Connect with us

Risk Management

Is Your Business Being Pickpocketed Online? 5 Vital Answers about Cyber Crimes

You might have heard about cyber crimes before but do you know that it costs our economy over R6 billion every year? Here’s what you need to know and how you can protect your business.

Carey van Vlaanderen

Published

on

Cybercrime_hacker

Cyber crimes are any criminal or other offence that is facilitated by or involved the use of electronic communications or information systems, including any device on the internet or any one or more of them.

Most cyber crimes are committed by individuals or small groups. However, large organised crime groups also take advantage of the Internet.  Criminal communities share strategies and tools and can combine forces to launch coordinated attacks.

Related: Is A Mobile Virus Coming To Get You?

They even have an underground marketplace where cyber criminals can buy and sell stolen information and identities.

It’s very difficult to crack down on cyber criminals because the Internet makes it easier for people to do things anonymously and from any location on the globe.

[dropcap]1[/dropcap]

How rife is it in SA?

South-african-flag

Cyber crime has a significant effect on our economy as in the rest of the world, and costs South Africa over R6 Billion each year. In fact, South Africa is one of the most targeted countries globally for cyber phishing crime attacks.

According to statistics, the average cost of cyber crime in 56 organisations globally was R89 Million, up 6% over 2011 and the damage will rise every year if precautions are not put in place.

With South Africa having such a diverse economic landscape, and many of the financial services being delivered in the mid-tier market, vulnerable personal information on individuals is handled daily by these companies.

Most businesses spend money on external safeguards and security. They may invest in security personnel, closed circuit television cameras, and alarms, but they neglect to consider threats that also lurk online and such risks can be dangerous and devastating.

[dropcap]2[/dropcap]

Why are smaller sized business targeted?

Small and mid-sized businesses are more attractive targets because they tend to be less secure and easier to access. Most SME’s have little training or understanding of laws governing how personally identifiable information should be encrypted, shared, or stored and lack policies ensuring their staff complies with those requirements.

For businesses whose security has not kept up with the latest cybercrime developments they could be facing avoidable risks without realising it.  Hackers target SME’s hoping that their lack of preparation and limited expertise will make it easier to penetrate their systems and those of their business partners.

[dropcap]3[/dropcap]

What are cyber criminals up to?

coding

There are many ploys and schemes. Cyber crime scenarios include:

  • Ransomware, bitcoins and malware: Ransomware is malware that locks your file, or worse your entire system, so that you cannot use them unless you pay the cyber-criminals. Ransomware will continue to be a more relevant threat in coming years and is said to be the “future of consumer cybercrime”.
  • Targeted attacks: Targeted attacks are a rising trend. Most commonly known as Advanced Persistent Threats (APTs), their main difference from traditional cyber-attacks are target selection, plus silence and duration of attack. First of all, in most of these attacks there is a selected target, as opposed to traditional attacks that use any available corporate targets for their purposes. Secondly, these types of attacks try to stay unnoticed for longer periods of time.
  • Payment systems in the spotlight: In parallel with the growing use of online payment systems, the cybercrime interest in attacking them grows too.  At this point, it is already obvious that cyber-criminals will continue putting efforts into payment systems as more money circulates on the web. On the other hand, traditional point of sale (POS) systems are still widely used and malware authors are well aware of that.
  • Internet of Things: whole new categories of digital device are getting connected to the internet, from domestic appliances to home security and climate control, and this trend has been dubbed the Internet of Things or IoT. Due to this trend, we see some evidence of cybercrime emerging such as attacks on cars, Smart TVs, biometric systems on smartphones, routers and google glasses!

These are only some examples of cyber attacks – with every trend, there is a new ploy and target.

[dropcap]4[/dropcap]

What are the common risks/vulnerabilities?

Cyber-criminals usually have a specific target, and they even look for concrete information or try to attack.

Contrary to what most people think, the majority of cyber-criminals use well-known techniques (sending malicious mails in links or emails) and they usually exploit known vulnerabilities when the corresponding security patch has not yet been applied.

One of the most common techniques for accessing sensitive information from corporate employees, such as credentials to access the internal resources, is still phishing. Most of these attacks target employees belonging to all the company levels. Criminals are not only after our information.

Related: Who’s Hacking Your Data?

The mere fact of having thousands of infected computers already grants them a profit if those machines are part of a botnet and follow the criminal’s orders.

Their hard drives can be used to store any kind of illegal material; the internet connection can be used to send millions of spam emails or to perform Distributed Denial of Service Attacks (DDoS); and their processing capabilities can be used for cryptographic coin-mimicking – such as Bitcoin – which will go directly to the criminals’ virtual wallet.

