// PREDICTIVE INTELLIGENCE //
“
IN CYBERSECURITY IT IS NO LONGER
A CASE OF ‘ IF ’, BUT ‘ WHEN ’ – MEANING PREPARING FOR THE INEVITABLE
IS KEY . system that managed their IT resources . For small organisations that provide services to UK government bodies or large commercial brands , they will be at serious risk of being attacked . According to a study conducted at the end of last year , 84 % of organisations believe that software supply chain attacks could become one of the biggest cyberthreats within the next three years . Even more worryingly , of those that have suffered their first software supply chain attack , 54 % did not have a response strategy in place .
The rising risk to supply chains is compounded by the increasing maturity of hackers , and the growing complexity of their tactics , techniques and procedures ( TTPs ). Social engineering campaigns and highly personalised phishing – known as ‘ spear phishing ’ – attacks have become so sophisticated that it can be hard to notice a scam . What ’ s more , cybercriminals often identify the best times to catch their victims unaware . This could be on a national holiday – like in the case of the attack on SHI recently , that hit the US company over the Fourth of July weekend – or later in the evening , when employees may be checking emails on their phones and lack the vigilance they have in the office .
One area we ’ re seeing this issue most significantly is within the housing industry . With Friday as the most popular day to complete a house purchase , these days are a favourite for cybercriminals too .
Large sums of money are being transferred all day between solicitors and their clients , meaning carefully crafted phishing emails targeted at the right individuals ( eager to finalise their housing exchange ) – which is an unfortunate example of criminals hitting victims at the perfect time . Threat actors choose these times as they want to reap the
26 intelligent
. tech
Intelligent SME . tech