This article is part of Panther’s new Future of Cyber Attacks Series which features interviews with cyber security experts, thought leaders, and practitioners with a goal of better understanding what organizations can do to prepare themselves for the future of cyber attacks.
The following is an interview we recently had with Eslam Reda, Penetration Tester, SECLINQ.
How have cyber attacks evolved over the past 12 months?
There have been a lot of changes in the cybersecurity space because of the rise of ransomware attacks and 0-day exploits. A lot of the details on how to use these exploits get published on the dark web and malicious forums, which provides opportunities for hackers to use these exploits against other companies. The move to cloud environments also makes everything reachable with one configuration mistake.
It has been a successful 12 months for hackers targeting the human element with phishing and other attacks. Hackers target situations around the world such as the Covid-19 situation and working remotely.
What lessons can be learned from the biggest cyber attacks in recent history?
Do not trust the hackers, if you pay the ransom there is no guarantee that you will get your data back. Take sufficient measures to secure your data, backup your data, and have a business continuity plan in place. Recently, it has been a trend that hackers target the backups of your data before taking over the main data for ransom, then the controls you use to protect your data are used against you.
The recent attacks on large companies like T-mobile or Twitch show that it is not enough to have a cybersecurity plan in place. You have to take further steps to hire enough professionals to implement these plans and simulate hackers by doing penetration testing and red teaming engagements.
What will cyber attacks look like in the future?
From my point of view, as I have been on both sides hacking systems and also protecting them. It is an everyday evolving field, there is no guarantee that the attacks used today will be effective tomorrow. But the attack surface itself is increasing to include IoT, Public cloud, and working from home structure. A lot of companies are moving towards AI to create security products which is a good step, but I don’t see it replacing the human skilled ethical hackers any time soon.
What are three pieces of advice for organizations looking to get ahead of the cyber attacks of the future?
- Penetration testing, hacking simulations are not an option. It is a mandatory exercise to secure your business.
- Create a disaster recovery site and secure your backups with the same security controls you have applied on the main site. It is a target too.
- Even though we can’t predict the future, we can prepare for it. Consider new security technologies and a lot of them are open-source.