SECURITY

Ransomware Study: Two Thirds of Security Professionals Believe Ransomware and Terrorism Threats are Equal

Venafi | December 27, 2021

Venafi, the inventor and leading provider of machine identity management, announced the findings of a global survey of more than 1,500 IT security decision makers that reveals that almost two-thirds (60%) of security almost two-thirds (60%) believe ransomware threats should be prioritized at the same level as terrorism. These opinions echo the U.S. Department of Justice, which raised the threat level of ransomware following the Colonial Pipeline attack earlier this year. The study also found that less than one-third of respondents have implemented basic security controls that break the ransomware kill chain.

Other key findings include:

  • Over two thirds (67%) of respondents from organizations with more than 500 employees experienced a ransomware attack over the last 12 months—a figure that rises to 80% for respondents from organizations with 3,000-4,999 employees.
  • Over a third (37%) of respondents would pay the ransom but more than half of these (57%) would reverse that decision if they had to publicly report the payment, as required by the Ransomware Disclosure Act, a U.S. Senate bill that would require companies to report ransomware payments within 48 hours.
  • Despite the rising number of ransomware attacks, more than three-quarters (77%) say they are confident the tools they have in place will protect them from ransomware attacks. Australian IT decision makers have the most confidence in their tools (88%), compared with 71% in the U.S. and 70% in Germany.
  • Twenty two percent believe paying a ransom to be “morally wrong.”
  • Seventeen percent of those breached admitted they paid the ransom, with U.S. respondents paying most often (25%) and Australian companies paying least often (9%).

The fact that most IT security professionals consider terrorism and ransomware to be comparable threats tells you everything you need to know; these attacks are indiscriminate, debilitating and embarrassing. Unfortunately, our research shows that while most organizations are extremely concerned about ransomware, they also have a false sense of security about their ability to prevent these devastating attacks. Too many organizations say they rely on traditional security controls like VPNs and vulnerability scanning instead of modern security controls, like code signing that are built-in to security and development processes.”

Kevin Bocek, Vice President ecosystem and threat intelligence at Venafi

The study shows that most organizations are not using security controls that break the ransomware kill chain early in the attack cycle. Many ransomware attacks start with phishing emails that include a malicious attachment—but just 21% restrict the execution of all macros within Microsoft Office documents. Less than a fifth (18%) of companies restrict the use of PowerShell using group policy, and only 28% require all software to be digitally signed by their organization before employees are allowed to execute it.

About the research
Conducted by Sapio Research, Venafi’s survey evacuated the opinions of 1,506 IT security officers across the U.K., Australia, France, Germany, Benelux and the U.S.

About Venafi
Venafi is the cybersecurity market leader in machine identity management, securing machine-to-machine connections and communications. Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, SSH, code signing, mobile and IoT. Venafi provides global visibility of machine identities and the risks associated with them for the extended enterprise—on premises, mobile, virtual, cloud and IoT—at machine speed and scale. Venafi puts this intelligence into action with automated remediation that reduces the security and availability risks connected with weak or compromised machine identities while safeguarding the flow of information to trusted machines and preventing communication with machines that are not trusted.

With over 30 patents, Venafi delivers innovative solutions for the world's most demanding, security-conscious Global 5000 organizations and government agencies, including the top five U.S. health insurers; the top five U.S. airlines; the top four credit card issuers; three out of the top four accounting and consulting firms; four of the top five U.S. retailers; and the top four banks in each of the following countries: the U.S., the U.K., Australia and South Africa.

Spotlight

10 most essential performance metrics that businesses should consider when managing their virtual machines.

Spotlight

10 most essential performance metrics that businesses should consider when managing their virtual machines.

Related News

VIRTUAL DESKTOP TOOLS, VIRTUAL DESKTOP STRATEGIES

Netskope Revolutionizes Hybrid Work with Industry-First Unified SASE Client and Integrated Endpoint SD-WAN

