Security Corner

It’s often said that nothing is more powerful than an idea whose time has come. That time might be here for attack surface management (ASM), the subject of the 2022 Gartner® Innovation Insight for Attack Surface Management report.

One of the greatest takeaways from the war in Ukraine is the unprecedented reliance on commercial technology shaping the conflict. This, combined with the global interconnectedness and interdependence of today’s technology, expands the attack surface well beyond the traditionally geographically confined aspects of war. I

In just a few months, the COVID-19 pandemic sped up digital transformation by years. In 2019, Statista showed that a little less than 1.2 trillion U.S. dollars were spent on digital transformation efforts – by 2025, global digital transformation spending is forecast to reach 2.8 trillion U.S. dollars.  

“Digital trust” was the big theme at the 2022 ISACA North America Conference – but what does that mean?

According to the 2021 Gartner® Market Guide for Security Threat Intelligence Products and Services, “the threat intelligence market consists of multiple solutions and services to help organizations understand and prepare for their own unique threat landscape, to bolster prevention and predication capabilities, as well as to help improve other operations efforts like incident response, threat hunting, and vulnerability management.”

LookingGlass has been monitoring the financial sector for a decade. Given the increasing geopolitical tensions and growing threat of cyberattacks on U.S. critical infrastructure, we produced a cyber profile for the sector. This profile highlights the most prevalent vulnerabilities and security exposures across the U.S. and which ones have been used by Russian actors in the past.

The energy sector is especially vulnerable to cyberattacks. Hackers associated with Russian internet addresses have been scanning the networks of five U.S. energy companies in a possible prelude to hacking attempts, the FBI said in a March 18 advisory to U.S. businesses. The FBI’s notice was days before The White House publicly warned that Kremlin-linked hackers could target U.S. critical infrastructure as the Russian military continues to suffer heavy losses.

Security and risk management leaders have more information at their disposal than ever before. However, the sheer amount of data is not helping to solve problems. They are struggling to know what threats they really need to be concerned about. It’s an issue that can’t be ignored. In 2021, corporate cyber-attacks rose by 50 percent, and government and military sector attacks rose by 47 percent.

Once deemed a luxury or rarely used by businesses while crafting their security operations, “TI products and services deliver knowledge, information, and data about cybersecurity threats and other cybersecurity-related issues,” making them essential to thoroughly protect your business.