Cyberattacks - Is your organization really ready?
The news this week is chilling but, these days, not surprising. Leading security software firm SolarWinds Corp. discovered its Orion monitoring software products have been hacked, most likely by Russians.
Making things worse, its 18,000 customers were also casualties of the cyberattack as they unwittingly were running the compromised Orion products on their servers. Victims of the attack include some of the largest international corporations along with government agencies around the world. The U.S. Treasury and Commerce Departments were also believed to be compromised.
We’re living in a period of great opportunity for cyber criminals. COVID19 has forced millions of people to work out of their homes with less IT security than there would be in the office. IoT consumer products such as doorbells and game consoles, great Xmas gifts all, are now favorite gateways through which cybercriminals gain entry into company servers. Ransomware attacks are up 20 percent globally and have increased a whopping 109 percent in the US.
Practicality dictates that organizations of every type and size should be taking aggressive steps to be as prepared as they possibly can be for cyberattacks. But optimal preparedness is not a static end state. Just as cyberattacks grow in volume and sophistication, crisis preparedness must also grow in volume and sophistication.
Preparedness has to be a continuous process of improvement, and these improvements can only be achieved by conducting exercises.
To learn how your organization can conduct crisis exercises to prepare itself to respond successfully to cyberattacks and continuously improve resilience, please visit us at PreparedEx.com.
Data & Analytics | AI Cautionist | Force Multiplier | Emerging Talent Champion
4 年Robert, great article. It just goes to show how third-party relationship management & due diligence has moved right up to the top of the risk management agenda. Next year will be all about transparency in terms of understanding the security protection offered by vendor products as well as in ensuring that there are no gaps 'between the armour' from using a range of third-party products.
Corporate Reputation Speaker & Trainer | Management Consultant | Specializing in Reputation Management Best Practices | I advise organizations on building, protecting, and enhancing their reputations.
4 年Hi Robert, this may give you some ideas to add - https://www.deonbinneman.com/cyber-crisis-response/