Search Results for: cyber

December 20, 2018

Cyber security fears as employees and ex staff able to access sensitive company data

by Sara Bean • AI, News, Technology, Workplace

Cyber security fears as office workers given unfettered access to sensitive company data Huge numbers of employees have or have had access to mission critical company systems which should be reserved only for staff that require it, claims a new study by CyberArk. Specifically, it found that almost half (48 percent) of employees have or have had access to sensitive financial documents; 46 percent to confidential HR information; nearly a third (29 percent) have or have had direct access to company bank account and over a third (37 percent) access to research and development plans or blueprints for new products/services. Credential theft remains the most common and effective route to a successful cyber-attack.

December 17, 2018

Meatspace, cyberspace, the uncertainty of expertise and some other stuff

by Mark Eltringham • Features, Technology, Workplace, Workplace design

The sign that somebody knows their stuff about a subject is often that whatever they say about it is full of questions, equivocations and caveats. They’ll often start out by saying things are complicated in mitigation of their opinion on a particular topic. They’ll say there are no silver bullets. It’s almost always neophytes, chancers and the conflicted that offer certainty. To prove my point here is David D’Souza of the CIPD making a point about the tendency to look for pat, narrow solutions to complex, broad challenges. Not only does he have something interesting to say, you know that he has the depth and breadth of knowledge to expand on each of the points he makes with yet more sophistication. It’s fractal thinking.

November 14, 2018

Employee cybersecurity only getting worse as digitised workplace grows

by Sara Bean • AI, Facilities management, News, Technology

New research suggests as the supposed ‘technologically savvy’ millennials enter the workforce they are more likely than older workers to break the most basic of security rule, reusing passwords across different accounts. This is according to the results of the 10th Annual Market Pulse Survey from SailPoint Technologies Holdings, which finds that despite an increased focus on cybersecurity awareness in the workplace, employees’ poor cybersecurity habits are getting worse, which is compounded by the speed and complexity of the digital transformation. More →

January 10, 2018

Firms suffer an average of 633 cyber attacks each day

by Mark Eltringham • News, Technology

UK businesses were subjected to an average of 231,028 internet-borne cyber attacks each during 2017 according to a report from Internet services provider Beaming. On average, each UK firm with an internet connection experienced 633 attempts a day to breach their corporate firewalls last year, with more than two-thirds (70 per cent) of attacks targeting connected devices such as building control systems and networked security cameras. The volume of cyber attacks increased by 24 per cent in the final quarter of the year, with companies – on average – experiencing 68,212 attacks each between October and December. This extra activity at the end of 2017 ensured the number of cyber attacks last year on UK organisations surpassed 2016 levels, when Beaming recorded 228,659 attacks per business.

December 6, 2017

Just half of UK businesses have the right skills to combat a cyberattack

by Sara Bean • Legal news, News, Technology, Workplace

Only half (50 percent) of UK companies believe they have the right skills to address a cyberattack, despite some high profile cyberattacks this year against the NHS, Uber and Equifax. A lack of cybersecurity skills may be due to a wider skills gaps facing the UK tech industry, claims new research from IT jobs board, CW Jobs. Nearly a third of tech employees reported feeling they were insufficiently trained in coding, cybersecurity and cloud migration. The gaps in employees’ skills is translating to the businesses they work for with 23 percent saying their business is missing programming and cybersecurity skills. A little over half (51 percent) of IT workers said that cybersecurity was included in their training, and almost one in four (23 percent) say they are not confident in handling a cyber security attack. Despite the growing threat and lack of in-house expertise, only half (50 percent) of employers look for cybersecurity skills when recruiting new IT talent. However, despite awareness around the risk of cybersecurity and the lack of preparedness, only 22 percent of employers are currently training their existing staff in cybersecurity.

October 18, 2017

Report warns of growing cybersecurity threat to organisations by their own staff

by Sara Bean • Facilities management, News, Technology, Workplace

An overwhelming majority of employees are deliberately seeking out information they are not permitted to access, exposing a major cybersecurity problem among today’s workforce, claims new research published by One Identity. The survey, conducted by Dimensional Research, polled more than 900 IT security professionals on trends and challenges related to managing employee access to corporate data. Among key findings, a remarkable 92 percent of respondents report that employees at their organisations try to access information that is not necessary for their day-to-day work – with nearly one in four (23 percent) admitting this behaviour happens frequently. Most alarmingly, the report indicates that IT security professionals themselves are among the worst offenders of corporate data snooping. One in three respondents admit to having accessed sensitive information that is not necessary for their day-to-day work.

