Data Breach
A data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, data.
The reported number and scale of data breaches has continued to rise. Associated threats are many, including the potential for a number of various frauds using the actual data gained from the breach, or the media awareness around the breach (e.g. phishing attempts from attackers masquerading as employees of the affected company, or regulatory authorities etc.).
If an organisation suffers a data breach, then the consequences can be dire. Financial damages can now include hefty fines from the Information Commissioner's Office (ICO) for non-compliance, and the reputational damage can be difficult to recover from.
The techniques used in many cases are often not particularly advanced. Examples include exploiting unpatched vulnerabilities, phishing campaigns, and by third party suppliers failing to secure data properly. This highlights the importance of nailing down basic security measures.
|
|
|
|
There are a number of protective measures you can take to mitigate the risk of a data breach. These can be categorised into 3 approaches:
> Protect endpoints
- Use up-to-date and supported operating systems and software.
- Deploy critical security patches as soon as possible.
- Implement application whitelisting technologies to prevent malware running on hosts.
> Protect the network
- Use Firewalls to protect services.
- Use an always-on antivirus solution that scans new files.
- Perform regular vulnerability assessments against both internal and external services to scan for any insecure configuration.
> Protect the information
- Implement a policy of 'least privilege' for all devices and services, which means that users are given only the bare minimum access rights to data/services needed to perform their daily duties.
- Use multi-factor authentication to protect sensitive information.
- Consider using password managers to help prevent password reuse between systems.
- Ensure that all services are protected by strict authentication and authorisation controls.
Reporting
If you've been affected by this or any other type of cyber crime, report the details to Action Fraud (0300 123 2040 / www.actionfraud.police.uk). Always keep an eye out for any suspicious follow up activity as well.
|
|
If you're interested in either hosting one of our workshops or attending a workshop, please get in touch with us.
|
|
|
|
South West Regional CiSP Meetup - Exeter, 23rd May
We're holding our first ever South West Regional CiSP Meetup on 23rd May in Exeter!
We have an excellent line-up of speakers, interactive workshops, and the chance to network with other like-minded organisations and technical professionals from across the South West. There will also be plenty of opportunities to speak to members of the SWRCCU.
For further details and to secure your place at this free to attend event, please log into CiSP, go on to the South West node, and follow the joining instructions there.
(Please note, this event is for CiSP members only. If you are interested in joining CiSP then we can sponsor your application, further information can be found at https://www.ncsc.gov.uk/section/keep-up-to-date/cisp ).
|
|
|
Business Showcase South West - Ashton Gate Stadium, Bristol, 19th June
Our team will be out in force at the Cornwall Business Show next month, register your place via the official website at https://www.businessshowcasesouthwest.com/
|
|
|
Most hacked passwords revealed as UK cyber survey exposes gaps in online security.
The NCSC's first 'UK cyber survey' published alongside global password risk list. (Read more at NCSC).
|
|
|
German arrests as police attack dark web drugs market. Police in Western Germany have arrested three men suspected of running the world's second-largest dark net marketplace for illegal drugs, stolen data and malicious software. (Read more at BBC).
|
|
Have I been pwned?
Seasoned receivers of our briefing will be aware of this excellent service, but there are always those who aren't. Use this website to check if you have an account that has been compromised in a data breach (you can even sign up to be alerted if you appear in future breaches). Website is at https://haveibeenpwned.com/.
Protecting bulk personal data
This advice from the NCSC outlines 15 good practice measures for the protection of bulk data held by digital services. Guidance is on the NCSC website at https://www.ncsc.gov.uk/collection/protecting-bulk-personal-data.
|
|
|
As a regional unit we are a collaboration of the five forces in the South West, these are - Wiltshire, Gloucestershire, Avon and Somerset, Dorset, and Devon & Cornwall.
The forces also have protect officers who offer cyber security advice and guidance, primarily to individuals and small businesses. In this section, we'll be highlighting some of the work going on around the region.
Devon and Cornwall
The D&C team have been hard at work educating huge numbers of older individuals with their presentations to PROBUS clubs and the University of the Third Age.
Avon and Somerset
A&S have been delivering cyber protect sessions to Deaf clubs around their patch. Deaf people can often miss out on receiving key advice, and face additional challenges navigating online safety.
Dorset
Dorset have been featuring at staff training days at colleges. Hundreds of employees have received an input on how to protect themselves against phishing attacks, using examples which colleagues had actually received. They have also been active presenting at some very picturesque rotary clubs!
Wiltshire
The Wiltshire team have some fantastic ongoing work with young vulnerable people in care, and are planning for further engagement with young people promoting safe online behaviours.
Gloucestershire
Gloucestershire Protect were at the University of Gloucestershire's Cyber Security and Digital Innovation Centre recently, where they delivered an input to around 60 local businesses.
|
|
|
|
|
|
|
|
