Are companies doing enough to prevent cybercrime?
2016 saw a fair few large scale cyber hacks, from Yahoo! to TalkTalk and AdultFriendFinder, which raises the question, are companies doing enough to protect their customers?
Sadly, for the customers, it means their data is now in the hands of one or more criminals to do as they please. You may think ‘why would they want my email address?’ However, for most web accounts, your email address is 50% of your login, and if that is your only email address, that is 50% of almost ALL your logins.
We ask Mark James, ESET IT Security Specialist, what should these companies and other companies be doing to stay ahead of the cybercriminals.
“Protecting users’ data seems to be harder and harder, almost every week we hear of another huge data breach that has added millions of users’ data to the already bulging bytes of private details floating around.
“For the companies involved, protecting that data is one of the hardest jobs the IT department will face.
“Persistent cyber criminals only need to be successful once, whereas protecting that data needs to be 100% successful.
“Segregating the data stored will help if they manage to break the perimeter thus ensuring that users only have access to areas they need to interact with will help to limit the damage if the user is compromised.
“Using the latest secure operating systems along with careful selection of applications that are not only secure, but maintained or patched regularly will limit your attack vector.
“Making sure a good regularly updating multi-layered internet security product is installed will help to keep you safe.
“Engaging and training staff in the current attack methods used and how to spot them early will be a good start, but for effective defence you will almost certainly need to get the right professional advice to not only combat but adapt your technology as the bad guys try harder and harder.
“Probably the two biggest trends are ransomware and DDoS.
“Protecting from both is very different but need to be considered if you want to keep your data safe or users happy.
“Email is still the leading form of attack for malware we see today, and of course DDoS itself may well be used as a smokescreen for other nefarious purposes.
“One thing is certain though, you will need help either through software or hardware and it will need to change and adapt as the bad guys try harder and harder.
Were you affected by any of the cyber hacks in 2016? Do you think these companies are doing enough to protect the customers? Let us know on Twitter @ESETUK.
Join the ESET UK LinkedIn Group and stay up to date with the blog. If you are interested in seeing where ESET has been featured in the news then check out our ‘In the news’ section.