Cyber-attacks are one of the defining security threats of our age and cyber security a growing priority for business and governments alike.
The internet’s transformation of both our personal lives and the world of commerce has created boundless opportunities for hackers with a wide range of motives and an even broader array of tools. From phishing and clickjacking to ransomware, direct-access attacks and denial of service attacks (DoS) the threats keep on evolving and emerging. It’s a game of cat and mouse as the criminals become more sophisticated and cyber security professionals try to keep up.
The stakes are high. Lloyd’s of London has warned that a major cyber-attack could wreak havoc that costs as much as £92bn to remedy – more than the repair bill for Hurricane Katrina, costliest natural disaster in UoS histry. And ‘destruction of service’ attacks could “disrupt the internet itself” and destroy businesses in one fell swoop, according to research from Cisco.
GDPR, which came into force across Europe in May 2018, raises the stakes further still. The fines for data protection breaches – including deficient cyber security protections – are 79 times higher than under the previous regime: €10 million (£7.9 million) or 2% of an organisation’s global turnover.
A government survey of the FTSE 350 has revealed 68% of board members have not been trained to deal with cyber security incidents, potentially leaving their businesses in danger.
If the ubiquity of smartphones have created even more opportunities for criminals, then the internet of things has ramped up the threat further still, with everyday household objects now connected to the internet. In 2016, some 1.5m IoT devices – mostly security cameras – were hijacked during a DDoS attack. Even our cars are becoming vulnerable.
Building systems are also increasingly network-connected too, so even buildings can be hacked. Physical security professionals need to get to grips with cyber security too – which they can do at IFSEC International 2020.
The number of cyber attacks in the UK continues to grow each year. The National Cyber Security Centre (NCSC) has defended against more than 600 cyber attacks in the past year alone.
It seems there is a rising number of attacks on small businesses, due to the preconception that they will likely place less importance on protective measures. According to research from SecureTeam, 43% of UK cyber attacks target small businesses, so there is a growing importance to put measures in place to stop these attacks from being successful. Take a look at the infographic here to find out more about the rising costs of cyber attacks on small businesses.
Overall, however, it does appear cyber security investment figures have increased. Research from Specops Software, a password management and authentication solution vendor, indicates that businesses in construction have increased their spending by around 188%, while finance and insurance firms invested the most – averages coming to £22,050.
While cyber attackers are constantly developing new methods of strategies, some common examples of cyber attack protection can include:
‘Ethical hacking’ is also a method businesses can employ. Understandably, many are nervous about the prospect of giving a third-party access to its systems, but this engagement can provide some real value. It offers opportunities to learn where the weaknesses are in your systems, the effectiveness of your security systems and the readiness of your IT team to respond, in order to better understand where your security budget should be spent and how compliant you are with industry regulations. You can find out more about ethical hacking here.
January 17, 2020
When your systems are compromised, it is often the result of a human error. Hackers know this. In many cases, it isn’t sophisticated hacking techniques that expose vulnerabilities. Instead, it’s the failure of people to follow security procedures. Read More
January 14, 2020
There is much talk in the cyber security world about what is termed the ‘insider threat’. To those not in the know however, the term can be misleading and conveys different things to different people. Read More
January 9, 2020
Foreign exchange company, Travelex is continuing to be held to ransom by hackers, after a cyber-attack forced the firm to revert back to pen and paper, rather than using its computer systems. Read More
January 2, 2020
Ciaran Martin has announced that he will be stepping down as the head of the UK’s national cyber security unit (NCSC) in the summer. Read More
January 2, 2020
IFSEC Global chats with Anthony Young, Founding Director of Bridewell Consulting, to discuss the growing cyber threats facing organisations and how they can protect against them. Read More
December 31, 2019
IFSEC Global hears from its partners in Korea, where SECON 2020 is set to be held in March, about the trends set to affect the 2020 IT security market. Read More
December 30, 2019
IFSEC Global sits down with John Gilbert, GM and Regional VP of Sales at Yubico, to understand how the company is working in partnership with the Police Digital Security Centre. Read More
December 18, 2019
David Orme, SVP, IDEX Biometrics ASA, outlines the concerns of Generation Z over online banking security and the importance of biometrics to the younger generation. Read More
December 17, 2019
A new whitepaper from Axis Communications has called for a need for improved cyber security in the retail sector in the stringent GDPR era. Read More
December 13, 2019
Sylvain Cortes, Security Evangelist and cyber security expert at Alsid, highlights the need for security departments to raise awareness through their organisations over cyber threats this Christmas. Read More