sb-eu logo
Story image

Blueliv makes plea for cybercrime intelligence sharing across industries

08 Mar 2018

​Now is more important than ever for businesses and governments to be sharing intelligence on cybersecurity and collaborating cross-industry.

That’s according to Blueliv, provider of enterprise-class cyberthreat intelligence solutions. The company has just released its Annual Cyberthreat Report that combines actionable intelligence from Threat Compass with expert insight from its own analyst team.

The report found that malware variants previously focused on the financial sector are now successfully attacking non-banking targets too, concluding that a higher level of collaboration and intelligence-sharing between industries is ever-more crucial in the fight against cybercrime.

Specifically, the report found that:

  • Almost 2 billion exposed credentials were detected
  • There was a 140 percent increase in TOR domains used as crimerservers from 2016-2017
  • 2 million stolen credit card details were found, 40 percent of which were from four major American banks
  • Malware has become significantly more complex with new obfuscation and lateral movement techniques
  • Variants of the most commonly used webinject, Trickbot, were detected

Blueliv CTO Ramon Vicens says as the ‘public profile’ of cybercrime continues to soar, enterprises are encouraged to look at how they keep their business and customers safe by sharing intelligence, best practice and defence measures.

“When cyberattacks in one industry make headlines, organisations in other industries start to take notice. And when other organisations take notice and start taking proactive steps to strengthen their security posture, that is good news for all of us: The fight against cybercrime is a collaborative effort,” says Vicens.

The annual report from Blueliv reflects on notable cybersecurity incidents in 2017 (of which there were many) to make informed predictions about the current state of play and identify areas that require immediate attention in the coming months. Trends identified in the report include:

  • Attacks are discriminating much less by sector than in previous years. Any company holding PII is a target.
  • Corporate intrusion in one industry will have a positive effect on other industries in terms of strengthening security posture.
  • GDPR will mark a fundamental shift for organisations, but also for the bad guys. Even the threat of a reported data breach will become increasingly lucrative.
  • AI-powered attacks are increasing in scope and complexity, reflecting advances in AI-powered cyberdefense.
  • Self-spreading ransomware which grabbed the headlines in 2017 will be overtaken by cryptojacking attacks.

The full report includes further analysis and insights, but overall, Blueliv asserts that unless the ‘good guys’ start to share intelligence and collaborate (regardless of industry) then there could be severe implications not only for businesses but also the world at large.

Story image
Check Point acquires Odo Security to bolster remote security offering
The deal will integrate Odo’s remote access software with Check Point’s Inifinity architecture, bolstering the latter company’s remote security capabilities in a time where working and learning from home has become the norm, and looks to largely remain that way in the near future.More
Story image
Phishing scam imitates SharePoint & OneNote for nefarious clicks
Sophos researchers say that the attackers take a slightly different approach to the standard ‘fake login’ phishing email.More
Story image
Proofpoint and CyberArk extend partnership to further safeguard high-risk users
“Our CyberArk partnership extension provides security teams with increased detection and enhanced adaptive controls to help prevent today’s most severe threats."More
Story image
CrowdStrike integrates with ServiceNow program to bolster incident response
As part of the move, users can now integrate device data from the CrowdStrike Falcon platform into their incident response process, allowing for the improvement of both the security and IT operation outcomes.More
Story image
Ripple20 threat could affect 35% of all IT environments – ExtraHop
The vulnerabilities have the potential to ‘ripple’ through complex software supply chains, enabling attackers to steal data or execute code.More
Story image
Radware issues security alert, warning of global rise of DDoS-for-hire
Efforts from corporations, law enforcement and independent researchers around the world have attempted in the last two years to curb this growth – but the industry keeps growing says Radware information security researcher Daniel Smith.More