Cyber Insurer Sees Remote Access, Cloud Databases Under Fire

Mathew J. Schwartz • February 3, 2023

Criminals lately have been prioritizing two types of attacks: exploiting Remote Desktop Protocol and penetrating cloud databases. So warns cyber insurer Coalition, based on analyzing in-the-wild attacks seen in 2022 via underwriting and claims data, scans of IP addresses and honeypots.

Governance & Risk Management

UK Insurers Mostly Withstand Cyber Stress Test

Latest

Attack Surface Management

CrowdStrike CEO on Why It's Tough to Defend Sensitive Assets

Michael Novinson • February 3, 2023

Organizations today struggle with both new attack surface challenges such as cloud configuration and exposed buckets and long-standing ones around vulnerable ports and infrastructure. CEO George Kurtz says CrowdStrike's recent purchase of Reposify will help customers defend their priority assets.

Attack Surface Management

IBM Security GM on Seeing a Target Through the Hacker's Eyes

Michael Novinson • February 3, 2023

Companies can be blinded by their inside-out view and often benefit from another set of eyes that see their business the same way an attacker would, says IBM's Mary O'Brien. IBM's acquisition of attack surface management firm Randori gives clients another view of areas that need to be remediated.

Network Firewalls, Network Access Control

Jeetu Patel on Having a Consistent Design at Cisco Security

Michael Novinson • February 3, 2023

Cisco plans to debut a common design language across its network and security offerings so that products such as Cisco Meraki and Umbrella will no longer look or feel different from one another, says Jeetu Patel, executive vice president and general manager for security and collaboration at Cisco.

Governance & Risk Management

CEO Faitelson on How Varonis' SaaS Migration Helps Customers

Michael Novinson • February 3, 2023

Varonis has dedicated most of its engineering resources to SaaS since the onset of COVID-19 to provide more automation to customers, says CEO Yaki Faitelson. The company has focused on delivering robust data protection to customers without them having to dedicate hardware or personnel to the task.

Network Detection & Response

Proofpoint CEO on Thwarting Post-Compromise Lateral Movement

Michael Novinson • February 3, 2023

Proofpoint has focused on preventing cyberattacks, but customers have increasingly asked for help with blocking lateral movement from compromised identities, says CEO Ashan Willy. Acquiring Illusive in December will help Proofpoint block identity attack paths when a user is compromised.

Cloud Security

Wiz CEO on the Need to Consolidate Cloud Security Technology

Michael Novinson • February 3, 2023

The cloud security landscape has long been fragmented, and different vendors attempt to separately address containers, serverless and vulnerabilities, says Wiz CEO Assaf Rappaport. Consolidating detection, vulnerability and misconfiguration data in a single place reduces the noise for clients.

Leadership & Executive Communication

World Economic Forum's Cybersecurity Outlook 2023 Highlights

Anna Delaney • February 3, 2023

According to the World Economic Forum, geopolitical instability has helped to close the perception gap between business and cyber leaders' views on the importance of cyber risk management, and "91% of all respondents" believe that "a far-reaching, catastrophic cyber event" is on the horizon.

Blockchain & Cryptocurrency

How Much Did BonqDAO Lose in Smart Contracts Hack?

Rashmi Ramesh • February 2, 2023

Another day, another crypto hack: A hacker on Wednesday exploited a smart contract vulnerability on a decentralized platform to steal cryptocurrency. The attacker got away with either $120 million or $1 million, depending on whom you ask. It's complicated.

Application Security

Checkmarx CEO on Bringing Application, API Security Together

Michael Novinson • February 2, 2023

Organizations have struggled to understand why APIs are so strategic even though they're an intrinsic way businesses interface with their software, according to Checkmarx CEO Emmanuel Benzaquen. He says API abuse is slated to become one of the most common types of web application data breaches.

Cybercrime

Ubiquiti Insider Hacker Pleads Guilty

David Perera • February 2, 2023

The insider threat hacker who attempted to extort $1.9 million out of Ubiquiti Networks faces sentencing in May after pleading guilty to three crimes in federal court. The hacker, Nickolas Sharp, was the company's cloud lead and was on the team remediating the security incident he caused.

Next-Generation Technologies & Secure Development

Splunk CEO on Enriching the SIEM With UEBA and Threat Intel

Michael Novinson • February 2, 2023

Splunk has infused its SIEM with user behavior analytics and threat intelligence to better identify anomalies and understand what's going on in a customer's environment, says CEO Gary Steele. Adding UEBA to the SIEM makes it easier for organizations to identify, detect and remediate anomalies.

Cloud Security

Lacework CEO on How to Prioritize Cloud Infrastructure Risks

Michael Novinson • February 2, 2023

Lacework has debuted an attack path analysis tool to help organizations understand the havoc specific threats could wreak within their cloud infrastructure, says CEO Jay Parikh. The company helps customers prioritize which risk elements inside their infrastructure should be addressed first.