When thinking of October, many of us will culminate one of the scariest days of the year – Halloween. However, something far more frightening if ignored than trick-or-treaters at your door is cyber-security.

October – a month dedicated to help educate businesses on cyber-security and understand how to keep data safe. Nowadays, we live in a very technology infused world and so as cyber-security issues constantly evolve, staying safe online and protecting your data are therefore fundamentally important to your business.

Cyber-security issues are becoming a day to day struggle for many businesses. Trends indicate a huge peak in hacked and breached data from sources that are increasingly common in the workplace, like mobile and IoT devices.

Lists of potential threats may seem endless with many cyber-attacks hitting closer to home than we think. Recent research also highlights that most companies have unprotected data and poor cyber-security practices in place, making them more vulnerable to data loss. Thus, we are all at risk.

This has created the emergence of campaigns such as the National Cyber Security Awareness Month (NCSAM) in the US, European Cyber Security Month (ECSM) and Cyber Security Awareness Month in Canada. Throughout October, the aim is to raise awareness, change behaviours and provide accessible resources to educate people further on safety online. In doing so, the hope is that these campaigns will enable simple steps that we can all take to protect our personal, financial and/or professional data.

To achieve these goals, campaigns are often centred around several themes which are split over the course over the month.

Cyber Hygiene – Week 1 & 2: Oct 1-13

This theme seeks to assist the public in establishing and maintaining daily routines, checks and general behaviour required to stay safe online.

Emerging Technology – Week 3 &4: Oct 14 – 31

Stay tech wise and safe with the latest emerging technologies.

Both present and former campaigns have a common underlying thread and their principal message being:

Cyber security is a shared responsibility!

This applies universally and shows that we all have a role to play when it comes to responding to the growing threat of cyber-crime to ensure we keep one step ahead of cyber criminals.

For instance, throughout Europe, a number of events are taking place to try and promote the campaign goals. This includes a social engineering presentation here in the UK, to a kid’s cyber-security roadshow in Denmark and a travelling phishing game in Belgium. Take a look at the ECSM interactive map to find out what’s going on in cities around Europe.

The Facts

Data Breaches by Numbers

The increasing amount of large-scale, well-publicised breaches suggests that not only are the number of security breaches going up – they’re increasing in severity, as well.

IoT attacks were up 600% in 2017
Approximately 24,000 malicious mobile apps are blocked every day
In 2017, 61% of data breach victims were companies with < 1000 employees

Cyber-security Costs

Average expenditures on cyber crime are increasing dramatically, and costs associated with these crimes can be crippling to companies who have not made cyber-security part of their regular budget.

1. Damage related to cybercrime is projected to hit $6 trillion annually by 2021
2. The average cost of malware attacks is $2.4 million
3. Information loss is the most expensive component of a cyber attack and represents 43% of costs

Cyber-security Facts and Figures

It’s crucial to have a grasp on the general landscape of metrics surround cyber-security issues, including what the most common types of attacks are and where they come from.

Microsoft Office formats make up the most prevalent group of malicious file extensions
Sources of cyber attacks in 2017 were as follows: 20% China, 11% USA and 6% Russia
74% of companies have over 1000 stale sensitive files

Cyber-security Risks

With new threats emerging every day, the risks of not securing files is more dangerous than ever, especially for companies.

1. 70% of organisations say they believe their security risk increased significantly in 2017
2. 21% of files are not protected in any way
3. 65% of companies have 500 users who are never prompted to change their passwords

In a world dominated by technology, we become increasingly more exposed to cyber-attacks. Advocacy campaigns by ECSM and NSCAM are fundamental in educating and raising awareness around the importance of online security. Also, by assessing your business’s security risk, making company wide-changes and improving overall security behaviour, its possible to protect your business from most data breaches.

Make sure you’ve done everything you can do to avoid your company becoming a victim to an attack!