Expert(s):
CEOfeature_status*/ ?>
Egress

Comments Dotted : 6
November 11, 2020

Almost Four-In-Ten Data Breaches Are Caused By Stressed, Tired Employees
Every employee has access to email, meaning that every employee can potentially cause an inadvertent insider data breach.
Many employees are experiencing heightened stress due to the pandemic and the uncertainty it’s created. They’re also trying to get through their working day, while dealing with various distractions, from keeping the kids entertained or focused on schoolwork, to answering the door for deliveries. Remote working has further blurred the lines between our work and home lives, with research showing that work-life balance is suffering as a result. The pandemic, and the resulting move to remote .....Read More
Many employees are experiencing heightened stress due to the pandemic and the uncertainty it’s created. They’re also trying to get through their working day, while dealing with various distractions, from keeping the kids entertained or focused on schoolwork, to answering the door for deliveries. Remote working has further blurred the lines between our work and home lives, with research showing that work-life balance is suffering as a result. The pandemic, and the resulting move to remote working, has meant that many employees are stressed and tired, meaning that mistakes are more likely to happen. Every employee has access to email, meaning that every employee can potentially cause an inadvertent insider data breach. That risk is amplified by the stress and fatigue employees are currently dealing with. It’s up to organisations to ensure that they have the right tools in place to prevent these incidents before they can happen.  Read Less
November 10, 2020

It’s up to organisations to ensure that they have the right tools in place to prevent these incidents.
Many employees are experiencing heightened stress due to the pandemic and the uncertainty it’s created. They’re also trying to get through their working day, while dealing with various distractions, from keeping the kids entertained or focused on schoolwork, to answering the door for deliveries. Remote working has further blurred the lines between our work and home lives, with research showing that work-life balance is suffering as a result. The pandemic, and the resulting move to remote.....Read More
Many employees are experiencing heightened stress due to the pandemic and the uncertainty it’s created. They’re also trying to get through their working day, while dealing with various distractions, from keeping the kids entertained or focused on schoolwork, to answering the door for deliveries. Remote working has further blurred the lines between our work and home lives, with research showing that work-life balance is suffering as a result. The pandemic, and the resulting move to remote working, has meant that many employees are stressed and tired, meaning that mistakes are more likely to happen. Every employee has access to email, meaning that every employee can potentially cause an inadvertent insider data breach. That risk is amplified by the stress and fatigue employees are currently dealing with. It’s up to organisations to ensure that they have the right tools in place to prevent these incidents before they can happen.  Read Less
October 20, 2020

Expert Reaction On ICO Data Shows Misdirected Email Is A 44% Bigger Risk Than Phishing Attacks
What remains clear is that it is up to organisations to get on the front foot with solving this problem.
“Misdirected emails are the UK’s number one cause of reported security incidents – so it comes as no surprise that they once again top the ICO’s list for reported data security incidents in Q1 2020. However, what may come as a shock to many is the sheer scale of the problem with the ICO’s data revealing it to be a 44% bigger risk than phishing attacks. Everyone has access to email and while organisations often focus their efforts on defending inbound attacks like phishing and other.....Read More
“Misdirected emails are the UK’s number one cause of reported security incidents – so it comes as no surprise that they once again top the ICO’s list for reported data security incidents in Q1 2020. However, what may come as a shock to many is the sheer scale of the problem with the ICO’s data revealing it to be a 44% bigger risk than phishing attacks. Everyone has access to email and while organisations often focus their efforts on defending inbound attacks like phishing and other malware, the reality is that human-activated outbound email risk is the major cause of security incidents. I have no doubt that when the ICO reveals its statistics for Q2 2020 remote working during the COVID-19 lockdown will only have amplified the number of misdirected emails as organisations reliance on email as a critical communication tool during this period will have exacerbated the problem. What is potentially more concerning is that the true size of the misdirected email issue could be even more damning than is conveyed by the ICO’s data. Our recent research showed that 62% of organisations rely on people to report outbound email data breaches (including, sender, recipients, and colleagues). This is an incredibly risky strategy, as many individuals will not have reported incidents at all because they’re unaware they’ve happened or due to fear of repercussions. What remains clear is that it is up to organisations to get on the front foot with solving this problem, looking to intelligent email security that uses the latest in contextual machine learning to detect mistakes and prevent breaches before they happen – enabling employees to work both more productively and securely.  Read Less
July 17, 2020

