sb-eu logo
Story image

How technical research can help businesses stay secure

02 Apr 2019

As cybercrime and malware attacks become more prevalent and dangerous, it’s important to understand the role research and study have in combatting cybercrime developments and protecting organisations against growing threats. High-quality malware research is necessary to keep cybercrime at bay, according to ESET. 

Malware’s effect on large organisations and even governments are becoming more pronounced, as evidenced by February’s large-scale cyber attack affecting all three major political parties.

It’s increasingly important for public and private-sector organisations to realistically address their cybersecurity vulnerabilities. More and more, responsible cybersecurity practice requires organisations to be accountable and open, setting a positive culture in cybercrime awareness and discussion. 

ESET senior malware researcher Robert Lipovsky says, “More organisations should reveal their experiences with cybercrime, rather than try to cover them up, to foster a greater culture of awareness and understanding, because we’re all in this together. 

“Greater awareness of cybersecurity risks relies on in-depth malware research. ESET researchers’ investigations into large-scale malware and ransomware events, including BlackEnergy, and NotPetya; the most damaging cyber attack in history, has been critical in understanding and predicting cybercriminals’ movements, targets and intentions.” 

“Comprehensive research into malware like BlackEnergy has also helped cybersecurity experts identify successor threats. For example, GreyEnergy was named in a streak of energy company attacks across Europe late last year. Existing research is critical in mitigating risks as they occur and in preventing further malware development.” 

Increasingly, researchers are employing machine learning (ML) to analyse detected malware and develop security systems capable of matching sophisticated cybercrime. Although a critical predictive and defensive tool, many cybercriminals also use ML to create malware specifically designed to outsmart existing security suites and features. 

Lipovsky continues, “Many security researchers expect a cat-and-mouse game between the good guys and the bad guys to continue. While both sides are armed with access to ML technology and highly skilled professionals, the competition between cybersecurity professionals and cybercriminals will most likely be long-term and ongoing. 

“What’s set to distinguish these competing forces is a dedication to research, malware tracking and analysis, and malware education, which continues to strengthen quality security developments in niche and relevant ways and catch the next strains of malware.” 
“Research helps security professionals learn how malware criminals operate, and what they might do next.” 

Cyber attacks affecting governments and organisations are becoming stronger and harder to detect, as malware developers design infections that blend into the background. 

Quality malware research is a strong differentiator between cybersecurity professionals and cybercriminals, and, with the right public dialogue around cyber attacks, can help organisations get ahead of attackers. 

Story image
Emotet malware is on a rampage after months of silence
CERT agencies around the world are reporting a surge in cyber attacks related to the Emotet malware, which is being distributed by email.More
Story image
Is cyber deception the latest SOC 'game changer'?
Cyber deception reduces data breach costs by more than 51% and Security Operations Centre (SOC) inefficiencies by 32%, according to a new research report by Attivo Networks and Kevin Fiscus of Deceptive Defense.More
Story image
Jamf extends Microsoft collaboration with iOS Device Compliance
Organisations will soon be able to use Jamf for Apple ecosystem management while using Azure Active Directory and Microsoft Endpoint manager to maintain conditional access.More
Story image
75% of IT execs 'worried' about being targeted in cyber-attack
A new report from ConnectWise has shed light on the widespread concern about cyber-attacks, with 91% of SMB executives considering a move to an MSP if it provided the 'right' solution.More
Story image
Report: 151% increase in DDoS attacks compared to 2019
It comes as the security risk profile for organisations around the world increased in large part thanks to the COVID-19 pandemic, forcing greater reliance on cloud technology and thrusting digital laggards into quick and unsecured migrations.More
Story image
SMBs seeking service providers in face of rising cyber threats
SMBs are struggling with their cybersecurity solutions, with three quarters worried about being the target of a cyberattack in the next six months, and 91% considering using or switching to a new IT service provider if offered a better option.More