Crypto VS. Ransomware? Stanford University's failure to detect ransomware intruders for over four months.

We have now reached more than?22,490 subscribers! Thanks for your unwavering support! Help us with our mission of helping 100,000 organizations become cyber-resilient by sharing this newsletter with your network.?

Be sure to read?the "My thoughts" section to learn strategies for navigating and combating cyber attacks. I'm here to assist you in avoiding and battling?these threats should they ever affect you.?

Contact me if you have any questions regarding your enterprise's cybersecurity strategy --> Luigi Tiano.?

Are Crypto scams costing MORE than ransomware attacks???

The FBI's latest report highlights investment fraud, especially in cryptocurrency, as the leading cause of cyber-related financial losses in the US, totaling $4.57 billion in 2023. This surpasses losses from ransomware attacks, which amounted to $59.6 million. Elderly individuals are particularly vulnerable, with nearly half of all complaints coming from those over 60, resulting in $1.3 billion in losses. Other cybercrimes, such as Business Email Compromise (BEC) attacks and impersonation scams, also contribute to significant financial losses. Overall, cybercrime cost US citizens $12.5 billion in 2023, emphasizing the need for reporting to track perpetrators and prevent future attacks. (theregister.com)?

?

My Thoughts:?The FBI's report is a wake-up call, revealing a disturbing trend in cybercrime where investment fraud, particularly in cryptocurrency, has become the primary vehicle for financial exploitation. What's truly unsettling is the deliberate targeting of the elderly, a demographic often less equipped to navigate the digital landscape, making them easy prey for sophisticated scams. The fact that investment fraud now eclipses ransomware in financial impact challenges our understanding of cyber threats.??

?

It's not just about data breaches anymore; it's about devastating financial losses that can ruin lives. The discrepancy between reported ransomware losses and actual ransom demands hints at a deeper problem – either victims are hesitant to come forward, or law enforcement isn't capturing the full scope of these attacks.??

?

Want to talk more? Book me in your calendar.?

?

If you own Vans, watch out.??

?

Customers of the footwear brand Vans are potentially at risk of fraud or identity theft due to a data breach within its parent company, VF Group. Detected in December 2023, the breach involved unauthorized activity on a portion of the company's IT systems. While detailed financial information and passwords were not compromised, personal data such as email addresses, names, phone numbers, and addresses were potentially accessed by hackers. Vans has taken immediate steps to address the threat, including shutting down affected systems and hiring cybersecurity experts. The company has warned customers of potential risks and advised vigilance against suspicious communications. (bbc.com)?

?

My Thoughts: The thought of hackers infiltrating a household name like Vans, compromising personal data such as email addresses, names, phone numbers, and addresses, is nothing short of terrifying. It begs the question: how could such a renowned brand not have adequate measures in place to protect its customers' information? This breach isn't just about the potential for identity theft and phishing scams; it's about the erosion of trust in companies we rely on. It's a wake-up call for consumers and corporations alike to reevaluate their cybersecurity practices and fortify their defenses against increasingly sophisticated cybercriminals. In today's digital age, the consequences of lax security can be dire, and the stakes couldn't be higher.?

?

Looking to protect your company? Speak to Nathan from Assurance IT and he can help you get started: 514-654-4145?

?

Stanford University's Four-Month Failure to Detect Ransomware Intruders?

?

Stanford University recently disclosed a cybersecurity incident involving ransomware that went undetected for over four months, affecting 27,000 individuals. The breach occurred on May 12, 2023, but was only discovered on September 27 of the same year. The attackers targeted the university's Department of Public Safety (DPS), raising concerns about the extent of the intrusion and the delay in detection. While its unclear exactly what information was compromised, names and social security numbers are among the data types potentially stolen. Affected individuals have been offered 24 months of free credit monitoring and other identity theft protection services. (theregister.com)?

??

My Thoughts:?The revelation of Stanford University's failure to detect ransomware intruders for over four months is nothing short of alarming. It's deeply unsettling to think that malicious actors had unfettered access to sensitive information within the university's network for such an extended period.? This highlights a recent study by IBM. According to a study by IBM, the average time a hacker spends in a network before launching an attack is 206 days.??

?

The fact that names and social security numbers were potentially compromised only amplifies the gravity of the situation, exposing individuals to the threat of identity theft and financial fraud. Stanford's offer of credit monitoring and identity theft protection services is a necessary step, but it underscores the severity of the breach and the long-lasting impact it may have on those affected.??

3 Takeaways from these 3 stories: Key Cybersecurity Solutions for Incident Detection and Recovery?

?

1. Continuous Monitoring and Intrusion Detection Systems (IDS/IPS):?

In the case of the Vans data breach, continuous monitoring and robust IDS/IPS solutions could have potentially detected unauthorized access to the company's IT systems at an early stage. These systems can analyze network traffic in real-time, flagging any suspicious activity or known attack patterns indicative of ransomware or other cyber threats. Early detection allows for swift response and mitigation measures to minimize the impact of the breach.?

?

1. Endpoint Detection and Response (EDR):?

?For the Stanford University ransomware incident, implementing EDR solutions on endpoints within the university's network could have helped identify and contain the ransomware intrusion sooner. EDR tools provide real-time monitoring and analysis of endpoint activities, allowing for the detection of malicious processes or suspicious behaviors associated with ransomware attacks. With prompt detection, security teams can isolate infected endpoints, prevent further spread, and initiate recovery efforts to restore affected systems.?

?

1. Data Backup and Disaster Recovery (Backup and DR):?

?In the event of a successful ransomware attack, having robust data backup and disaster recovery solutions in place is essential for organizations like Stanford University to recover from data loss and resume normal operations. Regularly backing up critical data to secure offsite or cloud storage ensures that organizations have access to clean, unencrypted data even if their primary systems are compromised by ransomware. Coupled with comprehensive disaster recovery plans, BDR solutions enable swift restoration of systems and minimize downtime, reducing the financial and reputational impact of ransomware incidents.?

?

Hear How to Defend Your Enterprise with Real Professionals:??

Assurance IT?

?Assurance IT services offer invaluable support for organizations navigating the complexities of cybersecurity, whether they're facing a breach or aiming to prevent one. In the event of a breach, Assurance IT professionals can swiftly assess the extent of the damage, identify vulnerabilities, and implement remediation strategies to contain the incident and mitigate further risks.??

?

Assurance IT empowers organizations to stay ahead of emerging threats, minimize disruptions, and maintain the trust and confidence of their stakeholders in an increasingly digital landscape.?