Neither ransomware nor social engineering is new, but both are more advanced and effective than ever. How can organizations improve how they detect and respond to the latest threats? James Lyne, global head of security research at Sophos, shares insight and advice.
"The major trend here is really around more creative ways to make money from your data," Lyne says, and ransomware is the prime example. "Ransomware and holding your data for ransom on your own system is a pretty clever use of cryptography."
The other significant trend is what Lyne sees as a more sophisticated form of social engineering. Fraudsters aren't necessarily launching attacks through malware triggered by bogus links or watering hole attacks. Rather, they are frequently embedding exploits in innocent-looking word documents like billing invoices.
Download this interview with Lyne to gain his insight about the shifting threat landscape and:
- Today's most successful cybercrime campaigns;
- How criminals have refined their approach to social engineering;
- How ransomware has matured and is evolving.