If you think “cyber attack” only means “data theft,” think again. Your company should be prepared to defend itself against many different kinds of cyber attacks—and, honestly, these things are creepy enough to keep you awake at night:
- Data theft. Theft of data is, of course, a major concern. Boards should know which types of information could be valuable to an attacker—including personally identifiable information, intellectual property, customer lists, strategies, and M&A information—and how the company is protecting them.
- Denial of service. Hackers may launch a “denial of service” attack that stops your company from operating its business. Not only are these attacks on the rise, but early this year, the BBC was the victim of what is now suggested as the largest denial of service attack in history. Beyond the embarrassment, a DoS attack can be costly in terms of lost business. These attacks may be sponsored by a competitor or national government, or be launched by hackers seeking glory or even ransom.
- Ransoms. A new favourite attack is for hackers to infiltrate a system and install code that causes the business to grind to a halt. This can take the form of a DoS attack or the encryption of company data. The attackers then notify the victimised company that they will give back control of the business in exchange for a small fee, perhaps as little as $3,000. This isn’t very much money, but hackers can do this thousands of times a week and walk away with a big score.
- Zombification. Millions of computers across the world are, right now, serving as “zombies” or “bots” that hackers are using to launch other attacks, host stolen information, and otherwise support their illegal activities. An attacker may be using your company’s systems without your even knowing it, creating reputational risks even if they don’t or can’t steal data or deny service.
These four are just a handful of common attacks; new ones are being created every day. Check out this post to learn about questions you and your board should ask you CISO so they can keep vigilant on your behalf!
September 7, 2020
Avoiding Cyber Confusion in the Board Room
It is imperative that Directors understand the cyber risks facing their companies and organisations. The increasingly complex internal and external landscape presents unique challenges for Boards. Several key steps can however significantly increase the cyber resilience of any company or organisation, irrespective of size. The article outlines five key steps…
August 20, 2020
Minimising the Risk of Virtual Meetings: 5 Practices Boards Should Avoid
Months into the COVID-19 lockdown, remote workers—and board members—have become more accustomed to virtual meetings. They’ve found a quiet place in the house, mastered the mute and camera buttons, and fully styled their background bookcases and “Zoom couture.” Yet as virtual work becomes a way of life, not all adaptive…
January 30, 2020
Voice Assistants in the Boardroom: The Pro’s and Con’s
Australians are going crazy for voice assistants – they are selling faster there than in the US, according to Voicebot.ai, and 5.7 million Aussies already have them. They are becoming popular in New Zealand too, reportedly, although there has been some scarcity…