IT service providers are feeling the pressure from an increased risk of cyberattacks across all industries. There have been a number of high profile attacks in 2017, including the Equifax breach that reportedly affected more than 114 million people, that offer stark reminders that cybersecurity is crucial.
Attacks come in many forms, some originating in foreign nations (governments, in some cases) and others taking the shape of damaging data breaches and ransomware attacks. Calyptix Security’s new report shows it’s not just the big players that are getting hit – small business networks throughout the nation are affected as well.
Threat Intelligence Report: 24 Hours of Inbound Attacks on Small Networks is a review of 800 network security devices in small businesses throughout Canada and the U.S. Calyptix’s intent was to look deeply into network security data to gain more insights into these often-ignored small networks.
The report confirms that small networks are often the targets of cyberattacks. The report also offers some ideas as to where channel partners should focus when it comes to mapping out a cybersecurity strategy.
The report found that:
· Database services targeted are 96 percent MSSQL
· Remote access tools targeted are 38 percent remote desktop (RDT) unofficial port, 29 percent RDT official port, 22 percent SSH, and 11 percent other
· Top four network services targeted are ASF remote management, power device management, Rockwell CSP2, and UPnP
· File transfer services targeted are 60 percent Windows Shares, 25 percent Oracle cluster, seven percent FTP, four percent FTPS, and four percent FRP unofficial port
The report highlights that managed service providers (MSPs) need to increase education efforts for small business owners who are the frequent targets of attack. All tools available should be utilized to minimize exposure from unauthorized access. The best strategies address virtual private network (VPN) security, restricting management access, locking out accounts, and enhancing authentication measures.
Another takeaway from the report is that because of the sheer volume of attacks, MSPs need to operate IDS/IPS in protective mode, which means they block traffic. The bottom line is that IT professionals need to implement a targeted strategy to protect against neglectful client practices and create guidelines that clearly outline who is accountable for what.
At Cory Communications, we know there is too much telecom noise out there, which can add to the already present stress when it comes to cybersecurity issues. We are focused on your technology needs as well as offering secure services that protect you from seemingly relentless cyberattacks. Contact us today to learn how we can be a vital partner.