September 5, 2017

Companies overlooking cost of cyber risks as variety and number of breaches increase

by Sara Bean • Facilities management, Legal news, News, Technology

Companies are overlooking cost of cyber risks as incidents of breaches rise Cyber risk is becoming increasingly common while the types of breaches are becoming more diverse, claims a new white paper by the audit and accounting expert BDO. For instance, ransomware is now the fifth most common type of malware; with the cost of freeing up computer systems from ransomware tripling since 2016. Yet organisations are continuing to spend up to four times more on insuring other company assets (e.g. property, equipment etc.) than on cyber insurance, despite an increasingly widespread belief that their cyber assets are in fact up to 14 percent more valuable. The report also finds that as cyber incidents increase, they become more difficult – and therefore more expensive – to defend. In the new cyber insurance white paper, BDO’s global cybersecurity leadership group stresses the importance of businesses gaining an understanding of their unique risk profiles in order to ensure the right cyber insurance for their needs. Cyber insurance: managing the risk does include some of the positive trends around cyber security – for example, both the level of Board involvement and investments in cybersecurity have increased significantly in the last 2-3 years.

August 15, 2017

UK organisations remain unprepared to deal with effects of cyber attack

by Mark Eltringham • News, Technology

A new report from insurance broker Lockton, claims that UK businesses are unprepared for the potential length and severity of a cyber security breach. In ‘Cyber Aftershock: How UK companies underestimate the seismic waves produced by a data breach’, the firm claims that fully half of UK companies (50 percent) expect to be entirely operational 48 hours after a large-scale cyber security breach. The survey of senior decision-makers shows that only 2 percent of UK businesses think a breach will affect them for more than 10 days. The report challenges these ways of thinking and sets out the key steps organisations should now be taking.

July 26, 2017

Employees accessing workplace IT systems from holiday may be cyber security risk

by Sara Bean • Facilities management, Flexible working, News, Technology, Workplace

Organisations are taking serious security risks by allowing employees to access workplace IT systems remotely while on their summer holiday, a telecoms company has warned. According to research by the corporate IT and cyber-security arm of Deutsche Telekom, nearly a third of employees (31 percent) use free Wi-Fi hotspots, and nearly a quarter (24 percent) use them for work-related emails and documents. These are a big danger area as they are insecure and easy for hackers to clone (getting access to all email and web traffic, including any work documents and passwords). It also warns that 28 percent of employees email work documents to and from their personal email, despite this creating numerous security problems. Ten percent use free USB charging points at airports and stations; and these ports can be used to transfer viruses and malware to unsuspecting users. The blame cannot solely be placed on the employees though, as just 28 percent of employees have never in their working career had any cyber security training to protect themselves and their employer.

February 14, 2017

UK cyber workforce grows 160 percent in five years, new report claims ⁰

by Neil Franklin • News, Technology, Workplace

The UK ‘cyber workforce’ has grown by 160 percent in the five years to 2016, according to new Tech Partnership research. Around 58,000 people now work in cyber security, up from 22,000 in 2011, and they command an average salary of over £57,000 a year – 15 percent higher than tech specialists as a whole, and up 7 percent on last year. Just under half of the cyber workforce is employed in the digital industries, while banking accounts for one in five, and the public sector for 12 percent. The figures, derived from analysis of bespoke data from IT Jobs Watch and supporting information from the Office of National Statistics’ Quarterly Labour Force Survey, are published in the Tech Partnership’s most recent Fact Sheet, Cyber Security Specialists in the UK.

February 9, 2017

Large number of organisations remain under-prepared for a cyber attack ⁰

by Sara Bean • News, Technology

Over a third (35 percent) of businesses targeted in a cyber-attack in the past 12 months have taken no extra measures to protect themselves in the future, claims a new report. The study of 3,000 companies in the UK, US and Germany, conducted for Hiscox says that more than half (53 percent) of businesses in the three countries are ill-prepared to deal with cyber-attacks. It also found that more than half (57 percent) of companies surveyed admit they have been the target of at least one cyber-attack in the past 12 months, while one in four (26 percent) companies has been targeted three times or more with the average cost per incident to UK businesses estimated to be £42,779. Although three out of five businesses (62 percent) took less than 24 hours to uncover their biggest cyber incident in the past 12 months, and a quarter (26 percent) did so within an hour of its occurrence, nearly half (46 percent) of businesses took two days or more to get back to business as usual.

June 15, 2016

Biggest risk to company cyber security is mainly staff carelessness ⁰

by Sara Bean • Facilities management, News, Technology, Workplace

Bad habits and a lack of awareness about security mean that employees are inadvertently leaving companies’ cyber doors wide open to attack. New research by Norrie Johnston Recruitment (NJR); which forms part of NJR’s cyber security report: how real is the threat and how can you reduce your risk, shows that 23 percent of employees use the same password for different work applications and 17 percent write down their passwords, 16 percent work while connected to public wifi networks and 15 percent access social media sites on their work PCs. It’s not that people are unaware of the cyber threat. The research also shows that just over 50 per cent have experienced a cyber scam in the last twelve months. 29 have received a fake email from PayPal, Apple or a bank, 12 percent have been targeted by a Facebook scam and 7 percent have clicked a link that put a virus on a PC.