Most Alarming Cyber Attacks of 2021 Impacting IT and Security Sector

In the rapidly evolving world of information technology, this year has been marked by a series of significant security challenges. From PrintNightmare to the Kaseya ransomware attack, and the growing concern over zero-day vulnerabilities, IT professionals have been kept on their toes.

The most high-profile zero day of 2021 is PrintNightmare, a vulnerability impacting supported versions of Windows. This issue, which came to light in July, has been a recurring concern for many, with updates being released every week according to Jason Slagle, VP of technology at CNWR IT Consultants. In fact, approximately 30% to 40% of service desk time at CNWR is spent on printer-related issues due to PrintNightmare. However, it's worth noting that PrintNightmare did not cause significant chaos for Lime Networks, as a majority of their clients are cloud-based.

The Kaseya ransomware attack, another major event this year, was caused by zero days in the company's on-premise VSA product. This attack was the top threat for the security industry, according to Kelvin Tegelaar, and raised awareness for what Managed Service Providers (MSPs) were, in both good and bad ways, according to Matthew Fox.

Researchers have also warned of a zero-day vulnerability in SiteCore products. Zero days, particularly, are an easy point of access for different threat actors and tools for chain attacks. In fact, Mandiant found that the number of zero days in 2021 is already double the total amount from 2020, indicating a growing zero-day market.

The exchange vulnerability led to ransomware attacks and showcased how quickly criminals are using fixes in patches as a proof of concept exploit. Remote or hybrid work has made companies aware that they cannot rely on static controls to fend off threats. Both turning off automatic updates and changing partnerships with managed service providers are risky options for defending against zero days, as trust still isn't automated.

In the NinjaOne "IT Horror Fest" webcast on Thursday, Tom Lawrence, president of Lawrence Technology Services, expressed anxiety about tickets with 'printer' in them due to PrintNightmare. Federal, state officials are also investigating a ransomware attack targeting Nevada.

According to research from JumpCloud, security breaches, hacks, and ransomware are the top concerns for IT professionals in 2021. The recent attacks have given Matthew Fox, who worked in various IT jobs before leaving "hands-on IT," a renewed sense of paranoia and anxiety.

In conclusion, the IT landscape of 2021 has been marked by a series of significant security challenges. From PrintNightmare to the Kaseya ransomware attack, and the growing concern over zero-day vulnerabilities, IT professionals have been kept on their toes. As we move forward, it's crucial that companies remain vigilant and proactive in their approach to security.