The average loss per business cybercrime incident is $75,000 and generally comes through email or phishing attacks, according to Nicholas Paulukow of One 2 One Computer Services.
He says hackers are very patient in setting up their victims. They often slip into a computer system through an email and collect passwords and other information until they have enough data to execute an attack.
“They then execute the ransomware to cause you to be held hostage and to pay,” Paulukow said during a recent United Motorcoach Association Town Hall session.
A recent study found that 48% of businesses, regardless of size, aren’t prepared to deal with an attack because they lack a response plan. During his July 8 presentation to UMA Members, Paulukow provided actionable takeaways about data protection.
Detecting cyber crime
People and businesses often fail to detect that they even have a threat, said Paulukow. He recommends creating a security awareness culture in your organization with a focus on training employees and using tools that gauge if there is a problem.
Businesses should also be aware of their responsibilities for digital records under the law. They can vary from state to state. For example, in Pennsylvania, where his IT firm is located, if you digitally store a copy of someone’s driver’s license, Social Security number or credit card information, you are required to protect that information. If that information is stolen, you are required to report that to the state and the person whose information was taken.
“It’s important to understand that you are liable not just for digital data but electronic data as well,” Paulukow said.
Paulukow is offering UMA Members access to his security awareness training seminar and a free report that includes a dark web scan that will show if your organization’s passwords and other data have already been captured. UMA Members can contact the UMA staff at cblake@uma.org to get your links.
Related:
