cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

A cyber attack every 11 seconds is predicted in 2021

Hi All

 

It is predicted that there will be a cyber attack every 11 seconds in 2021, can we cope with this onslaught or will the pyramid collapse into a heap of useless stones?

 

Can we protect ourselves?

 

https://theprint-in.cdn.ampproject.org/c/s/theprint.in/tech/in-2021-there-will-be-a-cyberattack-ever...

 

Regards

 

Caute_cautim

8 Replies
Until_then
Contributor I

My VM was getting brute forced every few seconds by multiple IP's.

Caute_cautim
Community Champion

@Until_then   Was it a Honeypot?  On a Cloud Providers environment?  Or a private environment controlled by yourself?

 

Regards

 

Caute_cautim

Until_then
Contributor I

EC2 box. I had a cron job set up which auto-emailed me periodically. I had tons of logs, showing an attack every two to fifteen seconds. 

 

It's not uncommon when you have a VM set up in a cloud environment. 

Caute_cautim
Community Champion

@Until_then  Very interesting, do you get similar results with Containers as well?  Are you using the AWS SIEM to monitor the VM and I presume you are charged for every bit of data passed across back to you?

 

Regards

 

Caute_cautim

rslade
Influencer II

> Caute_cautim (Community Champion) posted a new topic in Threats on 01-02-2021

> Hi All   It is predicted that there will be a cyber attack every 11 seconds in
> 2021

This is good.

They will weed out the weak ...

====================== (quote inserted randomly by Pegasus Mailer)
rslade@gmail.com rmslade@outlook.com rslade@computercrime.org
Prolonged, indiscriminate reviewing of books involves constantly
inventing reactions towards books about which one has no
spontaneous feelings whatever. - George Orwell
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Caute_cautim
Community Champion

HI @rslade   I agree it is good, but how many of those attacks were surveillance vs actual attacks?  The SIEM if receiving so many Indicators, which is untuned, is likely to come up with a lot of fake leads?

 

Regards

 

Caute_cautim

ArunBalodi
Viewer

Its a challenge for sure considering no OS is safe anymore and most of the staff working remotely. Helping each other in notifications and update will surely help , also we need to be on top of Threat Modelling ,Continuous  Monitoring and continuous SIEM tweaking ( to ensure least number of false positive ) 

 

Easier said that done for sure !!!!! 

 

thanks and regards

Arun Balodi

 

 

Caute_cautim
Community Champion

@ArunBalodi   I agree, hence we need to supplement and augment our Security Analysts with Augmented Intelligence, which others call Artificial Intelligence and Machine Learning.  I suggest those who are not currently using this within their organisations, make it a priority in 2021.   Human beings have a limited memory when it comes to remembering specific patterns.

 

Regards

 

Caute_cautim