Threat Intelligence significant for robust enterprise cybersecurity, says Kaspersky
Kaspersky today participated in the IDC Security Roadshow showcasing the role of Threat Intelligence within a Cyber Defense Strategy. Held at Crowne Plaza Riyadh RDC Hotel in Saudi Arabia, this one-day event examined trends that contribute towards elevating the security of the future enterprise.
With enterprises increasingly falling victim to advanced and targeted attacks, especially by Advanced Persistent Threat (APT) groups, it’s clear that a successful cyber defense requires new methods. The only way to keep up and stay ahead of the fast-changing threat environment is to build an effective Threat Intelligence program. The Kaspersky Threat Intelligence is the cornerstone of cybersecurity frameworks in enterprises, including those with established Security Operations Centers (SOC), providing technical, tactical, operational and strategic intelligence. With petabytes of rich threat data to mine, advanced machine‑learning technologies and a unique pool of global cybersecurity experts, Kaspersky Threat Intelligence explores risks associated with a company’s digital footprint, provides insights into complex threats, targeted attacks and APT actors targeting an industry and region, enables quick response and strengthens existing resources considering IT teams are usually equipped with limited information and support.
Providing an overview of the KSA APT landscape, Kaspersky researchers have been monitoring 12 groups actively targeting the country and worked on 24 investigative reports dedicated to these actors since 2021. Some of the notorious APT groups investigated in KSA are Sidecopy, MuddyWater, and Lazarus. Kaspersky found that these APT groups primarily target the governmental and diplomatic institutions as well as IT, education and NGO organizations in KSA. Kaspersky researchers also highlight that spear phishing and vulnerable internet facing systems are the most common tactics used by threat actors to infiltrate their targets.
Mohamad Hashem, Head of Sales, KSA & Bahrain at Kaspersky commented, “It is time companies move forward from the phase of being aware about cybercrime and cyber gangs, and adopt measures to protect themselves right from the start. Given the dynamics of complex, and targeted cyberattacks, it is not about how but when a company may face danger. To begin with, the use of Threat Intelligence within cybersecurity strategies is important at all costs. By investing in solutions like the Kaspersky Threat Intelligence, companies can gain superior visibility from one end to the other. In addition, the Kaspersky Threat Intelligence supports the IT team to build insight and analysis-driven cyberattack response best practices for swift and accurate and meticulous action.”
Evolving digital transformation strategies and shifting industry dynamics across Saudi Arabia are driving organizations to innovate and explore new technologies and delivery models. In turn, this is creating a complex ecosystem beset by new cybersecurity challenges. As a result, cybersecurity is no longer limited to protecting technology assets but must also ensure business resiliency.” says Hamza Naqshbandi, IDC’s associate vice president for Saudi Arabia and Bahrain.
“Cybersecurity is no longer an afterthought as 54% of Saudi Organizations cited that security departments are involved in the planning and assessment for all new developments” added Naqshbandi. “As cybersecurity gains strategic weight on the executive-level agenda, new challenges and opportunities have arisen.”
