Amid continued disruption across the HE sector following the recent Distributed Denial of Service (DDoS) cyber-attack on the JANET network, we are urging our clients to consider the wider risks and implications of similar attacks on their organisations.
Such implications could fall largely into the following broad categories:
- attacks against computer hardware and software, for example malware
- financial crimes and corruption, such as online fraud
- abuse, in the form of grooming or ‘sexploitation', especially crimes against vulnerable young people.
The Office for National Statistics (ONS) released information earlier this year suggesting cybercrime incidents are growing more prevalent in British society than traditional criminal incidents, with more than seven million incidents estimated to have occurred within the last year, noting that this may be due to more criminal enterprises transitioning to the digital world.
Criminal organisations are turning increasingly to the internet to facilitate their activities and maximise profit in the shortest time. The crimes are not necessarily new (theft, fraud, illegal gambling, sale of fake medicines), but they are evolving with the opportunities presented online, becoming more widespread and damaging.
It is important to consider these risks in the context of risk registers and assurances sought from your Head of IT (or equivalent) as to the level of protection already in place. Understanding the impact and level of attacks on your systems is crucial and should provide assurance over your systems, in addition to any business continuity arrangements and stakeholder communications.
- cyber security gap analysis – a simple and effective review to highlight any weak spots
- information security (27001) implementation support
- network vulnerability and penetration testing
- business resilience advisory support