Feras Tappuni, CEO
Cybercrime is a growing issue. Each week new threats emerge. From state actors, vicious threats across geolocations, to domestic actors and more, there are no limits.
“What we are seeing from cyber units, which are acting in an illegal manner, is their capacity and ability to pivot very quickly on day to day activities. Be it COVID-19 related, or new vulnerabilities, there is no limit to ransoms. And no one is off limits. From governmental, financial, charities, old people, children, everyone is a potential target,” says Feras Tappuni, CEO, SecurityHQ.
New vulnerabilities are everywhere.
An example from the last six weeks alone, is of a government entity in which SecurityHQ found a vulnerability within an application. Here, certain illicit countries, that you would not expect coming remotely close to the application, were dialling into said application, and were in the process of extracting not only personal user information, but actual network information. Possibly with the intention to use that information to deliver a payload or ransomware.
Despite the gravity of the situation, Tappuni goes on to argue that “The concerning news was not so much the discovery of the vulnerability itself, but rather the fact that the majority of governments use that same application. Left undetected, the knock-on effects of that application would have been colossal.”
SecurityHQ provides an enterprise-grade, global, 24/7 monitoring service, with 200+ analysts available on demand
That is the risk of the threats we handle, Tappuni continues. “When we come across these elements, it’s a very serious thing, and obviously the client takes it very seriously also. But in cybersecurity you are, predominantly, on your own. We are talking to the vendor, we are talking to the client, to get any understanding of what the threat is, but there is no help, there is no guidebook for new threats. Which is why it takes skilled analysts and experts to identify and cross reference threats multiple times, look at the methods, raise the suspicion, alert the customer, and start immediate mitigation processes.”
Security can be extremely repetitive at times, but that is what it takes. Which is why you need the best people, processes, and technology to make these threats visible, and defend against them accurately and rapidly.
In response, SecurityHQ provides an enterprise-grade, global, 24/7 monitoring service, with 200+ analysts available on demand. That way, if you use Managed Detection & Response (MDR), Endpoint Detection & Response (EDR), Managed Firewall, Digital Risk and Threat Monitoring, or something else, every service comes with 24/7 protection, in order to keep up with and fight the cyber battle.
“Currently we operate out of six security operating centres around the world to ensure a global view of threats. Our aim in the next two years is to go from six to ten. We already have identified SOC’s that we would like to open in Australia as well as in the US, and we want to bring our range of products and our proven commercial delivery of these products. We have been doing this for many years, and we know how to meet the compliance requirements of each of those countries. It’s very exciting, but also crucial, as a new threat landscape develops across the globe”, concludes Tappuni.