ActiSoft Technology - Blog #Threat

Your Money or Your Data! A Guide to Ransomware

Mon, 20 Jun 2022 10:50:48 +0000

What is Ransomware?

Ransomware is a kind of malicious code that renders a device, server or file unusable until a payment is made to a cybercriminal. Attacks have more than doubled since 2020, and a recent study found that incidents reported to the ICO grew from 326 to 654 between 2020 and 2021. Actual figures will be much higher, as not all incidents are reported (although of course they should be!). The heavily impacted sectors according to the report are finance, education and insurance, but all sorts of businesses have been affected.

Over the years ransomware has evolved and become increasingly sophisticated. While some malicious software of this kind just encrypts certain files, others have the power to completely destroy entire file systems.

How it Works

As soon as the malware has been installed – usually as the result of a user clicking on a link – the hacker takes control of the system and freezers the user out until they pay up. They often ask for payment in Bitcoin, due to its anonymity, but cyber criminals will sometimes ask for bank details or other types of payment such as Amazon gift vouchers too. Even once the ransom has been paid, there’s no guarantee users will regain full access to their files afterwards. In fact, while over half of victims pay up, but only 8% get all their data back.

The Cost of Ransomware Attacks

According to Yubico, the average cost of a ransomware attack was $1.85 million (£1.4m) in 2021. Along with the initial monetary demands, other costs include business downtime, lost sales, operating costs and legal fees. In the case of attacks where more sensitive information is compromised, costs can be as much as $4.44 million (£3.5m).

There are severe reputational costs to consider too. New strains of ransomware can affect entire supply chains, which puts partner organisations and their customers at risk. Under GDPR regulations all breaches must be reported to the ICO, which means they are also made public. Insurance companies are less likely to touch organisations that have been hit hard by ransomware attacks, and if they do, you can expect your premiums to rocket.

Once an organisation has been targeted – and agreed to pay the ransom – they then become an easy target for future ransomware attacks.

Although most cybercriminals are motivated by money and other financial rewards, others act out of spite or for political reasons. They often use a range of different methods to extort money or information, and in some cases if ransoms aren’t paid they’ll even go as far as contacting customers direct and demanding money from them.

How to Prevent a Ransomware Attack

A while ago, all you needed to protect against a ransomware attack was a secure backup system and fast data restore process. Things have changed in recent years. At their worst, modern attacks can bring entire organisations to their knees, so traditional methods are no longer enough, so you need a more comprehensive, multi layered line of defence in place.

But as with most other cyber-attacks, the best way to avoid a costly ransomware attack is by creating a culture of awareness and making sure your staff have the right training. Malicious software can only be installed if a human allows it, so it’s essential that everyone knows what to look out for.

Here are some steps you can take to minimise the risks:

Make sure everyone in your organisation is trained and knows to never click on unverified links
Have all your emails scanned for malware
Install firewalls and Endpoint Protection
Only ever download from trusted sites that your IT team have approved
Keep regular backups of all your files
Avoid using public Wi-Fi
Never allow unverified, unfamiliar USBs in any of your devices
Install robust security software
Never share sensitive data with anyone you’re not 100% certain of

As specialists in cyber security, our team at Actisoft can talk you through all the risks and provide you with all the tools you need to avoid a ransomware attack. From firewalls and Endpoint Protection to Cyber Essentials accreditation and much more, we’re here to help.

Get the Manual

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

IT pros have realised that simulated phishing tests are urgently needed as an additional security layer. Today, phishing your own users is just as important as having antivirus and a firewall. It is a fun and an effective cybersecurity best practice to patch your last line of defence: USERS

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

National Health Service Becomes the Latest Victim of a Credential Harvesting Phishing Operation

Thu, 16 Jun 2022 15:30:26 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

Part of a six-month attack, email accounts on the NHS’ Microsoft 365 instance were compromised, resulting in over 1,100 targeted email attacks used to obtain more credentials.

According to security researchers at email protection vendor Inky, the 139 compromised NHS accounts were being misused from October 2021 until March of 2022 as the cornerstone of further phishing attacks attempted to either harvest credentials to major online platforms, or to trick victims into providing banking details.

Emails were likely sent using two IP addresses serving as SMTP relays for the NHS’ 27,000+ users, allowing attackers to work remotely. What may have allowed this attack to remain undetected for 6 months was the number of emails being sent:

You’ll note the dramatic spike in the number of emails sent in March of this year, likely drawing attention to the attack.

Emails impersonated both the NHS and individuals within, using NHS email footers, and names of compromised individuals to add credibility to the scams.

