50.7 F
Phoenix
Saturday, January 16, 2021

Asigra Forecasts Five Ransomware Challenges for 2021

Asigra has forecast five ransomware challenges expected to impact businesses in 2021, driven in part by an escalation of increasingly sophisticated ransomware attacks globally. Tasked with ensuring operational continuity, Asigra is responding to these challenges and providing guidance on maintaining productive business operations.

According to the company, organizations today have a false sense of security that their backup will be there for them when a ransomware attack occurs. Sadly, the company says, a large number of these attacks now target backup data, preventing business recoveries after such attacks.

With pandemic-influenced IT trends evolving and a shift in IT solutions and services underway, Asigra has identified the following challenges expected in 2021 and guidelines for operating successfully going forward:

Ransomware Attacks on Kubernetes Containers

The deployment of Kubernetes-based containers is growing rapidly as it allows software to run consistently between computing environments, making it highly portable, productive and ideal for digital transformation. Along with these advantages comes the generation of massive data volumes, making these new environments prime targets for new ransomware variants. Mitigating these attacks will require an industry-wide approach to ensuring the viability of these environments before, during and after such attacks.

Cyber-targeting of SaaS-Based Applications

With the increase in distributed enterprise operations and remote work environments, there will be continued adoption of SaaS-based applications. Beyond the flexible use of these applications, they offer cost, time and scalability advantages in many cases. However, they also create a new data source that is vulnerable to ransomware and must be protected.

AI-Driven Cyberattacks

Artificial intelligence and the technologies that enable it are becoming more advanced. The resulting new capabilities are allowing criminal organizations to conduct more complex and targeted attacks. To counter these more intelligent attacks, organizational defenses must also evolve.

Ransomware Payments to Become Illegal

The US government has expressed intentions to align the payment of cyber ransoms with the support of terrorist organizations and will likely make these payments illegal. It is expected that other nations will enact such laws as well, especially to defend against possible nation-state sponsored actors. Without the ability to retrieve criminally encrypted data or recover properly, ransomware attacks will become business ending events.

Managed Security Service Provider Registration with the Government

The US government will move to require MSPs/MSSPs that provide cybersecurity services to register their organizations with the government, adding more regulations as the ransomware trend continues to accelerate.

One method of addressing any of the above challenges is to ensure a viable backup copy is available to restore all data to pre-attack status. This entails a strong defense of the organization’s backup infrastructure, including access to backup software controls. Recent ransomware variants are conducting immutability subversion attacks which are possible because step-up or Deep MFA (multi-factor authentication) has not been applied to backup software. Asigra Deep MFA requires credentials for any critical function that could compromise a recovery – providing protection to secure policy settings and controls.

 

 

 

Related Articles

RunSafe Security Announces Partnership with ReleaseTEAM

RunSafe Security has announced a partnership with ReleaseTEAM, a full-service DevOps consulting firm, servicing both public and commercial clients for over 20 years. With...

Atos to Acquire In Fidem

Atos has signed an agreement to acquire In Fidem, a Canada-based specialized cybersecurity consulting firm. Consistent with its targeted acquisition strategy, the operation will expand...

Soluno Launches MyAcademy to Accelerate Growth, Customer Satisfaction

Soluno, a UCaaS Service Provider in Europe has launched MyAcademy, which it says forms an essential part of the company’s overall strategy. MyAcademy, which will...

Mosaic NetworX, Cato Networks Sign MSP Agreement

Mosaic NetworX LLC, a global network aggregator, and Cato Networks, a Secure Access Service Edge (SASE) provider, announced a partnership where Mosaic NetworX will deliver...

MetroNet, Fayetteville to Partner on Fiber Optic Network

MetroNet and the City of Fayetteville, North Carolina, will bring 100 percent fiber optic internet, television and phone services to businesses and residents in the region, marking...

CATEGORIES