Since the dawn of digital transformation, companies have increasingly made the transition to contemporary IT infrastructures characterized by remote workforces and flexible device management. While this has been a growing trend for several years now, the COVID-19 pandemic accelerated adoption of remote work, and consequently, many organizations have experienced an increase in ransomware attacks and harmful software infections.
According to IDC’s 2021 Ransomware Study, approximately 37% of global organizations said they were the victim of some form of ransomware attack in 2021, and industry experts say overall cyberattacks are up 148% as a result of pandemic-related remote work models.
The number of devices, volume of data and nature of computers have changed drastically and continue to change with our work-from-anywhere culture. Our digital personas are now blurred – most of us use the same devices, and in many cases the same passwords, for personal and professional use. As businesses both large and small transitioned to remote work environments overnight, many workloads are now handled entirely in the cloud. The greater complexity and interdependence among systems as a result of that change has given attackers more opportunity to inflict significant damage.
Addressing the problem
In the wake of increased use of remotely connected cloud and collaboration tools, cybersecurity is top of mind. Businesses of all sizes and industries can fall victim to a ransomware attack, and cybersecurity firm Sophos identifies the top industry targets as: education, retail, and business, professional and legal services. As a result, instituting security measures is even more of a priority and a business enabler for small, medium and large businesses across all industries.
Sensitive company data has become vulnerable as it is accessed remotely, and cybercriminals only grow more sophisticated by the day, making it more critical than ever for enterprises to develop a comprehensive prevention and protection strategy – before irreparable damage is done.
Many organizations used to focus on antivirus technologies and guarding network perimeters. However, less than 40 percent of attacks involve malware, and hackers are finding new ways to penetrate networks and execute codes at system endpoints. In fact, according to Verizon’s 2021 Data Breach Investigations Report, ransomware attacks doubled in frequency this year. From device theft and unauthorized access to device damage and ransomware, the loss of critical data and information through endpoint devices is costing fortunes.
The velocity at which challenges arise and the greater complexity of security systems leave businesses with only one option: modern day, holistic security solutions that stop initial infiltration and offer shields from every angle. The key goal is prevention, and when it comes to ransomware, prevention is all about denying attackers initial access to any part of the enterprise. Network authentication and infrastructure security will be in vain if entry points of end-user devices are still exposed to malicious online activity.
Understanding the solution
The good news is that reliable technology partners are here to fully manage hardware, software, and services to maximize value and boost security with comprehensive strategies in place. They must include attack resistant user authentication, immediate detection and removal of threats, and lastly, rolling back all actions taken by attackers and their malware on undetectable attacks. Artificial intelligence and automation can be used to increase speed of detection, remediation and the ability to detect complications that otherwise would go unnoticed.
Lenovo’s ThinkShield portfolio of security solutions provides security beyond the operating system by implementing a zero trust architecture, a cybersecurity model predicated on the concept of “least-privilege,” or in other words, “trust no one.” While that may be a bit extreme, the concept is that by adopting the mindset – and thus the model that you have been breached or will inevitably be breached – coupled with controls throughout the organization (such as privilege access management, data protection and compartmentalization of sensitive data), an organization can gain a better foothold to address the velocity of the attacks.
ThinkShield applies an end-to-end model, meaning that we start with the supply chain providing zero-trust attestation to supply chain security, through robust below-OS security capabilities and extending that through above-OS and cloud. This approach allows Lenovo to seamlessly integrate and layer cybersecurity solutions that address ransomware, malware, cloud workloads, data protection and authentication in order to provide intrinsic, end-to-end security that is built for and around the endpoint and network platform.
The nature of remote working and learning creates a playground for cybercriminals. Solutions of the past are no longer adequate to protect you from one of the costliest threats to businesses: a cyberattack. Setting up your network with security in mind today is your best defense against the threats of tomorrow.
Verify that your business is well equipped ahead of a cyber breach with Lenovo’s ThinkShield portfolio of security solutions.
Nima Baiati is general manager and founder of Lenovo’s Cybersecurity Solutions group with responsibility for ThinkShield, security product management and cybersecurity solutions, including product and portfolio management, GTM and strategy. Baiati is the global leader for Lenovo’s Commercial Security Strategy and Product Management across the PC and Smart Device markets.