The House Oversight and Reform Committee yesterday released a staff memo on investigations into ransomware attacks including the Colonial Pipeline attack and JBS meat producer. The memo, a result of a committee panel investigation, conclude that “small lapses” contributed to successful ransomware attacks, including lacking point of contacts with the federal government and pressures to pay attackers to restore systems.
Saumitra Das, CTO and Cofounder of Blue Hexagon had this to say:
Many security attacks happen because of small lapses. However, requiring organizations to contact the federal government for response and not having an in-house IR is not going to scale. Ransomware attacks are no longer low and slow but more smash and grab. They happen quickly on a long weekend or before an important deadline. What is needed is not to focus only on hygiene and hardening, which everyone keeps talking about but never gets done. Small lapses will happen.”
Organizations must invest in detection and response with AI to find these attacks in the earlier stages. You want to kill an infection before it gets too deep into your network.
Organizations need to be vigilant to make sure that they aren’t the next victim, and have a plan to deal with an attack should the worst happen.
UPDATE: Eddy Bobritsky, CEO of Minerva Labs also provided this commentary:
Small lapses will always happen when people are involved. New methods of attacks will be built, and new breaches will be found. The threat actors are always few steps ahead. After all these recent cases, there is no doubt the business and federal community should adopt a preemptive approach when fighting ransomware attacks. Prevention tools should be deployed at every organization, from enterprise to small business.
The understanding that evasive techniques can’t be detected until damage already begins should be clear, and the chasing attacks should stop. These types of attacks should and can be prevented before they occur.
Like this:
Like Loading...
Related
This entry was posted on November 17, 2021 at 8:45 am and is filed under Commentary with tags Security. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
“Small lapses” Lead To Ransomware Attacks Says House Oversight & Reform Committee
The House Oversight and Reform Committee yesterday released a staff memo on investigations into ransomware attacks including the Colonial Pipeline attack and JBS meat producer. The memo, a result of a committee panel investigation, conclude that “small lapses” contributed to successful ransomware attacks, including lacking point of contacts with the federal government and pressures to pay attackers to restore systems.
Saumitra Das, CTO and Cofounder of Blue Hexagon had this to say:
Many security attacks happen because of small lapses. However, requiring organizations to contact the federal government for response and not having an in-house IR is not going to scale. Ransomware attacks are no longer low and slow but more smash and grab. They happen quickly on a long weekend or before an important deadline. What is needed is not to focus only on hygiene and hardening, which everyone keeps talking about but never gets done. Small lapses will happen.”
Organizations must invest in detection and response with AI to find these attacks in the earlier stages. You want to kill an infection before it gets too deep into your network.
Organizations need to be vigilant to make sure that they aren’t the next victim, and have a plan to deal with an attack should the worst happen.
UPDATE: Eddy Bobritsky, CEO of Minerva Labs also provided this commentary:
Small lapses will always happen when people are involved. New methods of attacks will be built, and new breaches will be found. The threat actors are always few steps ahead. After all these recent cases, there is no doubt the business and federal community should adopt a preemptive approach when fighting ransomware attacks. Prevention tools should be deployed at every organization, from enterprise to small business.
The understanding that evasive techniques can’t be detected until damage already begins should be clear, and the chasing attacks should stop. These types of attacks should and can be prevented before they occur.
Share this:
Like this:
Related
This entry was posted on November 17, 2021 at 8:45 am and is filed under Commentary with tags Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.