Threats never sleep
By Mike Nelsey:
Ours is an interconnected world, where every sector relies on a constant flow of information. But as we have all learned, not all digital innovation is benign and there is a thriving industry exploiting system vulnerabilities for unlawful gain.
Last year, ransomware generated almost $1 billion for cyber criminals and without doubt Wannacry is only the latest high-profile example of a new wave of malware based on a set of confidential hacking tools used by the NSA.
The scramble to patch the susceptibility in Windows has underlined a fundamental problem in existing detection methodologies. Secure web gateways, firewalls and intrusion detection systems are limited as they attempt to identify threats – essentially, we will all remain vulnerable if we rely on ‘locking the stable gate once the horse has bolted’.
We need a wholly new approach. Cyberinc built Isla not to try to identify malware but to isolate it, outside the network and away from all endpoint devices. Isla then transforms content into benign, malware-free formats before delivering it to users.
This matters as ransomware works once users visit a malicious site or receive an e-mail with a malicious link or document. The system is then redirected to a site containing an exploit kit. But with the browser and content isolated, it ‘breaks the kill chain’ and an attack ends before it can begin.
Cyber attacks can take a variety of forms. From compromising personal information to capturing control of computers. Companies all over the world have been affected in recent times and therefore it is important to take as many steps as possible to prevent cybercrime.
Accordingly integrating regular software testing into cybersecurity measures is strongly recommended for all companies. In short, organizations of all sizes should strive to understand the kind of security testing that they can benefit from in their battle to prevent cyber attacks.
Put simply, a cost-effective software testing process can go a long way when ensuring cyber safety and in some cases can even be the difference between a business thriving and facing an existential threat to its reputation and business model. If you would like to learn more about the security benefits of software testing, you can see this useful guide on the Parasoft website.
Ultimately, anything less than complete isolation leaves us all open to the next evolution in malware. So, act now to stop cybercriminals in their tracks.
Mike is UK managing director of enterprise security technology company Cyberinc. Read more about the company’s Isla Malware Isolation appliance family here. Or download the white paper ‘Defeating Ransomware with Isla Web Malware Isolation’ here.