ARCON Blog

How e-retailers can overcome IT threats?

January 14, 2021January 14, 2021 ARCON User

Overview

The total retail business of the e-commerce industry has been rising steadily during post-pandemic months. Both B2B and B2C segments of the e-commerce industries have observed almost double growth after WFH (Work from Home) became effective worldwide. Simultaneously, this has opened multiple doors of cyber risks. A recently India-based leading online food and grocery store suffered a massive data breach of more than 1 million of private customer details in an unfortunate incident. This has forced the victim to seek assistance from the cybercrime department to minimize the loss as much as possible. This incident prompted the other brands to boost their IT security policies and mechanisms to a satisfactory level.

Prioritize-Cybersecurity-in-a-Limited-IT-Budget (1)

How to Deal with Cybersecurity despite a Limited IT Budget?

January 12, 2021January 12, 2021 ARCON User

Cybersecurity issues are emerging to be fiercer day by day. In fact, the average cost of a data breach in 2019 stood at $3.92 million. Many companies across the world experience detrimental consequences due to these breaches where they end up losing their client base, market reputation, and financial stability. Considering that more than 83% of the global workplace is expected to move to the cloud by the end of 2020, cybersecurity has become more important than ever.

Maintain Operational Efficiency and Gain Maximum ROI with ARCON UBA

How can you maximize your Return on Investment with UBA?

December 24, 2020December 24, 2020 ARCON User

When it comes to protecting data exploitation and mitigating the risk, IT security professionals know that a majority of prominent threats does not come from malware attacks, instead, they are sourced from the behaviour of users of the system. Understanding this user behaviour can assist you in developing more effective strategies to prevent threats that are caused intentionally or inadvertently. In this detailed article, we discuss what UBA is and why businesses need it.

As we say goodbye to 2020, some ARCON high-points

December 17, 2020December 17, 2020 ARCON User

The ‘villainous’ Covid19 turned to be a great ‘teacher’ for global organizations.

The pandemic, besides badly impacting the global health and disrupting normal business processes, resulted in a wave of cyber-attacks as businesses found themselves in a challenging situation. Remote access, authentication, access management (AM) were some of the issues that kept security and risk professionals on toes as they tried to tread a balance between business continuity and IT security.

Enhance Decision Making with User Behaviour Analytics (UBA)

December 16, 2020December 16, 2020 ARCON User

Security has become one of the major concerns for almost all organizations nowadays. They have to undertake a number of measures to ensure their systems remain protected from any threats or intrusions. However, hackers and thieves always find a new way to break the security layer and enter the company’s network. This is where User Behaviour Analytics (UBA) can help companies out.

Don’t worry if you haven’t heard about UBA before. We will learn here about what this concept is, how it helps companies in increasing security and its effects on decision making. Therefore, you will be able to understand UBA in and out. Moreover, you can then move on to implement it for your purpose.

Without further ado, let’s dig into the details and know more about UBA.

