MEMBER NEWS: How Internet Service Providers Should Handle Cybersecurity?
Author: Kestas Malakauskas, CUJO
CUJO will be joining us as a Bronze Sponsor at TC3 Summit 1-2 November 2017. Register here to meet with them.
In June, we asked our readers what, in their opinion, should protect them from hackers. The internet service providers (ISP) were on the top of most people’s minds. It’s clear that people expect to feel safe at their smart homes. But are Internet service providers ready to provide excellent levels of security?
Equifax, Yahoo, and CCleaner didn’t plan for a massive loss of user data as well as reputation and revenue. But hackers are using evolving and sophisticated methods to steal user information and other valuable assets.
Looking at the recent massive data breaches, it’s clear that the usual cybersecurity practices need to be reviewed. Again.
There are many best practices every company has to follow in order to keep proper cybersecurity hygiene. But I’d like to emphasize 3 fundamental principles of cyber security for business, and it’s crucial to make sure all of them are properly implemented.
Situational Awareness: educate and be proactive
To minimize human error, proper cybersecurity hygiene needs to be carried out. It should be driven by a company-wide awareness program. Majority of most significant breaches start with opportunistic or targeted social engineering campaigns.
This attack vector is probably the most common because of the high success rate criminals get out of it.
C-level management needs to support and drive enterprise-wide awareness programs, encourage proactive learning activities, spread the word and invest in training and technologies which enable all security teams to work in orchestration, share information, align processes to remove silos from existing workflows. All of that points towards the common goal – making your own environment a safer place to work at.
Intelligence Driven Defense: know your assets
If everyone will be just putting out fires without getting to the root cause or seeing the big picture, we won’t be able to understand threat landscape common to our own environment.
There is no way a company will be able to protect all of their assets at all the times. Prioritization and intelligence should drive the cybersecurity programs. Companies at all times need to know where their crown jewels (most valuable environments) are, how they should be protected and who might be attacking them.
There are many different threat actors out there with a variety of motives: to get into your environment and steal or destruct your data, blackmail you or request ransom, compromise your brand etc. Not all of them are driven by money.
Your intelligence teams need to make sure they understand the market in which you operate, identify the specifics of threat landscape common to the niche you work in and provide your cyber operations team with actionable intelligence which those 1st line cyber warriors can use on the field while protecting your company assets from all those identified threats.
Information Sharing: different verticals, same goal
Criminals are successful because they share information on the dark web and hacking forums. And they usually do that much faster than defenders can share seen attack patterns among global security communities. Hackers share/sell new tools and malware samples as well as access data and stolen credentials.
The criminal community is developing and operating much faster than your security teams or law enforcement agencies can defend against it. In order for security teams to keep at the same pace, we need to adopt and integrate smooth information sharing processes between private and government sectors.
There are still lots of silos between private and government sectors. We need to remove those silos and start to communicate: share what we see, create and enable workflows which would allow sharing actionable intelligence including seen attack patterns and indicators in almost real time.
By enabling smooth information flow, we would start working in different verticals for the same goal – defend our assets, employees, and brands from adverse malicious activity in cyberspace.
What else could be done by internet service providers in order to protect home users?
Contact us and we’ll tell all about it. Read more about CUJO AI security platform here.