November 24 this year marks the anniversary of one of the biggest hacks of the century. On this day in 2014, a mysterious group of hackers, who called themselves the “Guardians of Peace (GoP)”, attacked Sony Pictures Entertainment’s computer systems and started revealing many of Hollywood’s secrets; from unreleased movies to the personal data of its employees, their salaries and performance reviews.
Security risk has become a common threat to businesses in this digital age. After all, a hacker who wants to gain access to your official records just needs a laptop with broadband connection, a lazy network administrator and a careless worker who doesn’t adhere to the data privacy policies. This may be unintentional from an employees’ point of view but may lead to the company facing serious threats.
Here is the US OTA Breach report and some important aspects related to the data breaches that have occurred in the United States in 2014.
According to a report released by PricewaterhouseCoopers (PwC), the total number of data-security related incidents registered a compound annual growth rate of (CAGR) of 66% over the period 2009-2014. The report also stated that 117,339 attempts of information heist were made, per day, on an average, in 2014. (Source: http://www.pwc.com/gx/en/consulting-services/information-security-survey/key-findings.jhtml)
Recently, the technical director of a leading OEM (original equipment manufacturer) asked us to create an e-learning course on the organization’s data privacy policies and procedures.
In today’s globalized economy, security risk is affecting all organizations, large or small. According to a survey conducted by PwC on information security, the number of security breaches affecting the businesses is increasing continuously. The average cost to a large organizations for the security breach is between 450k to 850k Euros.
Security Awareness training is vital for any organization. One of the best ways to make sure that employees will not make any costly errors with regard to Information Security is to conduct awareness training programs. These training programs should be included as a prescribed curriculum. This type of training will help employees understand why security awareness is important and it will help them in knowing how to prevent unwanted incidents from happening and what to do if one encounters such an incident.
How many of you know about the Enigma machines, which were used by Germany in Second World War? They are machines used for encryption and decryption, of certain secret information during the war. The British army was able to break the code of Enigma and decrypted the information, which helped them to know the secret strategies of German. This information leak proved costly for the Germans, who ultimately lost the war.
It is necessary for organizations to protect themselves from various threats such as hackers, viruses and malwares, as these can result in huge financial consequences and compliance issues. The growing technology increases risks of data security and therefore, it is necessary to train employees on how to keep organizational information secure.
During my training, I came to know the facts of growing technology and the risks of data security. I never knew how important it is to secure information. In the present world of high technology, where we depend highly on computers for our personal and official data, there are extreme dangers of theft of information, which may get us into loss. I present here my views which I formed during my study.
There are many information stealers waiting eagerly to steal your organization’s key information. Information leakage may often put employees and the organization at risk and this may further lead to huge financial losses. To ensure your organization is not a victim to such predators, employees at every level must shoulder the responsibility of securing your organization’s information. Training ensures that the most valuable asset of your organization-information is secured in all aspects.