In its annual security report , which analyzes the internet security landscape and trends, Cisco pointed out that companies need to adopt a more collaborative strategy in combating cyber threats and attacks, expanding and extending security actions to users, in addition to servers and systems.
Just as security techniques advance, hackers become more efficient. Therefore, it is increasingly necessary for companies to constantly seek improvement and evolution of their protection and security techniques.
Changes in attack techniques
Criminals have expanded their tactics and adapted the techniques and tools they use, with the goal of making it more difficult to analyze and detect viruses and compromised systems.
Among the most commonly used techniques, spam stands out, where small amounts of spam are sent from a large set of IP addresses and different locations. Another widely used method is the malicious combination of code, exploiting small vulnerabilities in Flash and Javascript, such as outdated versions and low levels of security in browsing.
Users become the target
Cisco's research revealed that attackers have shifted their focus from targeting servers and operating systems to targeting users, who, due to a lack of knowledge and misuse of the internet, end up accessing and downloading malicious files from compromised websites. For example, attacks via spam and malicious messages increased by 250% in 2014.
Security in companies
A key finding of the research reveals a greater gap between intention and practical defensive actions. The study indicates that 75% of those responsible for security in companies consider their techniques and tools effective. However, only 50% of them use recommended and standard tools to prevent security breaches and ensure the execution of updated application versions.
One positive aspect of the research is that in Brazil, 34% of organizations have an advanced level of security. However, this is still behind countries like the United States with 44% and India with 54%.
How can we increase security?
The most relevant point to consider in this research is the changes the security market has been undergoing, mainly due to the expansion of techniques used by cybercriminals. Given this, the need for adaptation on the part of security managers is clear; this requires a change in the security principles that are still widely used.
Cisco, in its "Security Manifesto," lists some basic principles that should be followed in security strategy and actions, both by managers and internet users:
- Security must support the business.
- Security must work with the existing architecture – and be usable.
- Security should be transparent and informative.
- Security must allow for visibility and appropriate action.
- Security should be seen as a "people-related problem."
And in your company, what has been done to keep protection against intruders up-to-date and efficient? Share your experiences in the comments!
