2022 was a turbulent year, with international economic and political risk, from the war in Ukraine to rapid inflation and supply chain problems. All of this has been a perfect storm of interlocked risks with a profound effect on cybersecurity for businesses in the UK. Now in 2023, preventing cyberattacks or data breaches is more important than ever, for all businesses and organisations, irrespective of size or sector, being at risk of falling victim to a cyberattack.
Our downloadable e-book about cybersecurity provides some great information including some stats that may surprise you! For instance, in 2022, 53% of UK organisations experienced at least one ransomware attack.
This e-book also provides some excellent information about the way security threats are evolving, and below, we have highlighted the best ways to defend your business or organisation.
Reduce the Attack Surface
‘Attack surfaces’ are those areas of your business that are exposed to the outside world, directly or indirectly. These include:
There are solutions available to analyse and map out your attack surfaces, such as Weave Scope and Deep Fence Threat Mapper. If you don’t have the in-house expertise to use these, or just as importantly, to act on the suggestions, you should contact a trusted third-party IT provider to assist.
‘Static’, legacy antivirus solutions work by scanning for malicious code running or within files. With the advent of security threats such as fileless malware, a more sophisticated approach was needed and this is where EDR (endpoint detection and response) came in. This continuously collects data to form a baseline of ‘typical’ activities through AI and machine learning. Any ‘abnormal’ activity by a user or endpoint is then flagged.
Now there is a new generation of security solution – XDR (extended detection and response) that covers extended behaviour mapping across cloud services, IoT devices and networks.
Combined AI, Automation and Human Intervention
Most cybersecurity solutions have different levels of automation to suit different use cases. For example:
- Notification of system admin of a potential breach
- Request system admin to approve a remedial action
- Automatic remedial action
While there is a place for automation, we are not yet at a stage where all security controls and actions can (or should) be automated. Therefore, businesses should look to combine automated AI detection and notification with action approval or implementation by a trusted third-party IT advisor.
Education and Security Culture
While digital threats evolve, so too do the solutions at our disposal and it is therefore not inconceivable that we will reach a point where employees are easier to target than software or systems.
All members of an organisation have a responsibility to maintain your security and this means continuously providing and reinforcing employee education and culture.
Contact Trinity Managed Services today to see how we can help you with your cybersecurity in 2023. A great start would be an IT vulnerability assessment, we carry these out to identify vulnerabilities and implement improvements and build a strategy to improve your IT security.