An average of 1,615 cyber-attacks has been said to affect organisations in Nigeria, South Africa, Kenya and other African countries, making the continent the highest victims of the attacks, cybersecurity solutions provider, CheckPoint Software Technologies (CST) says.
The breaches in Africa, according to CST, represent a 15 percent increase from 2020. The firm also disclosed that 2021 recorded a 50 percent rise in overall attacks per week on corporate networks globally, compared to the year before. CST noted that Asia Pacific (APAC) comes second place, with an average of 1,299 weekly attacks per organisation (20 per cent increase), followed by Latin America with an average of 1,117 attacks weekly (37 per cent increase), Europe with 665 (65 per cent increase) and North America with 497 (57 per cent increase).
The sectors which recorded the highest number of cyber-attacks were Education/Research with an average of 1,468 attacks per organisation, each week (increase of 60 per cent from 2020), followed by Government/Military with 1,082 (40 per cent increase) and Healthcare with 752 (55 per cent increase).
CheckPoint stated that one major attack was botnet, launched in 2021. The cybersecurity firm explained that botnet is a network of malware-infected computers that can be wholly-controlled by a single command and control centre operated by a cybercriminal. the network itself, which can be composed of thousands if not hundreds of thousands of computers, is then used to further spread the malware and increase the size of the network.
“The malware type that impacts organisations the most in 2021 is the botnet with an average of over eight per cent organisations being impacted weekly (a nine per cent decrease from 2020), followed by banking malware at 4.6 per cent (a 26 per cent increase) and cryptominer at 4.2 per cent (a 22 per cent decrease), ransomware 1.9 per cent and mobile 1.2 per cent,” CheckPoint said.
Warning organisations, CheckPoint claimed that the increase in multi-vector attacks designed to infect multiple components of an IT infrastructure in 2021, is alarming, adding that such attacks are the biggest challenge facing security practitioners, requiring effective measures to be put in place, such as preventing the attacks before they happen and employing a security architecture that enables and facilitates a single, cohesive protection
The firm advised that all attack surfaces and vectors in the business must be secured via a single solution that provides broad cyber security coverage, particularly in today’s multi-hybrid environment where the perimeter is now everywhere. Organisations are also to segment their networks, and apply strong firewall and intrusion prevention safeguards between the network segments. This, CheckPoint advised, contains infections from propagating across the entire network.
It further stressed that, “While there isn’t a single silver-bullet technology that can protect organisations from all threats and all threat vectors, there are many great technologies available, such as machine learning, sandboxing, anomaly detection, content disarmament, and many more. Each of these technologies can be highly effective in specific scenarios, covering specific file types or attack vectors.”
The cybersecurity experts noted that two important components to consider are threat extraction (file sanitisation) and threat emulation (advanced sandboxing), explaining that each element provides distinct protection. When used together, the threat extraction and emulation offer a comprehensive solution for protection against unknown malware at the network level and directly on endpoint devices.