If you think “cyber attack” only means “data theft,” think again. Your company should be prepared to defend itself against many different kinds of cyber attacks—and, honestly, these things are creepy enough to keep you awake at night:
- Data theft. Theft of data is, of course, a major concern. Boards should know which types of information could be valuable to an attacker—including personally identifiable information, intellectual property, customer lists, strategies, and M&A information—and how the company is protecting them.
- Denial of service. Hackers may launch a “denial of service” attack that stops your company from operating its business. Not only are these attacks on the rise, but early this year, the BBC was the victim of what is now suggested as the largest denial of service attack in history. Beyond the embarrassment, a DoS attack can be costly in terms of lost business. These attacks may be sponsored by a competitor or national government, or be launched by hackers seeking glory or even ransom.
- Ransoms. A new favourite attack is for hackers to infiltrate a system and install code that causes the business to grind to a halt. This can take the form of a DoS attack or the encryption of company data. The attackers then notify the victimised company that they will give back control of the business in exchange for a small fee, perhaps as little as $3,000. This isn’t very much money, but hackers can do this thousands of times a week and walk away with a big score.
- Zombification. Millions of computers across the world are, right now, serving as “zombies” or “bots” that hackers are using to launch other attacks, host stolen information, and otherwise support their illegal activities. An attacker may be using your company’s systems without your even knowing it, creating reputational risks even if they don’t or can’t steal data or deny service.
These four are just a handful of common attacks; new ones are being created every day. Check out this post to learn about questions you and your board should ask you CISO so they can keep vigilant on your behalf!
October 16, 2019
Succession Planning and Future-Proofing Your Board
Succession planning cannot be treated as only about the future, because it has a huge impact on the careers of the current leaders who are responsible for its success. Succession planning links today and tomorrow, and this is what drives the emotions involved for…
October 14, 2019
Board Diversity and Board Performance
Are UK Boards Becoming More Diverse? Corporate governance experts strongly recommend greater board diversity on corporate boards, so it is good to see that UK companies are improving in this respect. There is ample evidence that boardroom diversity drives…
October 8, 2019
Business Email Compromise – The Latest UK Cyber Threat
The UK Cyber Security Challenge and Business Email Compromise Businesses in the UK are today suffering a wave of cyberattacks in the form of “Business Email Compromise” (BEC) and it is essential to know how to gear up your board for cyber attacks.