NTT Ltd. released its GTIC Monthly Threat Report for the month of August 2020. The Global Threat Intelligence Center (GTIC) protects, informs, and educates NTT Group clients through threat research, vulnerability research, intelligence fusion and analytics.
With reduced IT spend being predicted as an outcome of COVID-19, the adage ‘architect twice, implement once’ is going to become even more imperative. Threat actors are attacking applications and are looking for flaws in the applications available through their web presence. Vulnerabilities in off-the-shelf applications, custom-built applications, databases, support infrastructure, as well as development and management tools, allow cyber criminals to gain direct and public access to databases to churn sensitive data.
Key findings:
Considerations:
Consolidating cyber
As businesses continue to transform within information security, the need for the security industry to move away from ‘best of breed’ technology towards a unified strategic approach that prioritizes partnering with vendors who provide more effective coverage of security controls. People, processes, and technology; the three key pillars of information security must be considered across each to maintain an acceptable level of cyber maturity. The three reasons to consider a consolidation of vendors for cybersecurity solutions are:
Secure by design: An application perspective
Many organizations rely on custom applications for key aspects of their business. Unfortunately, designing, building and maintaining a secure application is not an easy task. Attackers are aware of this: our 2020 Global Threat Intelligence Report identified that nearly 55% of attacks we detected were application-specific or web-application attacks. A secure design is thus, critical for public-facing as well as internal applications.