prnewswire | April 12, 2023

Netskope, a leader in Secure Access Service Edge (SASE), today announced Netskope Endpoint SD-WAN, software to provide secure, optimized access to endpoint devices from anywhere. Netskope Endpoint SD-WAN will leverage the industry's first software-based unified SASE client, converging SD-WAN and Security Service Edge (SSE) capabilities so organizations can easily reduce cost and complexity, simplify connectivity, eliminate the sprawl of multiple clients and point products, and preserve network performance at any scale. Organizations today often battle poor user experience, inconsistent policy, insufficient security, and the limitations of legacy network solutions, especially cumbersome SD-WAN architecture ill-equipped for modern application management needs. Announced today as the newest addition to the Netskope Borderless SD-WAN portfolio, Netskope Endpoint SD-WAN offers workers anywhere the same level of application experience and security from their laptops or other devices as they would receive in the corporate office, without requiring any hardware. Key benefits of Endpoint SD-WAN include: AI-Driven Operations: Netskope Endpoint SD-WAN simplifies management with automated troubleshooting and insights into end-user experience with per-user AppX score, traffic flows, policy violations, and anomaly detection. High-Performance Connectivity for Critical Voice, Video, and Data Applications: Netskope Endpoint SD-WAN offers fast and reliable connections with application-aware prioritization and dynamic path selection, and automatically remediates poor performance on the last mile. Optimized User Experience: Netskope Endpoint SD-WAN eliminates single-tunnel shortcomings of existing remote access VPN by connecting with multiple public and private data centers simultaneously, enabling users to receive the most optimized experience with policy-based direct-to-app access. 360° Protection: Netskope's unified SASE client smoothly delivers SD-WAN, SWG, CASB, ZTNA, DLP, Cloud Firewall and other security services. Unified Architecture and Consistent Context-aware Policy: Netskope Borderless SD-WAN extends context-aware zero trust policy, SD-WAN, and Intelligent SSE across the entire solution portfolio, providing every remote user, device, and site with simple, secure, high-performance access to hybrid and multi-cloud environments. "We are excited for this announcement," said Mike Hogenauer, Director, Network, at FIS Global. "As a full-service managed services provider, we look for new technologies that can help our customers be faster, smarter, and more productive. Harnessing the power of context-aware SD-WAN, Netskope Endpoint SD-WAN is delivered right to user endpoints, replacing legacy VPN with all of the benefits of SD-WAN and without requiring any hardware appliance. Endpoint SD-WAN helps us provide our customers with consistent visibility, security, and network optimization, anywhere their users and devices are." "Enterprises across the globe are increasingly prioritizing unified edge networking and security strategies that enable secure, high-quality connectivity for any user or device, from anywhere to any application," said Brandon Butler, IDC Research Manager, Enterprise Networks. "The Netskope Endpoint SD-WAN brings benefits of SD-WAN and edge security tools together in an end-user and IT-friendly client format. These tools can be powerful for enterprises and service providers alike to accelerate edge networking and security transformation." "At Netskope we innovate with our customers' needs in mind, identifying the best ways to reduce risk and accelerate performance," said Parag Thakore, SVP, Borderless SD-WAN, Netskope. "Organizations using outdated SD-WAN and security technology have realized they can't patch their way to a better network, can't prioritize or secure what they can't easily discover, and shouldn't rely on cumbersome SD-WAN architecture that wasn't built for a highly distributed, cloud-centric workforce. That's why Netskope Borderless SD-WAN and our unified SASE client offer unprecedented context-aware networking and security, revolutionizing the way organizations operate." Endpoint SD-WAN is the latest addition to Netskope's award-winning SASE platform. Borderless SD-WAN shares the same context-aware Zero Trust Engine that already powers Netskope Intelligent SSE, including the industry's largest application database. The platform also leverages Netskope's Cloud Confidence Index (CCI) to assign smart defaults automatically to all applications, making SD-WAN operations extremely efficient. About Netskope Netskope, a global SASE leader, is redefining cloud, data, and network security to help organizations apply zero trust principles to protect data. Fast and easy to use, the Netskope platform provides optimized access and real-time security for people, devices, and data anywhere they go. Netskope helps customers reduce risk, accelerate performance, and get unrivaled visibility into any cloud, web, and private application activity. Thousands of customers, including more than 25 of the Fortune 100, trust Netskope and its powerful NewEdge network to address evolving threats, new risks, technology shifts, organizational and network changes, and new regulatory requirements.

Read More

VIRTUAL DESKTOP TOOLS, SERVER VIRTUALIZATION

Aryaka's Expanded SD-WAN and SASE Offerings Bring Simplicity and Affordability to Small and Medium-Sized Enterprises

