{"id":92378,"date":"2023-06-06T00:01:00","date_gmt":"2023-06-06T00:01:00","guid":{"rendered":"https:\/\/cloudnewshub.com\/?p=92378"},"modified":"2023-06-06T00:01:00","modified_gmt":"2023-06-06T00:01:00","slug":"cyber-spotlight-falls-on-boardroom-privilege-as-incidents-soar","status":"publish","type":"post","link":"https:\/\/cloudnewshub.com\/?p=92378","title":{"rendered":"Cyber spotlight falls on boardroom \u2018privilege\u2019 as incidents soar"},"content":{"rendered":"
<\/div>\n

Three-quarters of all data breaches observed in the past year included a significant element of human failure, with social engineering<\/a> attacks involving pretexting \u2013 i.e. the invention of a scenario by a threat actor that tricks someone into giving up data or otherwise causing a breach \u2013 on the rise, and now accounting for half of all social engineering attacks, including business email compromise<\/a> (BEC).<\/p>\n

This is one among many headline findings in Verizon\u2019s mammoth annual Data breach investigations report<\/em> (DBIR)<\/a>, released 6 June, and which Chris Novak, managing director of cyber security consulting at Verizon Business, described as \u201cone of the most staggering changes we\u2019ve seen year on year\u201d.<\/p>\n

Novak said that senior business leaders were particularly at risk of falling victim to this sort of attack, and as such represent a growing security threat for many organisations. \u201cNot only do they possess an organisation\u2019s most sensitive information, they are often among the least protected, as many organisations make security protocol exceptions for them,\u201d he said.<\/p>\n

\u201cWith the growth and increasing sophistication of social engineering, organisations must enhance the protection of their senior leadership now to avoid expensive system intrusions,\u201d added Novak.<\/p>\n

\u201cWhen you look at the grand scheme of social engineering, the reason we see this increasing is because it\u2019s a relatively easy thing for a threat actor to throw out there and try to hit a lot of organisations with,\u201d Novak told reporters during a pre-briefing session attended by Computer Weekly.<\/p>\n

\u201cThis ties back to being financially motivated \u2013 most of these events are about fraudulent movement of money and, typically, that results in them getting paid very quickly.\u201d<\/p>\n

Indeed, based on data contributed by the FBI\u2019s Internet Crime Complaint Center<\/a> (IC3), Verizon said that the median amount stolen in a BEC attack has doubled over the past year and now sits at $50,000 (\u00a340,400). This likely contributed to the growth in pretexting incidents.<\/p>\n

\u201cGlobally, cyber threat actors continue their relentless efforts to acquire sensitive consumer and business data. The revenue generated from that information is staggering, and it\u2019s not lost on business leaders, as it is front and centre at the board level,\u201d said IDC research vice-president Craig Robinson.<\/p>\n

The research team added that the fact many organisations continue to rely on distributed workforces added to the challenges faced by defenders in creating and, crucially, enforcing human-centric security best practice.<\/p>\n

Verizon\u2019s team of experts analysed over 16,300 security incidents and almost 5,200 confirmed breaches to compile this 16th<\/sup> edition of the DBIR. The data relates to activity that occurred between 1 November 2021 and 31 October 2022.<\/p>\n

Other significant findings in this year\u2019s report include new insight into the cost of ransomware<\/a> incidents, which has more than doubled since 2021. According to data provided by the IC3, the median loss in a ransomware incident stands at $26,000, and in 95% of incidents where losses occurred these losses were between $1.00 and $2.25m, Verizon revealed.<\/p>\n

It is important to point out that not all ransomware incidents \u2013 under 10%, in fact \u2013 incurred losses, and it is worth noting that when adjusting for inflation, the median cost has actually dropped quite significantly.<\/p>\n

Additionally, said Novak, Verizon has observed the number of ransomware attacks as a percentage of all incidents and breaches levelling off over the past 12 months, although he added that this was not necessarily a reason to get excited.<\/p>\n

\u201cWhat I believe is leading to this levelling off is not that we\u2019ve got better, but that the threat actors have reached a point of saturation. They typically need people and tools to conduct their actions and they reach a point where they don\u2019t have enough people to hit [their] targets, or their tools are getting stale,\u201d he explained.<\/p>\n

\u201cIf we see they are able to recruit more, or innovate and evolve their tools, there\u2019s a risk this will start picking up again. It\u2019s important for organisations to understand we can\u2019t look at this stat and say we can focus on something else because ransomware is going away \u2013 we will see an upward trajectory again in the future, unfortunately,\u201d added Novak.<\/p>\n

The full report, which is available now to download<\/a>, contains additional insight into the nature of security incidents and breaches, including new data on how malicious actors get into their victims\u2019 networks to begin with and what motivates them to do so. As usual, it also breaks out breach and incident data by region and by industry.<\/p>\n

The 2023 DBIR additionally looks back over some of the most significant incidents seen during its focus period \u2013 including Log4j<\/a> \u2013 which first came to light at the end of 2021 and has since become one of the most widely exploited vulnerabilities ever seen. In 90% of breaches that began with a vulnerability exploitation in the past 12 months, that vulnerability was Log4j, said Verizon.<\/p>\n","protected":false},"excerpt":{"rendered":"

Three-quarters of all data breaches observed in the past year included a significant element of human failure, with social engineering attacks involving pretexting \u2013 i.e. the invention of a scenario by a threat actor that tricks someone into giving up data or otherwise causing a breach \u2013 on the rise, and now accounting for half […]<\/p>\n","protected":false},"author":1,"featured_media":92379,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[533],"tags":[],"class_list":["post-92378","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-it"],"_links":{"self":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts\/92378","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=92378"}],"version-history":[{"count":0,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts\/92378\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/media\/92379"}],"wp:attachment":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=92378"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=92378"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=92378"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}