Companies have their work cut out ensuring consumer data isn’t falling into the wrong hands. Luke Frost from Digital Data Communications explains how.
Every business, whether large or small, needs to have a customer-facing website these days, and in the 12 months to May 2014, Australians spent $15.3 billion on online retail sales, reports Australian security services company Seccom Global.
While this level of online activity is great for commerce in Australia, it also brings with it a host of problems – potentially very damaging ones. Marketing companies and web developers know that a website needs security, but many do not understand the depth of online threats that exist, and the ever-evolving complexity of attacks.
Regardless of whether a website sells directly to the public, or simply exists as a tool to host marketing information and contact details, an attack can be disastrous to business credibility and continuity. Imagine a client happily selling from the web one minute, then having to contact an entire customer base and explain that their security has been compromised. Payment details may have fallen into the hands of criminals, a foreign entity may be blackmailing the company or simply there has been a malicious attack and sales can’t continue as the online inventory is down.
Such a large target as Australia’s online business will inevitably be tempting to all manner of cyber criminals, and the sophistication of today’s hackers makes websites increasingly vulnerable. Most websites have a basic level of protection, usually in the form of a firewall at the domain of their host. However, a firewall is often a poor defence against modern attacks, leaving websites open to theft and fraud, which is severely damaging to a company’s reputation and business.
Attacks can take many forms, and are constantly evolving in size, scope and complexity. DoS or Denial of Service attacks are designed to disable a network or a network resource by consuming available resources and thus disabling legitimate user access. There are two general forms of DoS attacks: those that crash services and those that flood services so that normal business operations cannot continue.
Ransomware is the terminology used for software that infects a victim’s network, and then demands a ransom in order for hackers to unlock it. Cryptoware and Cryptolocker are two common examples of this form of attack.
Another form of cybercrime is the ‘waterhole attack’, where the attacker will gather strategic information about a business, such as trusted websites often visited by employees, then insert an exploit into the selected site. Victims will visit the compromised site and unintentionally download malware such as Remote Access Trojans, allowing the attacker access to confidential information or to take control of vulnerable systems.
Phishing, identity theft, triangulation attacks, botnets, zero-day attacks – there are many more dangers lurking in the cyber world, and Australian businesses need to be vigilant in order to stop them. A plan, a top-line defence and a strategy for reporting potential hazards to the authorities are all essential in order to preserve a stable business and customer trust.
Michael Demery, one of Australia’s leading data security experts, said: “Imagine what an attack could do to your business. Aside from leaving customers open to potential credit card and identity theft, the very fact that your resources were attacked could be very damaging to the company’s reputation. Being the source of a damaging and debilitating attack could cause endless headaches, and take a long time to recover from.”
When focusing on protecting a website it is important to recognise that all sites are different. A business website can be as simple as a single static HTML page with no dependencies, through to complex sites utilising multiple operating systems and software applications working in synergy with each other.
A firewall working alone is simply not enough protection these days. Businesses in Australia need a security plan, some basic form of risk assessment, a strong, dedicated online security provider and a means of telling the proper authorities when an attempted attack takes place.
A Managed Security Services Provider (MSSP) can offer far greater protection to a business, as well as providing invaluable reports on where attacks are coming from. With the dangers becoming ever more sophisticated, risking business continuity by leaving things to chance simply isn’t a wise option any more.
Guard against attack…by planning ahead. Make sure you are on top of the following:
- Educate yourself and users of the potential risks
- Understand your responsibilities
- Monitor and manage any potential incursions
- Implement strong password and encryption technologies
- Invest in Tier 1 security tools and systems to protect your site
- Work with security focused service providers
- Report any incursions promptly to the correct authorities
Leading Australian market research data brand, RDA Research, provides actionable consumer intelligence to help businesses inform decision making and growth strategies. RDA Research wanted to make its unique consumer data available for addressable digital targeting and required a data onboarding partner to help activate their data in an online environment.
Storytelling agency Enthral has appointed Channel 7 reporter and sports presenter Sean Sowerby as its new senior PR and content manager in Melbourne. Sowerby (pictured) started his award-winning career at 3AW before spending more than 15 years in television. Enthral founder and manager director, Cameron Smith, spoke of the significance of Sowerby joining the agency. […]
This week Nova’s Fitzy & Wippa are celebrating 10 years of their iconic radio show and plenty of famous faces have weighed in on the feat! For Fitzy & Wippa’s 10-year anniversary show they were joined by a bunch of special friends who shared their messages and favourite memories over the last decade. The guys […]
Ever since Google first announced it would be getting rid of third-party cookies on Chrome, digital advertising businesses have been actively sharing their plans for life after cookies. And now programmatic advertising company Blis might have come up with the most creative way to get the message across, in a new video which sees company […]
Integrated Melbourne agency Icon has taken top honours in the 2021 SABRE Awards, winning the coveted Australasian Consultancy of the Year for 2021 along with a host of category and craft awards. Icon led a large field of Australian agencies with a total of three major and seven minor awards, including gold in the cause-related […]
Former agency executives Tim O’Neill and Tim Fouhy have launched the auto technology startup Summon. Australia’s first full e-commerce service for prestige cars. O’Neill and Fouhy both founded Reactive, a digital agency, which was bought by Accenture in 2016. Following the deal, O’Neill and Fouhy ended up leading the company’s digital marketing arm, Accenture Interactive before […]