wonderfully unique software solutions

CoSoSys warns businesses to take cyberthreat as seriously as physical security

Cyberattacks and data breaches may well keep multiplying this year yet many organisations still don’t give data loss and breach prevention the consideration they deserve, according to CoSoSys.

Roman Foeckl in a blog for CoSoSys – the maker of Endpoint Protector – warned that organisations should be taking data loss prevention (DLP) more seriously.

“Cybersecurity should be treated exactly the same way as physical security,” Foeckl wrote.

“There’s no advantage in installing extra locks on the door if the window could easily be broken.”

He conceded that “the challenge” for many is that cybersecurity remains a complex subject.

“It’s difficult to find all these windows and doors. And the current cybersecurity talent gap is not helping organisations that struggle to hire well educated and experienced security managers,” Foeckl added.

Preventing data breaches can rely on understanding exactly how they happen, examining organisations’ entire potential attack surface to pinpoint weak points and address them, he said.

Yet many organisations don’t have enough knowledge of cybersecurity, which Foeckl suggested could be why some haven’t invested sufficiently in DLP.

He speculated that this could be because a media focus on phishing and ransomware might draw attention to the exclusion of other types of attack, including threats related to human behaviour or psychology.

“Many believe that if they are well protected against these two types of cyber attacks (phishing and ransomware), they can rest their minds,” Foeckl wrote.

Organisations must ensure their security policies focus on comprehensive protection, not simply compliance requirements.

He said that anti-malware applications must be paired with other offerings such as DLP software that can prevent the manual sharing of sensitive information outside the business, for example via social media or to a portable, yet unencrypted, drive.

“Unfortunately, many organisations go only as far as to pass audits and assessments, which results in a lot of the attack surface being covered inadequately.”

( Image by Elchinator from Pixabay )

Recent Articles

JetBrains Academy adds 43 topics and four projects for learning code

The programmer education division of developer tools provider JetBrains has followed up seven New Year project releases with 43 new study topics...

Employees often unware of compliance and email security needs, says GFI Software

People at work often know little about their organisation's requirements around email cybersecurity, data management and regulatory compliance, GFI Software has warned...

BrowserStack adds Cypress support for Safari WebKit on OS X and Windows

Cross-browser software vendor BrowserStack has unveiled Cypress support for the Safari browser engine WebKit, expected to assist devs with test automation.

Keeper bulks up zero-trust with new Connection Manager

Zero-trust passwords and secrets management company Keeper Security has updated Keeper Connection Manager (KCM) with new features including SQL Server and PostgreSQL...

Malwarebytes launches mobile security for business endpoints

Cybersecurity software provider Malwarebytes has extended its award-winning endpoint protection to organisations' mobile devices. Mark Strassman, chief product officer...

Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Weirdware monthly - Get the latest news in your inbox