Search Results for: cyber

Meatspace, cyberspace, the uncertainty of expertise and some other stuff

Meatspace, cyberspace, the uncertainty of expertise and some other stuff

The sign that somebody knows their stuff about a subject is often that whatever they say about it is full of questions, equivocations and caveats. They’ll often start out by saying things are complicated in mitigation of their opinion on a particular topic. They’ll say there are no silver bullets. It’s almost always neophytes, chancers and the conflicted that offer certainty. To prove my point here is David D’Souza of the CIPD making a point about the tendency to look for pat, narrow solutions to complex, broad challenges. Not only does he have something interesting to say, you know that he has the depth and breadth of knowledge to expand on each of the points he makes with yet more sophistication. It’s fractal thinking.

More →

Employee cybersecurity only getting worse as digitised workplace grows

Employee cybersecurity only getting worse as digitised workplace grows

cybersecurityNew research suggests as the supposed ‘technologically savvy’ millennials enter the workforce they are more likely than older workers to break the most basic of security rule, reusing passwords across different accounts. This is according to the results of the 10th Annual Market Pulse Survey from SailPoint Technologies Holdings, which finds that despite an increased focus on cybersecurity awareness in the workplace, employees’ poor cybersecurity habits are getting worse, which is compounded by the speed and complexity of the digital transformation. More →

Firms suffer an average of 633 cyber attacks each day

Firms suffer an average of 633 cyber attacks each day

UK businesses were subjected to an average of 231,028 internet-borne cyber attacks each during 2017 according to a report from Internet services provider Beaming. On average, each UK firm with an internet connection experienced 633 attempts a day to breach their corporate firewalls last year, with more than two-thirds (70 per cent) of attacks targeting connected devices such as building control systems and networked security cameras. The volume of cyber attacks increased by 24 per cent in the final quarter of the year, with companies – on average – experiencing 68,212 attacks each between October and December. This extra activity at the end of 2017 ensured the number of cyber attacks last year on UK organisations surpassed 2016 levels, when Beaming recorded 228,659 attacks per business.

More →

Just half of UK businesses have the right skills to combat a cyberattack

Just half of UK businesses have the right skills to combat a cyberattack

Only half (50 percent) of UK companies believe they have the right skills to address a cyberattack, despite some high profile cyberattacks this year against the NHS, Uber and Equifax. A lack of cybersecurity skills may be due to a wider skills gaps facing the UK tech industry, claims new research from IT jobs board, CW Jobs. Nearly a third of tech employees reported feeling they were insufficiently trained in coding, cybersecurity and cloud migration. The gaps in employees’ skills is translating to the businesses they work for with 23 percent saying their business is missing programming and cybersecurity skills. A little over half (51 percent) of IT workers said that cybersecurity was included in their training, and almost one in four (23 percent) say they are not confident in handling a cyber security attack. Despite the growing threat and lack of in-house expertise, only half (50 percent) of employers look for cybersecurity skills when recruiting new IT talent. However, despite awareness around the risk of cybersecurity and the lack of preparedness, only 22 percent of employers are currently training their existing staff in cybersecurity.

More →

Report warns of growing cybersecurity threat to organisations by their own staff

Report warns of growing cybersecurity threat to organisations by their own staff

An overwhelming majority of employees are deliberately seeking out information they are not permitted to access, exposing a major cybersecurity problem among today’s workforce, claims new research published by One Identity. The survey, conducted by Dimensional Research, polled more than 900 IT security professionals on trends and challenges related to managing employee access to corporate data. Among key findings, a remarkable 92 percent of respondents report that employees at their organisations try to access information that is not necessary for their day-to-day work – with nearly one in four (23 percent) admitting this behaviour happens frequently. Most alarmingly, the report indicates that IT security professionals themselves are among the worst offenders of corporate data snooping. One in three respondents admit to having accessed sensitive information that is not necessary for their day-to-day work.

More →

Companies overlooking cost of cyber risks as variety and number of breaches increase

Companies are overlooking cost of cyber risks as incidents of breaches riseCyber risk is becoming increasingly common while the types of breaches are becoming more diverse, claims a new white paper by the audit and accounting expert BDO. For instance, ransomware is now the fifth most common type of malware; with the cost of freeing up computer systems from ransomware tripling since 2016. Yet organisations are continuing to spend up to four times more on insuring other company assets (e.g. property, equipment etc.) than on cyber insurance, despite an increasingly widespread belief that their cyber assets are in fact up to 14 percent more valuable. The report also finds that as cyber incidents increase, they become more difficult – and therefore more expensive – to defend. In the new cyber insurance white paper, BDO’s global cybersecurity leadership group stresses the importance of businesses gaining an understanding of their unique risk profiles in order to ensure the right cyber insurance for their needs. Cyber insurance: managing the risk does include some of the positive trends around cyber security – for example, both the level of Board involvement and investments in cybersecurity have increased significantly in the last 2-3 years.

