Sony Pixel Power calrec Sony

Parte Primera - Un enfoque unificado es fundamental para responder a incidentes de CiberAtaques

03/03/2022

A pesar de las recientes buenas noticias sobre el desmantelamiento que el F.B.I. hizo de la banda de ransomware REvil, cuyos socios probablemente fueron responsables de varios ataques cibern ticos de gran importancia durante el ltimo a o, la amenaza de ransomware contin a representando un riesgo comercial y financiero considerable para todas las organizaciones, independientemente de su magnitud.

Mientras que las operaciones de los ciberdelincuentes sigan siendo rentables, continuar n creciendo en magnitud y alcance. Si bien los recientes esfuerzos de colaboraci n intergubernamental y entre el sector p blico y privado para luchar contra el Ransomware son prometedores, los interesados no deben asumir que la amenaza desaparecer por s sola. Tampoco deben suponer que sus p lizas de seguro para riesgos cibern ticos cubrir n el alcance total de las p rdidas en las que incurrir a la organizaci n si llegara a suceder un ataque real.

En cambio, es vital recordar que la preparaci n es la mejor defensa. Se aproxima la temporada festiva, momento en el cual la actividad de los ciberdelincuentes tiende a alcanzar su pico anual, por lo que las organizaciones deben esperar ser un blanco. Las juntas directivas, los altos l deres y los gerentes de riesgos deben pensar de forma integral acerca de los riesgos que enfrenta la organizaci n y planificar en consecuencia. Crear procesos s lidos de respuesta ante incidentes es clave para mitigar el riesgo que de otro modo ser a inevitable.

Tendencias en el panorama actual de amenazas

Los ataques de Ransomware siguen atrayendo la atenci n medi tica, pero tambi n siguen siendo enormemente rentables para los delincuentes. Las investigaciones indican que m s de la mitad de las v ctimas de ataques de Ransomware hacen, finalmente, un pago a los delincuentes, con un monto promedio por rescate que se dispar hasta alcanzar los 250,000 USD a principios de 2021. Los operadores de Ransomware dirigen cada vez m s sus ataques a empresas m s grandes, adoptando un m todo preciso y altamente profesionalizado que les permite extraer las mayores ganancias posibles de sus v ctimas.

Por supuesto, el Ransomware no es de ninguna manera la nica amenaza cibern tica de importancia que enfrentan las organizaciones de hoy en d a. Los ataques tradicionales de malware siguen siendo predominantes, al igual que los esquemas de ingenier a social y de compromiso de correo electr nico comercial (Business Email Compromise, BEC) en los que los malhechores intentan enga ar a las v ctimas para que inicien transferencias de fondos fraudulentas. El malware de criptominado, en el que los ciberdelincuentes roban el acceso a servidores y la capacidad de procesamiento para minar criptomonedas de manera ilegal, tambi n est en aumento. En particular, se vuelve frecuente cuando las tansacciones de las criptomonedas alcanzan nuevas alzas en el mercado, ya que esto proporciona un mejor margen de ganancias para los delincuentes.

Los ciberdelincuentes siempre han sido oportunistas y la pandemia global de coronavirus les ha proporcionado varios vectores de ataque nuevos para explotar. Cuando el trabajo remoto se convirti repentinamente en una necesidad para una gran cantidad de empleados en todo el mundo, los perpetradores buscaron abordar las vulnerabilidades en Office 365 y en herramientas de colaboraci n como Zoom, WebEx o Microsoft Teams. Tambi n hubo un aumento inmediato en los intentos de suplantaci n de identidad (phishing) relacionados con la pandemia.

Las ltimas t cticas de ataque exigen un enfoque proactivo con respecto a la respuesta ante incidentes de CiberAtaques

La realidad es que una vez que codifican sus archivos y usted recibe una demanda de pago de rescate, por lo general es demasiado tarde para evitar una interrupci n operativa importante. Incluso las organizaciones con copias de respaldo incorruptas experimentan com nmente un tiempo de inactividad considerable durante el proceso de restauraci n de esas copias de respaldo, y aun as enfrentan importantes desaf os con respecto a la gesti n de incidentes como resultado del ataque. Todas las v ctimas de Ransomware experimentar n estr s e incertidumbre mientras se desarrolle la secuencia del ataque. Muchos tendr n que lidiar con la atenci n medi tica, as como con preguntas de los socios y proveedores, adem s de los clientes, empleados y otros interesados.

