Reports are that reported breaches are down. This is likely not due to the fact that there are less breaches, just less reports.
Wait six months and see what the breach reports look like.
Security firm Tessian released their State of Data Loss report and here are some of the things they found.
- 52 percent of employees feel they can get away with riskier behavior at home like sharing confidential files by email.
- Part of the reason for not following safe practices is that many employees are using their own computers rather than a company issued one.
- Another reason is that security and IT are not watching them.
- Employees have more distractions at home, making it difficult to concentrate. Distractions include kids, roommates and not being in their normal office environment.
- Some employees say they are being forced to cut security corners because they are under pressure to get the job done.
- Half of the people said that they had to find workarounds to the rules in order to work efficiently.
None of this is news.
Employers are the ones that will get to pay for this in the long run. If an employee causes a breach by cutting corners you may fire them (and you may also get sued by them because they may say that you forced them to cut corners – whether true or not), but even if you do, you will get to write that check for thousands or millions of dollars. And suffer the reputation damage.
Many companies do not have good (or any) real time security monitoring and alerting systems in place. The effect of this is that even if you are breached, you won’t know about it.
Do you know the most common way companies find out about a breach?
YUP, it is when some third party like the POLICE, FBI or CREDIT CARD COMPANIES tell them they have been breached.
So while no one really wants to spend the time and money right now, now is the time that you have to spend time and money.
Alternatively, you can spend that money in breach response.
At least 10 times more money.
Assuming you don’t get sued.
or you don’t lose customers.