1 / 46

CHELTENHAM CHAMBER OF COMMERCE CYBER SECURITY

CHELTENHAM CHAMBER OF COMMERCE CYBER SECURITY Simon Dye- Chartered Marketer MBA,DipM,FCIM,MAMBA,MAMA 6th April 2017. About Your Presenter. Simon Dye Chartered Marketer, MBA, DipM, FCIM, MAMA, MAMBA Ecommerce Board for Cheltenham Chamber of Commerce;

vjoel
Télécharger la présentation

CHELTENHAM CHAMBER OF COMMERCE CYBER SECURITY

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CHELTENHAM CHAMBER OF COMMERCE CYBER SECURITY Simon Dye-Chartered Marketer MBA,DipM,FCIM,MAMBA,MAMA 6th April 2017

  2. About Your Presenter Simon Dye Chartered Marketer, MBA, DipM, FCIM, MAMA, MAMBA • Ecommerce Board for Cheltenham Chamber of Commerce; • 2 decades practical online expertise inc MOD; • Cyber security courses at Kings College London, Deakin and Open Universities; • Cyber139- safe, sound, secure.

  3. CONTENTS • Current Situation • Prevention • Protection • Threats

  4. CURRENT SITUATION Cyber crime now makes up 40% of all recorded criminal incidents. (March 16)

  5. ONS 5.8 million incidents of cyber crime and fraud in the 12 months Affecting one in 10 people in England and Wales. (Mar 16)

  6. ONS Quarter of businesses effected last year 24% of ALL businesses surveyed had had one or more cyber security breaches in the past 12 months.

  7. GLOUCESTERSHIRE Gloucestershire Constabulary Dec 2016 that within County 54% cent of all reported crime was cyber related. You have a much higher chance of being mugged online in your home or work place than you do wandering around any of our towns at midnight at the weekend.

  8. COST of Being HACKED SMEs- worst breaches cost between £65,000 -£115,000 on average Large Cos many millions of pounds. • Direct financial losses due to fraud or theft; • Loss of productivity due to time spent recovering from the effects of attack; • Lost trust and reputation. (Dept f Bus 16)

  9. FSB Cyber crime is disproportionately effecting small businesses the most. Collectively attacked seven million times Cost UK economy an estimated £5.26 billion Those affected have been victims on four occasions on average, costing each business almost £3000. (Dec 16)

  10. HACKERS are LAZY SMEs are targetted: According to Microsoft the number of cyber ransomware attacks increased in 2016 by more than 4,000%, with small to medium sized enterprises (SMEs) being the main target due to poor security practices.

  11. PREVENTION National Cyber Security Alliance estimates that 60% of small businessesactually close within six months of a cyber attack.

  12. MOSSACK FONSECA “Panama Papers” tax advisory law firm. “4th biggest biggest global provider of offshore services” 3 April 2016 11.5 million docs released. President of Iceland resigned and more FIFA officials arrested

  13. SOME of MOSSACK'S FLAWS Last updated Outlook Web Access login 2009 Last updated its client login portal 2013. The portal, runs Drupal MS, last updated in August 2013 Client portal vulnerable to the DROWN attack, a security exploit that targets servers supporting obsolete and insecure SSL v2 protocol. According to the site's changelog (Website's FTP access was insecure)

  14. TALK TALK Personal information inc bank account numbers, addresses, dates of birth and contact details of 155,000 people hacked in Oct 2015 • Lost 101,000 customers • Lost trading impact £42 million • Shareholders lost £60 million • £400,000 ICO fine

  15. YAHOO Aug 2013 and Sept 14 1 billion email accounts were hacked Names, user names, passwords and personal privacy data were copied BT and SKY email usersalso hacked as theyuse Yahoo systems.

  16. YAHOO Reinforces the responsibilities on board executives for cyber security • Top lawyer fired • CEO Marissa Mayer lost millions in bonuses • $350 million off its sale price

  17. FREE EMAIL CHECKER https://haveibeenpwned.com/

  18. PROTECTION Cyber Crime Protection is a proactive process of saving your reputation and your organisation. CHANGE YOUR MINDSET! It’s NOT a case of IF you get hacked- but WHEN you get hacked!

  19. RISKS to Your BUSINESS

  20. RISKS to Your BUSINESS

  21. RISKS to Your BUSINESS

  22. WHERE are the DANGERS? (Glos Police Dec 16)

  23. DEPENDABLE DATA • Confidential • Integrity • Availability

  24. NEVER PAY OFF RANSOM

  25. Driving in snow storm without a satnav

  26. BUSINESS CRITICAL DATA BACK UP BACK UP BACK UP Preferably: ENCRYPTED OFFSITE

  27. DATA WHATS UNIQUE to YOU/ YOUR BUSINESS? Finance: invoices Marketing: quotes Intellectual Property: docs Emails Websites

  28. KEEP UP TO DATE • Patch early, patch often because ransomware often relies on old security bugs in popular applications • Keep informed about new security featuresadded to your business applications • Auto update all programs

  29. EMAILS • Be cautious about unsolicited attachments • Do not enable macros in document attachments received via email • Be ultra careful opening emails on phones • Staff awareness and training

  30. PASSWORD POLICY Only 24% of business have a strict, written password policy

  31. PASSWORDS GCHQ RECOMMENDS: At least 16 characters Use several words Use some Capitals Use numbers Preferably with symbols

  32. WRITTEN PLAN 4% written plan of what to do if attacked online What Happened? Get 3rd Party Help FAST Who? Where's the backup? How recent was the backup?

  33. CYBER SAFE 2% have recognised security standard such as ISO27001 or Govt Cyber Essentials scheme.

  34. THREATS- REPUTATION Death by a thousand cuts https://www.ft.com/content/f52f6fee-ccf4-11e6-864f-20dcb35cede2

  35. THREATS GDPR

  36. GDPR GENERAL DATA PROTECTION REGULATION

  37. FINES From 25 May 2018: Most important data hacks fines up to €20 million or 4% of global annual sales, whichever is the greater For other breaches, fines up to €10 million or 2% of global annual sales, whichever is greater

  38. PLUS Updated right for data subjects to claim compensation for damages they suffer from such incidents from companies and the data controllers. Q. Have you got a database bigger than 1,000 people?

  39. PLUS Data processors will have the right to claim back money from data controllers, whose fault caused or contributed to the damage, if the data subject pursues the data processor for the full compensation pay-out.

  40. TalkTalk 2015

  41. REALITY

  42. TALKTALK 2018

  43. Any Questions? Copies of this talk can be found for the next 30 days at: https://www.cyber139.com/talks Thank you Simon Dye- Chartered Marketer MBA,DipM,FCIM,MAMBA,MAMA Tel: 01242 521967 Email: ASSIST@cyber139.com 24 Charlton Drive https://www.cyber139.com Cheltenham GL538ES

More Related