In today’s evolving threat landscape, the decision of whether to bring in external talent expertise is no longer optional. During the 2021 Gartner Security and Risk Management Summit, we heard other facts and figures that aligned with the needs of our customers and of the market.

In 2021, the cybersecurity industry was truly tested. Most notably, we uncovered the deeper fallout from the SolarWinds attacks, combatted the proliferation of advanced ransomware gangs and a surge in vulnerability exploitation, and saw fragile supply chain and critical infrastructure more targeted by attackers than ever.

The importance of Zero Trust is derived from how it functions. Instead of focusing on protecting a physical network, a Zero Trust network works by focusing on securing the resources that reside on or have access to the network such as data, identities, and services.

In the IT industry, this statement, or something like it, is said regularly — usually corresponding with the rise of a new communication or collaboration platform. Each time this happens, it's prudent to remember a general rule around tools: as long as they retain specific advantages for the human beings using them, they generally endure.

The macro-economic consequences of COVID-19 have reached cybersecurity and the talented people who keep us secure. In some sense, invisibility is a hallmark of good cybersecurity, back-end operations running smoothly and keeping the assets, operations and reputation of an organization from harm.

Over the last several years, Managed Security Service Providers (MSSP) have evolved, and some have started offering Managed Detection and Response (MDR) services as part of their overall security solution. However, an MSSP lacking MDR capability simply cannot provide the same level of security, particularly in today’s quickly changing environment that has seen remote and hybrid work become the norm.

In 2021, the cybersecurity industry was truly tested. Most notably, we uncovered the deeper fallout from the SolarWinds attacks, combatted the proliferation of advanced ransomware gangs and a surge in vulnerability exploitation, and saw fragile supply chain and critical infrastructure more targeted by attackers than ever.

Iranian government-sponsored advanced persistent threat (APT) actors are exploiting known Microsoft and Fortinet vulnerabilities to attack targets with ransomware in the transportation, healthcare and public health sectors, according to an alert issued on Nov. 17 by the Cybersecurity and Infrastructure Security Agency (CISA).

Deploying Security Automation is hard if the criteria for success is beyond the scope of ticketing workflow. While the barrier of entry has never been easier with the advent of so many SOARs now available to select from in the market and it all sounds quite attractive to purchase automation in a box (or in the cloud…).

For an organization to be resilient, key personnel must be acutely aware of their roles and responsibilities before, during and after a high severity cybersecurity incident. A cybersecurity crisis scenario simulation can be invaluable to pressure test both the assembled teams and the documented processes designed for such circumstances.

As a concept, threat hunting has a somewhat glitzy name and, on the surface, may appear to be a project that an organization can pull off by simply adding a couple of automatic detection tools and then tasking a few security staffers to keep an eye on the results that pour in.

Europol, the European Union’s law enforcement agency, on Oct. 26, targeted 12 individuals in raids, all of whom allegedly participated in multiple ransomware attacks striking an estimated 1,800 victims in 71 countries.

The COVID-19 pandemic continues to cause travel restrictions and has reshaped how businesses function, with many pushing large portions of their staff into a work-from-home environment. Still, these limitations do not mean an organization has to accept second-tier cybersecurity.

On Nov. 5, Georgia Turnham, Security Advisor at Trustwave SpiderLabs, will conduct a webinar discussing the emerging threat known as 'Deepfakes'. During this session, Turnham will talk about the scale of the issue, its unfettered growth and the continual improvements that make them believable.

The Russia-based cyber gang Nobelium, which is believed to be responsible for the December 2020 SolarWinds attack, is on the move again, targeting resellers and IT service providers attempting to infiltrate their customer’s systems.

As a top global cyber defender, Trustwave has rapidly evolved over the years to meet the needs of our clients, the demands of the market, and effectively combat new and complex threat actors around the world. Today, we announced the divestiture of SecureTrust and Trustwave’s FLEX business to Sysnet Global Solutions.

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued a joint alert this week warning organizations to be on the lookout for the BlackMatter ransomware-as-a-service (RaaS) tool.

The Office of Budget and Management issued a memorandum to the heads of federal executive departments and agencies last week providing guidance on the implementation of Endpoint Detection and Response (EDR) solutions as required under Executive Order 14028.

October is Cybersecurity Awareness Month, and so now is the perfect time for a quick reminder that every organization must be prepared ahead of time to react in case of attack.

Gone are the days when remote work was the exception and the most distributed employee was the salesperson on the road. As remote and hybrid work become the predominant work structure for organizations, and the new rules of engagement are only beginning to be solidified – most CISOs are asking themselves: how doessecurity need to change?