• DarkMatter Group releases its quarterly security Report focusing on the UAE threat landscape
  • The Cyber Security Report finds 40% of identified cyber-threats are Reportedly “high-risk”

Abu Dhabi: DarkMatter Group, the region’s first and only fully-integrated digital transformation, defence and cyber security consultancy and implementation firm today released its quarterly Cyber Security Report (“Report”) providing insights to UAE organisations regarding the threats and vulnerabilities they face in today’s landscape of digital transformation.

Q3 2018 highlights

  • 93% of DarkMatter’s assessments found outdated software and 83% found unsupported software
  • 70% of incident types discovered were caused by ‘attempted access’ or ‘misconfigurations’
  • 45% of the top 20 most common vulnerabilities are classified as high or critical
  • The UAE had potentially as many as 276,000 vulnerabilities identified across the nearly 800,000 Internet-facing hosts identified and assessed
  • Best practice recommendations to counter these threats include: end-user awareness training, implementation of two-factor authentication, software upgrades and configuration management

The report also covers 9 most common threat vectors which DarkMatter identified. These 9 threat vectors were successfully used to elude many organisations’ cyber defenses. The insight DarkMatter gives here is essential to any executive who’s responsible for making digital and cyber decisions on behalf of his/her organisation.

“The findings highlighted in the Report provide stark reminders of the potential risks we face,” said Eddie Schwartz, EVP of Cyber Services at DarkMatter Group. “For example, attempted access and outdated software vulnerabilities were root causes in prior large-scale problems, such as the Yahoo breach and the WannaCry ransomware attacks.  If no action is taken, similar unfortunate circumstances can become reality again for many organisations.”

The Cyber Security Report is the first of its kind in the region, bringing together in-house data and analytics from the company’s specialised services and platforms techniques as well as open source information specifically relevant to the UAE. DarkMatter Group’s aim is to raise awareness, give insights and offer recommendations to remediate the risks identified.

The Report draws insights in qualitative and quantitative proof-points that will help UAE organisations better understand the risks they face and take immediate steps to raise levels of cyber resilience.  

According to the Report, the UAE-affiliated entities have nearly 800,000 publicly visible “hosts” on the Internet, computer systems that are typically servers providing different business functionalities, of which 276,000 vulnerabilities are directly related. Nearly half of the vulnerabilities identified are rated very high on the Common Vulnerability Scoring System (CVSS), a standard measure of the severity of security weaknesses in systems.

Furthermore, the Report investigated numerous incidents related to the above-mentioned vulnerabilities. These incidents were categorized in six incident types and ranked based on the aeCERT’s severity scale.

Eddie Schwartz added: “We identified several incidents ranked ‘critical’ on aeCERT’s scale, meaning great harm could be done to an organisation within the UAE if any of these attacks were executed successfully. The findings demonstrate that continuous cyber assessment and an ongoing commitment to improvement in security posture through cyber transformation is needed to ensure higher levels of cyber resilience.”

The Report concludes with a list of 7 practical recommendations for organisations to implement and improve their cyber defences:

  • Software updates and patching
  • System and Network Security hygiene
  • Removal of non-standard software
  • Implement advanced password management policies including two-factor authentication
  • Scanning and monitoring of critical systems
  • Conduct ongoing cyber security awareness training
  • Conduct continuous cyber security assessments

These recommendations are detailed in the Report along with relevant details to support UAE organisations protect themselves against potential cyber risks. The link to the Report can be found here [https://www.darkmatter.ae/insights/cyber-security-report/].

DarkMatter Group recommends to all UAE organisations to take advantage of the upcoming cyber security event Hack-in-The-Box (HITB). In addition to the world-renowned capture-the-flag (CTF) competition, the HITB event boasts an extensive agenda with two days of technical training tracks in 11 different subjects and two days of multi-disciplined security conference lectures. Darkmatter Group will be joining HITB by conducting “Beyond Cyber”, a business track in parallel aimed at the leadership of these organisation.  

-Ends-

About DarkMatter Group

Headquartered in the UAE, DarkMatter Group is the region’s first and only fully-integrated digital transformation, defence and cyber security consultancy and implementation firm.

Our mission is to be the leading provider of smart and safe digital transformation to our stakeholders; with innovation and research being at the core of our advancement and practices.

DarkMatter Group enables businesses and governments to harness and maximise the benefits of the digital world safely and effectively through four main divisions:

  • DarkMatter is the Cyber Security and Secure Communications practice which focuses on security, safety, and resilience for businesses.
  • DigitalX1 is the Digital Transformation and Applied Technologies practice which helps businesses and governments harness advanced technologies in pursuit of operational excellence.
  • DigitalE1 is the Education practice which seeks to advance knowledge transformation by embedding digital talent in the company’s services.
  • Government Solutions is the practice dedicated to helping governments strengthen their defence and security posture through bespoke technologies.

DarkMatter Group provides bespoke solutions for a selection of vital sectors including defence, intelligence, civil government, financial services, transportation, energy, and telecommunications.

For further details, visit www.darkmatter.ae 
Media contacts
Stephanie Delaey
Corporate Communications
DarkMatter Group
Tel.: +971 52 438 6027
Email: Stephanie.Delaey@darkmatter.ae 
John Greenway, Brunswick Group  
Tel.: +971 56 994 0828
Email: jgreenway@brunswickgroup.com 

© Press Release 2018

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.