Cybersecurity Attacks Are on the Rise
As telecommuters grow in number, so does the potential for cyber breaches caused by lax cyber security habits.Global cyber security attacks…
July 05, 2017 at 06:44 AM
4 minute read
The original version of this story was published on Law.com
As telecommuters grow in number, so does the potential for cyber breaches caused by lax cyber security habits.
Global cyber security attacks such as the Wannacry ransomware outbreak make headlines, but small and medium businesses are also vulnerable to cyber threats originating from their own employees, especially those who work remotely. As telecommuters grow in number, so does the potential for cyber breaches caused by lax cyber security habits.
In fact, a new report from the FBI's Internet Crime Complaint Center (IC3) puts the financial loss from cybercrime in the United States at more than $1.3 billion in 2016, a rise of 24 percent. And, 43 percent of Americans spent at least some time working remotely last year, according to Gallup's State of the American Workplace report.
With so much of the world's business conducted online, it's inevitable that cybercrime is on the rise. But businesses can take proactive measures to safeguard against potential cyber threats, including ensuring they have adequate cyber liability insurance coverage and educating their staff on best cyber security practices for working remotely. Examples include: implementing smart and safe password practices; using VPN software which allows remote workers to securely access the Internet and; turning off Wi-Fi on your devices when you don't need it, which prevents them from automatically connecting to available Wi-Fi hotspots.
Parker Rains, VP of Fisher Brown Bottrell Insurance, recently sat down with Inside Counsel to discuss ways businesses can diminish the risk posed by cyber threats as well as the differences between general business liability and cyber liability insurance, which is on the rise.
The internet is no longer in its infancy and neither are today's hackers. “They use sophisticated techniques, from viruses to phishing, to gain access to personal data, such as financial records, email addresses, passwords, dates of birth and Social Security numbers,” he said. “With the latest ransomware attack, Petya, spreading across the globe right now, we're seeing major U.S. companies like pharmaceutical giant Merck and law firm DLA Piper being affected.”
As more employees work remotely, it becomes increasingly difficult for employers to enforce cybersecurity protocols. Employees working from their neighborhood coffee shop are likely using public Wi-Fi, which poses a huge risk, and hackers have several ways to infiltrate these networks.
“For example, they can create their own public Wi-Fi networks with names that look like the one a user is expecting to join—like the coffee shop's name or a nearby shop or hotel,” explained Rains. “The hacker can then monitor all the victim's activity, gaining access to passwords, credit card numbers and other sensitive data. Human error leads to many loopholes in security and oftentimes employees themselves can pose the biggest security threat to companies.”
So, what are some proactive measures businesses can take to safeguard against potential cyber threats?
There are many proactive measures businesses can take—and should be taking—to safeguard against potential cyber threats. According to Rains, update anti-virus and anti-malware software frequently to ensure there are no gaps in your cyber security; train employees on proper updating protocols; make sure passwords are strong; make sure your employees use different passwords across platforms and update them regularly by establishing and enforcing a strict password policy and; secure your communications by setting up a secure server to encrypt and decrypt communications within your company.
In addition, Rains advises developing a detailed action plan that you can launch in the event of a cyber-attack. This will ensure your company is prepared to take actionable steps, such as communicating details of the breach to employees and implementing required employee action to minimize further damage.
“Identify various breach scenarios and ask (and answer) questions like, 'Who will deal with the technology aftermath?' and 'Who will inform clients?' he explained. “Document your responses and share your plan with employees. It's important to test the plan and revisit it regularly—at least annually—to make sure it's up to date.”
Lastly, be sure you have adequate cyber liability insurance coverage. A lot of business owners don't realize that cybercrime isn't covered by their general business liability policies. A general liability policy covers against any general third-party claims of things like bodily injury or property damage, but it doesn't extend to things like workers' compensation claims or cyber-attacks.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrump Likely to Keep Up Antitrust Enforcement, but Dial Back the Antagonism
5 minute readA Blueprint for Targeted Enhancements to Corporate Compliance Programs
7 minute readFTC Sues Cash-Advance Fintech Dave, Says It Deceives the 'Financially Vulnerable'
Trending Stories
- 1Infant Formula Judge Sanctions Kirkland's Jim Hurst: 'Overtly Crossed the Lines'
- 2Trump's Return to the White House: The Legal Industry Reacts
- 3Election 2024: Nationwide Judicial Races and Ballot Measures to Watch
- 4Climate Disputes, International Arbitration, and State Court Limitations for Global Issues
- 5Judicial Face-Off: Navigating the Ethical and Efficient Use of AI in Legal Practice [CLE Pending]
- 6How Much Does the Frequency of Retirement Withdrawals Matter?
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250