Ransomware cost organizations globally more than $6.3Billion in 2019 and it is ramping up for 2020 according to an Emisoft report.
This echoes a number of recent industry reports, where, despite all of our collective R&D and Investment in continuing to protect the endpoint through a variety of means, the results have not improved as much as we\’d hope, and if anything, in some cases they\’ve become worse:
1. 70% of breaches still start on the endpoint.
2. From 2018 to 2019, Dwell Time (the number of days a threat remains undetected within a given environment) increased from 85 to 95 days.And possibly most interestingly, the most impactful attacks were focused on Business Disruption (Most often this was caused by ransomware, destructive malware or denial of service attacks.)
This is not to imply that new technologies are completely ineffective, in fact quite the opposite, its arguable that if we didn\’t have these current solutions and services, our digital way of life as we know it today may not exist. That being said, vulnerabilities continually present themselves, while the adversary is always evolving and is still finding ways to be effective. In response, as of late 2018, Microsoft began recommending a new Cybersecurity Reference Architecture, where the OS for Privileged Access Workstations is isolated from the OS leveraged for daily corporate use.
Through all of this, we\’re seeing many organizations come to the same realization – you cannot protect the OS from within the OS.
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics