Infosecurity Europe 2024: Ransomware and AI threats drive surge in cybersecurity investments

-


Infosecurity Europe, the premier information security event, will take place at ExCeL London from 4-6 June 2024.

The event has unveiled further insights from its 2024 Cybersecurity Trends, Obstacles and Opportunities report, emphasising the growing concern among cybersecurity leaders regarding ransomware and AI-generated attacks.  
Nearly 40% of respondents indicated that these threats are driving increased investment in cyber defences.

Rising threats prompt increased cybersecurity investment

The latest findings highlight the urgency for organisations to stay ahead of evolving cyber threats.
With attacks becoming more frequent, complex, and damaging, businesses are ramping up their resources to bolster defences and enhance resilience.
This heightened investment underscores the critical role of cybersecurity in protecting sensitive data, preserving customer trust, and ensuring business continuity.

Ransomware: A persistent threat

Ransomware remains a significant concern, and this year’s Infosecurity Europe event will delve deeply into the issue.

As malicious actors exploit vulnerabilities in software, hardware, and human behaviour, raising awareness about these risks is crucial.

The event will cover a range of topics, from ransomware attacks targeting critical infrastructure to sophisticated phishing campaigns aimed at stealing sensitive data.

Keynote sessions on ransomware

One of the pivotal sessions, titled ‘Ransomware – Time to Decide – Will You or Won’t You Pay?’ will take place on Thursday, 6 June, from 10:55 to 11:25. The panel will feature:

  • Jon Davies, Senior Director of Cyber Defense, News Corp
  • Paul Peters, Detective Superintendent / Managing Director, The Cyber Resilience Centre for Wales
  • Gareth Bateman, UK Cyber Growth Leader, Marsh

Moderated by James Coker, Deputy Editor of Infosecurity Magazine, the discussion will tackle the ongoing debate about ransomware payment.

Jon Davies highlighted the session’s importance, stating: “Ransomware attacks have become increasingly prevalent and continue to pose a significant threat to organisations.

“As cybercriminals continue to evolve their tactics, it is crucial for organisations to be prepared and equipped with effective response and recovery strategies.

“We will share real-world experiences and advice on how to respond to a ransomware attack, weighing the potential risks and consequences associated with paying the ransom.

“This session aims to provide attendees with the knowledge and reference needed to make informed decisions and mitigate the impact of ransomware incidents.”

Crisis management in cybersecurity

Jennifer McGhee, CISO of Element Materials Technology, will lead a keynote on crisis management titled ‘Crisis Management – Responding to the Unimaginable’ on Thursday, 6 June, from 14:05 to 14:45.

Moderated by Paul Watts, Distinguished Analyst/vCISO, Information Security Forum, the panel will include:

  • Paul Mackie, CISO, Fern Trading
  • Stuart Seymour, Group CISO and CSO, Virgin Media O2
  • Tomàs Roy, Director of the Cybersecurity Agency of Catalonia

Jennifer McGhee emphasised the importance of crisis management: “Cybersecurity incidents can have far-reaching consequences, impacting not only an organisation’s operations but also its reputation and customer trust.

“Businesses need to be prepared with a robust incident response plan, detection, containment and recovery.

“This should be coupled with clear communication, collaboration, and coordination among stakeholders during a crisis.

“I will draw on my expertise in crisis management, along with other cybersecurity experts, to provide actionable guidance on how to strengthen overall cybersecurity posture and ensure resilience when responding to an attack.”

Comprehensive coverage of ransomware and AI threats

Infosecurity Europe 2024 will feature several other sessions exploring ransomware and AI-generated attacks, offering attendees valuable insights and updates.
These sessions will gather industry experts, thought leaders, and cybersecurity professionals to discuss the latest trends, strategies, and best practices in combating ransomware attacks.
Attendees will gain crucial knowledge on decision-making in ransomware situations and essential updates needed to stay ahead of these evolving threats.
For more information and to register, visit Infosecurity Europe.


Comments

Post a Comment

Popular posts from this blog

CISA and ENISA enhance their Cooperation

-
Image
  The European Union Agency for Cybersecurity (ENISA) has signed a Working Arrangement with the Cybersecurity and Infrastructure Security Agency (CISA) of the US, in the areas of capacity-building, best practices exchange and boosting situational awareness. Geopolitics have shaped the cyber threat landscape, bringing like-minded partners closer together in the wake of common cyber challenges and advances in digital technologies. Today at the EU-US Cyber Dialogue, ENISA and CISA announced the signing of their Working Arrangement as an important milestone in the overall cooperation between the United States and the European Union in the field of cybersecurity, also following the Joint Statement of European Commissioner Thierry Breton and U.S. Secretary for Homeland Security Alejandro Mayorkas of January 2023. ENISA’s International Strategy directs the Agency to be selective in engaging with international partners and to limit its overall approach in international cooperation to those...
Read more

Top Five Most Exploited Vulnerabilities in January 2024

-
Image
In January 2024, cybersecurity faced a remarkable surge in threats, with a focus on exploiting vulnerabilities in technologies from leading vendors. This spike in cyber attacks highlighted the urgent necessity for robust security posture and swift responses to mitigate these vulnerabilities.  Below is an in-depth analysis of the most critical vulnerabilities targeted during January. CVE-2023-46805 and CVE-2024-21887:   CISA Warns Against Ivanti Zero-Day Vulnerabilities On January 19, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert regarding two critical zero-day vulnerabilities discovered in Ivanti products:  CVE-2023-46805 and  CVE-2024-21887.  Assigned CVSS scores of 8.2 (High) and 9.1 (Critical), these vulnerabilities underscore a significant risk to cybersecurity, marked by their capability for arbitrary command execution. This prompted an emergency directive for immediate mitigation within federal agencies, highlighting the...
Read more

SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes

-
Image
On Feb. 13, 2024, Microsoft issued a  patch  for CVE-2024-21412, a  Microsoft Defender SmartScreen  vulnerability revolving around internet shortcuts. Previously, we discovered that an advanced persistent threat (APT) group we track under the name Water Hydra has been exploiting CVE-2024-21412 in a sophisticated campaign targeting financial market traders, allowing the group to bypass Microsoft Defender SmartScreen and infect its victims with the DarkMe remote access trojan (RAT). Threat actors are constantly finding new ways of identifying and exploiting gaps to bypass security measures. We found that the bypass of CVE-2023-36025 (a previously patched SmartScreen vulnerability) led to the discovery and exploitation of CVE-2024-21412. This highlights how threat actors can circumvent patches by identifying new vectors of attack around a patched software component. It is important that organizations are able to identify and mitigate vulnerabilities, especiall...
Read more