cyber trends
How can you tackle the new
ransomware attacks?
attackers a large attacking landscape
and also an easy way to intrude into the
corporate network.
Further, attacks like Dharma ransomware
are exploiting Microsoft Word Remote
Code Execution vulnerabilities. In March
2020, Microsoft released a patch for
one such vulnerability, CVE-2020-0852.
This vulnerability can allow malware
to execute on a system when the user
merely views a specially crafted Word
file in the MS Outlook Preview Pane.
Microsoft has warned that the Outlook
Since these services
used to be accessed
only occasionally,
many enterprises
have not patched the
services’ security
vulnerabilities.
Here lies a huge
opportunity for the
attackers.
Subhalakshmi Ganapathy, Product
Evangelist, ManageEngine
Preview Pane is also an attack vector for
this vulnerability. Again, there are likely
many similar unknown vulnerabilities out
there. Patching the systems when your
employees are working from home is
a time-consuming process. Apart from
exploiting zero-day attacks, attackers
can now take advantage of this extended
patching window to launch attacks.
1. Hunt for threats.
Constantly update
your threat
intelligence system
with its dynamic threat
feeds and stay protected
from the growing number of
COVID-19-based attacks and
malicious domains being created
to leverage the panic.
2. Patch your systems regularly.
Do not leave out the VPN and
remote access platforms. Take
the utmost care to patch the
endpoint devices used by your
remote workforce.
3. Stay updated. Keep a watch
on newly discovered malware
and configure indicators of
compromises based on their file
hashes and working methods. This
will not prevent the attack from
happening but will definitely stop
the attack at the early stage and
minimise the damage.
4. Make your behavioural analytics
solution unlearn and relearn
the user and entity behaviour
patterns. Reconfigure the system to
adjust the risk scores according to
the remote working behaviours.
5. Don’t let your employees fall for
phishing emails. Communicate
with your employees through your
internal forums or over email,
addressing the phishing attacks
going around and teaching them
how to avoid bogus emails.
At this time, it is essential for us to take
our digital health as seriously as we
take our physical health. Stay strong
and secured. u
www.intelligentciso.com | Issue 27
21