En general, los Ciberdelincuentes intentan lanzar ataques en los momentos m s inoportunos e inadecuados. Ya sea la solicitud de una transferencia de fondos de emergencia que tiene lugar a ltima hora del viernes por la tarde o una infecci n con Ransomware que aparece justo antes del Black Friday, los atacantes programan su actividad para maximizar las presiones que experimentar n sus v ctimas. Por este motivo, es fundamental capacitar a los equipos a fin de que est n listos para responder ante un ataque de Ransomware u otros ataques Cibern ticos, y de manera proactiva hacer ejercicios de simulaci n de escenarios posibles de CiberAtaques.

En todos los casos, es clave estar preparados y adoptar un enfoque integral ante los CiberAtaques. Recomendamos que las organizaciones sigan un enfoque de tres partes que incluyan lo siguiente:

limitar ser expuesto al Riesgo;

ejercer una buena gobernanza; e

implementar la infraestructura t cnica y los controles de seguridad ideales, con mejoras continuas.

Por ejemplo, las investigaciones indican que el protocolo de escritorio remoto (Remote Desktop Protocol, RDP) sigue siendo el vector m s utilizado en los ataques de Ransomware actuales, mientras que el phishing por correo electr nico y los archivos adjuntos maliciosos ocupan un segundo lugar. Puede limitar su exposici n al riesgo al eliminar el uso de RDP dentro de su entorno. Debe usar este tipo de inteligencia contextual contra amenazas para evaluar sus sistemas actuales y su presencia dig
LINK: https://dtv.nagra.com/parte-primera-un-enfoque-unificado-es-fundamenta...
See more stories from nagra

More from Nagra Media Uk Ltd

27/06/2025

Family Cybersecurity CEO: Protecting Kids, Parents, and My Sanity From Scams

In our latest blog post, Rafael Rivera highlights the rising threat of online scams, and the important role cybersecurity plays in protecting families across ge...

02/06/2025

Broadcast TV Isn't Dead - It's Evolving. And We're Here to Help.

In our latest blog, Laura Rognoni unpacks the myth of Broadcast TV's decline and shows how OpenTV ENTera is helping broadcasters and sports rights holders t...

09/05/2025

The Future of Consumer Engagement

In our latest blog, Laura Rognoni dives into the shifting currents of change in the digital entertainment landscape, revealing the trends that will keep viewers...

03/04/2025

Scaling Smarter: Partnerships that Drive Real Change

In our latest blog, Laura Rognoni highlights key points from the webinar on hyper-personalization held on March 20th 2025, hosted by XroadMedia and featuring in...

02/04/2025

NAB 2024 Highlights: Content Security & POY - NAGRAVISION

With a focus on safeguarding premium content value and authenticity, NAGRA highlighted key areas of interest in the media and entertainment industry. Of note wa...

02/04/2025

Strengthen Content Protection: Beyond DRM - NAGRAVISION

In our latest blog, gain insights into the media industry's challenges and how NAGRA Active Streaming Protection provides a framework for holistic content p...

02/04/2025

Generative AI: Friend or Foe for M&E Industry? - NAGRAVISION

In our latest blog Tim Pearson considers Generative AI and the opportunities it presents as well as some of the challenges it can cause for media, entertainment...

02/04/2025

Combat Piracy with Confidence: NAGRA Multi-DRM - NAGRAVISION

Learn valuable insights into strengthening your content protection strategy and discover how multi-DRM helped transform content security for leading post-produc...

02/04/2025

Consumer Cybersecurity at IBC 2024: Insights - NAGRAVISION

This year's IBC 2024 was an incredible opportunity to connect with industry leaders and innovators, and the conversations around consumer cybersecurity were...

02/04/2025

Streaming Global Sports: Eurovision Sport - NAGRAVISION

As a lifelong sports enthusiast from the U.S., I've always been captivated by how sports can unite people. From the roar of the crowd during major events to...