There aren’t’ many companies that use no security protocols in their computers, but they are not always the best. Every business, from SME’s to large corporations, should be aware of the importance of security and the cost as well as reputational impact of breaches.

[dropcap]5[/dropcap]

How should companies protect themselves?

digital-protection

Many SME’s only have a single product as protection, such as antivirus. With employee BYOD, it is dangerous as these personal devices can be an attack route into the corporate network if users download malware disguised as legitimate applications.

SME’s should safeguard their business with comprehensive security packs with end-to-end security (protecting endpoints, file servers, mailboxes and mobiles/tablets).

Traditional antivirus products compare the file on a user’s system to only a limited library of known bad signatures, or look for only exact matches with such signatures.

Many that do not perform advanced heuristic analysis (examining the structure or behaviour of malicious code) have difficulty detecting malware that is released in many subtle variations or morph every few hours to evade signature-based detection, a common practice for today’s developer.

Related: (Video) Guard Yourself Against Cyber-Criminals

Education is essential. Many users don’t realise the threats that exist on online, and therefore do not put security in place. Businesses of all size should educate their employees on the online risks – this will help avoid costly harm (both monetary and reputational).

[dropcap]6[/dropcap]

What are costs/rewards vs risk of using cyber crime protection?

Costs vary according to business size. The cost implications from an attack could amount to millions, not forgetting the cost of reputation. Many SME’s cannot afford cyber attacks – and it can, in extreme cases, mean the end of some small businesses.

Sadly, when thinking of cybercrime, it’s not a matter of “if” but rather a matter of “when”.

Carey van Vlaanderen is the CEO of ESET Southern Africa, a global provider of security software for enterprises and consumers, and a subsidiary of 4DI Group. Carey first joined ESET in January 2004, where she held various key positions in operations management and sales, before being appointed CEO in March 2010.

Company Posts

Look To The Future

By protecting your employees, their future and their income, you’re also protecting your business says Walter van der Merwe, CEO of Fedgroup Life.

Fedgroup

Published

on

walter-van-der-merwe

It’s proven that staff members perform better when you show them how valued they are. But, investing in your staff members’ futures goes above and beyond the bottom line.

Staff members value recognition for the contributions they make to the business. However, this does not necessarily need to take the form of financial rewards or incentives. As an employer, you can demonstrate your employees’ value to the firm through appropriate insurance cover in the form of comprehensive employee benefits, which show that you’ve considered their long-term wellbeing and that of their family.

Of course, there is a financial commitment on the part of the employer to contribute towards insurance cover, but this goes towards the future prosperity of staff members, rather than an immediate financial benefit. Employee benefits offer security against the possibility that something detrimental will happen, and in instances where the benefit is needed, will have a lasting effect on their lives.

Ensuring that staff members have the financial means to get the best standard of medical care and treatment following injury or illness, will increase the likelihood that they will make a full recovery, and within a shorter period of time. This will enable them to possibly return to work sooner, with full capacity to continue contributing meaningfully to the business and adding value. In this way, employee benefits demonstrate to staff members that they are a significant and considered part of the business, not only at the present point in time, but also for the long term, and they also ensure a degree of business continuity — particularly key employees.

Loss of income

The biggest risk for every employee is a loss of income. Whether their incapacitation results from an injury or illness, an inability to generate an income to support their lifestyle and their family will severely impact an employee’s quality of life. This loss of financial security is therefore the most consequential risk that should be protected against through appropriate forms of insurance, such as lump sum or annuity income protection products.

Related: Investing In Wealth-Generating Assets

Another pertinent risk that business owners should address is the need for adequate life cover. Should an employee, who is possibly the primary breadwinner of a family, pass away, their surviving dependents may be left destitute without their financial support. Employee benefits that include a life insurance component will ensure the financial wellbeing of family members left behind in the event of an employee’s untimely death.

Another important risk factor to consider is the threat of chronic or severe illness, and the high costs generally associated with treatment. As employees age they become more susceptible to various types of illnesses. In instances where they fall chronically ill, they require the financial means to cover their medical costs, and generally require time away from work to recover. This is why dread disease or critical illness cover is another vital component of a comprehensive employee benefits scheme.

Choosing the right provider

When structuring employee benefits there are certain principles that should be applied, regardless of the size of company, or the income of the staff and their socio-economic circumstances.

Foremost among these is the selection of an employee benefits provider, along with the appropriate products and the associated cost implications. This role is best fulfilled by qualified, experienced and independent financial advisors who can offer unbiased advice. These trained and certified experts are able to advise employers on how best to support their staff members through the implementation of suitable employee benefit schemes by recommending the most appropriate solution structure, based on factors such as the gender, age, role and income of employees, and their financial responsibilities. This information helps advisors to select the best mix of products that offer suitable cover to meet the unique needs of the employer and their employees, while also considering affordability.