More →

UK organisations remain unprepared to deal with effects of cyber attack

UK organisations remain unprepared to deal with effects of cyber attack

A new report from insurance broker Lockton, claims that UK businesses are unprepared for the potential length and severity of a cyber security breach. In ‘Cyber Aftershock: How UK companies underestimate the seismic waves produced by a data breach’, the firm claims that fully half of UK companies (50 percent) expect to be entirely operational 48 hours after a large-scale cyber security breach. The survey of senior decision-makers shows that only 2 percent of UK businesses think a breach will affect them for more than 10 days. The report challenges these ways of thinking and sets out the key steps organisations should now be taking.

More →

Employees accessing workplace IT systems from holiday may be cyber security risk

Employees accessing workplace IT systems from holiday may be cyber security risk

Employees remote working while on holiday may pose a Cyber Security riskOrganisations are taking serious security risks by allowing employees to access workplace IT systems remotely while on their summer holiday, a telecoms company has warned. According to research by the corporate IT and cyber-security arm of Deutsche Telekom, nearly a third of employees (31 percent) use free Wi-Fi hotspots, and nearly a quarter (24 percent) use them for work-related emails and documents.  These are a big danger area as they are insecure and easy for hackers to clone (getting access to all email and web traffic, including any work documents and passwords). It also warns that 28 percent of employees email work documents to and from their personal email, despite this creating numerous security problems.  Ten percent use free USB charging points at airports and stations; and these ports can be used to transfer viruses and malware to unsuspecting users. The blame cannot solely be placed on the employees though, as just 28 percent of employees have never in their working career had any cyber security training to protect themselves and their employer.

More →

UK cyber workforce grows 160 percent in five years, new report claims

UK cyber workforce grows 160 percent in five years, new report claims 0

The UK ‘cyber workforce’ has grown by 160 percent in the five years to 2016, according to new Tech Partnership research. Around 58,000 people now work in cyber security, up from 22,000 in 2011, and they command an average salary of over £57,000 a year – 15 percent higher than tech specialists as a whole, and up 7 percent on last year. Just under half of the cyber workforce is employed in the digital industries, while banking accounts for one in five, and the public sector for 12 percent. The figures, derived from analysis of bespoke data from IT Jobs Watch and supporting information from the Office of National Statistics’ Quarterly Labour Force Survey, are published in the Tech Partnership’s most recent Fact Sheet, Cyber Security Specialists in the UK.

More →

Large number of organisations remain under-prepared for a cyber attack

Large number of organisations remain under-prepared for a cyber attack 0

Over a third (35 percent) of businesses targeted in a cyber-attack in the past 12 months have taken no extra measures to protect themselves in the future, claims a new report. The study of 3,000 companies in the UK, US and Germany, conducted for Hiscox says that more than half (53 percent) of businesses in the three countries are ill-prepared to deal with cyber-attacks. It also found that more than half (57 percent) of companies surveyed admit they have been the target of at least one cyber-attack in the past 12 months, while one in four (26 percent) companies has been targeted three times or more with the average cost per incident to UK businesses estimated to be £42,779. Although three out of five businesses (62 percent) took less than 24 hours to uncover their biggest cyber incident in the past 12 months, and a quarter (26 percent) did so within an hour of its occurrence, nearly half (46 percent) of businesses took two days or more to get back to business as usual.

More →

Biggest risk to company cyber security is mainly staff carelessness

Biggest risk to company cyber security is mainly staff carelessness 0

Cyber securityBad habits and a lack of awareness about security mean that employees are inadvertently leaving companies’ cyber doors wide open to attack. New research by Norrie Johnston Recruitment (NJR); which forms part of NJR’s cyber security report: how real is the threat and how can you reduce your risk, shows that 23 percent of employees use the same password for different work applications and 17 percent write down their passwords, 16 percent work while connected to public wifi networks and 15 percent access social media sites on their work PCs. It’s not that people are unaware of the cyber threat. The research also shows that just over 50 per cent have experienced a cyber scam in the last twelve months. 29 have received a fake email from PayPal, Apple or a bank, 12 percent have been targeted by a Facebook scam and 7 percent have clicked a link that put a virus on a PC.

More →

CIPD joins forces with the UK Government to tackle workplace cyber security

CIPD joins forces with the UK Government to tackle workplace cyber security 0

data theftHuman resources has a key role to play in improving the cyber security of UK workplaces. That is the key challenge addressed by a new joint initiative from the Chartered Institute for Personnel and the Development and the Department of Culture, Media and Sport. Data breaches cost companies up to an average of £1.46 million are often a result of human error and malice, according to the CIPD. The initiative includes a free online course called Cyber Security for HR professionals as part of a wider initiative to promote the importance of cyber security at work, as well as the critical role that HR has to play in ‘mitigating the competency and behavioural risks present in the workplace’. Government figures released last year indicated that the costs associated with the most severe breaches now start at £1.46 million for large businesses, up from £600,000 in 2014, and can reach up to £310,000 for small businesses, up from £115,000.

More →