Experts Insight On Major US Twitter Accounts Hacked in Bitcoin Scam
Organisations have an opportunity to do more by understanding the ‘human layer’ of security, including breach personas and where different risks lie.
News today that Twitter has suffered a co-ordinated attack targeting its employees "with access to internal systems and tools" is deeply concerning. However, screenshots obtained from two sources who took over accounts which suggest that this breach was caused by an intentionally malicious insider adds an additional layer of concern and complexity to this saga. In our 2020 Insider Data Breach, we found that 75% of IT leaders surveyed believe employees have put data at risk intentionally in.....Read More
News today that Twitter has suffered a co-ordinated attack targeting its employees "with access to internal systems and tools" is deeply concerning. However, screenshots obtained from two sources who took over accounts which suggest that this breach was caused by an intentionally malicious insider adds an additional layer of concern and complexity to this saga. In our 2020 Insider Data Breach, we found that 75% of IT leaders surveyed believe employees have put data at risk intentionally in the past year and this latest breach seems to bear out those beliefs. So, what can security professionals do to prevent this risk and keep sensitive data out of the reach of malicious threat actors? Organisations have an opportunity to do more by understanding the ‘human layer’ of security, including breach personas and where different risks lie. Technology needs to do more by providing insight into how sensitive data in the organisation is being handled and identifying risks, including human-activated threats. By spotting the characteristics of a potentially malicious insider and being aware of what they are susceptible to and motivated by, organisations can put the tactics, techniques, and technology in place to mitigate the risk.  Read Less
September 16, 2019

Comment: UNICEF Data Leak Reveals Personal Info Of 8,000 Online Learners
GDPR has been firmly put back at the top of the boardroom agenda by the hefty fines recently doled out by the ICO to BA and Marriott.
News breaking that a UNICEF employee had inadvertently revealed the personal details of 8,253 users of its Agora online learning platform, through a piece of unstructured data, has brought the need for organisations to ensure they’re using the right tools for the right job back into focus. The leak saw the data of users enrolled on courses on childhood immunisation sent to 20,000 users of the educational system towards the end of August. Sensitive data such as names, email addresses,.....Read More
News breaking that a UNICEF employee had inadvertently revealed the personal details of 8,253 users of its Agora online learning platform, through a piece of unstructured data, has brought the need for organisations to ensure they’re using the right tools for the right job back into focus. The leak saw the data of users enrolled on courses on childhood immunisation sent to 20,000 users of the educational system towards the end of August. Sensitive data such as names, email addresses, locations, gender, organisation, supervisor names and contract types were revealed. GDPR has been firmly put back at the top of the boardroom agenda by the hefty fines recently doled out by the ICO to BA and Marriott, reminding organisations that they have a duty of care to protect all clients’ and service users’ data. Recent Egress research supports this approach; 60% of the 4856 personal data breach incidents reported to the ICO in the first six months of 2019 were the result of human error. Regardless of whether UNICEF is subject to GDPR as a United Nations organisation, data incidents like this highlight the need to ensure that staff can share sensitive data securely when they need to – with policies and technologies forming a ‘safety net’ that reduce the likelihood of human error that puts information at risk. In particular, organisations should invest in more robust risk-based protection tools that work alongside the user, enabling them to work effectively and securely.  Read Less
August 19, 2019

ECB Confirms Hacker Attack And Shuts Down One Of Its Websites
It’s important the 481 BIRD subscribers who have had their details compromised be extra vigilant going forward.
The financial services sector is frequently targeted by malicious attackers, due to the nature of the data it receives, shares and manages. The European Central Bank (ECB) is the latest victim, with hackers installing malware that’s thought to have collected email addresses and other details from its Banks’ Integrated Reporting Dictionary (BIRD) website. It’s important the 481 BIRD subscribers who have had their details compromised be extra vigilant going forward. The compromised email .....Read More
The financial services sector is frequently targeted by malicious attackers, due to the nature of the data it receives, shares and manages. The European Central Bank (ECB) is the latest victim, with hackers installing malware that’s thought to have collected email addresses and other details from its Banks’ Integrated Reporting Dictionary (BIRD) website. It’s important the 481 BIRD subscribers who have had their details compromised be extra vigilant going forward. The compromised email addresses that have been taken from the server could be used in future phishing attacks by malicious actors, enabling them to gain further pieces of personal data or trick recipients into downloading malware to their systems. These subscribes should be on the lookout for any message that seems suspicious, for example using incorrect branding or poor grammar. In addition, they shouldn’t click on any suspicious links contained in these emails; instead, they should hover their mouse over it to see if the address matches the link displayed or if possible, open the site via another window.  Read Less