BUSINESSES are being urged to review their cyber security ahead of the General Data Protection Regulation (GDPR) coming into force in May.
GDPR affects businesses worldwide that process the personal data of European citizens. As Chris Houghton, CEO of Westhoughton-based systems management company Eventura, stated: “The regulations extend the rights of individuals over their data, and require organisations to implement clear technological and organisational measures to protect the personal data.”
Failure to comply with the legislation could incur fines of £20 million or 4 per cent of global turnover, whichever is highest.
“Compliance cannot be achieved overnight,” added Mr Houghton. “And, despite rumours, GDPR will still apply in the UK following Brexit.”
He said that, although GDPR itself does not protect against cyber threats, “it does encourage businesses to put into place reasonable levels of security to protect data and begin to understand the need for robust cyber security solutions. They need to enhance their cyber security measures that protect against common threats.”
These common threats include:
Phishing – Untargeted, mass emails sent to many people asking for sensitive information (such as bank details) or encouraging them to visit a fake website.
Spear-phishing - A more targeted form of phishing where the email is designed to look like it’s from a person the recipient knows and/or trusts.
Ransomware – Malicious software that makes data or systems unusable until the victim makes a payment.
Malware - Software which is specifically designed to disrupt, damage or gain authorized access to a computer system.
Water-holing – This involves the setting up of a fake website (or compromising a real one) in order to exploit visiting users.
“There are no particular businesses that are targeted by cyber attackers as each attack has a different motive,” said Mr Houghton. “While SME business owners may believe that cyber attackers only have an interest in large organisations, this is not the case.
“The truth is that, to these attackers, all vulnerabilities provide them with an opportunity to exploit, whether that be directly for financial gain, to gain access to valuable data or use hacked systems as a platform from which to commit further cyber-crimes.”
Caption: CYBER CRIME WARNING – Eventura CEO Chris Houghton
Comments: Our rules
We want our comments to be a lively and valuable part of our community - a place where readers can debate and engage with the most important local issues. The ability to comment on our stories is a privilege, not a right, however, and that privilege may be withdrawn if it is abused or misused.
Please report any comments that break our rules.
Read the rules here