Platform

Unify HRM Overview

Platform

Capabilities

Identify: Human Risk Operations Center (HROC)
Dashboards

Power Insights

Benchmarks

Protect: Action Plans
Nudges: Communications & Employee Scorecards

Training: Risk Based SAT and Phishing

Orchestration: Policy Playbooks

Report: Human Risk Index (HRI)
Employee Scorecards

Manager Reporting

Board and Executive Reporting

Bundles

Unify Go
Start your journey to HRM here.

Monitor risk by:

Security Training Compliance

Phishing and Email

Unify Enterprise
Covers risk in Unify Go and adds:

Malware & Ransomware

Data Loss

Account Takeover

Featured Resources

Living Security Blog
What is Attack Surface Management?
link

Living Security Blog
Why Your Team Should Have A Business Continuity Plan
link
Solutions

Solutions Overview

Solutions

By Role

CISO
Provides CISO’s, executives, and boards a complete picture and prioritization of workforce risk by type, department, location, and more.
link

Security Awareness Team
Go beyond training completion and phishing click rates and proactively safeguard your organization from human-induced security incidents.
link

GRC
Identify, resolve and track commonly violated policies with granular accuracy to lower risk and improve workforce compliance.
link

SOC/IR
Unleash the true potential of your human firewall with data-driven insights and action plans that curb threats before they become incidents.
link

By Risk

Training Compliance
Monitor training compliance status for users and segments across the enterprise.
link

Phishing & Email
Identify the users most and least at risk to social engineering attacks and protect them.
link

Malware & Ransomware
Proactively protect users from malware including viruses, worms, Trojan viruses, spyware, adware, and ransomware.
link

Data Loss
Pinpoint when data is at risk of leaving your controlled environment through unauthorized access or malicious intent.
link

Identity Threats
Get visibility into the most susceptible users for account compromise and mitigate their risk.
link
Products

Products

Products Overview
Transform how your organization approaches Security Awareness and Training by shifting to a proactive HRM approach that creates a strong culture of security.

Living Security Blog
What is Attack Surface Management?
link

Unify Human Risk Management
Establish a proactive security loop.
Security Awareness Training
Interactive compliance training for modern threats.
CyberEscape Rooms
Put your team in the center of security scenarios
Cybersecurity Awareness Month
Create a cyber vigilant workforce in October
Cybersecurity Engagement Training Go beyond compliance training Phishing
Stop social engineering attacks in their tracks with realistic simulations and training
across phishing, vishing, smishing, and more.
HRM

HRM

Human Risk Management: Proactive Security
Human Risk Management (HRM) is the process of identifying, assessing, and mitigating risks associated with human behavior in relation to an employee's use of technology.
HRM Maturity Model
How far is your company along the path to true proactive security?

Living Security Blog
What is Attack Surface Management?
link
Resources

Resources

Resources
Level up on Human Risk Management with a comprehensive collection of webcasts, whitepapers, ebooks, and more.
Blog
Access hundreds of informative blogs with deep dives and best practices relating to the full array of cybersecurity risks we face.
Webinars
Watch dozens of webinars tackling some of cybersecurity’s biggest challenges featuring thought leaders from leading organizations.
Case Studies
See how a variety of organizations utilize Living Security’s HRM Platform, Training, and Phishing to reduce risk with proactive defense.

Partners
Human Risk Management Powered by Partners.
Technology Alliance Program
Extend the value of your offering with HRM.
Partner Support
Unlock your potential with our partner hub.

Living Security Community Share HRM best practices Newsroom Read the latest news on Living Security. Support
The more you know, the more you grow.
Why Living Security
Establish a proactive security loop.
Start Now

January 5, 2022

Takeaways From the Biggest Cyber Attacks of 2021

Cyber attacks have been on the rise year after year, and 2021 has been no exception. Cybersecurity Ventures stands by a prediction they made that cybercrime will cost the world $6 trillion annually by 2021, which has doubled since the $3 trillion in 2015.

With this rising cost, it’s more important than ever to create and utilize a strong cybersecurity plan to mitigate risk for your organization.

The silver lining is that with more attacks, we can take away more valuable lessons.

Here are six of the top cyber attacks of 2021 and what we can learn from them about improving your own organization’s cybersecurity:

1. The JBS Ransomware Attack

JBS, the world’s largest meat supplier, faced a ransomware attack at the end of May 2021 causing their operations to halt at 13 of their U.S. processing plants and threatening the country’s meat supply.

AP News reported, “The attack targeted servers supporting JBS’s operations in North America and Australia. Backup servers weren’t affected and the company said it was not aware of any customer, supplier, or employee data being compromised.”

