue, Kela reported (see: Fake Data Theft Proof Leads to Royal Ransomware Outbreak).


Compared to the first quarter of 2022, the number of listings increased by 15%, while the average price of an…

Source…