Report offers guidance for enterprises to create a robust security posture
Rolling Meadows, IL, USA (7 February 2017) — Extortion, dark cloud use and appliance attacks are among the top areas of increased cybercrime activity reported in 2016 and are expected to continue in the coming years, according to a new report from global business technology and information security association ISACA.
Detailed in “Cybercrime: Defending Your Enterprise,” the Internet’s increased convenience and interconnectivity is encouraging enterprises to move more operations to the digital realm, which also providing more opportunities for cybercriminals.
Common cybercrime methodologies, such as social engineering, continue to be in use. But the adoption of new tactics is occurring as the Internet continues to evolve. The top cybercrime activities are expected to come from:
- Extortion – Holding enterprise data for ransom
- Dark cloud use – Leveraging cloud services for cybercrime
- Appliance attacks – Targeting the increasing surfaces of the Internet of Things (IoT).
In addition to highlighting key areas of risk, the report lists several strategies enterprises can utilize to prevent cyberextortion, protect the cloud and stop assaults on devices connected to the Internet.
“This new research paper in the ISACA CSX series provides clear guidance that can help organizations mitigate exposure to a variety of trending cybercriminal tactics,” said Eddie Schwartz, board director of ISACA and chair of ISACA’s Cybersecurity Advisory Council. “Criminals continue to innovate rapidly and introduce new types of fraud all the time, so it’s critical for the good guys to be agile and to continuously implement new strategies to head off cybercrime.”
Juniper Research estimates the cost of global cybercrime will grow to an annual $2.1 trillion (US) by 2019, exceeding other criminal endeavors, such as the drug trade. Based on the growth of online criminal activities, Ernst and Young has declared cybercrime the greatest threat to enterprise survival today.
ISACA (isaca.org) helps professionals around the globe realize the positive potential of technology in an evolving digital world. By offering industry-leading knowledge, standards, credentialing and education, ISACA enables professionals to apply technology in ways that instill confidence, address threats, drive innovation and create positive momentum for their organizations. Established in 1969, ISACA is a global association with more than 140,000 members and certification holders in 187 countries. ISACA is the creator of the COBIT framework, which helps organizations effectively govern and manage their information and technology. Through its Cybersecurity Nexus (CSX), ISACA helps organizations develop skilled cyber workforces and enables individuals to grow and advance their cyber careers.