Posts

Showing posts with the label cybercrime

Balancing Fraud Protection and Frictionless Checkout

Image
Written by Krista Garcia  Article from eMarketer  As an industry, retail is one of the most vulnerable to cybercrime. Ecommerce transactions can provide a wealth of fodder for fraudsters, including personal information and credit card details. According to a Q2 2018 ThreatMatrix report, ecommerce companies using its digital identity network experienced 91 million attacks, which is business as usual as the figure was consistent with the same period last year. The types of cybercrime, however, are changing. An attack rate of 24.2% means nearly one in four new accounts created on ecommerce sites in Q2 2018 were fraudulent, a 130% increase year over year. Account login fraud using stolen credentials was the second-most common attack (10.2%) while using stolen payment credentials made up 3.0% of total attacks.

Industries Most Affected by Cybercrime

Image
From IBISWorld : The disruption caused by the rise of the internet and popularity of web-enabled devices is indisputable; industries have been completely flipped upside down as new, online businesses offer consumers products and services that were once unimaginable. As life is moving to the cloud, however, so are the criminals. The US Justice Department estimates that more than 4,000 ransomware attacks have occurred each day since the beginning of 2016, meaning hackers engineer software programs that prevent employees from accessing their computer systems until a ransom total is paid. In 2016, about 72.0% of large companies and 20.0% of small to midsize companies were targets of cyberattacks, according to CNBC and Microsoft, respectively, boosting demand for products and services protecting against cyberattacks. IBISWorld expects the US Security Software Publishing industry to grow 2.6% in 2017, to $12.0 billion. However, while companies are increasingly investing in defending a

New FTC Website Helps Small Businesses Avoid Scams and Cyber Attacks

Image
From the Federal Trade Commission Attacks can be especially devastating to small businesses; Agency provides information on how they can protect themselves At the direction of Acting Chairman Maureen Ohlhausen, the Federal Trade Commission has launched a new website –  ftc.gov/SmallBusiness  – with articles, videos, and other information aimed at helping small business owners avoid scams and protect their computers and networks from cyberattacks and other threats. “Small businesses are critical to our economic strength, building America's future, and helping the United States compete in today's global marketplace,” Acting Chairman Ohlhausen said. “This innovative new website is a one-stop shop where small businesses can find information to protect themselves from scammers and hackers, as well as resources they can use if they are hit with a cyberattack.” According to the  U.S.Small Business Administration (SBA) , there are more than 28 million small businesses nationwide,

49% of businesses fell victim to cyber ransom attacks in 2016

Image
From Tech Republic : Nearly half of businesses report that they were the subject of a cyber-ransom campaign in 2016, according to Radware's Global Application and Network Security Report 2016-2017. Data loss topped the list of IT professionals' cyber attack concerns, the report found, with 27% of tech leaders reporting this as their greatest worry. It was followed by service outage (19%), reputation loss (16%), and customer or partner loss (9%). Malware or bot attacks hit half of all organizations surveyed in the last year. One reason for the pervasive attacks? The Internet of Things (IoT). Some 55% of respondents reported that IoT ecosystems had complicated their cybersecurity detection measures, as they create more vulnerabilities. Ransomware attacks in particular continue to increase rapidly: 41% of respondents reported that ransom was the top motivator behind the cyber attacks they experienced in 2016. Meanwhile, 27% of respondents cited insider threats, 26% said po

Preventing a Cyber Attack at Your Enterprise

Image
From Zadar Storage Preventing a cyber attack should be one of, if not the main goal of your IT department. Your press releases need to focus on things like your outstanding awards, exciting new product lines, and the addition of stellar new industry talent to your roster. You don’t want to be issuing press releases trying to explain how you leaked 1,500 customer identities or allowed other sensitive data to be exposed to the deep recesses of the Dark Web (like the much feared and dreaded Panama Papers) — or worse, published on the searchable Internet at large (Sony and Ashley Madison ring any bells?). These kinds of press releases don’t start in your PR department, they begin at the IT drawing board. Security is no longer something businesses can afford to pile on to their existing IT infrastructures like icing on a cupcake. Security has to be included in the batter and baked into the IT infrastructure at the storage, application, and network levels. Only then is it ready to face

SBA Underscores President’s Cybersecurity Plan; Provides Resources for Small Business Owners

By Maria Contreras-Sweet, SBA Administrator Cyber-attacks against business and government seem to be unending, and recent hacks to Sony and Central Command have elevated our need to safeguard against potential threats to our online information, records and documents. President Obama has announced a legislative proposal that will make it easier for businesses and government to share information about possible cyber-attacks and security vulnerabilities. “Our first order of business is making sure that we do everything to harden sites and prevent those kinds of attacks from taking place,” the President said in a statement. At the SBA, we have taken steps to strengthen our public and private sector partnerships on cybersecurity to help small businesses learn how to secure their business information, identify security threats and guard against cyber-attacks. The SBA, in partnership with NIST and FBI, has conducted cybersecurity workshops for entrepreneurs and small business owners a

Cybersecurity for Small Businesses

Learn how to protect your business information online. This self-paced training covers the importance of securing information, the kind of information to secure, types of cyber threats and tips for guarding against online hackers and breaches. Take the 30-minute course from the Small Business Administration HERE .

