Story image

Cyber attackers still using oldest tricks in the book - yet they're still so good at hiding

17 Apr 2018

As New Zealand’s Privacy Bill makes its way through parliament, a key component of that Bill is the possibility of mandatory data breach notifications that may bring $10,000 penalties to non-compliant businesses.

Cisco is a trusted provider that is in the business of providing cybersecurity that can help New Zealand businesses be prepared for breaches from protection to mitigation.

According to Cisco’s 2018 Annual Cybersecurity Report, adversaries and nation-state actors have immense power – so much that they could take down critical infrastructure, critical systems and cripple entire regions.

It found that attackers are still using the oldest tricks in the books and they are also more adept at hiding - Cisco threat researchers analysed malicious email attachments that were equipped with various sandbox evasion techniques.

They discovered that the number of malicious samples using a particular sandbox evasion technique showed sharp peaks, and then quickly dropped. This is yet another example of how attackers are swift to ramp up the volume of attempts to break through defences once they find an effective technique.

The question is, how do you best protect your organisation, assets and employees with breach notification inching ever closer? Cisco is offering you an exclusive look at what kinds of threats you may face, and can also give you guidance about what to do next.

Cisco’s Annual Cybersecurity Report will take you on a tour of:

  • The evolution of malware, current email threats, sandbox evasion and IoT attacks
  • The costs of cyber attacks
  • What you should expect from your investments and training
Chillisoft rounds out portfolio with file integrity vendor
Tripwire is the fourth vendor for Chillisoft in six months, adding critical security controls, vulnerability management and file integrity monitoring.
ESET researchers break down latest arsenal of the infamous Sednit group
At the end of August 2018, the Sednit group launched a spear-phishing email campaign, in which it distributed shortened URLs that delivered first-stage Zebrocy components.
Google 'will do better' after G Suite passwords exposed since 2005
Fourteen years is a long time for sensitive information like usernames and passwords to be sitting ducks, unencrypted and at risk of theft and corruption.
Who's watching you? 
With privacy an increasing concern amongst the public, users should be more aware than ever of what personal data companies hold.
Fake apps on Google Play scamming users out of cryptocurrency
Fake cryptocurrency apps on Google Play have been discovered to be phishing and scamming users out of cryptocurrency, according to a new report from ESET.
Optic Security Group celebrates Axis accolade
Auckland-based business security systems provider Fortlock has picked up an award at Axis Communications’ annual Oceania Axis Partner Summit 2019.
Managing data to comply with privacy regulations - Micro Focus
It’s crucial for organisations to be able to access, understand, and accurately classify the data they have so they know how to treat it.
Hackbusters! Reviewing 90 days of cybersecurity incident response cases
While there are occasionally very advanced new threats, these are massively outnumbered by common-or-garden email fraud, ransomware attacks and well-worn old exploits.