Newstalk tech correspondent Jess Kelly speaks with with Cisco security expert Martin Lee and security and defence analyst Declan Power
Do you want to learn more about how your business could be impacted by a cybersecurity breach? Or maybe you just want to make sure your current security measures are up to scratch?
Newstalk's Tech Correspondent Jess Kelly presented an exclusive online discussion on all-things cybersecurity with Martin Lee, technical lead of security research at Cisco and security and defence analyst Declan Power.
You can watch the full video HERE
Who are Cisco?
Cisco is probably one of the biggest and most valuable companies in the world that you might never heard of. But if you have ever used the internet, you will have made a network connection powered by Cisco.
Founded in 1984, Cisco Systems is a global behemoth in the software industry best known for its networking products and security technologies. In fact, Cisco is the world’s largest security provider. Cisco is leading the way in 2021 with solutions to help stop the threat of cyberattacks across the globe. The security platforms offered provide simple and efficient solutions to every type and size of business.
The "Cisco" part of the company name is actually short for "San Francisco," where the company was founded by two Stanford computer scientists Leonard Boscak and Sandy Lerner.
Ransomware Galore: The Four You Shouldn’t Ignore
Ransomware is a term we've been hearing a lot about in recent weeks as a result of the attack on the HSE. Unfortunately, it poses a very real threat for businesses across Ireland and it isn't going away any time soon. That doesn't mean we need to live in fear of these potentially critical attacks, it just means we need to be prepared to the best of our ability.
Here are four tips to get you started ahead of our Facebook Live:
1. DNS Level Security
The Internet doesn’t work without the Domain Name System (DNS), and neither does most ransomware. Attackers need the flexibility of DNS, which is why ransomware usually doesn’t have hard-coded IP addresses. More than 90% of ransomware variants today rely on DNS to remain under the hacker’s control.
You already run DNS on your network, so why not use it to run ransomware out of your network?
With DNS-level security you can block access to known bad domains. That means the end user’s system simply can’t connect to malicious sites because DNS-level security won’t give them bad IP addresses. It’s the first line of defence against ransomware, and it’s very effective. That’s why you shouldn’t ignore DNS-level security.
Cisco Umbrella provides DNS-level security, and is a key component of the Cisco Ransomware Defence solution.
2. Email security
Who doesn’t use email? There’s almost no way to conduct business today without it. Unfortunately email is also the most common entry point for ransomware because hackers can trick people with real-looking (but fake) emails. And those emails are laced with harmful links or attachments.
You can’t stop using email, so it’s wise to embed email security into your existing email system.
Defend against ransomware by stopping spam and phishing emails. Remove malicious attachments. Users can’t click harmful links or open malicious attachments if they don’t actually get them. Mitigate email-borne ransomware risks. That’s why you shouldn’t ignore email security.
Cisco Email Security with Advanced Malware Protection (AMP) prevents ransomware from arriving through email by stripping away the threat. It’s another key part of the Cisco Ransomware Defence solution.
3. Malware protection for Endpoints
No matter how hard you try, malware will find a way to reach your users’ devices and then spread through your network. People will access bad websites, download harmful files, install fraudulent apps, blindly open attachments, and share infected memory sticks. You can’t completely prevent risky cyber behaviour, despite all of the security awareness training you’ve provided.
You need advanced malware protection for all of your endpoints -- user devices and critical servers.
Endpoints are the entry points. They are also the systems holding your critical information. You need a way to analyse and stop malware from running on those devices and hosts. That’s why you shouldn’t ignore malware protection for all of your endpoints.
Cisco Secure Endpoint delivers essential malware protection for endpoints, and is the third key technology in the layered Cisco Ransomware Defence Solution.
4. Incident response plan
You know the importance of business continuity and disaster recovery planning, which is why you’ve already bolstered your data backup program. It’s difficult and time-consuming, but it’s necessary especially considering today’s growing ransomware threat. Of course, you can’t begin restoring anything until after you’ve resolved the cause. Do you know what to do during critical moments after detecting an attack? How will you respond to quickly contain the damage? Without a solid response plan, a ransomware outbreak will cause chaos.
That’s why you shouldn't ignore the value of incident response planning.
Cisco Talos Incident Response experts can help you develop that response plan, and also deal with active cyberattacks that are causing damage now. We encourage our Incident Response Services to complement the Cisco Ransomware Defence Solution’s preventative technologies.