While there were only 139 compromised email accounts (out of over 27,000, according to the NHS), it literally only takes a single phishing email to alter the course of an individual or an organisation. Because most phishing scams need to get the victim to focus on one response action (e.g., clicking a link or opening an attachment), the scams can generally be identified pretty easily, if the user is vigilant.

And this vigilance comes with education through Security Awareness Training designed to help users understand the nature of phishing attacks, social engineering techniques, and the role they play in corporate cybersecurity.

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

Go Phishing Now!

What You Need to Know About Phishing: The Biggest Threat to UK Organisations

Wed, 15 Jun 2022 12:28:33 +0000

Phishing is an attempt by cybercriminals posing as legitimate institutions, usually (but not always!) via email, to obtain sensitive information from targeted individuals.

These attacks are on the rise, with more than 80% of organisations being targeted in 2021 alone. One of the most frustrating things about phishing is that these attacks are becoming so realistic and sophisticated that it’s becoming increasingly hard to spot them. So, even if you think you know everything there is to know about online scams, it’s still surprisingly easy to get caught out.

There are many different types of phishing, but in this post we’ll concentrate on the most common types affecting UK businesses right now.

Email Phishing

Most phishing attacks are deployed via email, and hackers are getting really good at creating fake accounts that look just like the real thing. They register fake domains that mimic well known organisations (such as Amazon, the NHS or Google) and send thousands of generic emails in what’s known as a “spray and pray” approach. The idea is that if they send a massive amount of emails, at least a few people will respond.

These attacks are on the rise because they work. The fake domains they create are so realistic that targets have to look really closely – they copy the logos and font type exactly, and often just one character is out of place in the email address. Many recipients see something that looks very familiar and assume it’s safe. As soon as they click on the link or download the attachment, it’s too late.

Spear Phishing

This is a more sophisticated type of email phishing attack. Instead of using a “spray and pray” approach cyber criminals will target particular people within an organisation, which involves more time and effort.

Before they send their malicious emails, hackers will have gathered important information about their targets including things like their name, job title, work location, email address and other specific information about their role. These attacks are particularly hard to identify because they address the user by name and often refer to other members of staff, meetings or work activities that are familiar to the target. Unlike the email scams of old, they’re often written in perfect English and seem totally legitimate – so it’s often only a matter of time before the hacker has access to the user’s data.

Whaling

Whaling attacks go a step further, and are usually aimed at senior staff members within an organisation. Whaling emails tend to be more subtle, and they’re less likely to use tricks like fake links. Instead, they’re likely to pose as a CEO or board member requesting vital information or the transfer of funds. The hackers create a sense of urgency, saying things like “I know you might be busy but really need you to get this done now” and they rely on employees being keen to keep their bosses happy.

Angler Phishing

This is a relatively new form of attack, which is deployed via social media. Hackers share posts including fake URLs, cloned websites and infected links and use instant messages to encourage victims to download malware. Cyber criminals keep an eye out for customers contacting organisations with complaints, then hijack the organisations’ social media accounts and ask for the customers to provide their bank account details in order to receive a refund. Of course, that refund never happens, and scammers walk away with valuable data and banking information.

Smishing and Vishing

These are more like old school hacks because they take place over the phone rather than via email, but they’re no less damaging. In a smishing attack, the victim will receive a text message asking them to follow a link or download a piece of software to their phones, while a vishing attack involves a telephone conversation. A common tactic is for criminals to pretend to be calling from a bank, alerting victims to suspicious activities on their accounts. Attacks of this kind can look incredibly realistic these days, and hackers rely on the fact that when people are stressed and under pressure they’re more likely to make silly mistakes.

Phishing attacks are estimated to cost the UK economy over £5 billion a year. The best way to prevent these attacks is with anti-phishing and anti-spam software, but it’s also essential to stay aware and on guard – which goes for smishing and vishing too. This means ensuring all staff are regularly trained and understand how to spot a potential threat.

For more detail about different types of phishing, our partner Fortinet has put together a comprehensive list you can also visit our Phishing page. We are also happy to talk to you about the most common threats to your organisation and deliver cyber security training. Contact us today for a no obligation quote!

Start Your Free Phishing Security Test

Find out what percentage of your employees are Phish-prone

Did you know that 91% of successful data breaches started with a spear phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test. Plus, see how you stack up against your peers with the new phishing Industry Benchmarks!

Why? If you don't do it yourself, the bad guys will.

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

Start phishing your users now. Fill out the form, and get started immediately!

Try It Now!

Top Cyber Threats to SMEs

Fri, 10 Jun 2022 11:13:34 +0000

If you’re running a small to medium sized business, it’s easy to think that you might not be a big enough fish to attract the interest of cyber criminals. But the truth is, small organisations are just as much at risk of hacks and other security threats as huge corporations – in fact, being smaller may make you more of a target.

