www.boardroomstudio.org/what-is-cybersecurity
Cyber risks are a threat to your business that could lead to unauthorised access to systems and data. This could lead to ransom requests, data breaches destruction of property and financial losses.
The most common cyberattacks include malware, phishing and social engineering. Malware attacks are constantly evolving as attackers seek ways to get around or overcome security systems. This requires a constant cat and mouse game between attackers and cybersecurity teams. Often by the time cybersecurity analysts spot an attack, it may be too late to prevent it from impacting the business.
Cyberattacks can also be advanced persistent threats that are slow and stealthy. They are aimed at specific targets to obtain sensitive information. Distributed denial of service (DDoS) attacks flood systems with internet traffic to disrupt operations and act as a cover for more extensive attacks. Ransomware attacks can encrypt data and require a financial payment to unlock it. And supply chain attacks damage software or hardware before they reach the customer and rely on the trust of third party.
In addition to cyberattacks, you must take into account the risk posed by those within your organization who have access rights to systems and information. This includes disgruntled employees and malicious contractors. They could have unrest or have a motive to harm the company and are difficult to detect. Insecure configurations or weaknesses in your IT system could be exploited by hackers. This includes failure to update computer software, and failure to implement network segmentation to separate different kinds of data.
