They say that ransomware is the biggest problem for businesses on the Internet right now.
Let’s be clear.
Ransomware is the result of cumulative problems that businesses on the Internet have.
The biggest problem right now is vulnerable software is being shipped more frequently than ever by ALL of the biggest companies, even Microsoft.
The most recent ransomware attacks such as Kaseya and SolarWinds are the result of software companies supplying vulnerable software to customers.
There’s a new vulnerability found in all versions of Microsoft Windows, called PrintNightmare.
There’s been FOUR major exploits found in Microsoft Exchange this year.
Kaspersky’s password manager was found to create passwords that could be bruteforced in seconds.
And so on, and so forth.
The point is that to reduce the frequency of major vulnerabilities and attacks of business and customer systems we must invest time and money in more people, security testing every single product BEFORE AND AFTER SHIPPING. Get security teams playing with every bell and whistle on the new and old thingamabobs. And we must get better at fixing the problems, and pushing the updates to the end users.
(Just look at the sh*t-show that has been taking place with Microsoft’s patch process for PrintNightmare)
We’re making it too easy for foreign and domestic cybercriminals to screw with our businesses and lives. Before we even think about “Hacking Back” we need to get our own house in order.