5 Cybersecurity Trends to Watch in 2020
One of the challenges of implementing reliable cybersecurity is that the finish line keeps moving. As security measures continue to improve, so do the methods and tools of cyber criminals.
There is a range of possible threats to be aware of when it comes to keeping your organization cyber secure. Here are five potential risks that industry experts believe businesses should heighten their awareness of in 2020:
Ransomware attacks can be among the most expensive for your company. Ransomware refers to a type of malware that can breach and encrypt the victim’s files. The victim is then forced to make a ransom payment in order to regain access to their data. In addition, some attackers may also extort your company and threaten to disclose or sell your data. Companies are advised to back up all data daily and store the backup data offsite. You should also patch your software as advised by your software vendor.
2. Phishing/Social Engineering
Phishing emails and social engineering schemes continue to be one of the most common causes of data breaches. This threat refers to fraudulent emails or phone calls that intend to trick employees into revealing sensitive information. In 2020, phishing kit developers are expected to make it even easier for potential attackers to launch phishing campaigns. These developers create kits designed to replicate the website being attacked, enticing victims to share sensitive data. Be certain that employees are trained in anti-phishing/social engineering practices and that training is regularly updated.
3. Personal Device Attacks
According to a 2019 Kaspersky report, approximately half of all companies reported malware infections on employee-owned devices. With businesses continuing to increase flexibility for employees to use personal devices for work-related tasks, attackers may start targeting personal devices more heavily as a means of bypassing corporate cyber defenses. Adequate and up-to-date training is necessary for your employees. Companies should review and update their policies as they pertain to personal devices as well as require encryption of all portable media and devices.
4. Third-party Suppliers
Results from a One Identity survey show that 94% of organizations provide third-party suppliers with access to their network. What’s more, 18% of organizations reported that a third party was to blame for a data breach. With digital connections between businesses increasing, the risk of a data breach occurring because of a mistake by someone outside of your company is also on the rise. Establish a strict security policy for all third parties that access your network and closely monitor that each user is only given the permissions they need. Additionally, make sure third parties provide indemnification for any losses by having an adequate cyber policy of their own.
5. DDoS Attacks
While not as notorious, DDoS attacks are about as common as ransomware incidents. Network speed increases, such as the wider release of 5G, also mean that DDoS attacks can be more difficult to stop. Have your IT department or contractor inspect devices for possible misconfigurations or vulnerabilities, and be certain that your employees are following your cybersecurity policies.
Understanding developments in cybersecurity can help your business prepare an effective response plan. If you have any questions or would like more information about how CBIZ can help protect your business from cyber exposure, please contact your local risk and insurance professional, or call us at 1.800.275.2249.