Attackers are targeting thousands of businesses every day, and those with less robust defences in place make much easier prey than bigger organisations who can invest more time and money into cyber security.

Hackers also love targeting small businesses because they often deal with large sums of money and have great contacts – which means there’s lots of lovely data to steal.

It's often said that knowledge is power, and that’s certainly true when it comes to cyber-crime. The owners and managers of SMEs need to be aware of the risks, which is why we’ve put together this short article outlining the most common cyber-attacks right now and what we have seen.

1) Phishing

By far the most prevalent – and damaging – threat facing small and medium sized businesses in 2022 is phishing. These attacks account for 90% of all breaches; a figure that’s grown by 65% since 2021. Phishing attacks are when a hacker sends an email pretending to be from trusted contact, tricking the recipient to click on a malicious link, download a code or share sensitive information. There are several types of phishing attacks you need to know about:

The spray and pray approach, which is where hackers send out thousands of emails all at once, in the hope that one or two will bite
Spear phishing: a campaign that targets a particular person or organisation and includes information which is known to be of interest to the specific target
Whaling: an even more targeted and carefully executed attack, where the hacker goes after a specific C level executive in the organisation

Phishing attacks are becoming increasingly sophisticated, which means that even if you think you’ve seen it all before, you could still be caught out.

3) Social Engineering

Social engineering plays a huge role in cyber-crime. Even though advances in technology have been behind more sophisticated attacks, those attacks can only be properly deployed by a human. So, hackers work hard to understand how people think and manipulate them into making security mistakes or sharing valuable data. Social engineering happens in several phases. First, the hacker investigates their victim and identifies any weaknesses in their security systems. Next they start to gain their trust, either by sharing information the victim might be interested in or by pretending to be a trusted contact. Then, when the target lets their guard down and begins to trust the hacker, they’ll go in for the kill.

4) Insider Threat

Insider threats are posed by individuals from inside an organisation. This can include current or previous staff members, partners and contractors with access to passwords and company data. These individuals may act maliciously, intentionally stealing data or infiltrating systems for personal gain, but often they’re completely unwitting. Lack of awareness about cyber security issues can turn the most diligent worker into an insider threat, so it’s important to have robust policies and training measures in place.

5) Shadow IT

Shadow IT is a term covering the use of different IT systems, apps, services and devices that haven’t been approved by an IT department. Since Cloud services have become more popular, and also since the first lockdown, the use of Shadow IT has grown exponentially. New technology drives innovation and can deliver huge cost and time savings, but without the right security measures in place it also poses a huge risk.

6) Software Exploits

A software exploit is a code that’s been written to take advantage of a particular vulnerability or flaw in a piece of software. Although security professionals sometimes develop these exploits as evidence of vulnerabilities, they’re also widely used by hackers with malicious intent.

The purpose of this article is to provide you with an overview of the most common threats to your organisation. We’ll go into more detail about each type (and a few others!) in our next articles. In the meantime, if you want to know more about how to protect your SME from cyber threats, get in touch!

Are your users putting a big target on your organisation’s back?

Cybercriminals are constantly coming out with new ways to hack into your network and steal your organisation’s confidential information.

Find out if your users are putting a big target on your organisation’s back.

KnowBe4’s new Password Exposure Test (PET) is a complimentary IT security tool that allows you to run an in-depth analysis of your organisation’s hidden exposure risk associated with your users.

PET makes it easy for you to identify users with exposed emails publicly available on the web, and checks your Active Directory to see if they are using weak or compromised passwords that are part of a known data breach. PET then reports on any user accounts affected so you can take action immediately!

Here's how it works:

Checks to see if any of your organisations email addresses have been part of a data breach
Tests against 10 types of weak password related threats associated with user accounts

Checks against breached or weak passwords currently in use in your Active Directory

Reports on the accounts affected and does not show/report on actual passwords

Just download the install, run it, get results in minutes!

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

Zero-Day Attacks: What Are They, Who's at Risk and How to Avoid Them

Tue, 31 May 2022 11:00:14 +0000

Zero-day attacks are on the rise, with events reaching an all-time high in 2021. But what exactly is a zero-day attack, and how can you avoid it wreaking havoc for your organisation?

Zero-Day is a generic term which describes a cyber threat that’s just been discovered. When a vendor or developer finds out about the flaw they have to fix it immediately, meaning they have “zero days” in which to act. It’s sometimes written as 0 Day, and a range of different words are used alongside, including attack, vulnerability and exploit

Let’s take a quick look at each one individually, because there are some important differences.

Zero-Day Vulnerabilities are flaws in software that attackers discover before vendors know anything about them. Because those vendors are blissfully unaware, they haven’t yet been able to create the necessary patches to keep them safe.
Zero-Day Exploits refer to the methods hackers use to make the most of those vulnerabilities, and:
Zero-Day Attacks are the next step, when hackers take action and steal data from vulnerable systems

How Do Zero-Day Attacks Work?

You’ve probably heard of patches; solutions that fix problems that arise as the result of software updates. Developers are always on the lookout for these problems, but unfortunately, so are hackers. So, if the attacker gets their first, developers find themselves in a race against time.

Attackers come in a number of forms, the most common being cyber criminals who are in it to make money. Other Zero Day attackers are:

Hacktivists: hackers who are motivated by social or political causes and want to raise awareness of their beliefs

Corporate Spies: these people engage in espionage on behalf of organisations looking for information – often about their competitors

Countries and Political Bodies engaging in Cyberwarfare

Once hackers identify a vulnerability, they will quickly write and develop a code (known as an “exploit code”) that enables them to take advantage of it. The most common way they do this is through phishing emails, which look like they’ve been sent from a trusted source. The message will ask the recipient to click on a link, visit a website or download malicious software. Once the code has been deployed, victims are open to a vast range of cyber-attacks, including identity theft.

Hackers will be constantly looking for vulnerabilities to exploit, and they can also buy them on the dark web. Depending on the software and the type of data that can be obtained, these exploits are hugely valuable – in 2018, the average cost was around £2,000. Cyber criminals sometimes act straight away, but they may just sit and wait for the best time to attack.

As soon as developers are made aware of a vulnerability, they will try to patch the software in order to prevent an attack. Unfortunately, it can take days, weeks or months for these vulnerabilities to present themselves – and be fixed.

As soon as an exploit has been identified and patched, it’s no longer seen as a Zero-Day threat.

Common Targets

If your system has been infiltrated, you might start noticing things like unexpected traffic, and suspicious scans and log-ins. It’s not always easy to spot a Zero-Day vulnerability, especially if you’re not in the know, but here are a few things that developers look out for:

Missing data encryption
Broken links and algorithms
Bugs
Missing authorisation information

How to Prevent an Attack

By their very definition, Zero-Day attacks are impossible to patch. However, there are some methods that can be used to prevent them happening in the first place. These include vulnerability scanning, patch management software and input validation, which all help you spot threats in real time.

One of the most effective and popular ways to prevent a Zero-Day attack is with a good web application firewall, which helps filter out unwelcome visitors and identify weak spots. We can help with all of the above, as well as offering a range of other systems and services to help protect your organisation from common cyber-attacks. Contact our team of cyber security specialists here at Actisoft Technology to find out more.

Are your users putting a big target on your organisation’s back?

Cybercriminals are constantly coming out with new ways to hack into your network and steal your organisation’s confidential information.

Find out if your users are putting a big target on your organisation’s back.

KnowBe4’s new Password Exposure Test (PET) is a complimentary IT security tool that allows you to run an in-depth analysis of your organisation’s hidden exposure risk associated with your users.

Here's how it works:

Checks to see if any of your organisations email addresses have been part of a data breach
Tests against 10 types of weak password related threats associated with user accounts

Checks against breached or weak passwords currently in use in your Active Directory

Reports on the accounts affected and does not show/report on actual passwords

Just download the install, run it, get results in minutes!

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

Verizon: Ransomware Involved in 25% of Data Breaches as Credentials and Phishing are Seen as Key Paths for Attack Success

Thu, 26 May 2022 16:14:08 +0000

Blog courtesy of KnowBe4

Written by Stu Sjouwerman

With the much-anticipated annual Verizon Data Breach Investigations Report finally released, we get a view of ransomware from the data breach perspective that points to a common weakness in your security strategy.

When it comes to the state of your organisation’s ability to protect itself against cyberattacks – and ransomware, specifically – I truly don’t want to be the one that says “I told you so.” But the new data in Verizon’s Data Breach Investigations Report paints a pretty conclusive picture around why ransomware attacks are so successful.

First off, I need to point out that while 25% of data breaches involve ransomware, that number is nearly double what Verizon found in 2020 – demonstrating that, from the data breach perspective, we’re seeing ransomware attacks begin to encroach themselves as a dominant factor in data breaches (and will likely continue to do so).

So, what’s helping ransomware-involved data breaches be so successful? In a word… users.

According to Verizon, 82% of data breaches (ransomware included) involve “the human element” (which Verizon cites as including “Use of stolen credentials, Phishing, Misuse, or simply an Error”). Take a look at the chart below from the report, showing the action varieties found within ransomware-involved incidents:

What you should notice is that three of the four (desktop sharing software, direct install, and email) all imply access to either a user’s endpoint or their web-based email. And how does one get such access? Usually through phishing attacks intent on either compromising credentials (in the case of email) or the user’s endpoint (in the case of desktop sharing software and direct install).

Verizon calls credentials and phishing two of “the four key paths leading to your estate” (in addition to exploiting vulnerabilities and botnets). They go on to state “These four pervade all areas of the DBIR, and no organisation is safe without a plan to handle them all.”

Let’s sum this one up, shall we?

Ransomware is on the rise, users are involved somehow in a majority of all data breaches, threat actors gain access to endpoints and email, and phishing pervades all of this. Seems to me that the issue here (when you rewind the clock back to the initial threat actions that allow these ransomware incidents to occur) is users falling prey to phishing attacks – something easily either reduced or remedied with Security Awareness Training.

There’s no more respected or trusted report out there than the Verizon DBIR. So if Verizon is telling you users are the key to successful ransomware attacks, and that phishing is one of the keys to your kingdom, you need to be doing something about it to mitigate the user risk that exist within your organisation.

Free Phishing Security Test

Here's how it works:

Immediately start your test for up to 100 users (no need to talk to anyone)
Select from 20+ languages and customise the phishing test template based on your environment
Choose the landing page your users see after they click
Show users which red flags they missed, or a 404 page
Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
See how your organisation compares to others in your industry

Go Phishing Now!

Eight Top Tips for Managing Risk in Your Organisation

Thu, 26 May 2022 14:23:25 +0000

Technology presents us with opportunities that even just a few years ago would have seemed impossible, but with those opportunities come a whole new set of risks. So, how do you strike a balance? We’ve put together a list of habits to help you embrace the digital revolution and minimise risks.

1) Make Sure You Know Your Business Inside Out

In order to properly manage risks, you need to first have a clear picture of what you’re working with. Once you have a detailed list of all your critical assets, technologies (including all devices), objectives and processes, you’ll be able to get a better idea of vulnerabilities – and how to tackle them.

2) Prioritise Tasks According to Risk

It might feel a bit overwhelming trying to work out where to start, which is why a thorough inventory is worth its weight in gold. Once you’ve identified all the devices and processes you use, do a risk assessment for each one and prioritise your task list according to your findings.

3) Understand What Your Stakeholders and Board Members Want

Most boards and customers are asking more questions about data security now, so you’ll need to be prepared to answer their questions and provide accurate reports. Take the time to build relationships with your stakeholders and listen to their concerns and draw up a risk report based on their needs. Ask your board how often they want to be updated and what level of detail they want – in most cases, they won’t need to understand the minutiae of how you’re handing every risk, as long as you can prove you’ve thought about all eventualities and are being proactive.

4) Follow Industry Best Practice and National Standards

Drawing up a risk management strategy can be time consuming, and your time is precious, so don’t stress yourself by trying to reinvent the wheel. Take a look at best practice in your industry and do some research into how other businesses in your sector are managing risk, then adapt it accordingly to suit your own organisational requirements.

5) Create a Resilient System

Any IT expert will tell you that prevention is much better than cure, so it’s all about being proactive and resilient. Ransomware continues to be a big threat for industries across the board, but it’s actually pretty easy to manage with the right software and processes in place. That said, there’s no silver bullet that offers guaranteed protection against all cyber threats, so you’ll also need a robust incident response plan in place to ensure that if your data does become compromised you can get back up and running quickly and cost effectively.

6) Promote a Culture of Awareness

You can invest a fortune in anti-virus software, but the most important part of your cyber security toolkit is arguably your people. Hackers can only infiltrate your system if someone lets them in, so invest in good training and keep your staff up to date on common risks and how to spot them.

7) Make Informed Decisions

There are lots of different types of software out there that all claim to offer all singing, all dancing protection against cyber-attacks. But just because a brand claims to be good, there’s no guarantee they will be, so take your time to ask questions, read (genuine) reviews and work out what you really need. Never assume systems, people and processes can be trusted until you’ve done your homework.

8) Know Your Enemy

Sun Tsu wrote about it centuries ago in The Art of War, and it’s still relevant now – when you understand who your adversaries are know how they behave, you’ve got a much greater chance of winning the battle. It’s essential to make security awareness an intrinsic part of everything you do and keep on top of the latest cyber crime trends and tactics – or, if you really can’t stand getting bogged down in such things, you invest in a good ally who will fight on your behalf.

To find out more about how to manage risk in your organisation, contact our friendly team of specialists here at Actisoft Technology today!

Are your users putting a big target on your organisation’s back?

