There are many misconceptions about who can become a victim and how they can be affected in the event of a cyber attack.
The single most accepted misconception is that a small business is not worth the effort for a hacker to target, which leads to small business owners often bypassing the cyber security practices. As a result, nearly half (47%) of small businesses suffered a cyber breach or attack during 2018, as there are, quite literally, no barriers for cyber criminals to break.
All businesses use various hardware and software to support them and they all have to manage their clients and financial transactions. This makes them all prone to cyber security breaches, leaving their customer data, including credit card details at risk.
Most people believe that with a good IT department and suitable anti-virus software, your devices are safe. An IT department cannot possibly oversee all employee behaviour which is why staff need to be trained to stay away from unsecured networks, suspicious emails and compromised websites. A total of 36% of breaches in 2018 were caused by authorised user errors or misuse.
Apple devices are not completely safe although these devices are more withstanding against viruses, cyber criminals have learned a thing or two in the past few years about getting around Mac and Linux security systems. The same goes for anti-virus software. Nothing is completely safe from a determined cyber criminal.
It is not just laptops and PCs that are prone to a data breach but also phones and tablets, including personal ones. It only takes one weak device connected to your network to bring the whole system down, if targeted. And that doesn’t mean you will even be aware of the attack, as the majority of hackers prefer to stay unnoticed for a long time.
Most people believe data is safe in the Cloud but this structure is exposed to cybercrime the same way your devices are. These providers usually have high cyber security standards in place. However, if the likes of Adobe and British Airways cannot withstand an attack, neither can the said providers.
Considering all of the above, complying with the GDPR might become a considerable challenge, as a data breach of any kind can raise even bigger regulatory issues. Adhering to the rules of the GDPR means having sufficient security in place, as well as being thoroughly prepared to respond to a breach.
You should always keep software up to date, as your providers will be adding and refining their security measures with every update.
You can mitigate your risk by taking out cyber insurance and Digital Risks are one of the many providers out there who can help.
Click here to read the full Blog that was published this week by Ben Rose.
Chapter Three Consulting provide a low cost, easy access Data Protection Staff Awareness e-Learning Course to ensure that you can evidence that your staff have been trained.
Call 0330 004 0020 or email firstname.lastname@example.org for more information.