Sophos Cybersecurity Report 2023: Key Takeaways For Nonprofits To Help Reduce Risk In Their Organization
This report helps focus on the operational aspects of cybersecurity, relevant for those responsible for implementing security measures within Nonprofit organizations.
Based on deep analysis of the incident response cases remediated by Sophos in the first half of 2023, the Active Adversary Report for Tech Leaders in 2023 provides insights into the current threat landscape:
- Compromised credentials are now the #1 root cause of incidents
- Lack of Multi-Factor Authentication plays a part in 95% of attacks
- Majority of the attacks occur outside typical business hours
- It takes less than a day for attackers to access Active Directory
Use the findings from this report to help make better decisions about how to deploy your limited resources to support corporate strategy while driving to better protect your organization.
This report provides valuable insights into the cybersecurity landscape for nonprofits, analyzing data from the first half of 2023. It focuses on the operational aspects of cybersecurity, particularly relevant for those responsible for implementing security measures within nonprofit organizations. The report is based on data from 80 cases in the first half of 2023, providing a snapshot of the current threat landscape.
Why Nonprofits Should Care:
Nonprofit organizations need to be aware of current cybersecurity threats and risks to protect their sensitive data and donor information.
Effective cybersecurity strategies can help nonprofits fulfill their missions without disruptions, ensuring they can continue their valuable work.
Key Findings for Nonprofits:
Compromised Credentials
Nonprofits are susceptible to attacks involving stolen login information, which can result in data breaches. Protecting login credentials is crucial.
Multi-Factor Authentication (MFA)
The absence of MFA in many nonprofit organizations makes them vulnerable to attacks. Implementing MFA should be a priority.
Dwell Time
Detecting and responding to threats quickly is essential. Reducing dwell time (the time an attacker is present) is vital to minimizing damage.
Active Directory Servers
Nonprofits should be aware that attackers often target Active Directory servers to gain unauthorized access. Proper defense measures are crucial.
Remote Desktop Protocol (RDP)
Managing the risks associated with RDP is essential to prevent unauthorized access.
Missing Telemetry
Insufficient data collection can hinder threat detection. Nonprofits should invest in proper telemetry tools and practices.
The Importance of Patching:
Keeping software and systems up to date is critical to reducing vulnerabilities. Neglecting patching can lead to security breaches.
The report highlights cases where unpatched vulnerabilities were exploited, emphasizing the importance of timely updates.
Why Nonprofits Should Act:
Nonprofits often deal with sensitive information, making them appealing targets for cybercriminals.
Implementing security measures, including patching and MFA, can significantly reduce the risk of data breaches and protect the organization’s reputation.
In summary, this report underscores the importance of cybersecurity for nonprofits, emphasizing the need for proactive measures such as MFA, timely patching, and a robust security strategy. Nonprofits should consider these findings to safeguard their operations and maintain trust with their supporters.