Small Businesses Need To Be Aware Of Cyber Criminals

The risk for cyber espionage continues to evolve as perpetrators are targeting small businesses at an alarming rate. Symantec, a bellwether in the web-security space, recently announced that attacks surged almost three-fold for small businesses or those with less than 250 employees. Small businesses now account for more than 31% of all web attacks or greater than 300 million incidents annually. Given this backdrop, should your business consider investing in greater security measures and cyber liability insurance? Why are small businesses being targeted? Attackers are recognizing now that it’s more effective to go after the weakest link than to focus on the largest companies in the world. If they can attack a million different websites with ease versus one large website, it’s more strategic for them to go after the small players. The data that these cyber criminals are targeting include bank account information, customer data and intellectual property. More from America's SBDC

New Online Security Course Available to Small Business Owners

WASHINGTON – Small businesses can help keep their business information safe and protect their online information with a new free course from the U.S. Small Business Administration. SBA is launching this new course, designed for small businesses, to provide an overview on how to secure business information, identify security threats and guard against cyber-attacks. Cybersecurity for Small Businesses is one of SBA’s newest online courses to help business owners safeguard their information from computer attacks and determine their readiness against security breaches. The course, available at www.sba.gov/tools/sba-learning-center/training/cybersecurity-small-businesses , teaches best cybersecurity practices and protection against cyber threats for the nation’s small business community. The protection of sensitive data such as business invoices, payroll records, client and employee data and other proprietary information is essential to a company’s success. A computer failure or other

Cyber Security - the challenge never ends

Last night, I watched the segment on "60 Minutes" that cast light on just how much vigilance is required to protect electronic sytems designed to operate critical financial, social and defense systems in this country (and elsewhere). It was sobering to watch, to say the least. News lives in an echo chamber, it seems. An article from last week's PCWorld dwelled on the proliferation of cyber theft into the world of small and medium-sized businesses and organizations. The bulk of the article focuses on the FBI's awareness of the growth in ACH (automated clearinghouse) fraud, where thieves manipulate online banking systems to create false payees, whereby significant sums can be then transferred out of the country by (sometimes unwitting) online payroll clearinghouse operations. Vigilance, again, is the key word here. Many of these scenarios unfold by an employee unknowingly triggering malware embedded into an email (the article cites the example of Microsoft sending out

Small Business & Cybercrime

As if small business owners didn't have enough to worry about already, along comes this article that proclaims cyberthieves are targeting them more and more. Small businesses that choose to collect and store on their own credit card data for online sales are the specific target. It cites studies that show how small business owners lack the time and human resources to implement antivirus software, or utilize encryption software, or develop a cybersecurity plan in general. The article suggests not to give up online retail as a business strategy, but rather to rely on third-party vendors to collect and protect credit card information. To me, that sounds like both sound advice, as well as a time-saver.

More Cyber Security Blues

I read this article yesterday (ironically, while waiting for my PC to re-boot). It discussed findings presented at a conference here in Albany on Wednesday afternoon concerning the ongoing battle against identity theft & cybercrime. To me, its most compelling part focused on the software used by a UAlbany professor to "lift" credit card numbers from the RFID chips on "swipeless" credit cards - software that can be purchased relatively cheaply. The article also mentions that American Express & other credit card companies are aware of this situation, and often code "alias" numbers that are different from those imprinted on the card itself. The game - which isn't much of a game if you've had your numbers stolen - continues.

Internet Crime Report - 2006

Who among you haven't had a client who wonders or worries about being taken in an online scam? It's a topic I've written about since we developed this blog. Since e-mail & the Internet aren't going away soon, it might be helpful to you & your clients to read the Internet Crime Report: 2006 . It's a 27-page report issued from the Internet Crime Complaint Center (the IC3), and it provides insights into the current trends being used to con people out of their money via electronic means. (You can just read the highlights here , too.) The report identifies nine broad types of online fraud, including identity theft, investment fraud, phishing, spamming, cyberstalking, and other nasty things. Appendix II of the report offers tips on how to avoid falling prey to perpetrators, too. The report represents just a fraction of the online fraud that goes on. Most crimes don't get reported. If you or any of your clients feel like they've been victimized, have t