Cybercriminals are constantly coming out with new ways to hack into your network and steal your organisation’s confidential information.

Find out if your users are putting a big target on your organisation’s back.

KnowBe4’s new Password Exposure Test (PET) is a complimentary IT security tool that allows you to run an in-depth analysis of your organisation’s hidden exposure risk associated with your users.

Here's how it works:

Checks to see if any of your organisations email addresses have been part of a data breach
Tests against 10 types of weak password related threats associated with user accounts

Checks against breached or weak passwords currently in use in your Active Directory

Reports on the accounts affected and does not show/report on actual passwords

Just download the install, run it, get results in minutes!

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

What is the Fourth Industrial Revolution?

Mon, 23 May 2022 14:32:18 +0000

As the cyber threat landscape continues to evolve, passwords and anti-virus software simply aren’t enough anymore. And while there’s no silver bullet that totally eliminates all attacks, employing a Multi Layered Defence will definitely help.

The Fourth Industrial Revolution, also known as 4IR and Industry 4.0, is a term used to describe a new amalgamation of the physical, biological and digital worlds. It combines engineering with science, Artificial Intelligence (AI), robotics, quantum computing, the Internet of Things (IoT) and other emerging technologies. Together, these new systems, processes and tools are completely changing the world around us – and the way we live in it.

It may sound like the stuff of sci-fi movies, but most of us have been using at least some of these services for a while. Sat Navs, mobile banking apps, iPhone face scans and tools like Alexa are a common part of daily life. But it’s perhaps in the workplace that the 4IR is having the biggest impact; disrupting every business sector at an unprecedented pace.

A Brief History of Industrial Revolutions

Most people are aware of the first Industrial Revolution, which took place in the 18th Century. It was prompted by the invention of the steam engine, and with these new machines came new opportunities and huge social, cultural and economic changes. The second revolution saw the invention of electricity, mass production and other big scientific improvements, and the third saw the birth of computers and digital devices such as clocks.

In 2016, the founder of the World Economic Forum Klaus Schwab wrote a book entitled The Fourth Industrial Revolution, which outlined the effects - good and bad - that technological innovation is having on the world.

These technologies include:

Blockchain: Often confused with cryptocurrency, blockchain is actually a type of storage facility that enables cryptocurrency such as Bitcoin to be created and exchanged in monetary terms.

Biotechnology: This kind of technology merges tech with biology. It’s particularly prevalent in the pharmaceuticals industry, because it allows scientists to develop cellular and biomolecular processes for the production of new drugs, among other things. It’s also used in manufacturing and is making great strides in the production of greener, more efficient energy.

Virtual Reality (VR) and Augmented Reality (AR): VR is all about immersive digital experiences that simulate the world around us (currently via a headset) whereas AR is a combination of the physical and digital worlds, such as mobile apps that allow us to add filters and change the appearance of selfies.

3D Printing: Printers have come a long way in the past few years, and today’s 3D versions enable users to create actual objects based on an image. Manufacturers can now print their own parts, while in the medicine world prosthetic limbs, tissues and even organs are now being produced.

Robotics: The sci-fi books of the 1960s often spoke about the possibility of robots taking over the world, and with the latest developments it doesn’t seem like such a far-fetched notion! While we’re a long way from having walking, talking and free-thinking robots in every home, they’re becoming increasingly advanced and playing an important role in everything from manufacturing to health and safety.

The Internet of Things/IoT: This is a term that covers a huge range of devices, from smart mobile phones and security cameras to wearable health and fitness devices, smart phones, smart fridges, thermostats and mobile devices.

Other technologies included in the Fourth Industrial Revolution include data storage, Cloud computing, cyber security technology, renewable energy…and much more.

The Impact on Businesses

There’s no doubt that the Fourth Industrial Revolution is having a huge effect on businesses everywhere. Although many worry that the increased role of technology could be bad news for humans, we’re nowhere near that yet. In fact, the 4IR is all about combining humanity with technology to create better experiences for us all – particularly customers. modern technology gives businesses the power to connect with people far more effectively than ever before, because it presents us with the data we need to really understand each other.

That said, because there’s so much more choice available these days, customers have higher expectations, which means more pressure on businesses to get with the programme in terms of their digital offerings. Customers also have more control of their own personal data too, and with the advent of the GDPR organisations of all sizes must be doing everything they can to keep client information safe. That means having robust cyber security processes and tools in place and ensuring all staff understand common risks, and how to avoid them.

To find out more about how you can embrace the Fourth Industrial Revolution without putting your customer’s data at risk, get in touch. As cyber security specialists we help our clients make the most of modern technology whilst protecting them from viruses, hacks and other cyber-attacks. Find out more today!