Since the last few years, the incidents of cybercrime have increased quite massively. According to a report, most cybercriminals, these days, are using Cobalt Strike Testing Toolkit to launch the attacks. The same report also suggests that most ransomware assails depend on the Trojan virus. But how does it actually work? Well, firstly, the commodity Trojan malware programs enter the computer and lower the efficiency of its security system. After that, the ransomware enters the PC and begins stealing crucial information, which, in turn, causes a massive loss for the organization. But, is there any way to stop these attacks and reduce the ever-emerging threat of ransomware? We will be discussing everything about the ransomware along with the prevention methods here, in this write-up. So, make sure to go through it properly. What is Ransomware and How Does It Work? Ransomware, in short, is a type of malware, which encrypts the files of an individual or a system. Once the encryption procedure is done, the attacker will stipulate a ransom from the victim. Otherwise, he/she will not restore access to the data or system that they have hacked. A ransomware program is usually deployed through a vector module. It helps them in accessing the internal storage of a system. The most common delivery procedure of the same is phishing spam. It generally masquerades as a trustable file or source on the email of the victim. Once you download it, the file will take over your system and block a particular section. Some ransomware programs also come with an in-built social engineering module, which will trick you to provide administrative access to it. However, if you want, then you can prevent the cyberattack from occurring by implementing PAM (privileged access management) on your system. It, in turn, will help you to track your privileged accounts or files and notify you about the anomalies right away. The Highlights of the Dominance of Ransomware The dominance of ransomware programs was largely prevalent in the year 2019. According to a report, the access management-based security measurements from different organizations detected more than 68,000 new ransomware. It also suggested that the variants of new ransomware grew by 46% in the same year. So, here, we are going to discuss a little bit more about the highlights of the supremacy of ransomware in recent years. 1. The Ascendancy of Cryptominers: In truth, the hype regarding crypto mining declined somewhat massively in 2019. However, that did not stop the Cryptominers from unleashing ransomware. As per a study, around 38% of organizations globally were affected by the Cryptominers. The prime reason behind such emergence is the high-reward, low-risk nature of these programs. 2. The Number of Targeted Ransomware is on the Rise: During the first half of 2019, the city administrations of the USA were affected by targeted ransomware. And, since then, the number or application of the same has grown quite massively. As the hackers generally choose their targets pretty carefully, then programs tend to deal a lot of damage than the randomly-unleashed ransomware. 3. Emergence in Cloud Attacks: A recent study has revealed that around 85% of organizations globally are using cloud-based services for their purpose. However, the security of the same has not been bolstered enough. Thus, many hackers, these days, are targeting the cloud storage of an organization with their promoted ransomware modules. The number of cloud attacks has increased massively in 2019 and is expected to grow even more in 2020. 4. The Surge of Botnet Army: Aside from all these, the overall activity of the botnets are increasing as well. Around 28% of companies worldwide had to deal with them in the year 2019. In most cases, the cybercriminals used Emotet as the required malware program due to its spam distribution feature. Key Trends regarding the Ransomware Attacks In 2019, some trends of ransomware attacks became quite prevalent. Let’s take a look at them. • The most ransomware-attacked regions in the world were – North America, the Middle East, and South Asia. • The leakage of revenue through cyberattacks has been quite prominent in the year 2019 as well. • The most attacked category among the different security aspects of the organizations were surveillance cameras. However, it can be averted through the usage of an identity and access management system. • The prices of malware programs (especially those used in ransomware) have increased at a higher rate during the last half of 2019. • A massive increase in reconnaissance attacks has also been recorded on critically-stabilized infrastructures. • The outbound attacks from China in India increased in 2019 as well. How to Protect Your Company from Ransomware Attacks? So, as of now, you probably do have a clear idea about the massive damage that a ransomware program can cause. But how are you going to avert those? Is there any way that can help you to keep your organizational details safe? Here, you are going to know about five different methods to do it. Thus, make sure to check them out. - Using a Proper Email Solution: In essence, email has always been one of the topmost attack vectors of ransomware programs. Hence, you should begin taking your protective measurements by using a robust email security solution. Make sure not to choose something that only offers product-based safety measures. Also, you would have to train your employees more about spotting the anomalies in the network and learn more about phishing issues. - Enhancing Endpoint Detection: Aside from taking care of the email security, you will have to amplify the strength of your endpoint detection system as well. It, in turn, will help you to establish more network detection solutions that can alert you about the adversities. Besides, you can also implement a multi-factor authentication system on your infrastructure. It will aid you in accessing all the administrators and remote accounts of your organization. - Implementing a Backup of Critical Data: Some hackers tend to modify the critical data of a corporation through ransomware programs. So, to avoid such a situation, you can keep a proper backup of all the available details of your company. For more convenience, you can keep both an online as well as an offline backup on your system. It, sequentially, will beneficial for you to recover your modified data and avoid paying to the cybercriminal. - Employing a Strong Security Solution: When you are trying to save your organizational data from a ransomware program, using a strong security solution does make a lot of sense. However, only deploying it is not going to be enough for you. Aside from that, you would also have to use a vulnerability assessment tool for understanding the depth of the danger. In addition to this, you can also include UBA or User Behavior Analytics in your system. It will offer a real-time alert if any of your end-users derivate from the baseline activities. The usage of a whitelisting software program can be ideal in this aspect as well. - Establishing Working Policies in a Proper Manner: Last yet not least, you will have to enforce some policies as well that can prevent underprivileged users from accessing CMD tools or PowerShell. It will hopefully make your data much less vulnerable to an outer source. Conclusion Due to technological advancements, the usage and deployment of ransomware are increasing quite massively. Thus, make sure to implement some proper policies, security solutions, and customer identity and access management system to avert the impending issues appropriately.