Lessons Learned

It’s crucial to have cybersecurity plans in place. Thankfully, JBS was able to move quickly once the attack occurred. "We have cybersecurity plans in place to address these types of issues and we are successfully executing those plans," JBS USA CEO Andre Nogueira said to CBS News.
Ransomware attacks can be carried out on companies of any size. As the world’s largest meat supplier, it might be assumed that they could avoid situations like this, but even the best security protocols in the largest companies can be beached.

2. The Twitch Data Leak

On October 6, 2021, the streaming service Twitch confirmed it had been the victim of a breach.

The BBC called it a “massive data breach” and reported that over 100 GB of data was leaked online. The information leaked contained the payment information on the service’s top streamers, source code, and other confidential information that the organization had not previously released.

Twitch responded by posting and updating a blog post as they released more information about the attack. Within this, they explained they had reset all stream keys for their users and provided specific information for how users can utilize their new keys.

They also stated in the blog post, “We take our responsibility to protect your data very seriously. We have taken steps to further secure our service, and we apologize to our community.”

Lessons Learned

Keep your login information updated. While Twitch wasn’t aware of any leak in user login information, it’s still a good idea to update your password anyway. In addition, it’s important to utilize multi-factor authentication whenever possible.
Provide updates for your community. As your organization receives more information on the attacks, it’s crucial that you update your community, particularly those who may have been affected.

3. The Kaseya Breach

In July 2021, IT management software developer Kaseya was the victim of a cyber attack. ZDNet reported that the threat actors found and attacked a “vulnerability in Kaseya's VSA software against multiple managed service providers (MSP)—and their customers.”

Estimates suggest that 800 to 1,500 customers may have been affected by this attack.

In response to the attack, Kaseya deployed their incident response team who notified their customers, took necessary precautions to ensure more customers weren’t affected, and otherwise ensured the situation was properly managed.

Lessons Learned

Provide clear next steps for your customers. Whenever possible, it’s important to give your customers specific, detailed directions so they know what they need to do.
Have a dedicated incident response team in place. Because Kaseya already had a team in place who knew what to do, the situation was quickly remedied. They also created multiple patches and updates to ensure future security.

4. The Vulnerability Researchers Attack

Google’s Threat Analysis Group (TAG) began sharing updates in January 2021 about a group that targeted security experts.

In order to connect with security experts, Google reported that “the actors established a research blog and multiple Twitter profiles to interact with potential targets.”

By immediately discussing this situation with the community, Google provided other cybersecurity experts with the knowledge they needed to keep themselves safe from this attack and others similar.

Lessons Learned

Anyone can be a target, even cybersecurity experts. That makes ongoing training critical for everyone at work and at home.
Share information with others at risk. By creating a trustworthy community and sharing information about the threat actors like Google did, they were able to help others avoid these attacks.

5. The Pegasus Zero-Day Vulnerability

This attack caused a spyware breach on a number of Apple products. The attack was “known as a ‘zero-click remote exploit,’ which is considered the Holy Grail of surveillance because it allows governments, mercenaries, and criminals to secretly break into someone’s device without tipping the victim off.”

This allowed the threat actor to access the camera, microphone, texts, calls, and more on users’ phones without their knowledge.

Apple responded by immediately working to fix the problem and quickly released a new update to fix the vulnerability.

Lessons Learned

Update your devices. Ensure your devices always have up-to-date software, including your computer, phones, and other smart devices.
Always assume your information is vulnerable. By utilizing passwords, multi-factor authentication, encryption, and other safety best practices, you can mitigate risks for attacks like these.

6. Colonial Pipeline

In May 2021, Colonial Pipeline was the victim of a ransomware attack that shut

down one of the largest US fuel pipelines. They provide gasoline, diesel, and jet fuel to 45% of the east coast of the United States.

DarkSide, a cybercrime group, took responsibility for the attack that required Colonial Pipeline to shut down all of its pipeline operations and pause IT systems.

Lessons Learned

Ransomware attacks can have trickle-down effects. Though the attack itself caused a significant amount of harm to Colonial Pipeline, it also caused the fear of a gas shortage in the Southeast United States.
The scope of a breach can widen. In August, Colonial Pipeline told CNN that the personal information of roughly 6,000 employees had been involved in the breach as well.

How Is Your Organization Tackling Risk?

Through each of these breaches, it’s easy to see that anyone can be a target of a cyber attack. This makes it crucial to ensure you have plans in place to mitigate risk and protect your organization.

One of the most effective ways to do this is through the people who work at your organization. In cybersecurity, even though we throw multiple layers of technology at the problem, more than 80% of breaches are caused by human error, action, or inaction. With better human risk management, you can transform your cybersecurity initiative.

Want to keep your team up to date on the latest cybersecurity attacks and our takeaways from them? Our latest Campaign-in-A-Box on the Kronos Ransomware Attack has everything you need to know and tips to help you and your team stay safe!