Are your users putting a big target on your organisation’s back?

Cybercriminals are constantly coming out with new ways to hack into your network and steal your organisation’s confidential information.

Find out if your users are putting a big target on your organisation’s back.

KnowBe4’s new Password Exposure Test (PET) is a complimentary IT security tool that allows you to run an in-depth analysis of your organisation’s hidden exposure risk associated with your users.

Here's how it works:

Checks to see if any of your organisations email addresses have been part of a data breach
Tests against 10 types of weak password related threats associated with user accounts

Checks against breached or weak passwords currently in use in your Active Directory

Reports on the accounts affected and does not show/report on actual passwords

Just download the install, run it, get results in minutes!

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

Multi-Layered Defence

Mon, 16 May 2022 10:11:48 +0000

What do we mean by Multi-Layered Defence?

Also known as Defence-in-Depth and Layered Security, Multi-Layered Defence is an approach to network security that uses a variety of tools. The aim is to keep all bases covered by ensuring every individual aspect of your cyber security strategy has a backup to protect against vulnerabilities. Think of it in the same way as keeping your house secure – you can lock your doors and close your windows, but your home will be even safer if you’ve also got a burglar alarm and security cameras installed. When you’ve got an arsenal of protection working together against hackers and other threats, your business will be more secure too.

Multi-Layered Defence is recognised as Best Practice, as recommended by the National Institute of Standards and Technology (NIST) Cyber Security Framework. The framework outlines five key areas to help businesses protect their systems and data:

Identify
Protect
Detect
Respond
Recover

Networks can be defended by implementing twelve essential layers, as outlined below.

1) Firewalls: A firewall is commonly the first line of defence in an organisation’s network security, acting as a barrier between the network and any unsolicited traffic.

2) Patch Management: Hackers are always on the lookout for vulnerabilities, and outdated software often provides them with the perfect way in. Patch management is essential because it means errors and bugs can be easily identified and fixed, making it far harder for cyber criminals to strike.

3) Multi-Factor Authentication: An MFA is an electronic automation method that requires users to be verified in two or more ways before they’re granted access to particular networks, applications and websites. Users are asked to provide information on:

Something they know (e.g., a password or PIN)
Something they have (a physical object, like a card, security key or mobile device)
Something they are (this method uses biometric verification, such as fingerprints, voice recognition and retina scans). While it may sound like a lot to ask a user, these solutions have been developed so effectively and efficiently that they’re easy to use and cause minimal disruption.

4) Endpoint Protection: Today’s businesses have a lot of different devices logging onto their networks, which significantly increases security risks. Every phone, laptop, PC , camera, printer, scanner and smart device (known as “endpoints”) must be individually protected as part of your cyber security strategy.

5) Content Filtering: There’s an enormous amount of web content out there, and if just one of your users happens to access a dangerous website your entire network could be compromised. Web content filtering allows you to block inappropriate or untrusted sources that could put you at risk of cyber-attacks.

6) Email Filtering: The vast majority of cyber-attacks - 94% to be precise - are still delivered by email. Hackers know all it takes is one click on a dodgy link for an entire network to be compromised, so by filtering emails before they arrive in users’ inboxes you can help stop them in their tracks.

7) Security Awareness Training: Knowledge is power, so many experts believe that educating employees is often the best line of defence. By providing staff with the training they need to spot common hacking tactics, such as phishing emails, you will be creating a culture of security and confidence. Threats evolve rapidly, so it’s important to keep training up to date and relevant, and it’s a good idea to conduct regular phishing simulations to keep people on the ball.

8) Robust Password Policies: A recent study from NordPass revealed that millions of people still use “qwerty” and “123246” as their passwords, and – even more concerning - over half of IT professionals still use the same password to access different accounts. In fact, as many as 73% of passwords are duplicates, which means if one account is hacked, the chances are your others will be too. By requiring users to change to complex passwords (containing special characters, numbers and inconsistent capitalisation) you’ll be making it much harder for hackers to break in.

9) Physical Barriers: Although much of modern business is conducted online, it’s still important to consider what physical security you’re using in your workplace. Security staff, cameras, alarms, key cards and good old-fashioned locks are still as effective as the ever were, and combined with modern biometric tools like thumb and retina scans they go a long way towards preventing crime.

10) Dark Web Monitoring: The dark web is notoriously a hotbed of illicit, insidious online activities, which includes the sale of business-critical data. Employee data is often targeted, enabling hackers to send malicious emails and install viruses. You can invest in tools that search the dark web for staff email addresses and passwords to keep you one step ahead.

