Archive for June, 2021

Technology In Cybersecurity

Cybercriminals are using multiple techniques to infiltrate targeted networks. Some of the most common methods used by cybercriminals are:

  • Man-in-the-Middle attacks – To eavesdrop on data conversations across different networks
  • Spying software – To track fingerprint movements on touch screens
  • Memory scraping malware on point-of-sale systems
  • Bespoke attacks that steal specific data

In order to manage these scenarios, firewalls, anti-virus measures and tool-based security approaches are no longer sufficient.

New age cybercrime problems require new age solutions. Some technologies that can help organizations in formulating an effective cybersecurity strategy are:

Context-Aware Behavioral Analytics

  • Problem: Over-whelming number of meaningless security alerts.
  • Solution: Sophisticated context-aware behavioral analytics helps in monitoring and identifying suspicious behavior. Examples of behavioral analytics approach include Bioprinting, Mobile Location Tracking, Behavioral Profiles, Third-Party Big Data, and External Threat Intelligence. The trick is to use data from all these techniques to arrive at informative decision.

Next Generation Breach Detection

  • Problem: Cyber criminals are using “zero day” exploits that allow them to establish a strong base and mine data in networks and systems for a long time (for example, target’s stolen credit card details can be used over a long duration).
  • Solution: A combination of technologies such as Machine Learning and Behavioral Analytics can be used to detect breaches and trace them to the source.

The next generation breach detection focuses on what will happen once the criminal is inside the system. Breach detection operates by identifying strange changes in big data to determine the presence of a criminal inside the network.

Virtual Dispersive Networking (VDN)

  • Problem: MiM attacks are cracking traditional encryption techniques to target intermediate nodes.
  • Solution: Employ Virtual Dispersive Networking to split a message into different parts, encrypt each part separately, and then route these encrypted parts over servers, computers and mobile phones. This helps in randomizing the paths the message will take while taking into account network issues such as congestion. This makes it easier to avoid cyber criminals lurking around to eavesdrop on transmitted data.

Smart Grid Technologies

  • Problem: Smart meters & field devices have increased the vulnerability of critical infrastructure.
  • Solution: Employing a range of new security measures and standards can help in tackling this problem. For example, some tools and strategies that can be implemented to protect energy sector include Padlock, Watchdog, SIEGate, NetApt, etc.

We, at Centex Technologies, assist our clients in formulating effective cybersecurity strategies. To know more about latest in cybersecurity technology, contact Centex Technologies at (254) 213 – 4740.

, , , ,

No Comments

Cyber Terms You Should Know

PDF Version:  Cyber-Terms-You-Should-Know

, ,

No Comments

Understanding Insider Threats To Cybersecurity

An insider threat is a type of malicious activity against an organization that comes from users having authorized access to the network, databases, or applications of the organization. These users can be current employees, former employees, or third parties like partners, contractors, temporary workers, etc. This type of threats also includes users who unintentionally cause harm to the business.

Understanding insider threats is highly important because the frequency of insider threats has increased. As per “2020 Cost of Insider Threats: Global Report”, 60% of organizations had more than 30 insider-related threats per year and number of insider threats has increased by 47% in two years.

Types Of Insider Threats:

Malicious Insider: This type of threat includes an employee or partner who purposely tries to steal information or disrupt operations.

Negligent Insider: This is an employee who puts the organization security at risk by not following proper IT procedures. For example –

  • An employee who left his computer logged in and unattended.
  • An administrator who did not change a default password.
  • An IT professional who did not install a security patch.

Compromised Insider: An example of a compromised insider is an employee whose computer has been infected with malware via a phishing scam or compromised downloads. The compromised machine is used by cyber criminals for stealing data, infecting other systems, etc.

How Are Employees Compromised?

Different means that can be used to compromise an insider are:

  • Phishing – The target employee is contacted via email or text to bait the individual into providing sensitive information.
  • Malware Infection – The machine is infected with malicious software to infiltrate the system and steal sensitive information or user credentials.
  • Credential Theft – Cyber criminals adopt techniques such as phishing, malware, bogus calls, and social engineering to trick users into providing username and password.
  • Pass-the-Hash – This is similar to password theft attack but relies on stealing and reusing password hash values rather than actual plain text password.

Ways To Prepare Against Insider Threats

Following steps can be used to be prepared against insider threats:

  • Employee Training
  • Coordinate IT Security & HR
  • Build A Threat Hunting Team
  • Employ User Behavioral Analytics

Centex Technologies offers assistance to businesses in ensuring security from insider threats. For more information on cybersecurity solutions for businesses, contact Centex Technologies at (254) 213 – 4740.

, ,

No Comments

Cloud Computing Security: Challenges & Solutions

Cloud computing is a vast term that covers a wide range of technology resources that are delivered “as-a-service” via an internet connection. The cloud services include software-as-a-Service (SaaS), platform-as-a-service (PaaS), and infrastructure-as-a-service (IaaS). All these cloud computing models provide a different level of service, control, and responsibility.

When switching to a cloud computing model, business organizations need to be aware of the following cloud computing challenges:

  • Potential Loss Or Theft Of Intellectual Property: IP represents competitive advantages for a business, so a loss of IP may have a tangible impact on the business’s market share. Fraudsters may use this IP information to create fake products and cheaper processes since they don’t cover research & development costs.
  • Regulatory Compliance Violations: Cloud computing service providers may not meet the strict regulatory compliance standards of the industry. It can lead to compliance violations for businesses availing these services.
  • Reduced Visibility Of Cloud Environment: Some Cloud Service Providers do not provide visibility into the cloud environment. This problem is more intense in SaaS solutions because PaaS and IaaS solutions offer more visibility. After all, in these cases, users are expected to do their configuration and management for the cloud environment.
  • Lateral Attack Spread: If defense-in-depth controls of a cloud environment are not strong enough, it can be easier for an attacker to spread from one workload on the cloud to the next. Thus, multiple databases or apps can be compromised quickly during a breach.
  • Increased Complexity Of Security: Businesses that work with multiple cloud service providers have to face several different complicated cloud security processes. For example, one CSP may require multi-factor authentication using text messages, while another CSP may use a different authentication method. It increases process complexity making it difficult for users to access various cloud solutions in their day-to-day workflows.

Solutions To Cloud Computing Security Challenges

  • Limit Cloud Computing Vendors: Different Cloud Service Providers may have different security tools and processes, making it difficult for businesses to manage their cloud solutions. This challenge can be handled by trying to limit the cloud computing vendors. Companies should try to source as many cloud solutions from a single vendor as possible.
  • Verify Your Access To Information: Visibility into the cloud environment is vital for ensuring cybersecurity. So, verify the level of access to information that Cloud Service Provider would offer. With greater visibility into the cloud environment, businesses can more easily track and control security.
  • Verify Security SLAs: Verifying security SLAs (Service Level Agreements) before signing an agreement with CSP helps to ensure that the service provider will meet the industry’s cybersecurity standards and protect the business from extended service disruptions.
  • Consult A Cybersecurity Expert: Get assistance from cybersecurity experts before switching to the cloud computing model.

We, at Centex Technologies, help businesses in switching to cloud computing. We offer IT consulting services for educating businesses on their cloud computing requirements and ensuring cybersecurity. For more details on challenges & solutions related to cloud computing security, contact Centex Technologies at (254) 213 – 4740.

, , , ,

No Comments