Why Cybercriminals Never Take a Day Off

Posted: Friday, Mar 21

KBI.Media
$
Why Cybercriminals Never Take a Day Off

Karissa Breen, crowned a LinkedIn ‘Top Voice in Technology’, is more commonly known as KB. A serial Entrepreneur that Co-Founded the TMFE Group, a holding company and consortium of several businesses all relating to cybersecurity including, an industry-leading media platform, a marketing agency, a content production studio, and the executive headhunting firm, MercSec. KBI.Media is an independent and agnostic global cyber security media company led by KB at the helm of the journalism division. As a Cybersecurity Investigative Journalist, KB hosts her flagship podcast, KBKast, interviewing cybersecurity practitioners around the globe on security and the problems business executives face. It has been downloaded in 65 countries with more than 300K downloads globally, influencing billions in cyber budgets. KB asks hard questions and gets real answers from her guests, providing a unique, uncoloured position on the always evolving landscape of cybersecurity. As a Producer and Host of the streaming show, 2Fa.tv, she sits down with experts to demystify the world of cybersecurity and provide genuine insight to businesses executives on the downstream impacts cybersecurity advancement and events have on our wider world.

i 3 Table of Contents

Why Cybercriminals Never Take a Day Off

From Karissa Breen

Cyber criminals don’t take days off. They hit when we’re taking some ‘down time’. Why? Because our guards are down and it’s a perfect time to strike. Gerry Sillars, Vice President of APJ at Semperis discusses the relentless nature of cyber threats and the realities of ransomware attacks, as revealed in Semperis' latest holiday risk report.

“Think the important thing is to understand that people are trying to get into your network and your systems every minute of every day of every year.” Commented Sillars.

Cyber threats neither pause for festive seasons nor acknowledge holidays. Whether it’s Australia Day, Christmas, or any other significant occasion, attackers aim to exploit these times when organisations might let their guard down. While Sillars humorously acknowledges that some hackers might take a break with a Piña colada after a prosperous quarter, he believes the automation in cyber attacks is ensuring their continuity even when human operators aren’t actively working.

“It's true to say that attackers don't take holidays at the same time as we would go and take holidays. And quite often, the activities or the various activities of attackers quite often automated now.”

69% of organisations targeted by ransomware reported attacks during weekends or holidays. Parallels were drawn to physical burglaries, which is rife with how cyber criminals exploit opportune moments much like burglars target homes when families are away.

A key point from the risk report reveals that 83% of Australian organisations experienced ransomware attacks, with 78% paying the demanded ransom. These figures, albeit startling, are not surprising given the nature of cyber threats. Sillars points to a historical trend where businesses have focused extensively on cyber defences, yet have still managed to overlook critical components like identity protection, specifically active directory systems which, when compromised, can cripple an organisation.

Travel and transportation sectors reported a 100% targeting rate, reflecting the high-value and substantial disruptions such attacks can inflict. Sillars explains this extends beyond immediate revenue losses to significant operational and reputational damages, citing past incidents involving major transportation and logistics companies.

Addressing the balance between business operations and cybersecurity investments, the challenge organisations face in not just throwing money at the problem, but in effectively understanding and mitigating their specific risks. Importantly, Sillars believes that having a comprehensive recovery plan – a full blown strategy involving people, processes, and technology.

“I think for most organisations, it's down to risk appetite. What what can they afford to go on investment? No one's got an open check book to go and just throw it at technology and staff and humans to protect them from a cyber attack.”

Having a plan is not just about recovery but about ongoing watchfulness. New threats emerge daily, understanding and protecting the "crown jewels" of any company. Like in the classic Christnas movie ‘Home Alone’ one must always be prepared for threats lurking when least expected.