prnewswire | March 24, 2023

Aryaka®, the leader in Unified SASE solutions, today announced enhanced SD-WAN and SASE offerings specifically designed to meet the needs of small to medium-sized enterprises (SMEs). With entry pricing of under $150/site, Aryaka delivers a more comprehensive set of managed service capabilities compared to alternatives including application optimization, network security, multi-cloud connectivity, and cloud-based observability and control, all supported by lifecycle services management. Aryaka's world-class managed service experience - trusted by large enterprises and Fortune 100 companies worldwide for over a decade – is now tailored to SMEs, so they no longer must choose between affordability, performance, and ease of use when adopting SD-WAN and SASE solutions. SMEs face several challenges when it comes to networking and security, including limited budgets, a lack of skilled IT resources, and a need for operational simplicity. Based on its global private backbone, Aryaka's solutions offer an industry-unique approach to networking and security that is cost-effective, resilient, and easy to manage, helping SMEs as they increasingly adopt managed services. Aryaka combines its in-house technology with a global managed service, eliminating the vendor-provider finger-pointing that can negatively impact business outcomes. "As a customer-centric business, Aryaka both understands the specific networking and security challenges that enterprises of all sizes face and actively takes steps to deliver products and services that address those challenges," said Dennis Monner, Chief Commercial Officer of Aryaka. "No matter if 10 or 10,000 users depend on Microsoft 365, Salesforce, or access workloads in a cloud to be productive and protected from security threats, one bad experience is one too many, and SMEs deserve a first-class service experience equal to large enterprises and multi-national companies while meeting their budgetary needs. Our revamped offerings bring our highly regarded agile deployment at an affordable price point to SMEs." As a channel-led company, Aryaka empowers its partner community with its award-winning Aryaka Accelerate Partner Program. "Our tailored offerings provide a great revenue opportunity for our valued partners to expand into more markets and verticals", according to Craig Patterson, Aryaka SVP of Global Channel Sales. "We value the true revenue partnership we have and look forward to helping our partners to win the trust and business of SMEs globally with our revamped SD-WAN and SASE solutions. We strongly believe this is a win-win-win for SMEs, channel partners, and us." The announcement comes on the heels of Aryaka's recent investment in its Hyperscale Point-of-Presence (PoP) footprint, the deployment of its innovative AppAssure solution across all current and new PoPs, and the enhancement of its Last Mile Services offering by supporting cellular connectivity worldwide. About Aryaka Aryaka is the leader in fully managed SD-WAN and Unified SASE solutions and the first to deliver a Zero Trust WAN based on a Unified SASE architecture. A Gartner "Voice of the Customer" leader, Aryaka meets customers where they are to help them overcome their network and security challenges with ease and an excellent customer experience. Aryaka's flexible architecture and all-in-one service are designed to modernize enterprises of any size, enabling them to defy convention and future-proof their businesses. The company's customer base is comprised of hundreds of global enterprises, including several in the Fortune 100.

Read More

VPN

OpenVPN Introduces DIVE: Device Identity Verification & Enforcement

Businesswire | May 11, 2023

OpenVPN is proud to introduce Device Identity Verification & Enforcement (DIVE) to their cloud-based solution, CloudConnexa™ (previously known as OpenVPN Cloud). This powerful new feature will take your ZTNA structure to the next level. With the rapid growth of remote and hybrid workforces, providing secure access from a mix of BYOD and corporate-owned devices has become a critical component of ZTNA. DIVE on CloudConnexa gives Administrators the power to leverage one of the key principles of ZTNA — least privilege — granting access only to the resources a user should have, exclusively from the devices they are authorized to use. "The growth of remote workforces and the rise in mobile devices accessing company networks makes providing the appropriate access based on user and device identity a critical component of ZTNA," says Francis Dinha, CEO of OpenVPN. "The DIVE feature on Cloud Connexa makes it easy for admins to verify device identities before granting network access." DIVE boosts the ZTNA essentials Cloud Connexa already provides — hiding your applications from public view, using digital certificates for users and devices — by giving Admins the option to manually add authorized device identities (UUID) as well as lock digital certificates, automatically, to specific devices. A user trying to access the network with an alternate device, even with an authorized connection profile, will be blocked. By limiting authenticated user access to trusted devices with unique device identities, DIVE minimizes your attack surface and reduces the risk of unauthorized network access when you use Cloud Connexa. "Even if an authorized always-on IoT device's connection profile is compromised,” explains Dinha, “a bad actor will be unable to connect using the stolen profile. This additional layer of security is invaluable to IoT network security.” With DIVE on Cloud Connexa, admins can finally build ZTNA using defined access control policies for users and devices. This means organizations now have more power than ever to strengthen their security posture, reduce their attack surface, and make sure their network is truly secure. About OpenVPN, Inc. Unlike older approaches that require a mixed bag of networking and security products, CloudConnexa from OpenVPN consists of a simplified, cloud-delivered service for a fraction of the cost. And if you prefer a self-hosted solution, Access Server gives you complete control over the solution’s deployment, configuration, and management.

Read More