Cybersecurity: A Personal Plan

Online, hooked up, plugged in and "on the cloud. Whether it is your own personal information such as saved passwords or credit card information or if it is your client's’ personal information, so much of our personal lives can now be easily accessed just with a little Wi-Fi. 

With our new found accessibility, everything at the click of a button, our lives have become all that much more convenient, and our businesses and assets have become all that much more vulnerable. Cybercrime has boomed over the last decade and has become a real problem for businesses, large and small alike.

In the US alone, more than 35,000 computer security incidents happen each day, and that is only the reported attacks. Many more attacks happen but go unreported as businesses aren’t legally required to report some types of attacks. According to PwC’s 2015 US State of Cybercrime Survey, a total of 79 percent of respondents detected a security incident in the past year. The security firm Gemalto estimated that in 2015 alone, more than 700 million data records were compromised, but unfortunately only 37 percent of organizations have implemented a dedicated cyber incident response plan.

All too often, companies consider themselves too small to be targeted by hackers or blame insufficient funds to invest in cybersecurity. But recent studies have shown that because of these reasons alone, small- and medium-sized companies are the first to be picked on. 

As intelligent individuals, hackers know that smaller companies can’t afford to invest in heavy data security, which makes them an easy target. But it is important to note that very often it doesn’t matter what size your company is, it’s more about who you do business with, client and partnership alike and what kind of data you store. 

Businesses that carry a lot of customer contact information like credit cards, health data, or valuable intellectual property are at a high risk of a cyber-attack.

Moreover, if you have any online contact with larger companies that carry and store this kind of information, you can become an easy target. Especially if your non-secure systems can unlock access to your partner’s data.

For many who are still on the fence about whether or not to invest in a protection plan, previous hacks on well-known companies should be enough to sway anyone. Think of Target’s big hit in 2013. 

Most cyber insurance premiums range anywhere between a few hundred to several hundred thousand. Compare that to the $291 million that Target had incurred as of January 2016 in breach-related costs (this includes crisis communications, forensics costs and legal fees). The average costs of legal fees alone after a data breach is nearly $700,000. For larger companies it can reach up and beyond $3,000,000. 

The necessity of strong cybersecurity measures is self-evident. Governments, individuals and companies are caught in the cross hairs. Yahoo itself has also disclosed a massive breach that, along with Target’s hack, is still making headlines.

Unfortunately, companies aren’t spending enough time on training their employees and investing in a security plan. According to a survey, the most common passwords on computers were "password", "123456", and "12345678". In fact, the report revealed a high volume of low levels of security awareness among users and that eight in 10 attacks could be prevented just with basic computer security and better passwords alone. 

This includes better passwords on social media sites and even physical security measures like video object tracking to detect potential physical attacks on your company. The most common form of cyberattacks involve the hacking of social networking sites, along with malicious software targeting computers and credit card fraud.

Whether big or small, your company should be investing in a well-defined security policy. Whether you invest in a hefty insurance policy and implement as many preventative measures possible or even if you train your employees in better computer security, the effort and investment can save you millions down the road. 

Invest in securing your data; it may be the best investment you make ever.

BetaNews:           Cyber Insurance Report 2016 (£):
 

 

« Cuban Telecom Etecsa Starts Home Internet Trial
Malicious Ads Expose Millions To Hacking »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Social-Engineer

Social-Engineer

Social-Engineer is a team of outside–the–box thinkers that share a common focus on human-to-human social engineering.

Global Secure Solutions (GSS)

Global Secure Solutions (GSS)

Global Secure Solutions is an IT security and risk consulting firm and authorised ISO training partner for the PECB.

SISA

SISA

SISA is a global forensics-driven cybersecurity solutions company, trusted by leading organizations for securing their businesses with robust preventive and corrective cybersecurity solutions.

Ideagen

Ideagen

Ideagen provides information management, safety, risk and compliance software solutions that allow organisations to achieve operational excellence, regulatory compliance and reduce risk.

Temasoft

Temasoft

TEMASOFT is a software company focused on developing security and infrastructure products.

QSecure

QSecure

QSecure specializes in the provision of information security and risk management services.

CRI4DATA

CRI4DATA

CRI4DATA's mission is to help organizations build their resilience to cyber risk.

Seekurity

Seekurity

Seekurity is an information security consulting firm specialized in all areas of Cyber Security including Penetration Testing, Vulnerability Assessments and Risk Management.

Beazley

Beazley

Beazley are a specialist insurer with three decades of experience in providing clients with the highest standards of underwriting and claims service worldwide.

Point Predictive

Point Predictive

Point Predictive build Predictive Models using Artificial Intelligence and Machine Learning techniques that help our customers stop fraud and early payment default (EPD).

Networks Unlimited

Networks Unlimited

Networks Unlimited is a leading value-added distributor in Africa, providing technology solutions with a focus on security, networking, enterprise systems management and cloud technologies.

FREE eBook: Practical Guide To Optimizing Your Cloud Deployments

FREE eBook: Practical Guide To Optimizing Your Cloud Deployments

AWS Marketplace eBook: Optimizing your cloud deployments to accelerate cloud activities, reduce costs, and improve customer experience.

Omega Systems

Omega Systems

Omega Systems is a leading managed service provider (MSP) and managed security service provider (MSSP) to mid-market organizations.

Qevlar AI

Qevlar AI

Qevlar AI empowers SOC teams, to eliminate redundant tasks and refocus on what truly matters - making the most of every employee within the SecOps team.

Acumenis

Acumenis

At Acumenis, we help organisations of all sizes to manage information security effectively. Our key services are penetration testing, ISO 27001 implementations, and security

Adili Group

Adili Group

Adili Group is a leading pan-African corporate advisory firm. We deliver tailored solutions in regulation and compliance, risk management, and improving business efficiency.