Island hopping: a new cybersecurity threats for Italian organizations
The mentioned recent survey executed by Opinion Matters on a sample of 2,000 firms about the cybersecurity in the Italian enterprises put the accent on the most common cyber threats. From the survey it results the most frequent cause of security violations has been the so-called “island hopping” (26%): the attack strategy of the hackers is focused on the network between two enterprises, in order to use the name of the weaker one as an attack vector to the stronger one, using a victim’s brand name and reputation against customers and partners of a company by invading a house, setting up their hub there and then invading other neighboring houses.
After the Island hopping, the most common attack sources in Italy, according to the survey, are the vulnerability of the sistema operating system (18%) and the attacks via web applications (14%). On a global level Carbon Black’s Quarterly Incident Threat Report states that in the 1st quarter of this year 42% of financial firms, 32% of retailers and 32% of manufacturers were targeted by Island Hopping attack.
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.