World Economic Forum Says Cyber-attack Is A Top Risk To Business.

The World Economic Forum (WEF) has listed cyber-security as one of the greatest threats to business around the world. In the Global Risks Report, the annual study of what the WEF fears and what the forum feels the world should fear, cyber-security has made its third appearance.

The category finds itself ranked fairly high, above food crises, interstate conflict, terrorist attacks and spread of infection diseases but below climate change, fiscal crises and mass migration.

In 140 economies, the report notes, cyber-attacks rank in the top ten threats. The United States is considered to have the most to be concerned about given the effects cyber-threats can have on  the economy.

Economies increasingly reliant on connected technologies, like Asia and Europe, are predictably worried as well. It's a concern that will only grow with those connections, the report notes: “As the Internet of Things leads to more connections between people and machines, cyber dependency – considered by survey respondents as the third most important global trend – will increase, raising the odds of a cyber-attack with potential cascading effects across the cyber ecosystem.”

As cyber-dependence rises, the report adds,  “the resulting interconnectivity and interdependence can diminish the ability of organisations to fully protect their entire enterprise.”

There are two particular areas of concern, the report says, that organisations often overlook: mobile internet and machine-to-machine connections.  The report says it is vital “to integrate physical and cyber management, strengthen resilience leadership and organisational and business processes, and leverage supporting technologies”.

While the report clearly states cyber-security as one of the main threats to economic stability going into 2016, worry has diminished since the category was first introduced into the annual report in 2012. Back then, cyber-security came 4th in the top five global threats in terms of likelihood, it disappeared from the ranking in 2013 and then came back at fifth place in 2014. It has not ranked in the top five most likely global threats since then.

This high estimation of cyber-threats, notes the report, may be down to the fact that large data breaches are finally creeping across newspaper headlines and into the public imagination as a more present danger, than it might have otherwise been. In fact, considering the global risk report is gathered from interviews, we might also say that this particular report is just as much a catalogue of global fears as it is actual global risks.

Norman Shaw, CEO and founder of ExactTrak, told SCMagazine UK.com, “This is a really positive thing actually, because there's still some enterprises, and some employees within those enterprises who don't take data protection and cyber-security seriously, despite the mass media reporting it on almost daily.”

For example, said Shaw, “Employees can also use the same passwords for work as they do for everything else, including their personal devices and accounts which are often not subject to much security, making it easy for hackers to find a way into the corporate data.”

He added: “More awareness of how serious the problem of cyber-security is can only be a good thing.”

Tim Grieveson, Hewlett Packard Enterprise's chief cyber strategist, enterprise security products, said: “Businesses need to understand that it's not a matter of whether they will be breached, but a matter of when. As such, security professionals need to start thinking like an adversary to identify what data is most likely to be targeted and what tools are most likely to be used. Make the assumption you're going to be breached or have been but don't know about it yet, and look at how you can disrupt and manage the breach when it inevitably occurs.”

SC Magazine:

« 2016 Is On The Cusp Of A Machine Revolution
US Says China Stole Military Robot Designs »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

CionSystems

CionSystems

CionSystems provides identity, access and authentication solutions to improve security and streamline IT infrastructure management.

FIDO Alliance

FIDO Alliance

FIDO Alliance is a non-profit organization formed to address the lack of interoperability among strong authentication devices.

Repository of Industrial Security Incidents (RISI)

Repository of Industrial Security Incidents (RISI)

RISI is a database of cyber security incidents that have (or could have) affected process control, industrial automation or SCADA systems.

techUK

techUK

techUK represents companies operating in the tech sector in the UK. Focus areas cover all aspects of ICT including cyber security.

BioCatch

BioCatch

BioCatch uses behavioral biometrics for fraud prevention and detection. Continuous authentication for web and mobile applications to prevent new account fraud.

NopSec

NopSec

NopSec provides automated IT security control measurement and risk remediation solutions to help businesses protect their IT environments from security breaches.

Inogesis

Inogesis

Inogesis helps blue-chip organisations harness disruptive technologies and thinking to drive new revenues or overcome challenges by connecting them with dynamic small companies.

IFE Digital Systems

IFE Digital Systems

IFE Digital Systems conducts research, development and consultancy in risk, safety and security related to digital systems in critical infrastructure.

ALTR

ALTR

ALTR provide software-embedded solutions for data security and privacy.

Charities Security Forum (CSF)

Charities Security Forum (CSF)

The Charities Security Forum is the premier membership group for information security people working for charities and not-for-profits in the UK.

Inceptus

Inceptus

Inceptus is a next generation Managed Security Service Provider (MSSP). We are dedicated to keeping our customers safe, secure and protected while doing business on the Internet.

tTech

tTech

tTech is the first and foremost company providing outsourced Information Technology solutions to businesses in Jamaica.

ASPIA InfoTech

ASPIA InfoTech

ASPIA Infotech is a leading Information and cybersecurity organization focused on innovative approaches to avert targeted attacks.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Stratsec

Stratsec

Stratsec is a global team of experts on a mission to protect human life, well-being and the environment against cyber-driven threats.