The NYDFS Cybersecurity Regulation requires New York insurance companies, banks, and other regulated financial services institutions to assess their cybersecurity risk profile. Read more here to understand the NYDFS regulation and what it means for you.
The “Dark Web” is often portrayed as a gloomy realm of internet land where you can find criminals and offenders lurking around every corner. Though there is some truth to this perception, there are also many misconceptions about the Dark Web and its role in the security or insecurity of businesses. Furthermore, the continuous embracement of remote work has led to an unexpected shift in the way the dark web is being used today. Without awareness and understanding of these concepts, it’s impossible to prepare for the looming threats that this obscure area of the net introduces to enterprises.
The escalation in cybersecurity breaches as seen in 2020 has continued well into 2021. As cyber-attacks cripple more companies, it is time to look deeper into the recent security incidents.
Ransomware has become an annual event for many organizations, costing them millions in lost productivity and revenue. While there have been some notable successes in fighting off this threat, the industry as a whole must continue strengthening its resolve in order to safeguard against future attacks. Part of this can come down to recognizing the role that users and employees play in fighting off these attacks and providing them with the info and tools they need to help reduce risks.
The lack of cybersecurity protocols in a growing company can be for a multitude of reasons: the lack of resources to help develop policies and a misunderstanding of how important cybersecurity truly is just to name a few. Also, a common misconception amongst small to medium-sized businesses is that building a cybersecurity program requires a significant capital investment. When in reality, formulating a program can be a cost-efficient process with the right tools and resources, and not to mention that it begins to protect against additional losses from a cyber attack.
Remote access security concerns compounds as many workers use personal devices outside of the enterprise's protective remit. The end result is an intricate mesh of complex technologies and human touch points.
This is especially important in an era where human-related cyber threats are at an all-time high. From intentionally malicious insiders to unmindful employees prone to accidents, these threats can have significant consequences on companies of all sizes. Ongoing high-profile breaches have brought this issue of insider threats into the spotlight.
Many businesses give their employees the flexibility to employ technology to work from home. Companies may find themselves allowing employees to install VPN clients on the employee’s personal device or employing even more questionable practices.
For most businesses, the corporate boundaries have expanded over time. The traditional office has now morphed into a hub-and-spoke model with an increasing number of employees working remotely. This shift to remote work isn't new. Between 2005 and 2018, there was a 173% rise in the US remote workforce. The trend spiked in 2020 when 88% of organizations worldwide encouraged remote work to flatten the pandemic's spread.