From a personal perspective, every employee gets peace of mind knowing they are protected should they no longer be able to work, or get sick, and that there are financial provisions in place for their family should they pass away. While they contribute a small premium, they will receive an outsized financial benefit should they claim in comparison to the immediate cost.

As it relates to the business, providing comprehensive employee benefits positions the company as an employer of choice, because the organisation shows that it cares for its staff. It also demonstrates that the employer considers their staff to be valuable, which is a powerful means to attract and retain the best talent.

Related: Kick-Starting Entrepreneurial Dreams From As Little As R300

Protect the future

The human psyche is hardwired to choose instant gratification over receiving a potentially greater reward or benefit sometime in the future. People generally tend to discount the value of rewards they’ll receive in the distant future due to a disconnect between what the present self believes will benefit the future self. In this model there is an opportunity cost involved in relation to what someone could afford now by rather spending the insurance premium on items or services that satisfy their more immediate needs.

This is the fundamental reason why insurance is considered a grudge purchase. We ultimately pay a premium every month towards an intangible benefit that will only be realised if and when a claim is made. And, in the case of insurance, that benefit is only realised when something horrible happens — another reason people shy away from examining this basket of products.

The best way to combat this innate psychological reasoning is through continued education, which can help people understand the purpose and the prolific impact that insurance will have on their lives should they ever need to claim. This requires contextualising the possible implications for an individual five to ten years from now, illustrating in real-world terms how different their situation could be in a worst-case scenario, both with and without appropriate insurance. This is a stark but effective means to demonstrate the need for adequate cover.

Continue Reading

Company Posts

How To Choose The Right Group Risk Cover For Your Business

Your clients and business partners are likely to be your main focus when you start out as an entrepreneur. But as your venture grows into a fully operative business of scale, your employees will matter just as much. That’s why it’s important to ensure you provide adequate employee benefits, and when it comes to group risk cover, it’s becoming increasingly important to find a solution that matches the needs of everyone in the business.

Schalk Malan

Published

on

brightrock-business-risk-cover

It’s no secret that the world of work, as we know it, is changing. In a 2017 employee benefits study, US insurer MetLife found that 58% of employees surveyed “want customised benefit options based on their personal information”. And according to the same study, 73% of employees believe their employer is responsible for employees’ health and financial wellbeing. And in spite of this expectation, modern employees are unlikely to stay with the same employers for very long, because technology continues to create new opportunities.

It is within this context that it’s important for you, the business owner, to make your business as attractive as possible by offering your employees benefits that truly match their needs. Start by thinking of yourself as a custodian of their financial security. And in terms of group risk cover, the financial security not only lies in the cover itself, but in offering benefits that add real value to your employees’ financial planning – especially when you consider that it is your employees who are contributing towards their cover.

Why do you need group risk cover for your business?

Employers buy group risk cover for the people in the company to cover their future pay cheques in case something happens where they can’t work before they retire.

But this, unfortunately, is not the case with traditional group risk products, which typically offer blunt amounts of cover that is equal to, for example, three years of pay cheques for everyone in the company – irrespective of how many pay cheques they have left before retirement. As a result of this approach, younger people in the company have less cover compared to what they need, relative to their older colleagues who have fewer pay cheques left

Traditional group risk products also offer very little flexibility, leaving employees with little, or no option to buy more cover above what employers secured. They also don’t offer a choice between lump-sum or recurring payouts when members claim, or always secure the ability to take their cover with them, should they decide to leave the company.

Related: How BrightRock Is Rocking The (Industry) Boat In Only 5 Years Since Launch

So how will you know you’ve selected the right cover?

Start by asking your financial adviser to look out for a product that works out how many pay cheques each employee needs to cover, and then gives every person in the company the same level of cover in proportion to the amount of pay cheques left until retirement. By following this approach, your employees’ cover will provide more people in the company with much more cover. There already are forward-thinking group risk cover providers in the market that manage to offer up to 50% more cover by following this approach.

Secondly, ask your financial adviser if your employees will be able to buy more cover over and above what you secured. There are innovative products on the market that offer up to double the cover free of underwriting, which enables your employees to benefit from the insurability you’re providing them, and to close gaps in their insurance.

And – in the spirit of the modern world of work with a more mobile workforce – these innovative products enable employees to take the cover with them when they decide to leave your company.

It’s also important to ask your financial adviser if your employees will be able to choose between a lump sum and recurring pay-outs when they claim. Traditional group risk policies tend to expect employers to make one choice  between lump sum or recurring payouts on behalf of all of their employees when they take out the cover. Forward thinking cover providers have turned this approach on its head, offering employees the option to choose between recurring or lump sum payouts when they claim.

