As many of us deck the halls, some folks are preparing for the cybersecurity holiday season - that perilous time of year rife with breaches, attacks, and threats in far greater frequency than in any other time of year.
The surge in cyber business is a welcomed challenge to any organization, with many generating the highest volume of sales per month during those few months.
The chaos and volume of the holiday season doesn't only affect retail organizations.
Partners, developers, manufacturers, supply chain, technology providers, communication providers, transportation, support systems, and more are involved in orchestrating a smooth, successful holiday shopping season.
These organizations all rely on technology to create, sell, supply, transport, and collaborate.
The impact of the season is broad and wide, with connections that span organizations.
For Threat Actors, That Translates to Opportunity The increased threat activity isn't just due to the volume of business being transacted over technology.
There is a perfect storm brewing during that season - a culmination of complexity, resource constraints, and vulnerabilities.
Slower networks can leave a company more vulnerable to denial of service attacks, and resource-constrained employees may not be able to respond to threats as quickly as they can in other seasons.
Attempted ransomware attacks, for example, are predicted to increase 70% in the months of November and December, as compared to January and February, with threat actors often assuming resource-constrained businesses will simply pay the ransom.
Phishing attacks also increase as consumers shopping on their employers' networks are more apt to click a link while looking for a better deal, to stay within their holiday budget.
According to experts, there is a 30% increase in the average number of ransomware attacks over the holiday period compared with the prior months.
Often, employees are out of the office on holiday between the months of November and January, offline, taking their expertise and acute understanding of specific systems with them.
Preparing a Defense While the threat of a cyberattack is unavoidable, what you can control is how prepared you are for a threat, how quickly you can respond, and your ability to report on that crisis in a timely fashion to regulators, customers, and partners.
Have a plan: Focus on developing a plan with concrete tasks and next steps enabling your team to mobilize swiftly and efficiently.
Practice your plan: Simply having a plan in place is insufficient.
In my experience as an incident responder, I've encountered numerous situations where organizations had plans but never practiced them, resulting in their inability to efficiently recover their businesses.
Have a place to communicate securely and confidentially: I've witnessed threat actors compromising IR engagements due to an IT personnel inadvertently emailing the CEO's business email during a live ransomware incident - thus informing the threat actor that digital forensics and incident response, legal, and insurance were involved.
The holidays may be the most wonderful time of the year, but they're also the most prevalent time for cyberattacks.
With a few simple steps you can make strides to ensure your business is prepared for whatever the next few months have in store.
This Cyber News was published on www.darkreading.com. Publication date: Fri, 08 Dec 2023 15:15:27 +0000