Friday, July 23, 2021

Fines Less of a Concern than Reputational Damage for Public Sector Security

Must Read

Backdoor accounts found in More than 100,000 Zyxel firewalls, VPN gateways

Dutch cybersecurity researchers have discovered a backdoor account in 100,000 networking devices manufactured by Zyxel, which may grant hackers...

Cyber Criminals Exploit zero-day vulnerability in FTA servers for Data Theft and Extortion

Cybersecurity company FireEye said today cybercriminal gang known as FIN11 performed a zero-day attack on Accellion FTA servers that...

Crypto Exchange Binance Banned in UK by Financial Regulators

The British Financial Conduct Authority(FCA) has issued a consumer warning against Binance Markets Ltd., banning cryptocurrency exchanges from performing...

In a survey of 250 UK public sector professionals working in cybersecurity, risk, and data protection by Zivver, 52% of all respondents cited reputational damage as their biggest challenge about outbound secure communications.

This was followed by preventing data leaks (50%) and employee awareness of security (49%). Meanwhile, fines were deemed a lesser concern at 19%.

Speaking to Infosecurity, Rick Goud, CIO and co-founder of Zivver, said while the fines issued to BA and Ticketmaster put the topic more top of mind, “I don’t think the fear of fines is what will drive change.”

He added: “In the Netherlands, for example, the country with the highest adoption of email data protection solutions, fines hardly exist.

Adoption will increase with higher awareness, which is enforced by media attention, public interest, independent research, and awareness campaigns. So I see fines as a way to increase awareness, not increase fear.”

Regarding COVID-19’s impact on the security of outbound communications in public sector organizations, around one in three of all respondents said the pandemic brings additional vulnerabilities requiring ongoing security changes.

Further reflecting the high levels of uncertainty, especially by those at the top, 43% of IT leaders in the local government said their organization was less secure as a result of COVID-19.

In terms of data leak frequency, 82% of respondents said their organization had experienced at least one data leak in the past 12 months, while 73% stated they had suffered three or more.

Asked how much he thought this was due to greater remote working and the likelihood of security mistakes being made as a result, Goud said: “Stakeholders report an increase of data leaks since having a remote workforce, which is a logical consequence of two things.

Firstly, any change will lead to people making more mistakes, because change is one of the most difficult things for people, inevitably resulting in errors.

Secondly, additional data leaks will occur because, with a remote workforce, people have to increasingly rely on ways of communicating that was not built for security, like email and popular (free) SAAS-tools for sharing files, sending out questionnaires, etc.

“The latter, especially, is a problem that organizations increasingly recognize and are looking to fix by putting solutions in place that enhance and secure digital communication, knowing that the old way of working will not fully return.”

Goud claimed the findings of this survey indicate an urgent need for public sector organizations to review and update current security practices, requiring technology that is simple to introduce and use to avoid disruption to employees’ productivity.

Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.


Please enter your comment!
Please enter your name here

Latest News

OAIC: Uber found to have interfered with the privacy of over 1.2 million Australians

The Office of the Australian Information Commissioner (OAIC) has determined that Uber Technologies, Inc. and Uber B.V. have interfered...

Over 80 US Municipalities data are exposed due to Misconfigured Amazon S3

A team of Cybersecurity researchers at Wizcase found major data exposure of Over 80 US Municipalities due to the Misconfigured Amazon S3 Bucket. This happened...

Formbook malware Upgraded as an XLoader malware to Attack macOS Systems

Researchers have spotted an upgraded malware variant of Formbook malware which is now Upgraded as an XLoader malware to Attack macOS Systems. Cybersecurity researchers on...

Millions of HP, Samsung, Xerox Printers are Vulnerable to 16 year old bug

A 16-year-old security vulnerability affects Millions of HP, Samsung, Xerox Printers Driver allows attackers to gain admin rights on systems using the vulnerable driver...

MosaicLoader malware targets cracked software via SEO poisoning

New MosaicLoader malware targets users that are searching to download cracked software. Cybercriminals run ad campaigns in search engine results to boost their malicious...

More Articles Like This