Bees are buzzing this time of year in gardens and yards. There’s also a new buzzword and acronym floating around the Cybersecurity world, Endpoint Detection & Response (EDR).
We’ll circle back around to EDR in minute.
Artificial Intelligence (AI- another acronym) is starting to expand from machine learning to more intuitive responses. The issue is that AI is not only being used for good purposes, it is being used to bad purposes as well. Bad actors are starting to use it to probe weaknesses in computer networks and break into computers. Once in, hackers will scrape personal or business data, encrypt it, or resell it, holding the companies’ data for ransom.
To see if your personal or business data has been compromised, go to HaveIBeenPawned.com and put in your emails you use. If the banner at the bottom turns green, your email has not been compromised. If it turns red, scroll down to see how many breaches there have been and the types of your data that has been compromised.
These are the types of client data you want to protect with your business. Businesses that are not proactive in protecting their clients will be responsible if the data leaks. It could very well destroy your reputation and business.
Hackers and their illicit companies have become mainstream and are a serious threat. Did you know that hacking attempts have increased by 314% over the past year? Intrusion and exploitation is fast becoming the bigger threat than even ransomware. Hackers are getting on systems and on average, not being detected for 206 days. During that time the “kernel” is becoming embedded in the backups and so becomes persistent. Recovering from a backup solution may work short-term, but the kernel is still there to be reactivated leaving your company open for another exploit.
It is no longer a case of someone in their mother’s basement trying to break into the company. It is groups of malicious people including nation-states that are doing the hacking. It is artificial intelligence (AI). It is automated attacks that cannot be stopped without active involvement and cost.
Small businesses are the low-hanging fruit. They are being exploited because they have a mindset where they think “it won’t happen to me, because I’m too small”. Or, “I don’t have anything stored that would be of use to a hacker, so they won’t bother me.” Hackers know that. They know most small business do not put their resources into proactively defending their companies.
Sure on and off-site managed backups are necessary. Managed firewalls are necessary. Managed anti-virus is necessary. Those are required to keep businesses safe from physical threats like fire, flooding, rogue employees and lower forms of malware. However, these days it is no longer enough.
Now Back to EDR.
EDR is defined as is an endpoint security solution that continuously monitors end-user devices to detect and respond to cyber threats like ransomware and malware.
Security as a service is now necessary. These security companies are pro-active in searching for exploits in your systems. Using algorithms, artificial intelligence, backed up by good (White hat) hackers, these companies provide another level of protection. This type of protection also provides the necessary documentation for cyber insurance, should it be purchased. Security as a service basically is proactive protection for your company and a primary method of meeting cyber insurance requirements.
If you don’t have these, cyber insurance is a waste of money, because the companies may not pay out if you are not actively engaged in protecting your company.
Nay and Associates, LLC provides security as a service as an add-on to their managed services. We’ve looked and found some cost-effective options that will work to protect our clients. The result is an agent that can be placed on each client’s computer that can identify, isolate and remove rogue programs, backed up by security experts.
Unlike some of the more common security software you see advertised, the managed services mentioned above is more likely to catch and remediate attempts that could potentially damage or compromise your computer systems. Managed security services will identify external hacking and also catch things already present on your computer systems, such as embedded “kernels”.
All the best and stay well,