Is your business a cyber target?

1 March 2020 Cyber Security

MJ Strydom, MD of cybersecurity specialist DRS reveals why every business is a breach target in 2020.

MJ Strydom

It’s no secret that cloud computing and network-connected smartphones have enhanced the invasion prospects for companies. Cyber exploits are more sophisticated, illusive, and targeted than ever before. With cybercrime rates estimated to have generated US$1.5 trillion in 2018[1], navigating today’s complex cyber threat landscape requires comprehensive cybersecurity.

In 2019, becoming an under-protected target for hacking was dangerous for entire industries. A large number of state and local public sector agencies were ravaged by ransomware attacks across the globe – with South Africa proving to be no exception to that reality.

Let’s examine some of the stats coming out of 2019[2]. The CheckPoint 2020 cyber-security report estimates that in January last year, over 770 million email addresses and 21 million unique passwords were exposed in a popular hacking forum. It became the single largest collection of breached personal credentials in history, named ‘Collection #1’. However, later in the year, it was discovered that this was merely a minor slice of a bigger data leak, split into seven parts and distributed through a data-trading scheme.

Airbus, the world’s second-largest manufacturer of commercial aeroplanes, suffered a data breach exposing personal data of some of its employees. Three unauthorised attackers breached Airbus’s ‘Commercial Aircraft Business’ information systems; 620 million account details were stolen from 16 hacked websites, and offered for sale on the popular dark web marketplace, Dream Market. Later on, the same cyber-criminal published the sale of another 127 million accounts from eight more hacked websites.

The next question is, of course, what should you do in light of these statistics? The answer to that is simple – always choose prevention over detection.

Detection is not protection

Organisations driving prevention strategies as opposed to just ‘quick reaction’ measures, can win the war against cyber criminals. Attacks from unknown threats pose critical risks to businesses, and unfortunately, they’re also the hardest to avert. That’s why many businesses resort to a strategy of detection-only protection. Some rely on event monitoring and threat hunting by security operations centre (SOC) teams to detect a problem only after their systems have been breached.

But this is a far less effective strategy than the prevention of a breach. It is imperative for organisations to prevent cyber-attacks before they breach enterprise systems. Traditional cybersecurity vendors often claim that attacks will happen, and that there’s no way to avoid them. They go on to suggest that the only thing left to do is to invest in technologies that identify the attack once it has already breached the network, and mitigate the damages as soon as possible. This is untrue.

Not only can attacks be blocked, but they can be prevented, including zero-day attacks and unknown malware. With the right technologies in place, the majority of attacks, even the most advanced ones, can be avoided without disrupting normal business flow.

Without a consolidated solution, companies need a long list of security tools to address all possible attack vectors. This approach can be needlessly complex, expensive, and ineffective. In fact, building security using a patchwork of single-purpose products from multiple vendors usually fails. It generally results in disjointed technologies that don’t collaborate and creates security gaps. Additionally, working with multiple systems and vendors can introduce huge overheads. As a result, many attacks are not prevented, forcing organisations to invest more on post-infection and breach mitigation.

In order to achieve comprehensive security, businesses need to adopt a unified multi-layer approach that protects all elements – networks, endpoint, cloud, and mobile. Sharing the same prevention architecture, threat intelligence and management can safeguard your company more effectively.

Use the biggest of the big guns – threat intelligence

Keep your threat intelligence up to date if you want to prevent zero-day attacks. For the uninitiated, zero-day attack vulnerability is essentially defined as a software security flaw that is known to the vendor, but patches are not available to fix the flaw. These unintended flaws are found in software programs or operating systems.

It is critical that companies have incisive, real-time threat intelligence that provides up-to-the-minute information on the newest attack vectors and hacking techniques. Threat intelligence must cover all attack surfaces including cloud, mobile, network, endpoint, and IoT, because these vectors are commonplace in an enterprise. Attack vectors continually evolve to exploit vulnerabilities on these platforms.

In the constant fight against malware – threat intelligence and rapid response are vital capabilities. To maintain business operations, you need comprehensive intelligence proactively stopping threats, management of security services to monitor your network, and incident response to react quickly and resolve attacks. Malware is constantly evolving, making threat intelligence an essential tool for almost every company to consider. When an organisation has financial, personal, intellectual or national assets, a more comprehensive approach to security can protect against today’s sophisticated attacks. Threat intelligence is one of the most effective proactive security solutions available today.

Lastly: Beware of the devil you know

34% of all cyber-attacks are perpetrated by insiders. This makes it clear that legacy security infrastructures are dangerously ineffective.

For more information, contact MJ Strydom, DRS,,

[1] 33 Alarming Cybercrime Statistics You Should Know in 2019, by Casey Cane, Security Boulevard, November 15, 2019.


Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Passwordless authentication
Issue 2 2020 , Cyber Security
Thales’s support for Fast IDentity Online (FIDO) 2.0 provides passwordless access to Microsoft Azure Active Directory-connected apps and other services.

Sophos expands MSP programme
Issue 2 2020 , Cyber Security
Sophos MSP Connect Programme premiers new security offerings and PSA/RMM integrations amidst increasing partner demand.

Educating employees about mobile cyber threats
Issue 2 2020 , Cyber Security
While nearly 9 in 10 companies allow employees to access critical business apps using their personal devices, Android-based malware now represents 14% of all cyber threats.

Africa, you’ve been phished
Issue 2 2020 , Cyber Security
The 2019 KnowBe4 African Report across South Africa, Kenya, Nigeria, Ghana, Egypt, Morocco, Mauritius and Botswana has found that Africa is not prepared for cyber risks.

Suprema BioMini Slim 3
Issue 2 2020, Suprema , Cyber Security
Replace passwords by integrating fingerprint biometrics into your solution with BioMini Slim 3 and its easy-to-use SDK.

Understanding evolving cybersecurity needs
Issue 2 2020, Vox Telecom , Cyber Security
In the digitally-connected world with numerous data entry points into the organisation, cybersecurity requires a multi-layered approach.

Coronavirus-themed security attacks on the increase
Issue 2 2020 , Cyber Security
Cybercriminals aren't guided by the same moral compass as the rest of humanity. In fact, they are using the current COVID-19 pandemic to try and break through defences.

Tips on secure remote working
Issue 2 2020 , Cyber Security
NordVPN advises how to stay secure while working from home during the coronavirus outbreak.

What will happen to digital privacy in the upcoming decade?
Issue 2 2020, Kaspersky , Cyber Security
Your data is now everywhere. Your phone. Your smartwatches. Your smart home. And if something goes just a little bit wrong – it will disappear in just one click.

Lucky #13 security controls for SMEs
Issue 2 2020 , Cyber Security
SMEs are the perfect victims for cybercrime as they are often oblivious to the vast amounts of data they’re accumulating,