Understanding and defending against new threats
Just as our digital landscape is evolving, so too is the sophistication and scale of cyber security attacks.
In the past, cyber criminals typically targeted credit and debit cards. However, as this year’s report reveals, there’s a growing trend among hackers to steal personal identities, details and healthcare information. It’s all highly valuable data that’s 10 times more lucrative* on the black market.
In 2015, typical cyber security attacks involved:
- Phishing emails (which were up by 29 per cent)
- More exploit kit-based malware
- Ransomware based attacks
- Mobility threats via personal smartphones and tablets
What’s more, within the financial services industry, these attacks have a much larger impact than simply reissuing credit cards – a company’s reputation and consumer trust is at stake.
The widening security skills gap
But if you’re not entirely sure what “phishing” and “malware” threats entail, you’re not alone.
As the Telstra Cyber Security Report suggests, many employees are struggling to understand complex security measures and the jargon that surrounds it, while 62 per cent of organisations admitted they have too few skilled professionals available to implement appropriate security activities.
It’s a major factor in why a large number of security breaches are still caused by human error. A simple mistake can result in the loss of valuable customer or corporate information, or disrupt the network and its services. Ensuring that education and protocols are in place to prevent staff compromising the network (and client information with it) isn’t optional any more. The reputation and bottom line of your business is reliant on these mistakes not being made.
Having your team on the same page naturally leads to being able to better detect, prevent and mitigate security capabilities. It’s all part of protecting sensitive data, ensuring compliance and promoting an efficient workforce.
Here’s a few steps finance operations can take to help mitigate threats:
- Put a comprehensive, full-time cyber security strategy and plan in place
- Check your anti-virus and anti-malware software is up-to-date and active
- Ensure your IT department speaks in laymen’s terms when communicating security issues
- Educate your staff about phishing and malware
- Hold regular briefing sessions on potential security risks and business impact
- Implement tools to provide real-time auditing of use of unauthorised cloud applications and potential data exposures
Enlist the help of experts
Cyber security is a significant issue – and one that no organisation can handle alone. Ensuring that businesses you partner with – whether they’re supplying cloud or CRM, payments or process software – are meeting best-practice security protocols can help to limit exposure to threats and minimise risk.
It’s also important to explore opportunities to engage with experts or partners to understand cyber security in a way that everyone, from senior executives to junior staff, can understand and implement on a day-to-day basis.
Complemented with solutions that fit seamlessly into operations and cater for the changing demands of customers when it comes to their financial institution, this knowledge can give businesses the best chance for success.