Ssh And Cyber Threat Intelligence: Best Practices>
Read Knowledge – admin
This blog post discusses the threats that dominated the first half of 2022, focusing on SSH and Cyber Threat Intelligence best practices.
It highlights the challenges faced by organizations, such as fragmented workforces and an expanded digital attack surface, which cybercriminals exploit to launch sophisticated attacks.
The post mentions Trend Micro’s detection and blocking of over 63 billion threats during that period.
It also mentions the resurgence of the Emotet botnet and the deployment of Conti and other ransomware families on Emotet-compromised computers.
The rise of Ransomware-as-a-Service (RaaS) programs and the detection of Lockbit, Conti, and Blackgate ransomware families are highlighted.
The post emphasizes the importance of securing cloud-based containers, as they are targeted by malicious actors due to misconfigurations.
It mentions a survey on misconfigurations in containers and Kubernetes deployments, as well as the exploitation of publicly exposed Kubernetes clusters.
The post also discusses the stealing of cryptocurrency mining capabilities and identifies different threat actor groups in the cryptocurrency mining space.
Lastly, it emphasizes the need for organizations to have a robust and integrated cybersecurity strategy to protect against targeted attacks in the context of a growing digital attack surface.
The mentioned interim cybersecurity report, “Protecting the Expanding Attack Surface,” provides more insights and best practices.
Link: https://ssh.readknowledge.com/ssh-and-cyber-threat-intelligence-best-practices