The importance of claims certaintly should never be understated, starting with obtaining a clear picture of the clinical conditions the group risk cover actually covers. There are new players in the market that provide extensive and transparent lists of clinical claims conditions for additional expense needs, covering more than 200 conditions.

And exactly how permanent does the insurer view a claim for a permanent condition? For example, if an employee is to be diagnosed with Stage 4 cancer, will he or she receive a 100% payout on diagnosis, without the prospect of ongoing reassessment? A needs-matched product offering would never require the reassessment of permanent expense needs claims.

In conclusion …

You wouldn’t expect your employees to work under dangerous conditions. So why would you select a group risk product that will not serve in their best interests when they need it most? That’s where needs-matched group risk cover comes to the rescue – not only for your employees, but also for your business by providing security and benefits offering real value in the modern world of work.

Continue Reading

Risk Management

How to Take Risks That Win (Almost) Every Time

Knowing which risks to take, and how to take them, can be extremely helpful in stacking the odds in your favour.

Published

on

risk-management

Looking 13,000 feet down out of an airplane, parachute pack secured, your heart beating in your throat, must be one of the most terrifying experiences imaginable. Though not all risks are life-threatening, all risks are frightening. As humans, we’re constantly afraid of failure, of doing something wrong and of having to deal with the consequences. Yet, at the same time, there is nothing more rewarding than reaping the benefits of a risk gone right – of landing safely ground, to build the earlier metaphor.

For entrepreneurs, risk taking is a necessity of the job. After all, we’re never quite positive that things are going to work out the way we envision. We make choices daily which affect our business, and we can never be absolutely sure that we’re making the right ones.

Knowing which risks to take, and how to take them, can be extremely helpful in stacking the odds in your favour. While risks are unavoidable, approaching them strategically can be the best way to decrease your parachute’s chances of failing, so to speak, and to produce measurable results that you would never have achieved had you avoided the risk in the first place.

Related: Dream Big, Plan Well, Minimise Risks Says Braam Malherbe

In order to hone your risk-taking skills, here are some guidelines:

1. Information is your friend

The more knowledge you have about any given topic, the less risky your endeavours will ultimately be. For example, many of the most steadily successful brokers on Wall Street are those who understand the patterns of the market better than anyone else. While there are always going to be those people who make millions off a risky uninformed bet, they are the same people who most likely will lose all their earnings on a single trade. Traders who build a sustainable career for themselves are the ones that have deep knowledge of the industry.

Similarly, you should be an expert in your field. You should know your industry well – your product or service you are providing. You should understand the buying patterns of consumers, their motivation and pain points. What drives them to buy your products? Where and when do they buy? What makes them stop buying?

As an entrepreneur – or in any profession that requires risks, really – you’ll want to have as much information as possible. The more you know, the fewer unknowns there are. The unknowns, ultimately, are what makes an action risky.

2. Assess the risk carefully

While risk is a reality of life, there is also something to be said for strong assessment skills. Being able to look at a risky situation and decide whether or not it’s worth taking is a hallmark of a good businessperson.

Venture capital investors, for example, spend their entire careers deciding which companies are worth risking time and money on. Those who throw their money around recklessly, while admirable for their risk-taking, are not necessarily the most successful investors.

Being a good risk-taker involves using the information you have to assess a situation and decide whether or not the risk is worth it.

Related: 5 Infamous Risks Every Entrepreneur Must Face

3. Learn from failure

Appreciate that all risks are learning experiences. Especially those that don’t pan out.

On some accounts, failure is actually more valuable than success. While failures may not lead to an increase in your bottom line, you can use the opportunity to glean important information about what you’ve done wrong, where you misstepped and how you can move forward in the future.

The biggest mistake many people make is seeing failure as a measure of who they are, rather than a measure of where they can go. We’ve all heard that failure is feedback. Most successful entrepreneurs failed at many ventures before they created that million-dollar offering. Most overnight successes took many years to make. If you take a risk and fail, learn from it. Ask yourself what you can do differently next time, and then move on. The only failure is not learning the lesson that it provides and using it to hone your next endeavour.

According to Mark Zuckerberg, “The biggest risk is not taking any risk. In a world that’s changing really quickly, the only strategy that is guaranteed to fail is not taking risks.”

Taking risks is the only way to go from here to there. Even failed risks move you closer to your goals if you can turn that failure into valuable learning and a plan for improve your results next time.

This article was originally posted here on Entrepreneur.com.

Continue Reading
Advertisement

SPOTLIGHT

Advertisement

Recent Posts

Follow Us

Entrepreneur-Newsletters
*
We respect your privacy. 
* indicates required.
Advertisement

Trending