11) Disaster Recovery: With new threats emerging all the time and the security landscape becoming increasingly complex, it’s impossible for anyone to offer 100% certainty against attacks. But what you can do is ensure that if the worst does happen, you’ve got the right business continuity and disaster recovery methods in place. These solutions include performing regular data backups and making sure your business continuity plan is routinely tested, maintained and updated, vastly improving your chances of getting back to business quickly and with minimal disruption.

12) Managed Detection and Response: It’s impossible for one human (or even a whole team of them) to monitor a system 24/7 and detect potential threats. Managed Detection and Response (MDR) is a solution that combines human skill and experience with state-of-the-art software to ensure your network is as safe as possible, all day, every day. Without the right tools data breaches can go unnoticed for over 200 days, which means cyber criminals to wreak havoc while you’re blissfully unaware.

If you want to do more to protect your organisation’s data and reputation, contact us today to find out more about our Multi-Layered Defence services.

Find out now how many of your users take the bait and reply to a spoofed email

Did you know that 60% of spoofed email attacks do not include a malicious link or attachment? When crafted well, most users are likely to fall victim to a highly targeted social engineering attack.

Try our Phishing Reply Test (PRT) it is a complimentary IT security tool that makes it easy for you to check to see if key users in your organisation will reply to a highly targeted impersonation attack.

PRT will give you quick insights into how many users will take the bait so you can take action to train your users and better protect your organisation from these fraudulent attacks!

Here's how it works:

Immediately start your test with your choice of three phishing reply scenarios

Spoof a Sender's name and email address your users know and trust

Phishes for user replies and returns the results to you within minutes

Get a PDF emailed to you within 24 hours with the percentage of users that replied

Identify how many users take the bait and reply before the bad guys do!

Try It Now!

Questions Your Board Might Ask about Data Security (And How to Answer Them!)

Fri, 29 Apr 2022 13:25:47 +0000

“We’ve Had a Data Incident. How Did it Happen?”

Board members expect you to have everything under control, so when they find out it’s not, you can expect to be hauled over the coals. Data incidents have become more common since people started working from home, and boards will want to know you’re doing everything in your power to keep the reputation of your organisation intact.

The best way to respond to this question is to stick to the facts, but keep it brief. This is where it’s important to have an incident response policy in place, so you can clearly identify where things went wrong. Tell them what you know, how it’s impacted operations and – most importantly – what you’re going to do to make sure it doesn’t happen again.

“Is the Network Definitely 100% Safe Now?”

Unfortunately, in such a complex and constantly evolving threat landscape, it’s impossible for any organisation to say they’re completely immune to cyber-attacks. If your board members are asking this question and demanding that you give them 100% certainty, it’s important to put them straight – nobody can.

What you can do is reassure them that you have all the right systems and policies in place now, to ensure the risks are properly managed and reduced where possible without restricting operations. Tell them that as your organisation grows, so too will your level of security, and that you have the right software and security partners in place to keep things under control.

“How are We Doing Compared to Other Similar Organisations?”

With so many news stories about big name companies being hacked, it’s no wonder board members feel under pressure to ensure their businesses don’t end up in the headlines too. You can’t really second guess the details of what happened in other companies, but you can go away and do some research and bring it back to the next meeting.

Again, what’s really important here is that you’re able to identify any weaknesses in your own organisation and implement a robust new strategy accordingly.

“Are We Spending the Right Amount of Money on This Stuff?”

As we mentioned earlier, until recently, a lot of board members tended to be keen to see managers keep cost low and spend as little as possible on things like cyber security. Nowadays, the opposite tends to be true. Your board will want to know that you’re doing everything you can to keep your reputation, information and resources safe, which means carefully balancing out risks with a good ROI.

Conclusion

Board members are not ogres, honestly they're not ,but they will expect you to be able to answer burning questions and give them peace of mind that your organisation’s data is in safe hands. By having firm protocols and systems in place you’ll be able to prove you’re doing everything you can to protect the future of your company. To find out more about how to keep your business-critical data safe, contact our friendly team at Actisoft today.

Find out now how many of your users take the bait and reply to a spoofed email

Did you know that 60% of spoofed email attacks do not include a malicious link or attachment? When crafted well, most users are likely to fall victim to a highly targeted social engineering attack.

PRT will give you quick insights into how many users will take the bait so you can take action to train your users and better protect your organisation from these fraudulent attacks!

Here's how it works:

Immediately start your test with your choice of three phishing reply scenarios

Spoof a Sender's name and email address your users know and trust

Phishes for user replies and returns the results to you within minutes

Get a PDF emailed to you within 24 hours with the percentage of users that replied

Identify how many users take the bait and reply before the bad guys do!

Try It Now!