https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

MSSP Insider


Shutterstock

Hacker looking at computer

Barracuda Researchers Say Hackers Know Their Targets, Getting Smarter

  • Written by Edward Gately
  • December 17, 2020
If successful, BEC attacks can yield hundreds of thousands, if not millions, of dollars for hackers.

Hackers are designing their attacks for specific targets and striking at just the right time, according to Barracuda researchers.

In their latest report, Barracuda researchers identify 13 email threat types facing organizations today. They also outline ways cybercriminals are adapting quickly to current events and new tactics.

The 13 email threat types are: spam, malware, data exfiltration, scamming, URL phishing, spear phishing, domain impersonation, brand impersonation, extortion, business email compromise (BEC), conversation hijacking, lateral phishing and account takeover.

Among the report’s findings:

  • BEC makes up 12% of the spear-phishing attacks analyzed, an increase from just 7% in 2019.
  • Seventy-two percent of COVID-19-related attacks are scamming. In comparison, 36% of overall attacks are scamming. Attackers prefer to use COVID-19 in their less-targeted scamming attacks that focus on fake cures and donations.
  • Thirteen percent of all spear-phishing attacks come from internally compromised accounts. So organizations need to invest in protecting their internal email traffic as much as they do in protecting from external senders.
  • Seventy-one percent of spear-phishing attacks include malicious URLs. But only 30% of BEC attacks included a link. Hackers using BEC want to establish trust with their victim and expect a reply to their email. And the lack of a URL makes it harder to detect the attack.

BEC Attacks Succeeding

Don MacLennan is senior vice president of engineering and product at Barracuda. He said the increase in BEC attacks by itself might not be surprising, but it is telling.

Barracuda's Don MacLennan

Barracuda’s Don MacLennan

“These type of attacks are growing in popularity because they are successful,” he said. “Account takeover is a big issue for many organizations. When hackers get in, they use legitimate email accounts as a launch pad for their attacks — some sending a large volume of spam, others more sophistication targeted attacks.”

Hackers spend time researching organizations and their victims prior to BEC attacks, MacLennan said.

“Time and effort invested means that they often target very few individuals with a personalized message,” he said. “They use popular email services like Gmail to send out messages impersonating employees or vendors. These messages often have no malicious payload in a form of URL or attachment. There is nothing obviously malicious about the attacks that will trigger gateway filters and policies.”

The fact that many organizations have not set up domain-based message authentication, reporting and conformance (DMARC) enforcement allows hackers to spoof legitimate domains, MacLennan said. That makes it even harder for fraudulent email to be detected.

“If successful, these attacks can yield hundreds of thousands, if not millions, of dollars for hackers,” he said.

COVID-19 Related Attacks

Barracuda researchers still see COVID-19-related attacks, but the number has leveled off since the sharp increases last spring.

“Most of these attacks are scamming, which are spam-like messages, less targeted in their nature,” MacLennan said. “It does look like hackers’ interest has peaked when it comes to COVID-19, not surprising because they follow current events and the latest news. So businesses should be paying attention to any vaccine-related fraud right now.”

Every year, attacks become more targeted and sophisticated in nature, he said. And because of this, they are increasingly difficult to detect.

“Hackers go to great lengths by registering typo-squatted domains, compromising email accounts, carefully researching their victims’ business partners, etc.” MacLennan said. “Attacks are increasingly deceiving with one not like the other.”

MSSPs Can Help

User security training and phishing simulation campaigns are two ways in which MSSPs can provide a value-added service to their customers in terms of protecting against these attacks, MacLennan said.

“Some attacks do get through, especially BEC attacks,” he said. “When they do get through and are reported by users, businesses should act fast to remediate and remove malicious messages. MSSPs can use automated remediation tools to help business manage their inboxes, investigate and remediate any reported emails.”

Another example is using AI-based technology to protect against sophisticated attacks, McLennan said. Gateway defense is necessary, but not enough on its own.

“MSSPs can help their customers set up DMARC enforcement,” he said. “Many organizations are afraid of DMARC because it appears to be complex. However, it’s not if you have right tools, DMARC reporting and analysis. Providing managed services around DMARC enforcement and management could be a great additional revenue stream for MSSPs. Further, they should consider introducing customers to multifactor authentication (MFA), which is the first step in protecting accounts from compromise.”

Tags: MSPs Endpoint MSSP Insider Training and Policies

Related


  • Surprised Man with Smartphone
    Untangle Research: Breach Headlines to Prompt Increased Cybersecurity Spending
    Untangle partners are receiving more inquiries due to media coverage of cyber crime.
  • Priority Dial
    As Threats Soar, Biden Administration, CompTIA Prioritize Cybersecurity
    Also, Netwrix says a lot of organizations faced cloud security incidents in 2020. And the problem’s not going away.
  • Magnifying glass focused on the word exposed
    Despite Drop in Data Breaches, Exposed Records Jump in 2020
    Health care was the most victimized sector last year, accounting for 12.3% of reported breaches.
  • Cybersecurity Roundup
    Insured Losses from SolarWinds Hack Mount, But Could Be Worse
    The cost of breaches keeps going up at a rate faster than revenue growth for many companies.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • US Capitol Rioters Pose Cybersecurity Threat Due to Device Access, Theft
  • Expect 2021 to Be Fraught with Cybersecurity Threats
  • Beyond SolarWinds, Russian Hackers Target Austin, Texas
  • How FortiSOAR Can Help MSSPs Provide Differentiated Service Portfolios

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

Partners Share Their 2021 Goals—and Plans for Achieving Them

January 26, 2021

The Importance of Being Security-Centric

January 22, 2021

Cyberattacks: Threat Hunters Conquer Unpredictability with 3 Measures

January 21, 2021

Webinars

View all

Your Network Perimeter Has Changed

February 18, 2021

In Case of Emergency: The Importance of Proactive Critical Event Management

February 23, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Product Brief: Kaseya VSA Integrated Workflows with BMS and IT Glue

January 26, 2021

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Ecosystem security provider Cyberpion launches first #partnerprogram. dlvr.it/RrSnxK https://t.co/g7Po3jq8iw

January 27, 2021
ChannelFutures

Strategic digital investments leaving U.K. channel partners feeling optimistic about 2021. @CiscoPartners @bt_uk… twitter.com/i/web/status/1…

January 27, 2021
ChannelFutures

Partners share 2021 goals and tips to achieve them. @ConnectWise #SMB #cybersecurity #MSP dlvr.it/RrPzKJ https://t.co/gBsXooSnnB

January 27, 2021
ChannelFutures

Product Brief: Kaseya VSA Integrated Workflows with BMS and IT Glue dlvr.it/RrPJWz https://t.co/qFvS3o0XIZ

January 26, 2021
ChannelFutures

.@SaaSAlerts_hires @KaseyaCorp vet as new CEO. #MSP #cybersecurity dlvr.it/RrNyQx https://t.co/XzKxQbmrhr

January 26, 2021
ChannelFutures

.@untangle_inc partners say #cybersecurity spending will increase this year due to media coverage of cyberattacks.… twitter.com/i/web/status/1…

January 26, 2021
ChannelFutures

Native @MicrosoftTeams integration coming to @SAP apps. dlvr.it/RrKz34 https://t.co/tM7SQaaOHl

January 26, 2021
ChannelFutures

#Biden, @CompTIA both launch big #cybersecurity efforts (separately). dlvr.it/RrKr54 https://t.co/hXEw2CGUMZ

January 25, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X