Why adopt a zero-tolerance approach to cyber hygiene?

Although the rapid deployment of remote working infrastructure, tools, and software may have succeeded in supporting staff working from home during the pandemic, many organisations have been hit with the harsh reality that they failed to create a ‘cyber safe’ environment.

According to Managed Services provider Espria, the acceleration of digital transformation often resulted in gaps, weak spots, and lowered cyber defences. Security experts are developing cutting-edge detection and interception technologies using automation and machine learning. This has the capability to transform cyber security soon. The downside? Criminals have access to the same technology, but with very different plans.

Dave Adamson, CTO at Espria said, “malicious individuals are continually adjusting tactics to exploit the most vulnerable targets, and during the pandemic, gateways to new forms of data theft were opening in every direction. Each new VPN became an internet-exposed attack surface and every piece of video-conferencing software posed new security risks. In fact, between February and May 2020, the personal data of more than 500,000 video conferencing users were stolen and sold on the dark web.

“Attackers were able to ‘Zoombomb’ online meetings, access sensitive information on unpatched devices, and breach security software that hadn’t been properly configured. Statistica states that during the first half of 2022, there were a staggering 236.1 million ransomware attacks worldwide. This came at a time when many companies were storing personal information and sensitive documents in the cloud for the first time.”

“Of course, as an industry, we are fighting back to offer improved cyber security and cyber resilience. This has meant we are seeing increasingly layered protection across all devices, applications, networks, and systems to ensure not only data safety but the right levels of capacity and capability to detect, respond and recover from emerging threats and vulnerabilities as well.”

Robust technology defences are a must to protect your business, but many of the recent attacks are targeted at your people, not your systems. This is backed up by the fact that 61 per cent of all breaches involve user credentials. As a result, a new phenomenon has bred; the digital identity crisis, a world that involves hackers logging in with company keys.

Dave said, “social engineering techniques depend on human error to provide access to valuable data and systems. Unsuspecting users are targeted on and offline with increasingly convincing phishing and vishing scams. And they are often successful because humans can be the weakest link in the security chain.

“Add to that the increased interruptions and distractions many have experienced – and still do - when working from home, along with the isolation from team members which increases stress levels for others. Your employee’s focus only needs to slip for a moment to open the door to a malicious actor.

“And your staff know this, and they feel vulnerable. This is upheld by the fact that 32 per cent have noticed an increase in speculative criminal activity, and 19 per cent of people working from home don’t feel they have the skills and training to stay safe.

“As businesses, we know the cyber hygiene processes that should be followed to maintain the health and safety of our networks and data, and the lapses exploited during the pandemic have been a reminder that these simple but critical precautions can’t be rushed, delayed or overlooked.”

For example, patches and updates should be applied rapidly, backups should take place regularly, and firewalls and security software should be properly configured. Access privileges should be reviewed, incident response plans should be updated, and security awareness training should be comprehensive and ongoing.

The complex environment created by mass remote working has turned every server, device, application, and employee into a potential attack vector. But those aren’t the only risks associated with your revenue stream.

Dave added, “in an increasingly connected business landscape, the security effectiveness of every partner and supplier should be considered. In one survey, 88 per cent of respondents are concerned about the cyber resilience of SMEs in their supply chain. Thereby, it’s no longer just about closing the security gaps to protect yourself from financial, and legal. and reputational damage – if you can’t prove high levels of detection and protection, you could be considered an unmitigated risk, and lose out to someone who can.”

Topics
More News
14 hours ago
Pentel counts down to Christmas with social media campaign
Pentel has launched a social media Christmas campaign to deliver inspiration and creativity throughout the festive season.
17 hours ago
Sharp/NEC to exhibit at ISE 2023
Sharp NEC Display Solutions Europe will be exhibiting at Integrated Systems Europe (ISE) 2023, from 31st January until 3rd February.
18 hours ago
CityFibre’s new process reduces need for wayleaves
Independent full fibre platform, CityFibre, has launched a new process aimed at reducing the need for wayleaves.
19 hours ago
JGBM Integra’s Distributor of the Year
Integra Business Solutions has awarded JGBM with the ‘Distributor of the Year’ award at the recent ‘Strength Through Unity’ National Conference held at the Hilton Hotel, St George’s Park, on 17th November.
3 days ago
BOSS Industry Awards winners announced
Yesterday evening (24th November), over 450 in the industry came together for the BOSS Industry Awards 2022 to celebrate individuals, teams and businesses who have excelled this year.
3 days ago
CityFibre wins Best Infrastructure Provider over 100k
CityFibre, UK independent full fibre platform, has picked up the award for Best Infrastructure Provider over 100k Premises Passed at this year’s ISPA Awards, in recognition of the company’s pace of network build over the last 12 months.
3 days ago
TD SYNNEX voted Distributor of the Year
TD SYNNEX has been voted Distributor of the Year in the CONTEXT ChannelWatch 2022 awards, based on the votes of channel partners across Europe. TD SYNNEX also came out on top in the European categories for innovation, retail, and cloud as well as winning several country awards.
3 days ago
Abloy UK’s Roy Buckingham receives GAI Award
Abloy UK has announced that Roy Buckingham, Regional Specification Development Manager, London & South East has been given the Customer Focus Award at the new Guild of Architectural Ironmongers (GAI) Community Awards.
4 days ago
Exertis unveils newly appointed AV leadership team
Exertis has revealed its new line-up of AV talent which is heading up the Exertis Pro AV division.
4 days ago
Gigamon announces new Channel & Alliances Director EMEA
Gigamon, the deep observability company, has welcomed Jon Kane as Channel & Alliances Director EMEA.

Login / Sign up