Last Month in Cyber – Issue 34

Share This Post:

We keep an eye on what’s happening in the cybersecurity world so you don’t have to. Here’s a recap of what we considered the highlights from last month.

IT and cybersecurity technology spending continue to grow as the 2023 cybersecurity spending growth projections are topping $188 Billion globally. Security services including consulting, hardware support, implementation and outsourced services is the largest category of spending and is expected to reach $76.5 billion in 2023.

While tech spending is growing, an increased number of organizations are struggling with technical debt.

This is a term that has emerged over the last few years in the market and is used to describe previous investments in information technology that are no longer adding value to the organization, creating more risk, or that are holding the organization back from evolving, growing, or deploying new products, services, or solutions to its constituents.

Most organizations are looking to reallocate budget dollars and consolidate their spending on integrated cyber and risk technology and services solutions that help them remove or eliminate technical debt. A growing number of IT solution providers and managed security solution providers are beginning to provide Security as a Service and Compliance as a Service bundles to reduce technical debt.

MARS Suite is committed to bringing integrated solutions to the market that deliver tangible business outcomes and eliminate the need to buy stand-alone technology that increases technical debt. Contact us to learn more.

As the tsunami of cyber-attacks continues to grow, and the costs associated with data breaches and ransomware skyrockets, more organizations are trying to quantify and capture the value and return on investment from cybersecurity and compliance related investments.

There are common factors that impact the failure and success of technology, software, cybersecurity, and compliance program deployments: 1) They require support and mandates from the highest levels of the company, 2) Success is highly dependent upon end user acceptance and buy-in, 3) Mastering organizational change management is a critical component to current and future success.

Many experts are beginning to suggest that leadership teams should focus on building a cybersecurity culture within their organization. A good way to get started on that journey, is to build internal cyber leadership capability within your organization. This PWC article provides a good summary on how to begin this journey.

MARS Suite partners with customers and solution provider partners to address organizational change management and accelerate the adoption of new cybersecurity controls and procedures within customer organizations.

Contact us to learn how MARS Suite can help positively influence your cybersecurity culture, optimize your cybersecurity posture, and streamline security operations within your organization.

In October, the NSA, CISA, and the Office of the Director of National Intelligence (ODNI) provided guidance (suggested practices) that software suppliers (vendors) can follow to help secure the supply chain. The guidance was developed through the Enduring Security Framework (ESF), a public-private partnership working to address threats to U.S. national security systems and critical infrastructure.

The publishing of the guidance is timely as it followed other high-profile attacks like the SolarWinds hack, and a recent report about the GitHub repository being used to deliver fake PoC exploits with embedded malware.

Less than a week after the guidance was published DropBox reported a data breach that included the theft of 130 GitHub repositories. GitHub was involved in a phishing attack targeting users of the CircleCI continuous integration and delivery platform in September, that reportedly impacted multiple organizations.

Cyber-criminals, hackers, and enemies of the United States are continuing to target and attack manufacturers and the technology supply chain. Cloud repositories, software companies, solution providers, and managed services providers are top targets and require continuous monitoring, scanning, detection, and alerting of malicious activities and threats occurring within their networks and IT environments.

MARS Suite was purpose-built to protect organizations against next-generation cyber attacks and malicious activity within on-premise or cloud hosted environments. Contact us to learn more.

More from the blog

Learn More About Upcoming Events