Intelligent CISO Issue 13 - Page 15

latest intelligence CYBERSECURITY FOR THE MODERN ERA THREE STEPS TO STOPPING MALWARE, CREDENTIAL PHISHING, EMAIL FRAUD AND MORE PRESENTED BY I INTRODUCTION If you’re like most IT leaders, you’ve invested heavily in the latest security tools. Yet you’re still inundated with ransomware and other advanced malware, credential phishing, email fraud and more. You’re spending more time dealing with a growing volume of threats. And you’re seeing a shrinking return from your security investments. That’s because most of today’s attacks play off human weaknesses: • A distracted user who clicks on a link or opens an email attachment without thinking | Issue 13 • A customer eager to take advantage of an online discount • An employee who falls victim to an email believed to come from a company executive, with a seemingly reasonable request to transfer money People, not technological weaknesses or vulnerabilities, are at the centre of most attacks. Firewalls, intrusion detection and prevention systems (IDS/IPS), network defences, endpoint antivirus software and the like are all important. But none of them address today’s real security issue: people. targeted attacks start with email. These are generally phishing attacks: the email purports to come from a reputable person or company and its apparent validity persuades the recipient to disclose personal information such as passwords or credit card numbers. u DOWNLOAD WHITEPAPERS AT: WWW.INTELLIGENTCISO.COM/ WHITEPAPERS It’s time to turn the focus to humans, the principal risk factor. Some 90% of 15