Security News > 2021 > May > Ransomware attacks are not a matter of if, but when
"There is an evolution happening," said DeFiore, speaking during a data security panel at data management company Rubrik's FORWARD conference Tuesday.
"You need to have a strategy and think about ransomware in multiple layers." Enterprises also need to think about the data that really matters to their business and if it needs protecting, how they are going to do it.
Elevating the role of the CISO. The panelists were also asked how business leaders should think about data mobility and protect data no matter where it is stored.
DeFiore said she's been thinking about how to put data security controls around the data itself versus around the perimeter.
One of the main themes that emerged was elevating the role of the CISO. Sethi pointed out that while security leaders "Want to get quick wins to share with the executive team," what they are developing are "Not sexy programs-they take a long time to develop in the right way. Data security is built on getting the fundamentals right."
Data governance is also important and security leaders must know what data an organization has and who has access to it.
News URL
Related news
- Keytronic reports losses of over $17 million after ransomware attack (source)
- UK health services call-handling vendor faces $7.7M fine over 2022 ransomware attack (source)
- McLaren hospitals disruption linked to INC ransomware attack (source)
- Six ransomware gangs behind over 50% of 2024 attacks (source)
- CISA warns of Jenkins RCE bug exploited in ransomware attacks (source)
- CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
- Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds (source)
- Most ransomware attacks occur between 1 a.m. and 5 a.m. (source)
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)
- Lateral movement: Clearest sign of unfolding ransomware attack (source)