twitteryou tubeacpRSS Feed

Security

Kaspersky enhances incident response with digital forensics. (Image source: Adobe Stock)

Kaspersky has introduced a crucial resource for cybersecurity professionals: the 'Windows Digital Forensics' course, aimed at enhancing incident response capabilities with essential skills in threat detection and digital forensics

In 2023, more than 20% of cyberattacks persisted for over a month, highlighting the urgency for businesses to reduce "detection-to-resolution" times. Addressing the challenge of a skills shortage, Kaspersky has introduced a training course focusing on a critical aspect of incident response.

The 'Windows Digital Forensics' course aims to equip professionals with essential skills in digital forensics, providing comprehensive understanding and practical experience. Detecting digital traces of attack development is crucial, especially when preventive measures fail.

Participants will learn methods for acquiring diverse digital evidence, identifying traces of malicious activity, and using timestamps from Windows artifacts to reconstruct incident scenarios. The course covers analysing browser and email histories, incident scoping, evidence acquisition, log file and network analysis, creation of Indicators of Compromise (IoCs), and memory forensics.

Developed by Ayman Shaaban, digital forensics and incident response group manager at Kaspersky, the training leverages his extensive cybersecurity expertise. Participants will apply their knowledge in a secure virtual lab designed to assess and enhance practical skills.

This course is part of a series focused on incident response, allowing professionals to customise their educational journey in this critical field. It benefits companies enhancing their incident response teams and individuals seeking to elevate their technical analysis skills in digital forensics.

“To achieve cyber-resilience, organisations must be prepared for incidents by managing logs centrally, retaining them for extended periods, and safeguarding them against tampering, malicious access, or accidental loss. They also need the ability to conduct forensic investigations promptly when necessary. During this training course, you will get acquainting with digital forensics as an important part of the incident response process and will be equipped with useful knowledge that help you to swiftly handle, contain, understand and recover from cyber-attacks and effectively minimise their impact in the quickest way possible”, commented Ayman Shaaban.

remarked Anna Collard, senior vice-president content strategy & evangelist Africa at KnowBe4. (Image source: KnowBe4)

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has released its 2024 Phishing by Industry Benchmarking Report 

The report measures an organisation’s Phish-prone Percentage (PPP), indicating how many employees are susceptible to phishing or social engineering attacks

This year’s report reveals that untrained employees in Africa have a higher PPP at 36.7% compared to the global average of 34.3%. This suggests that employees in African countries are more likely to fall for phishing attempts. The increase from the previous year’s figures highlights the significant linguistic, cultural, and economic diversity across the continent and the substantial cybersecurity challenges faced by African countries.

KnowBe4’s analysis covered 54 million simulated phishing tests involving nearly 12 million users across 55,675 organisations in 19 different industries. The study established a baseline PPP, indicating the click rates on phishing tests by employees who had not received KnowBe4 security awareness training.

While PPP rates varied significantly across different sectors and countries within Africa, the report demonstrates the effectiveness of combining simulated phishing tests with security awareness training. African organisations that consistently implemented training and testing saw a marked reduction in their average PPP to 22% within the first 90 days, and further down to 5.9% after one year of continuous efforts.

These improvements are slightly higher than the global average, which saw a reduction to 18.9% after 90 days and 4.6% after one year of consistent training and testing. This indicates that, at least theoretically, employees in African countries are more prone to cyber threats, underscoring the importance of focusing on mitigating human risks to bolster cybersecurity.

Transforming cybersecurity culture

Despite the challenges faced by African countries and their organisations, the significant decrease in PPP over three and twelve months shows notable progress. This improvement demonstrates that changing cybersecurity culture involves breaking old habits and adopting more secure practices. As employees internalise these new behaviors, they become ingrained, evolving into standard practices that shape organisational culture and create a workforce that naturally prioritises security.

"Cybersecurity challenges in Africa require a combination of regulation, guidelines and security awareness training. Particular focus is needed on threats like deepfakes used for political manipulation, especially ahead of major elections in various African countries," remarked Anna Collard, senior vice-president content strategy & evangelist Africa at KnowBe4. "More public-private partnerships are essential to build capacity, address the skills shortage, and improve resilience in the digital world. Investing in Africa’s youth and providing cybersecurity training opportunities can fill the skills gap and also address youth unemployment."

Nigeria to levy 0.5% on e-money transfers for cybersecurity. (Image source: Adobe Stock)

Nigeria's central bank has announced its intention to implement a levy on domestic electronic money transfers aimed at funding cybersecurity initiatives 

Anna Collard, senior vice-president of content strategy & evangelist for KnowBe4 Africa. (Image source: KnowBe4 Africa)

The recently released 2024 Security Culture Report by KnowBe4 provides a comprehensive analysis of the relationship between security practices and employee behaviors in organisations, drawing insights from surveys conducted across thousands of global organisations  

Kaspersky MDR Report 2023 urges robust cybersecurity solutions & expert management. (Image source: Adobe Stock)

Kaspersky's MDR report 2023 reveals rising cyber incident rates across sectors. Sergey Soldatov, head of security operations center, Kaspersky, emphasises need for robust cybersecurity solutions 

More Articles …

Most Read

Latest news