wonderfully unique software solutions

CoSoSys warns businesses to take cyberthreat as seriously as physical security

Cyberattacks and data breaches may well keep multiplying this year yet many organisations still don’t give data loss and breach prevention the consideration they deserve, according to CoSoSys.

Roman Foeckl in a blog for CoSoSys – the maker of Endpoint Protector – warned that organisations should be taking data loss prevention (DLP) more seriously.

“Cybersecurity should be treated exactly the same way as physical security,” Foeckl wrote.

“There’s no advantage in installing extra locks on the door if the window could easily be broken.”

He conceded that “the challenge” for many is that cybersecurity remains a complex subject.

“It’s difficult to find all these windows and doors. And the current cybersecurity talent gap is not helping organisations that struggle to hire well educated and experienced security managers,” Foeckl added.

Preventing data breaches can rely on understanding exactly how they happen, examining organisations’ entire potential attack surface to pinpoint weak points and address them, he said.

Yet many organisations don’t have enough knowledge of cybersecurity, which Foeckl suggested could be why some haven’t invested sufficiently in DLP.

He speculated that this could be because a media focus on phishing and ransomware might draw attention to the exclusion of other types of attack, including threats related to human behaviour or psychology.

“Many believe that if they are well protected against these two types of cyber attacks (phishing and ransomware), they can rest their minds,” Foeckl wrote.

Organisations must ensure their security policies focus on comprehensive protection, not simply compliance requirements.

He said that anti-malware applications must be paired with other offerings such as DLP software that can prevent the manual sharing of sensitive information outside the business, for example via social media or to a portable, yet unencrypted, drive.

“Unfortunately, many organisations go only as far as to pass audits and assessments, which results in a lot of the attack surface being covered inadequately.”

( Image by Elchinator from Pixabay )

Recent Articles

RealVNC remote-access highlighted by six finalists for Raspberry Pi prize

RealVNC, maker of RealVNC Connect, has named six finalists for this year's RealVNC Raspberry Pi Prize with winner and runners-up to be...

Cyberattack climate entails customised firewalling, notes Stormshield

Firewalling at the edge is no longer enough so organisations increasingly need to combine suitable location with segmentation and zero-trust strategies that...

Palm vein biometrics market set to explode this decade

The market for palm-vein based biometrics has been forecast to expand in line with a compounded annual growth rate of 22.4% from...

Automox targets unsigned scripts with PowerShell signing capability

Endpoint management company Automox is unveiling Worklets Signing, which complements Worklets and Ask Otto with a view to helping companies dodge the...

Arista warns SMBs to take precautions against edge threats

Arista Networks, the vendor of Arista Edge Threat Management (ETM) has warned that SMBs aren't always aware of the extent of targeting...

Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Weirdware monthly - Get the latest news in your inbox