Exabeam News Wrap-up – Week of September 5, 2022
We’ll be regularly bringing you a summary of Exabeam’s key topics and headlines. Stay up to date with the Exabeam News Wrap-up!
FBI Alert: Hackers Leverage Residential Proxies and Custom Configs To Execute Credential Stuffing Attacks
The FBI recently issued a warning about the use of proxies and configurations to conceal and automate credential phishing attacks. In CPO Magazine, Exabeam President Ralph Pisani shares his insights on how companies can properly mitigate leaked credentials.
He says the cybersecurity industry must rethink the use of passwords to stop attacks before they succeed. “Credentials are supposed to be the castle’s front gates – they are the new perimeter, but SOCs still fail to detect credential-based attacks,” Pisani says. He recommends “proper education, feedback loops, visibility, and effective technical capabilities” to address leaked credentials.
This week, the Los Angeles Unified School District was hit by a ransomware attack. In CyberWire, Exabeam chief security strategist Steve Moore laments the wave of attacks against under-resourced institutions that provide valuable public services. “People still have a diluted perspective on ransomware,” Moore says.
“Ransomware is a missed intrusion, period,” explains Moore. “Ransomware is on the rise because of these three reasons: 1. We never fixed the core problems (break the cycle of compromise), which allow it to occur; 2. It’s profitable for the adversary — therefore, vast incentive; 3. It detects itself, so the reported numbers increase — so anyone can ‘find’ it.”
In a Q&A interview with iTWire, Exabeam vice president of sales for APJ Gareth Cox answers a series of questions about Exabeam, gives honest insight into the current cyberthreat landscape in Australia, and advises what Australian organizations can do to thwart and counter the rising cases of cyberattacks. “With COVID, phishing attacks and attacks in general have gone up over 800%. There is an attack every eight minutes. It’s just getting worse and worse and worse,” Cox says.
He goes on to explain that the COVID-related acceleration of cloud adoption has reduced the visibility that investigators are able to achieve. “If companies aren’t adopting solutions to help their investigators automate a number of the tasks to understand what is going on in the organization, then plugging your system into cloud service providers is making it even harder,” says Cox. “You need to get full visibility of what your new network and new environment looks post-COVID. I think that if you don’t tackle that quickly you’re definitely exposed.”
Stay tuned for the next issue of the Exabeam News Wrap-up!
Using a Layered Approach to Improve Ransomware Detection and Response
Ransomware cost the world $20 billion in 2021, and it’s here to stay. Entry can come at any time through multiple attack vectors, so what can security leaders do to prevent ransomware’s destructive effects?
The Exabeam Security Research Team reviewed the characteristics of four recent ransomware attacks. This white paper details what they learned from their analysis about the optimal way to protect your organization:
- The one characteristic all four attacks shared
- The security analyst’s greatest opportunity to detect ransomware attacks
- Why security architects need to deploy approaches that understand behavior and immediately identifies tactics, techniques, and procedures (TTPs)
- Best practices for optimal ransomware protection
Exabeam News Wrap-up – Week of September 12, 2022
The 4 Steps to a Phishing Investigation
Subscribe today and we'll send our latest blog posts right to your inbox, so you can stay ahead of the cybercriminals and defend your organization.
See a world-class SIEM solution in action
Most reported breaches involved lost or stolen credentials. How can you keep pace?
Exabeam delivers SOC teams industry-leading analytics, patented anomaly detection, and Smart Timelines to help teams pinpoint the actions that lead to exploits.
Whether you need a SIEM replacement, a legacy SIEM modernization with XDR, Exabeam offers advanced, modular, and cloud-delivered TDIR.
Get a demo today!