Breaking down the Ransomware Attacks

December 11, 2020 ARCON User

Since the last few years, the incidents of cybercrime have increased quite massively. According to a report, most cybercriminals, these days, are using Cobalt Strike Testing Toolkit to launch the attacks. The same report also suggests that most ransomware assails depend on the Trojan virus. But how does it actually work?

Well, firstly, the commodity Trojan malware programs enter the computer and lower the efficiency of its security system. After that, the ransomware enters the PC and begins stealing crucial information, which, in turn, causes a massive loss for the organization. But, is there any way to stop these attacks and reduce the ever-emerging threat of ransomware?

We will be discussing everything about the ransomware along with the prevention methods here, in this write-up. So, make sure to go through it properly.

Five Most Common Cyber Attacks and How to Mitigate Them?

December 10, 2020December 10, 2020 ARCON User

Like its blessings, the digital universe comes with a darker side as well and, it is known as cybercrime. In recent years, it has become a productive and profitable ecosystem and has grown quite rapidly. As per Juniper Research, the overall damage caused by cyberattacks is going to reach USD 8 trillion, which is, indeed, quite alarming.

However, there’s an issue. While most cybercriminals tend to use new tactics for preparing their attacks, their overall strategy generally stays the same. Therefore, if you know even a little bit about the methods, then you can easily prevent them. Also, you can include a privileged access management system (PAM) in your infrastructure to track and predict the operations of the risky profiles.

Top IT Trends to watch out for in 2021

December 7, 2020December 7, 2020 ARCON User

2020 is ready to bid adieu and the entire world is optimistic about 2021. If 2020 has taught us anything, then it’s definitely the flexibility of IT strategies. Throughout the year, we have been reminded repeatedly about the continuous shifts in technology, IT threat patterns, drastic alteration of IT policies, mid-year shuffle of cybersecurity budget and topsy turvy change of work culture. Nobody anticipated that they would have to retool IT operations overnight due to the sudden pandemic and lockdown situations. COVID-19 has not only forced 360 degree turn in our personal lives, but also affected businesses and enterprise work culture.

2021: Security Expectations & Threat Possibilities

Digital-Work-Setting--An-Easy-Target-for-Cyber-Criminals

The IT Threat Landscape Remains Dominated By Ransomware Attacks

December 3, 2020 ARCON User

After the lockdown, most of the countries across the world are gradually reopening the economies. However a majority of the businesses continue to operate in remote settings. This digital work setting has become an easy target for criminals as the organizations try to reinforce their cybersecurity that goes beyond the physical premises. Researchers have found evidence that attacks during the pandemic have risen at a significant level.

Lalit-Popli,-COO,-ARCON,-shares-insightful-observations-in-a-webinar-focussed-on-BFSI-Sri-Lanka

Unsecured identities and unmonitored user behaviour leads to Cyber Catastrophe

November 24, 2020November 24, 2020 ARCON User

After several cyber incidents in the island nation, the Government of Sri Lanka proposed the CyberSecurity Act under the National Cyber Security Strategy of Sri Lanka, finalised by Sri Lanka Computer Emergency Readiness Team (SLCERT). It is a comprehensive framework to prevent and mitigate cybersecurity threats effectively and safeguard critical information across various industries.