Malicious cryptomining sees huge decrease according to Skybox Security Report
Today skybox security announced in its mid-year update to the 2019 Vulnerability and Threat Trends Report, that there has been a considerable drop in the number of malicious cryptominers. In 2018, malicious cryptomining was the largest problem area with regard to cybercriminals, and has since dropped down to just 15%.
Despite the decrease in malicious cryptomining, there has been a considerable increase in vulnerabilities in cloud containers by as much as 48%, according to the report, and 240% since 2017.
“Cloud technology and adoption has obviously skyrocketed, so it’s no surprise that vulnerabilities within cloud technology will increase,” said Skybox Director of Threat Intelligence Marina Kidron. “What is concerning, though, is that as these are published, the race is on for attackers to develop an exploit because launching a successful attack on a container could have much broader consequences. Compared to other technology, containers can be more numerous and quickly replicated. The attack footprint could expand rapidly, and number of victims may be extremely high.”
“Container vendors put a great deal of attention to securing their products in the first place,” said Amrit Williams, VP of products. “But that also means reporting vulnerabilities when discovered. It’s critical that customers have a way to spot those vulnerabilities even as their environment may be changing frequently.
- Luno: Cryptocurrencies and the future of financial systems in Africa
- Bitcoin soars above US$7,000 during cryptocurrency rally
- LMAX Exchange: what are the catalysts for the third wave of cryptocurrencies?
- Read the latest issue of FinTech magazine, here!
“They also need to assess those vulnerabilities’ exploitability and exposure within the hybrid network and prioritize them alongside vulnerabilities from the rest of the environment — on prem, virtual networks and other clouds.”
“More than 7,000 new vulnerabilities were discovered in the first half of 2019 — that’s still significantly more than figures we’d see for an entire year pre-2017. So organizations are likely still going to be drowning in the vulnerability flood for some time,” said Ron Davidson, Skybox CTO and VP of R&D. “Roughly a tenth of these have an exploit available and just one percent are exploited in the wild. That’s why it’s so critical to weave in threat intelligence into prioritization methods, and of course consider which vulnerable assets are exposed and unprotected by security controls.”
Ivanti Acquires RiskSense to Combat Cyber Attacks
Ivanti, an IT asset and service management software solutions provider, has acquired RiskSense, a company that works in risk-based vulnerability management and prioritisation, to drive the next evolution of patch management.
This combination of the two companies will enable organisations to ‘shrink their attack surface, prioritise vulnerabilities to remediate, and reduce their exposure to cyber threats and ransomware attacks by taking a proactive, risk-based approach to patch management’. The terms of the RiskSense transaction were not disclosed.
“Over the past two years, cyberattacks such as ransomware have crossed the line from being a nuisance to truly disrupting society,” said Srinivas Mukkamala, CEO of RiskSense. “And unpatched vulnerabilities remain one of the common points of infiltration into organisations’ ecosystems. I’m committed to the global fight against ransomware. And I truly believe that the combination of risk-based vulnerability prioritisation and automated patch intelligence can help organisations reduce their exposure and make a major impact in global cyberspace. Together, RiskSense and Ivanti will help customers drive operational efficiencies and defend against the next wave of sophisticated cyber threats, including ransomware attacks.”
Providing IT teams with the tools to tackle cyber issues
Solutions from the combined companies are expected to reduce the meantime to detect, discover, remediate, and respond to cyber threats, particularly critical vulnerabilities linked to or associated with ransomware. Together, Ivanti and RiskSense will provide security and IT teams with context and adaptive intelligence regarding what their organisation’s exposures are to vulnerabilities that are being actively exploited, including whether those vulnerabilities are tied to ransomware, and then enable them to quickly remediate those threats.
Ivanti has already integrated the RiskSense Vulnerability Intelligence and Vulnerability Risk Rating, which prioritises and quantifies adversarial risk based on factors such as threat intelligence, in-the-wild exploit trends, and security analyst validation, into Ivanti Neurons for Patch Intelligence.
“This combination will allow us to provide our customers with a holistic view of vulnerabilities and exposures, and then enable them to take fast action through Ivanti Neurons for Patch Intelligence. Customers will be able to greatly reduce their attack surface and risk of breach because of the vulnerability intelligence and the resulting remediation prioritisation based on actively trending exploits and ransomware attacks,” said Jim Schaper, Ivanti Chairman and CEO.