One major problem for IT Services in Australia and anywhere else is that cyber criminals are getting more daring and everyone with an online presence should take the necessary precautions.
Compared to a few years ago, cyber threats were not as prevalent and half as damaging as they are today.
Cyber criminals are after two things: money or just to cause destruction. Current cybercrimes include: Carbanak infiltrating banks and Envasion who are spying on multinationals as well as other scary threats.
Mikhail Nagorny, Kaspersky Head of Global Business Development service mentioned that cyber criminals are coming up with new tactics as time passes and some are now able to invade banks and transfer money from internal accounts or even “command ATMs to release money”.
During a Kaspersky Awareness programme, Nagorny said the threats are getting vicious and even able to pass through anti-virus software, thus organisations need to have a comprehensive suite of security solutions to assure safety.
According to Nagorny, “Most companies employ anti-virus but not comprehensive security solutions for system watch… an antivirus is the main part of the solution but to catch sophisticated threats, you need to monitor activity all the time”.
“We are trying to educate industry that they need to use end-point security solutions and protect their devices from intrusion. Employees need to use corporate approved USB sticks that allow encryption of data just in case they get lost or are stolen,” he continued.
According to him, “there are 325,000 new pieces of malware every day and Kaspersky Lab updates its signatures every hour to assure considerable safety from malware”.
“Customers need to educate employees on security since cyber criminals often use employees’ computers or devices to penetrate into company networks,” he added, while also stating that Kaspersky offers onsite training for companies who wish to know how to combat such malware.
Kirill Kertsenbaum, Kaspersky Head of Global Presales Management, on the other hand said, “there should be a policy on which websites can be accessible over company network to reduce probability of installing malware.”
“Companies should adopt file level encryption and full disc encryption. If a bad guy steals the hard disc, he cannot access the data. Our endpoint solutions come with integrated technologies,” he added.
Kertsenbaum also stated that Kaspersky has solutions that allow for instance automatic encryption of all files from Microsoft Windows. However, this can only be implemented if there is a strict IT security policy in place.
“Antivirus is like a strong security door but cyber criminals can enter through the windows or back doors, in this case, the weak points like employees’ mobile devices that are connected to the corporate mail,” he said.
Kertsenbaum said companies can buy the best expensive products in the market but still have vulnerabilities due to their lack of strong security policies.
He also mentioned that simple measures like remote wiping or encrypting stolen devices, avoiding jail breaking of an iPhone ups security may help in fighting threats.
Protection against such attacks not only requires an antivirus solution capable of treating infected objects, but also a firewall, anti-rootkit functionality and control over removable devices.
Other steps that can provide protection against such attacks require an Internet Security class solution capable of detecting threats as they are being downloaded from the Internet and the timely installation of all the latest updates for the browser and its plugins.
Also as mentioned by the Kaspersky reps, another key technology, developed by Kaspersky Lab, is Automatic Exploit Prevention, which is designed specifically to fight complex web threats, exploiting newly discovered vulnerabilities in software.
As people working in the IT support industry in Australia, we need to be always updated and vigilant in fighting off these threats for the safety of our clients and our businesses as well.