New cyber attacks aim to steal corporate funds

New cyber attacks aim to steal corporate funds

It comes as no surprise cyber attacks are continuing. As we’ve shared in the past when discussing our Safety & Security investing theme, cyber is the new war front. Now we are seeing is a more pronounced change in the types of attacks (ransomware) and the targets (healthcare and small businesses). Perhaps the thinking is those new targets are more vulnerable or they lack adequate security measures that have been put in place by larger organizations.

From our Safety & Security perspective, it says the under protected will need to step up their cybersecurity spending to thwart the growing threat, creating demand along the way.

The threat of cyberattacks continues to grow, and small businesses (SMBs) are caught in the crosshairs.

The latest research in small business cybersecurity has revealed the relentless nature of the threat, with new strategies emerging and new strains of ransomware rearing their ugly heads. As a result, 71 percent of ransomware attacks are now targeting small businesses, according to a report released by Beazley Breach Response (BBR).

Its most recent Beazley Breach Briefing, released last month, analyzed 3,300 data incidents in 2018, and found that small businesses face a higher risk of being targeted by a ransomware attack than larger enterprises.

“The threat posed by cybercriminals continues to grow in complexity as they devise new techniques to breach IT security and trick unsuspecting employees into allowing them access to systems,” said Beazley Global Head of BBR Services Katherine Keefe in a statement. “Unfortunately, we see these threats globally across all sectors, and we strongly believe that education about the risks and preparedness are as important as IT security measures for protecting individuals and assets from cyberattacks.”

Beazley researchers found that the mean for ransomware attack demands was $10,310, though one incident saw a demand for $8.5 million. Healthcare emerged as the largest target for ransomware attacks, followed by financial service providers and professional services. Meanwhile, instances of the Business Email Compromise (BEC) are also on the rise: About 47 percent of all incidents examined last year were the result of a hack or malware — and, of those, about half were BEC scams.

Source: New Cyberattacks Rise To Steal Corporate Funds | PYMNTS.com

“Dragonfly” hackers target U.S. energy company networks

“Dragonfly” hackers target U.S. energy company networks

From time to time, we are reminded of the growing threat of cyber attacks, one of the downsides of our increasingly Connected Society. This attack on computer networks of U.S. energy companies speaks to risks associated with the “industrialization of the internet” better known as the internet of things as part of our Safety & Security investing theme. These attacks and others like them suggest continued spending on cyber security from a widening group of companies that bode well for companies like Fortinet (FTNT), Palo Alto Networks (PAWN), Cisco Systems (CSCO) and other similar companies.

Symantec, a major cyber firm, says in a new report that hackers codenamed “Dragonfly” have been able to infiltrate energy sector computer networks with malicious emails, so-called “watering hole” attacks, and “Trojanized” software. The hackers – who according to Symantec have ties to the Russian government – may have compromised more than a dozen American companies in recent months.

“Dragonfly” has been linked to the Russian government by some cyber security experts but Symantec has not publicly blamed Russia.

The Department of Homeland Security (DHS) told CBS News that they are looking into the matter.

Source: Major cyber firm says hackers are targeting U.S. energy – CBS News