Managing Cyber Black Swans: Can potentially crippling cyber situations be foreseen, allayed, and turned into growth opportunities?

Anne Coull; Elena Sitnikova

Managing Cyber Black Swans: Can potentially crippling cyber situations be foreseen, allayed, and turned into growth opportunities?

Anne Coull
, Elena Sitnikova

College of Science and Engineering

Research output: Contribution to journal › Conference article › peer-review

Abstract

Black Swan situations and their consequences are considered extremely unlikely before they happen and make perfect sense afterwards. Two malicious cyber attacks that triggered Black Swan situations, Emotet and WannaCry, are assessed, along with their attack sequences, and the vulnerabilities they exploited. The early warning signs and practical actions to prevent these types of Cyber Black Swan situations are presented. Prevention is based on protection through practical defence in depth controls along with effective ongoing maintenance. Added to this is the crucial element of situational awareness and a call to action for the cyber teams to focus their response efforts. This robust foundation of security and resilience, when combined with adaptability, are the attributes for antifragility. Enabling the organisation to thrive and grow in the midst of this volatility.

Original language	English
Pages (from-to)	23-32
Number of pages	10
Journal	International Journal on Advances in Security
Volume	16
Issue number	1 & 2
Publication status	Published - 30 Jun 2023

Keywords

Black Swan
Emotet
WannaCry
Early Warning Indicator
Critical Vulnerability
Situational Awareness
Response

Access to Document

https://www.thinkmind.org/library/Sec/Sec_v16_n12_2023/sec_v16_n12_2023_3.htmlLicence: In Copyright

Cite this

@article{78b242a33b6a49b78a6cb60000061e19,

title = "Managing Cyber Black Swans: Can potentially crippling cyber situations be foreseen, allayed, and turned into growth opportunities?",

abstract = "Black Swan situations and their consequences are considered extremely unlikely before they happen and make perfect sense afterwards. Two malicious cyber attacks that triggered Black Swan situations, Emotet and WannaCry, are assessed, along with their attack sequences, and the vulnerabilities they exploited. The early warning signs and practical actions to prevent these types of Cyber Black Swan situations are presented. Prevention is based on protection through practical defence in depth controls along with effective ongoing maintenance. Added to this is the crucial element of situational awareness and a call to action for the cyber teams to focus their response efforts. This robust foundation of security and resilience, when combined with adaptability, are the attributes for antifragility. Enabling the organisation to thrive and grow in the midst of this volatility.",

keywords = "Black Swan, Emotet, WannaCry, Early Warning Indicator, Critical Vulnerability, Situational Awareness, Response",

author = "Anne Coull and Elena Sitnikova",

year = "2023",

month = jun,

day = "30",

language = "English",

volume = "16",

pages = "23--32",

journal = "International Journal on Advances in Security",

number = "1 \& 2",

}

TY - JOUR

T1 - Managing Cyber Black Swans

T2 - Can potentially crippling cyber situations be foreseen, allayed, and turned into growth opportunities?

AU - Coull, Anne

AU - Sitnikova, Elena

PY - 2023/6/30

Y1 - 2023/6/30

N2 - Black Swan situations and their consequences are considered extremely unlikely before they happen and make perfect sense afterwards. Two malicious cyber attacks that triggered Black Swan situations, Emotet and WannaCry, are assessed, along with their attack sequences, and the vulnerabilities they exploited. The early warning signs and practical actions to prevent these types of Cyber Black Swan situations are presented. Prevention is based on protection through practical defence in depth controls along with effective ongoing maintenance. Added to this is the crucial element of situational awareness and a call to action for the cyber teams to focus their response efforts. This robust foundation of security and resilience, when combined with adaptability, are the attributes for antifragility. Enabling the organisation to thrive and grow in the midst of this volatility.

AB - Black Swan situations and their consequences are considered extremely unlikely before they happen and make perfect sense afterwards. Two malicious cyber attacks that triggered Black Swan situations, Emotet and WannaCry, are assessed, along with their attack sequences, and the vulnerabilities they exploited. The early warning signs and practical actions to prevent these types of Cyber Black Swan situations are presented. Prevention is based on protection through practical defence in depth controls along with effective ongoing maintenance. Added to this is the crucial element of situational awareness and a call to action for the cyber teams to focus their response efforts. This robust foundation of security and resilience, when combined with adaptability, are the attributes for antifragility. Enabling the organisation to thrive and grow in the midst of this volatility.

KW - Black Swan

KW - Emotet

KW - WannaCry

KW - Early Warning Indicator

KW - Critical Vulnerability

KW - Situational Awareness

KW - Response

M3 - Conference article

VL - 16

SP - 23

EP - 32

JO - International Journal on Advances in Security

JF - International Journal on Advances in Security

IS - 1 & 2

ER -

Managing Cyber Black Swans: Can potentially crippling cyber situations be foreseen, allayed, and turned into growth opportunities?

Abstract

Keywords

Access to Document

Fingerprint

Cite this