McAfee announced "10 Great Security Cases in 2021", what is the first place?
"2021 10 Great Security Case Ranking" Source: Mcafee Enterprise
Regarding the case that ranked first, Mcafee Enterprise reconsidered the importance of continuous information gathering and countermeasures on the entire system that provides services and security threats for businesses with confidential information on the cloud.He described it as a trigger.
At a reporter briefing held on the same day, Hidemitsu Sakurai, General Manager of the McAfee Enterprise Executive Officer Sales Engineering Division, said, "In this case, it was an attack that imprinted the incomplete access authority setting for user information.He is. In the future, in conjunction with the appropriate authentication and management that does not leave security vulnerabilities, the administrator must implement a cycle to find and collect the settings promptly in the setting audit. "
The eighth survey this year is based on the recognition of the main security cases reported in the past year (December 2020 to November 2021).In the ranking, the threats aimed at monetization, such as ransomware attacks, aimed at major domestic companies and important US infrastructure operators in the United States.
However, Mr. Sakurai said, "Compared to the 2020 survey, the overall recognition was low. I think there were fewer reports on television and the like than usual, but somewhere on information leakage.I guess you may be used to information leakage while it is occurring. "
In addition, at the press briefing, the results of a survey of "home work and cloud security countermeasures status" conducted for 1,000 business people over the age of 22, such as domestic management and information systems divisions, and more than 500 employees.The results of the "2021 data infringement and ransomware damage survey" for the decisive decisive authority, decision -making, and involved in the cyber security field of private companies, local governments, and organizations have also been announced.
According to a question about grasping the usage status of employees, the answer is that "it is possible for use other than designated services, but the usage status is managed/grasped/grasped" (valid respondents).: 613) 30.It became 8%.
According to this result, Mr. Sakurai said, "We also provide CASB (Cloud Access Security Broker), but from the introduction of customers, it is probably not a web security product or proxy access log -based visualization."Uh," and analyzed.He preached the need for a step forward, using a dedicated product to understand the degree of risk of cloud services and controls it if necessary.
In addition, about 75%of respondents' response status of ransomware (valid respondents: 400 people, multiple answers), 75%of the answer to "keep antivirus software in the latest state" and 66 answers of "backup"..While it was 3%, 27 "comprehensive measures such as introduction of EDR" were 27..According to 3%, Mr. Sakurai said, "The damage of the invasion of PCs and getting data can be prevented even if the antivirus software has been kept up to the latest and has been able to secure backup. EDR (EDR (He pointed out that comprehensive measures such as EndPoint Detection and Respons) and DLP (Data Loss Prevention) are required.