Categories

(111)
(64)
(165)
(21)

Cyber threats 2017 and ways to secure against them

20.06.2017
Cyber threats 2017 and ways to secure against them
Author:

Cybersecurity is important and a great concern for every business represented on the web. Actually, cybersecurity is important for any user who enters the Internet, so for serious companies it’s especially vital. That’s why we have previously written about the main things you should know about Drupal website security, as well as tips on how you can ensure it. In today’s article we will mention cyber threats which are currently very widespread. We will also suggest tips to you to help you be prepared for those threats and avoid cyber attacks.

The biggest cybersecurity threats of 2017

Ransomware

Ransomware is the act of blocking victim's access to their data or threatening to make secret information public or deleted until a demanded ransom is paid. 2017 SonicWall Annual Threat Report showed that ransomware attacks had recently bounced from 3.2 million in 2014 and 3.8 million in 2015 to 638 million in 2016.

There are various ways criminals can penetrate the software. It can be RaaS (Ransomware-as-a-Service), bespoke ransomware from the dark web, or “locky.” The last one looks like a Word document that asks user to enable macros. After enabling, Locky scrambles all the victim’s files, including Office files, images, videos and so on.

Phishing

Phishing is an attempt to obtain passwords, usernames, credit card details and other sensitive info. According to Wombat 2017 State of the Fish, 44% of organizations have experienced phishing through SMS messaging (smishing) and phone calls (vishing). Hackers also can send fraudulent emails from trusted accounts or from individual staff members.

61% reported experiencing spear phishing, which is more targeted attack type. Spear phishers gather information on key people among company staff in order to create more personalized, and thus more convincing, e-mails to inspire target users give confidential data voluntarily.

Malvertising

Malvertising or malicious advertising is a way to spread malware through online ads. Modern techniques allow it to bypass ad-blocking apps and display ads without the user’s permission to make arbitrary code become executed. RiskIQ 2016 Malvertising Report showed there has been a 132.6% increase in total malvertisements in 2016 compared to 2015.

7 tips to prevent hacker attacks and enhance web security:

  1. Create reliable backups and backup your data to a secure location every day, or even every hour. It’s better to use a few backups or a few backup systems. This will help your data recover even when you do get hacked.
  2. Switch from HTTP to HTTPS with site-wide SSL (Secure Sockets Layer) or TLS (Transport Layer Security). This protocol was designed to secure communication and save private data exchanged between a user and a server.
  3. Update to the latest version Keeping your website up to date means improved functional features which provide you with better security.
  4. Do a website security audit to check for vulnerabilities regularly, and patch detected website weaknesses.
  5. Monitor your uptime and downtime in order to be able to react as fast as possible in cases when your site is down.
  6. Secure your company’s social media accounts to avoid them being compromised.
  7. Don’t download unverified files, documents, attachments or apps. Don’t click on unknown links, ads, sites and so on.

We hope this article was useful for you. If you have any questions, feel free to contact our IT-specialists.

1 vote, Rating: 5

Read also

1

Now DevOps is in the mainstream, occupying headlines and attracting all the attention. But a lot of people still don’t know what this buzz word mean. Is it a movement or a new job title? A new...

2

After a glimpse at combining Drupal with AngularJS, we are now moving on to another member of...

3

The opportunities to get data from websites in a convenient way, and in the desired format, is an interesting topic that deserves a series of articles. Last time, we discussed...

4

As you may remember from the fairy-tales, knowing the secret words helps you to move even the mountains and open treasure caves. The words “Open, Sesame” work somewhat similarly to modern website...

5

Every business is interested in affecting, convincing, encouraging, engaging and converting more customers. Previously, we have offered you...

Need a quote? Let's discuss the project

Are you looking for someone to help you with your Drupal Web Development needs? Let’s get in touch and discuss the requirements of your project. We would love to hear from you.

Join the people who have already subscribed!

Want to be aware of important and interesting things happening? We will inform you about new blog posts on Drupal development, design, QA testing and more, as well news about Drupal events.

No charge. Unsubscribe anytime