Cyberattacks are expected to reach historic levels this year, in both volume and sophistication, yet many organizations are reducing their 2023 cybersecurity budgets.
We spoke to Steve Benton, VP of threat research at intelligence-driven cybersecurity specialist Anomali, to discover how a different approach might offer strong protection without breaking the bank.
BN: Why are traditional security tools proving less effective in the current environment?
SB: With the rapid pace of digital transformation and rising attacks, we are hearing from businesses about a lack of integrated cybersecurity solutions as a barrier to detecting, responding to, and recovering from cyberattacks and data breaches.
BN: Have changes in working culture opened up new routes for attackers?
SB: Absolutely. Many organizations are facing reductions with layoffs -- in those sorts of environments, where people are concerned about their jobs or are losing their jobs, you will see a significant rise in insider threat. You have potentially, at the very least, employees that don't care anymore. They become lax in their behaviors, which can be an opportunity for attackers.
Layoffs also put stress on offboarding processes, including shutting down terminated employee accesses and other steps needed to protect your data. As layoffs take place, employees could deliberately want to take an organization’s data. As for the people who are left behind, you could be unknowingly aggregating privileges and breaking the segregation of duties and other things. So you end up with users with much higher privileges than you possibly recognize.
Attackers will be watching the press for organizations that they're interested in, and, if they're seeing layoffs there, they'll possibly be using that news to do some form of ..
Support the originator by clicking the read the rest link below.
