Forbes, just published a great security article on the top 5 cyber attacks and the best ways to avoid them. If you give your way to security vendors, you are likely to spend millions on dollars on technologies you don’t need. Invest you time and money against the threats that you and your company are more likely to face and save your money. The overall strategy is to focus on the basic protection from these and invest heavily into the detection and response capabilities and people who are able to respond to these attacks. Not surprisingly, the area of focus is very much similar to the previous article I published in January about TOP SECURITY CONTROLS.
Here are the threats according to this article:
- Potentially Unwanted Programs
- Account Hijacking
- Unpatched / Outdated Software
The mitigation steps are simple: Training, Download and Email Restrictions, Additional verification of logins, such as multi-factor or step-up, and basic vulnerability scanning and patching. The larger focus is on the whole cyber security strategy for the detection of incidents and quick response, that does not involve a lot of money.
Here is the link to the original article published by Forbes: LINK