SecureRemoteNetworking – Azured
=
Book a call with us
ENISA estimates supply chain attacks will quadruple in 12 months.?

Supply chain attacks have been a security concern for a while. But they seem to have ramped up since early 2020…and with no sign of slowing down. The supply chain covers everything from hardware, software, storage (cloud and local), web applications to online stores, HR and management software…the possibilities for attack seem almost endless.

A report released in July 2021 by the European Union Agency for Cybsecurity (ENISA), estimates that there will have been four times as many supply chain attacks in 2021 than in 2020.

The report provides the following insights:

What will they want with MY data?

It’s easy to think “nope, that wouldn’t happen to me”. There’s even data out there that suggests that businesses have deferred looking at their cybersecurity in favour of doing something deemed “more important”. But when you think about the kind of data the cyber criminals are after – and what they could access without even really trying, it all feels a little too close…

Knowledge is power.

So here’s a list of the most common techniques used in supply chain attacks:

  1. Malware infection, i.e. spyware used to steal credentials from staff
  2. Social engineering, e.g. phishing, fake applications, typo-squatting, WiFi impersonation or convincing the supplier to do something…
  3. Brute-force attack, e.g. guessing an SSH password or guessing a web login
  4. Exploiting software vulnerability, e.e. SQL injection or buffer overflow exploit in an application
  5. Exploiting configuration vulnerability, e.g. taking advantage of a configuration problem
  6. Physical attack or modification, e.g. modify hardware or physical intrusion
  7. Open-Source Intelligence (OSINT), e.g. search online for credentials, API keys, usernames

To receive alerts for new insight and information as it happens, sign up for updates using our super-simple form.

Remote working isn’t remotely bonkers. Anymore.?

It wasn’t that long ago that co-workers would shuffle awkwardly when someone in the team announced they would be working from home to complete a piece of work. The idea of working from home was considered, by some at least, completely bonkers. But throw in a global pandemic, and things look a little different.

Research from Gartner* (2021) suggests that four out of 10 knowledge workers would consider leaving their role if employers insisted on a full-time return to the office.

Expectations among hybrid or remote workers are, quite rightly, increasing too, with 75% saying they expect more flexible working. With trust comes empowerment, right?

A refreshing shake-up call.

Whether your team is based in the office, at home (or a hybrid of the two), it looks like there’s probably no going back to full-time office-based working for most of us. But, whatever side of the metaphorical water cooler you sit on for the home v. office debate, this new attitude to the workplace provides a once in a lifetime opportunity. An opportunity to shake the workspace up; to re-think the way we do business, share information and collaborate with each other.

But remember, with great power comes great responsibility.

And that means that if you haven’t already, it’s probably a good time to make sure your team are working securely – at home, in the office and everywhere in-between. It doesn’t matter where your team spend the majority of the time, there are steps that can be taken to reduce the attack surface area of your organisation and improve it’s security posture.

Secure working, anywhere. Yes anywhere, really.

To find out more about how you can secure your team working in the cloud book in a quick call with one of our tech wizards. We’ll only take 15 minutes of your time – of course, we can’t promise to get your Secure Score up to 80 in that time…but we will already be thinking about how we can get you there.

* Gartner deliver actionable, objective insight to executives and their teams. Their expert guidance and tools enable faster, smarter decisions and stronger performance on an organisation’s most critical priorities.