Over the past few years the companies that have ‘fessed up’ or been outed by the media for data breaches have dramatically increased, as has the scale of the breaches.
Far too many companies still believe that it will never happen to us, instead of businesses accepting the inevitability (in some form or another) and putting into place mitigation technology. They ignore the threat, tiptoeing down sniper alley as fellow corporations with similar attitudes drop around them. The most recent example of this has been the NHS.
Equifax were also recent victims of a massive IT security breach. Around 143 million American and 700,000 British citizens had a variety of personal data exposed, including social security numbers, birth dates, addresses and even driving licenses. This incident is just one example of hundreds of recently hacked organisations. If a company’s essential function is to keep data safe but it still gets hacked, perhaps businesses that place securing their data as a lower priority should think twice!
Lee Child’s literary hero Jack Reacher’s quote, “hope for the best, plan for the worst,” is probably the best advice in security terms that a company can take.
There are simple and inexpensive steps which can be taken…
The simplest step is to test your own defences with some form of Penetration Testing programme – find out where the weaknesses are and bolster these rather than throwing money at huge security infrastructures before knowing where the holes in your defence actually are. However, if you fail this then you could always get Jack on your side and put him in charge!