The cybersecurity and information resilience team at BSI is advising organizations to remain alert to an increase in Business Email Compromise (BEC) attacks during the peak holiday season. A recent report revealed that almost half of organizations have at least one compromised account, stressing the importance for organizations to have proper email security governance and controls in place.
It is estimated that between 2016 and 2019, BEC attacks equated to financial losses of €22.8 billion internationally and in the US. In Ireland, a recent Garda Síochána report highlighted an increase in cyber-enabled fraud with phishing, smishing and vishing for the month of May up 19 per cent compared to the previous month.
With 95 per cent of data breaches starting with an email, this highlights the need for organizations to implement robust email security solutions that can detect and stop email threats to maintain their information resilience.
Stephen Bowes, Global Practice Director for Data Management and Security Technologies at BSI, explains: “Many organizations are in a vulnerable position as remote working continues and annual leave peaks. Attackers are using this opportunity to try and impersonate an employee’s colleague or senior executive to gain sensitive company information.
With email phishing, an attacker relies heavily on social engineering tactics to identify VAPs (very attacked persons) and they can be anyone in an organization, from the accountant, HR executive to a high-profile individual such as the CEO. The current threat landscape shows that cybercriminals are targeting individuals, not infrastructure, making it vital for organizations to take a people-centric approach right now.”
“Working with our clients and analyzing both the industry and recent incidents, securing email is one of, if not the single most important step, that organizations need to consider. Doing so will mitigate most inbound attacks and reduce an organization’s surface attack area. I would also encourage businesses to implement an awareness and training programme so that users can learn to spot and report malicious emails.”
“The increase in social engineering means that everyone needs to be mindful of what is posted on social media too. Our advice is to verify the origin of an email address or phone number and implement authentication procedures to confirm legitimacy before sharing any sensitive information.”
The Consulting Services team at BSI provides a range of solutions to help organizations address challenges in cybersecurity, information management and privacy, security awareness and compliance. For more information visit bsigroup.com/cyber-ie.
Employers risk leaving significant productivity value on the table because employees are not yet receiving the level…
Article written by Marie-Clare Byard, Now Media who reviews Pendulum Summit. She teaches business owners…
Using data collected by NASA's Parker Solar Probe during its closest approach to the sun, a University…
The Research Ireland ARC (Accelerating Research to Commercialisation) Hub for ICT was officially launched today…
Disney+ in Ireland is set to launch a new ad-supported subscription plan on March 3. The…
Did you watch Mark Carney’s presentation last week at Davos? No, is probably your answer,…
Irish Tech News are Ireland’s No. 1 Online Tech Publication and often Ireland’s No.1 Tech Podcast too.
You can find hundreds of fantastic previous episodes and subscribe using whatever platform you like via our Anchor.fm page here: https://anchor.fm/irish-tech-news
If you’d like to be featured in an upcoming Podcast email us at Simon@IrishTechNews.ie now to discuss.
Irish Tech News have a range of services available to help promote your business. Why not drop us a line at Info@IrishTechNews.ie now to find out more about how we can help you reach our audience.
You can also find and follow us on Twitter, LinkedIn, Facebook, Instagram, TikTok and Snapchat.