Cybercriminals strike understaffed organizations on weekends and holidays – Cybersecurity Dive




Cybercriminals don’t take breaks when it’s convenient to defenders. While many professionals are working for the weekend, threat actors can exploit time off as a weakness and strike when organizations are understaffed and significantly less prepared to detect and respond to attacks.
“Ransomware actors tend to strike on holidays and weekends because they know companies’ human defenses often aren’t as robust at those times,” Lior Div, Cybereason CEO and co-founder, said in a statement. “It allows them to evade detection, do more damage and steal more data as security teams scramble to mobilize a response.”
Nearly half of all respondents said their organizations are staffed at levels below 33% on holidays and weekends.
“The overall success cybercriminals have attacking on holidays and weekends leads to them more aggressively targeting companies during these times as a way to further fuel their criminal empires,” Div said.
Organizations in the education sector were the slowest to respond and most likely to suffer financial losses from a holiday or weekend attack. More than half of cybersecurity professionals in education said it took longer to assess the scope of an attack and 2 in 5 said it took longer to respond.
In the most high-profile ransomware attack in education this year, the Los Angeles Unified School District discovered a cyberattack in progress at 10:30 p.m. on the Saturday leading into Labor Day
Vice Society, the prolific ransomware group behind the attack, released about 250,000 files of stolen data on the dark web, some containing Social Security numbers, contracts, W-9 tax forms, invoices and passports. 
Ransomware was cited as the predominant cyberthreat in Cybereason’s report. Half of all respondents across all industries and geographies said their security operation centers are most frequently trying to resolve ransomware attacks.
Cybereason commissioned Censuswide to survey more than 1,200 cybersecurity professionals between September and October 2022. Each of the respondents work at medium to large businesses that experienced one or more ransomware attacks during a holiday or weekend in the previous year.
Get the free daily newsletter read by industry experts
Companies trying to fill cybersecurity roles need to stop looking for unicorns and expand their search to qualified, but often overlooked, job candidates.  
CISOs are up against talent shortages and retention concerns amid an increasingly sophisticated threat landscape.
Subscribe to Cybersecurity Dive for top news, trends & analysis
Get the free daily newsletter read by industry experts
Companies trying to fill cybersecurity roles need to stop looking for unicorns and expand their search to qualified, but often overlooked, job candidates.  
CISOs are up against talent shortages and retention concerns amid an increasingly sophisticated threat landscape.
The free newsletter covering the top industry headlines

source


CyberTelugu

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top

Adblock Detected

Please consider supporting us by disabling your ad blocker

Refresh Page