All Articles

Addressing Critical CVEs and Ransomware Threats

Posted by Priya R on May 23, 2024 at 1:01am in Blog
Addressing Critical CVEs and Ransomware Threats

 

 In today's webinar, we embarked on a journey through the evolving landscape of cybersecurity threats, focusing on the surge of ransomware attacks and critical vulnerabilities affecting organizations worldwide. Led by Jendra Chan, Head of Research at Fire Compass, we explored the alarming trends in ransomware incidents and dissected the intricacies of recent CVEs targeted by threat actors. Let's recap the key takeaways from our discussion.

 

 

Here is the verbatim discussion:

now uh I'll okay let me just summarize I think we have reached the end of the present webinar uh so let me summarize what we have seen we have you know discussed the ransomwares and they are on a rise 20% per year uh per year which means they they are doubling every three years the meantime to remediate has decreased from weeks to days because ransomwares are using Automation and AI to scan the whole internet to craw Technologies and to uh to detect cve and exploit them using automation uh we have also discussed various um latest thread actors and ransomwares and their respective cves that they are targeting uh around six cves we have discussed which are being targeted you know few weeks back up to few weeks back and fixing those can reduce the risk of ransomware by at least 26% assuming we have fixed all the before other CVS and things which have been targeted in the past uh then we discussed you know what are the challenges in current practices uh to achieve meantime to remediate one you know within few days and then we came to few recommendations by combining your current existing practices such as ASM one liity management and Pen testing and threat Intel to identify these critical cves exposure of your attack surface uh and then we have also you know proposed uh you know fire we have also described fire compose day one exposure alerts which will allow you to get alerts within a day of your attack surface exposure to some of these R targeted I think this presentation probably I think 15 days back up to 15 days back if you want latest then we can share you you know you can shoot us an email we will share you the the latest CVS which we have prioritized or you know check out our blogs we will you know publish another blog on you know on on various you know uh CVS that we prioritize on regular basis by the way you can you know get these cves and and lot of more details on our blog you can to our fire compus website and go to resources and blogs you will get uh you know a regular feed of you know prioritize CVS from our research team.

 

Highlights:

Ransomware on the Rise:

  • Ransomware attacks are increasing at an alarming rate, with a staggering 20% annual growth, signifying a doubling in frequency every three years.
  • The advent of automation and AI empowers ransomware operators to scan the entire internet, identify vulnerabilities, and exploit them rapidly, reducing the meantime to remediate from weeks to mere days.

Targeted CVEs:

  • We examined six critical CVEs recently exploited by ransomware groups, emphasizing the importance of promptly addressing these vulnerabilities to mitigate the risk of ransomware attacks by up to 26%.
  • By prioritizing the remediation of these CVEs and staying vigilant against emerging threats, organizations can enhance their cybersecurity posture and safeguard their digital assets.

Challenges in Vulnerability Management:

  • Traditional vulnerability management practices face significant challenges in keeping pace with the dynamic threat landscape, necessitating proactive measures to identify and remediate vulnerabilities swiftly.
  • We discussed the limitations of current practices and proposed a holistic approach that integrates vulnerability management, penetration testing, and threat intelligence to enhance threat detection and response capabilities.

Recommendations and Solutions:

  • Combining existing practices with innovative solutions such as Fire Compass' Day One Exposure Alerts enables organizations to detect and mitigate vulnerabilities within a day of their exposure, bolstering their resilience against ransomware and other cyber threats.
  • By leveraging curated threat intelligence and prioritizing vulnerability remediation efforts, organizations can effectively reduce their attack surface and minimize the risk of exploitation by threat actors.

 

As we conclude today's webinar, we emphasize the critical importance of proactive cybersecurity measures in mitigating the escalating threat of ransomware attacks and exploitable vulnerabilities. By adopting a proactive approach to vulnerability management, leveraging advanced threat intelligence, and embracing innovative solutions, organizations can fortify their defenses and safeguard their digital infrastructure against evolving cyber threats. For the latest insights and prioritized CVEs, we invite you to explore our blogs and resources on the Fire Compass website. Together, let us strengthen our collective resilience and forge a more secure digital future.

 

Speaker:

Jitendra Chauhan has over 16+ years of experience in the Information Security Industry in key areas such as Building and Managing Highly Scalable Platforms, Red Teaming, Penetration Testing, and SIEM. He holds multiple patents in Information Security. He loves to visualize problems, solutions and ideas. He is very strong with modelling and inductive learning (he can mentally make math models based on a few examples). He is very passionate about machine learning and its applications, Cyber Security and Micro Services.

https://www.linkedin.com/in/jitendrachauhan/
https://x.com/jitendrachauhan

Views: 22
Tags: ransomeware, riskreduction, cves, jitendrachauhan
E-mail me when people leave their comments –
Follow

You need to be a member of CISO Platform to add comments!

Join CISO Platform

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)
 

 

 

CISO Breakfast at BlackHat Las Vegas 2024!

Aug 8, 2024 from 9:00am to 11:30am
https://docs.google.com/forms/d/e/1FAIpQLSeHr8y6I83L0zPXRew8E8Ut52o4C3_KwgFWTyF4qSy6qRT-lQ/viewform
  • Description:

    We are thrilled to invite you to the CISO Breakfast at BlackHat 2024. 

    CISOPlatform is a community partner for the event which is co-hosted by Silicon Valley Bank, Stage One, First Rays Venture Partners, Latham & Watkins.

     

    Event Details: 

    • Date: Thursday, August 8th,…
  • Created by: pritha
  • Tags: blackhat usa, las vegas, ciso breakfast, usa