02/04/2025

Generative AI in Consumer Engagement - NAGRAVISION

In our latest blog, Tim Pearson caught up with Julian Williams at Anthropic to explore the science of conversations and how the increasing adoption of generativ...

02/04/2025

How Robust Streaming Security Prevents Piracy - NAGRAVISION

In our latest blog, Tim Pearson considers recent industry successes in dismantling large-scale pirate operations and what defensive steps video service provider...

02/04/2025

New Era of Entertainment with OpenTV ENTera - NAGRAVISION

In our latest blog, Laura Rognoni explores OpenTV ENTera, the latest innovation from NAGRAVISION that's designed as a blueprint for today's streaming se...

20/03/2025

Streaming Ahead with Synergy: Insights from Connected TV World Summit

In our latest blog, Laura Rognoni reflects on this year's Connected TV World Summit recently held in London, and explores how innovative bundling, premium c...

04/03/2025

Leading A New Era of Entertainment with OpenTV ENTera

In our latest blog, Laura Rognoni explores OpenTV ENTera, the latest innovation from NAGRAVISION that's designed as a blueprint for today's streaming se...

22/01/2025

CES 2025: Kicking Off the Year by Diving Into The Latest Innovations

In our latest blog, Tim Pearson reflects on CES 2025, the latest trends, and the key conversations held with visitors to the NAGRAVISION booth. Connect the wor...

03/12/2024

How Robust Streaming Security Can Prevent Piracy

In our latest blog, Tim Pearson considers recent industry successes in dismantling large-scale pirate operations and what defensive steps video service provider...

04/11/2024

The Science of Conversations: How Generative AI is Revolutionizing Consumer Engagement

In our latest blog, Tim Pearson caught up with Julian Williams at Anthropic to e...

30/10/2024

Streaming Global Sports to the World: A New Era With Eurovision Sport

As a lifelong sports enthusiast from the U.S., I've always been captivated by how sports can unite people. From the roar of the crowd during major events to...

09/10/2024

IBC 2024 - A Show with Pace and Purpose

Streaming security, consumer engagement, and consumer cybersecurity were top of mind in NAGRAVISION's IBC 2024 showcase, as highlighted by Tim Pearson in ou...

01/10/2024

The Future of Consumer Cybersecurity at IBC 2024: Key Insights and Exciting Takeaways

This year's IBC 2024 was an incredible opportunity to connect with industry ...

11/09/2024

All On' In Las Vegas: Kicking Off 2024 at CES

In our latest blog, Tim Pearson reflects on CES 2024 where AI was omnipresent, innovation abounded, and conversations focused on creative solutions to address e...

11/09/2024

Navigating the Future: Humanizing AI and Connecting Everything Insights from MWC 2024

In our latest blog, Tim Pearson reflects on a busy Mobile World Congress that wa...

27/08/2024

NAGRA set to Secure Your Future. Secure Your Vision' at IBC 2024

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - August 27, 2024 - NAGRA, a Kudelski Group (SIX:KUD.S) company and one of the worlds leading independ...

22/08/2024

2024 HALF YEAR RESULTS

Cheseaux-sur-Lausanne, Switzerland and Phoenix (AZ), USA - August 22nd, 2024 - The Kudelski Group (SIX: KUD.S), the world leader in digital security, announced ...

22/07/2024

The Kudelski Group signs agreement to sell SKIDATA to ASSA ABLOY

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - July 22nd 2024 - The Kudelski Group (SIX:KUD.S), the world leader in digital security, announced tod...

16/07/2024

David Chtrit appointed as CEO of Kudelski Security

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - July 16th 2024 - The Kudelski Group (SIX:KUD.S), the world leader in digital security, today announc...

03/07/2024

Kudelski secures a CHF 150 million credit facility from Farallon Capital Europe LLP

Ad hoc announcement pursuant to Art. 53 LR Cheseaux-sur-Lausanne, Switzerland a...

18/06/2024

COMBAT CONTENT PIRACY WITH CONFIDENCE: KICKSTART YOUR SECURITY STRATEGY WITH NAGRA MULTI-DRM

Learn valuable insights into strengthening your content protection strategy and ...

14/06/2024

Generative AI: Friend or Foe of the Media & Entertainment Industry?

