The War on Cybercrime Goes Beyond Your IT Department



[caption id="attachment_1340" align="alignleft" width="300" caption="cyber war"]cyber war[/caption]



Although the threat from cyber criminals has existed for decades, the sheer volume of successful cyberattacks on high profile brands during the last six months has highlighted an urgent need to protect against data breaches.



Having read a recent Gartner blog which stated that many of the of the IT security improvements they've seen over the past five years are fast becoming obsolete in the face of more sophisticated cybercrime attacks, turning the tables on the bad guys won't be easy.



Millions of businesses and IT departments are frantically trying to ensure they don't become the next victim of cybercrime, while regulators are attempting to bring some order to the situation.



Unfortunately, however well-intentioned the efforts of businesses and security organizations, the idea of focusing attention on protecting internal systems only is outdated and ineffective.



We are living in an era where cybercriminals are becoming ever more sophisticated and if they can't get into a company's systems, they'll simply target their customers instead. Furthermore, cybercriminals are making use of social media channels to collaborate and drive new threats; with the aim of beating every IT security solution that a business can deploy.



It's no longer sufficient to protect a business internal IT infrastructure. The bad guys can now get into companies and their systems in many different ways. For instance, they might simply target the IT manager via Facebook, or send them a link in an email from a hacked account, purporting to be from a friend. Using this way in, cyber criminals could have access to a goldmine of data and IT systems within a short period of time.



No matter what internal steps organizations take to protect their IT infrastructure, there is no benefit for businesses and IT departments if all communications are compromised whenever an organization communicates with its customers over the internet.



For the full story click here:  Data breach issues can't be solved by IT departments alone



The most basic and essential step any organization can take to increase cyber security is implement a program of Internet Security Awareness Training.  For more information on this type of training visit www.knowbe4.com and try our free online phishing security test to see how phish-prone your employees are—it’s a great way to assess  the security savvy of your employees.



Stu Sjouwerman



KnowBe4



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews