44 % of financial institutions believe IT teams are the main risk to cloud security
N etwrix has announced additional findings for the financial and banking sector from its global 2022 Cloud Data Security Report .
Compared to other industries surveyed , financial institutions are much more concerned about users who have legitimate access to their cloud infrastructure . Indeed , 44 % of respondents say their own IT staff pose the biggest risk to data security in the cloud , while 47 % worry about contractors and partners . This is compared to 30 % and 36 % respectively in other verticals surveyed .
“ Financial organisations experience accidental data leakage more often than companies in other verticals : 32 % of them reported this type of security incident within the last 12 months , compared to the average of 25 %,” said Dirk Schrader , VP of Security Research at Netwrix . “ This is a good reason for them to be concerned about users who might unintentionally expose sensitive information . To address this threat , organisations need to implement a zero-standing privilege approach in which elevated access rights are granted only when they are needed and only for as long as needed .
“ Cloud misconfigurations are another common reason for accidental data leakage . Therefore , security teams must continually monitor the integrity of their cloud configurations , ideally with a dedicated solution that automates the process .”
Trellix predicts heightened hacktivism and geopolitical cyberattacks in 2023
T rellix , a cybersecurity company delivering Extended Detection and Response ( XDR ), has released its annual threat predictions report for 2023 .
Forecasts from the Trellix Advanced Research Centre anticipate spikes in geopolitically motivated attacks across Asia and Europe , hacktivism fuelled by tensions from opposing political parties and vulnerabilities in core software supply chains .
“ Analysing current trends is necessary but being predictive in cybersecurity is vital ,” said John Fokker , Head of Threat Intelligence , Trellix . “ While organisations focus on near-term threats , we advise all to look beyond the horizon to ensure a proactive posture . Global political events and the adoption of new technology will breed novel threats from more innovative threat actors .”
• Geopolitics and grey-zone conflict
• Hacktivism takes centre stage
• Skeletons in the software closet will multiply
• Increasing activity by teen cybercriminals
• Declining accuracy of code-based attribution
• Imminent global cyberthreat to critical infrastructure as cyberwarfare evolves
• Weaponised phishing attacks will increase across commonly used business communication services and apps
• Attackers to target IoT devices to mine cryptocurrency
• Satellites and other space assets to be increasingly compromised
• Huge jump in voice phishing attacks with less-aware tech users being primary target
• Attacks against Windows domain will scale
The Trellix Advanced Research Centre brings together hundreds of the world ’ s most skilled security analysts and researchers to serve the global threat intelligence community and organisations with the latest threat indicators and insights collected from Trellix ’ s extensive sensor network .
Trellix Advanced Research Centre forecasts the following threats in 2023 :
12 www . intelligentciso . com