In our latest blog Tim Pearson considers Generative AI and the opportunities it presents as well as some of the challenges it can cause for media, entertainment...

08/05/2024

NAGRA and Adobe's Frame.io Win NAB Product of the Year for Solution That Protects Pre-release Content Against Piracy

Cheseaux-sur-Lausanne, Switzerland and Phoenix, (AZ), USA -7 May, 2024 - NAGRA, ...

30/04/2024

Highlights from NAB 2024: Safeguarding content value and authenticity - and an NAB Product of the Year Award!

With a focus on safeguarding premium content value and authenticity, NAGRA highl...

19/04/2024

2024 ANNUAL GENERAL MEETING OF KUDELSKI SA

Ad hoc announcement pursuant to Art. 53 LR Cheseaux-sur-Lausanne, Switzerland - April 19, 2024 - The Annual General Meeting of Kudelski SA (SIX:KUD.S) was held...

13/04/2024

STRENGTHEN YOUR CONTENT PROTECTION STRATEGY BEYOND DRM: A HOLISTIC APPROACH

In our latest blog, gain insights into the media industry's challenges and how NAGRA Active Streaming Protection provides a framework for holistic content p...

10/04/2024

NAGRA at NAB 2024: Safeguarding premium content value from production to consumption, uncovering deep fakes, and more.

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - April 9, 2024 - NAGR...

27/03/2024

2023 Annual Report Publication

Ad hoc announcement pursuant to Art. 53 LR Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA, March 27 2024 - The Kudelski Group has published its 2023...

15/03/2024

Navigating the Future: Humanizing AI and Connecting Everything - Insights from MWC 2024

This year's annual telecoms jamboree in Barcelona attracted a record breakin...

22/02/2024

2023 ANNUAL RESULTS

Ad hoc announcement pursuant to Art. 53 LR Cheseaux-sur-Lausanne, Switzerland and Phoenix (AZ), USA - February 22nd, 2024 - The Kudelski Group (SIX: KUD.S), th...

06/02/2024

NAGRA SPORT AND THE EUROPEAN BROADCASTING UNION (EBU) PARTNER TO LAUNCH EUROVISION SPORT

Cheseaux-sur-Lausanne, Switzerland, and Grand-Saconnex, Switzerland - February 6...

19/01/2024

'ALL ON' IN LAS VEGAS: KICKING OFF 2024 AT CES

As new year celebrations faded, it was time to head for Las Vegas. Providing an interesting juxtaposition of tourists enjoying the delights of the strip, inter...

19/01/2024

FUTURE OF THE SMART HOME: WHY PRIVACY AND DATA SECURITY ARE KEY

Get exclusive insights from industry leaders at CES 2024 and the pulse of consumer concerns about privacy and security in the connected home space, with key sta...

07/01/2024

The Kudelski Group at CES 2024: Secure Your Lifestyle, Connect Your World

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - January 7, 2024 - At CES 2024, the Kudelski Group (SIX:KUD.S), the world leader in digital security,...

09/10/2023

APOS 2023: A Blueprint for APAC's Media & Entertainment Industry

In our latest blog, Olivier Biot reflects on the recent APOS event in Bali and how the APAC M&E industry is planning to navigate the disruption. This year'...

28/09/2023

Despite the Storm Clouds, IBC 2023 Had Energy, Direction and Pace

In our latest blog, Tim Pearson reflects on IBC 2023 and how NAGRA helped visitors to its booth plot a course and navigate the disruption. There seemed to be m...

20/09/2023

NAGRA Receives Industry Recognition for Content Protection Innovation at IBC 2023

Cheseaux-sur-Lausanne, Switzerland, and Phoenix USA - Sept. 20, 2023 - NAGRA, a ...

15/09/2023

NAGRA Launches Multi-DRM Service on AWS Marketplace

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - September 15, 2023 - NAGRA, a Kudelski Group (SIX:KUD.S) company and one of the worlds leading indep...

14/09/2023

Sony's Ci Media Cloud Enhances Service Offering with NAGRA, Securing Content Throughout Review and Collaboration Workflows

Cheseaux-sur-Lausanne, Switzerland, and Phoenix (AZ), USA - September 14, 2023 -...