BEIJING (People’s Daily) - From March 14 to 16, GISEC GLOBAL 2023, the Arab world's largest and most impactful cybersecurity exhibition and conference, was successfully held by the Cyber Security Council at the Dubai World Trade Center.
Data from the event shows that 0-day vulnerabilities have increased by 56 percent or more and that every single advanced threat can cost victims $2.4 million. In 2022, intrusion success rates reached 80 percent and new types of attacks spiked globally, increasing by 400 percent. Advanced threats have become a favorite of highly destructive attackers. This situation has continued to intensify.
During the conference, ANXINSEC, a Chinese cybersecurity company, released its Guidance for Defense Team in Red and Blue Team Exercise. Through analysis of previous cases, the guidance summarizes issues the defending side should focus on and strategies for dealing with red team attacks. It also sorts out common attack techniques, among which the ANXINSEC security expert team predicted the top five favorite weapons of the red team: fileless phishing, weak password exploitation, memory webshell attack, AD domain attacks and 0-Day/N-Day vulnerability exploits. Additionally, the guidance provides targeted defense recommendations or fundamental strategies to assist blue teams in detecting, responding to and tracing threats.
On the X-labs stage, ANXINSEC CSO Roger Wang said that people cannot rely on one single force or measure, no matter how strong or expensive, to protect themselves. Instead, a more practical and smart strategy involves setting up layered, multiple combined capabilities and in-depth defensive lines.
Recently, more advanced threats have emerged, such as Log4j, Emotet, Purple Fox, and APT attacks. Committed to maintaining the peace of the digital world, ANXINSEC can reproduce vulnerability exploits and detect areas vulnerable to attacks without any upgrades to stop help prevent risk to millions of servers. At the same time, ANXINSEC provides an integrated security solution for email attachments, accounts, URLs and abnormal email behaviors to reduce difficulties in detection and traceability. For memory-targeted attacks, ANXINSEC offers fine-granular monitoring of memory reading, writing and execution actions, abnormal actions, and an efficient response model to mitigate fileless attacks, 0-Day vulnerability exploits and other attacks that may evade traditional security solutions.
ANXINSEC CEO Alex Jiang said that memory protection technology, as a future-oriented technology, boasts more effective information detection and better threat perception, which complement current shortcomings in protecting against advanced threats. Traditional protection is not good at detecting advanced threats due to limitations in accuracy, understanding, visibility, and effectiveness of protection against attacks, while memory protection technology can ensure application execution integrity and the security of business systems.