• Home

  • Software

  • Should you take a holiday from cybersecurity?
3
Should you take a holiday from cybersecurity? Going on holiday is often synonymous with letting go… of good habits. For a few days during the summer, we’re all used to saying goodbye to those strict clothes, waiving off (temporarily) our work phones and computers in favor of a glass of wine served on a terrace by the sea. That being said, this period of navel gazing and self- indulgence comes at a price. We are no longer physically connected to our office, but we are still connected (that check in won’t post itself #winkwink). It is exactly this type of negligence that can have a damaging and, of course, unexpected, impact on the digital wellbeing of individuals and, by extension, of companies. As tempted as we may be to treat cybersecurity best practices lightly, we must not ignore the risks. Hackers know very well what our weaknesses are and do not hesitate to use them against us. So why make show ourselves even more vulnerable than we already are? DID YOU KNOW THAT… …if you are a victim of hacking, be it during the summer or not, you can be held liable for the data on your devices. As an individual, you ‘only’ risk the loss of your data. But as an employee, this type of incident may cause you major problems. You will probably say to yourself: as long as it didn’t happen on any of your work devices, nothing to worry about, right? FALSE. Often the lines between private life and work life are blurred. Suppose you tried not to completely disconnect from the office during the holidays. Inevitably, your laptop or personal computer may contain the contact details or, at the very least, give access to the contact details of certain customers and prospects. If this data were to be retrieved by a hacker, well, let’s just say that, depending on the part of the world you live in, different consequences may incur. In France, the Godfrain Law (released on January 5 th , 1988) states that you may be judged for having facilitated access within an IS with unintended damage. Penalties range from 2 months imprisonment and 1500 euro fine to 2 years imprisonment and a fine of € 15,000. Furthermore, these measures may also be accompanied by a deprivation of civil rights (prohibition of work in the public service, for instance). Doesn’t feel so good to be bad now, does it? …if you don’t live in France, it might be useful to know that the Godfrain Law is not the only one that can cause you problems. For the implementation of the GRDP (General Regulation on Data Protection), you risk paying even more for your carelessness. Heavy sanctions aimed at controllers and processors that violate the rules on data protection include the following: “Data controllers can face fines of up to €20 million or 4% of their global annual turnover. These administrative sanctions will be imposed by the national data protection authorities.” For those who have not yet heard of the GRDP, it is the central pole regarding all the measures proposed by the European Commission on data

Should you take a holiday from cybersecurity?

Embed Size (px)

Citation preview

Page 1: Should you take a holiday from cybersecurity?

Should you take a holiday from cybersecurity?

Going on holiday is often synonymous with letting go… of good habits. For a few days during the summer, we’re all used to saying goodbye to those strict clothes, waiving off (temporarily) our work phones and computers in favor of a glass of wine served on a terrace by the sea. That being said, this period of navel gazing and self-indulgence comes at a price. We are no longer physically connected to our office, but we are still connected (that check in won’t post itself #winkwink). It is exactly this type of negligence that can have a damaging and, of course, unexpected, impact on the digital wellbeing of individuals and, by extension, of companies. As tempted as we may be to treat cybersecurity best practices lightly, we must not ignore the risks. Hackers know very well what our weaknesses are and do not hesitate to use them against us. So why make show ourselves even more vulnerable than we already are?

 

DID YOU KNOW THAT…

…if you are a victim of hacking, be it during the summer or not, you can be held liable for the data on your devices. As an individual, you ‘only’ risk the loss of your data. But as an employee, this type of incident may cause you major problems. You will probably say to yourself: as long as it didn’t happen on any of your work devices, nothing to worry about, right?

FALSE. Often the lines between private life and work life are blurred. Suppose you tried not to completely disconnect from the office during the holidays. Inevitably, your laptop or personal computer may contain the contact details or, at the very least, give access to the contact details of certain customers and prospects. If this data were to be retrieved by a hacker, well, let’s just say that, depending on the part of the world you live in, different consequences may incur. In France, the Godfrain Law (released on January 5th, 1988) states that you may be judged for having facilitated access within an IS with unintended damage. Penalties range from 2 months imprisonment and 1500 euro fine to 2 years imprisonment and a fine of € 15,000. Furthermore, these measures may also be accompanied by a deprivation of civil rights (prohibition of work in the public service, for instance). Doesn’t feel so good to be bad now, does it?

…if you don’t live in France, it might be useful to know that the Godfrain Law is not the only one that can cause you problems. For the implementation of the GRDP (General Regulation on Data Protection), you risk paying even more for your carelessness. Heavy sanctions aimed at controllers and processors that violate the rules on data protection include the following: “Data controllers can face fines of up to €20 million or 4% of their global annual turnover. These administrative sanctions will be imposed by the national data protection authorities.” For those who have not yet heard of the GRDP, it is the central pole regarding all the measures proposed by the European Commission on data protection and adopted by the European Parliament on April 14th, 2016.

…in 2015, the number of attacks via malware tripled. The majority tried to exploit vulnerabilities in Office applications on user devices (read the full report here). It’s very easy to imagine, in this case, a person opening, on his/her personal device, a document belonging

https://securelist.com/analysis/kaspersky-security-bulletin/73038/kaspersky-security-bulletin-2015-overall-statistics-for-2015/
http://www.consilium.europa.eu/en/policies/data-protection-reform/data-protection-regulation/
https://fr.wikipedia.org/wiki/Loi_Godfrain
Page 2: Should you take a holiday from cybersecurity?
Page 3: Should you take a holiday from cybersecurity?

…in 2015, the number of attacks via malware tripled. The majority tried to exploit vulnerabilities in Office applications on user devices (read the full report here). It’s very easy to imagine, in this case, a person opening, on his/her personal device, a document belonging to the company. Let’s be honest, we all know at least one person who does this, especially during the summer. I’ll just check my emails quickly. Unfortunately for them, the holiday season is also the time during which the number of malware increases by 26% compared to numbers recorded in previous quarters. That being said, it does not come as a surprise that cybercriminals are often into tricking individuals in order to to open a breach in the company. If we take into account recent data breaches (read here our previous article on “Cybersecurity hygiene & social networks: abysmal results”) and the fact that 20% of people reuse the same password everywhere, we certainly understand the need for yet another article on cybersecurity awareness.

 

TAKE YOUR CYBERSECURITY MANNERS WITH YOU

Employees should be the first line of defense for a company that values its sensitive data. But, once or several times a year, these employees take their leave and, unfortunately, they do not stray far from their connected devices. Organizations that aspires to a real cybersecurity policy owe it to themselves to find a way to make their employees understand one thing: cybersecurity is not just a constraint, the application of which should only occur when threatened. Cybersecurity is both a personal and collective exercise, a state of mind if you like, which requires continuous effort and the application of which is made taking into account the common interest of the organization. Once this idea is understood and, above all, accepted, your teams will finally realize that IT security goes beyond just the simple limitations we impose regarding the separation between our work life and our private life.

To get to a business, attackers need a ‘window of opportunity’. Do not open the window to hackers and remain constant in your cybersecurity routine, be it during weekends, summer holidays or on Christmas Eve.

Link:

https://www.reveelium.com/en/cybersecurity-during-the-summer/

https://www.reveelium.com/en/cybersecurity-during-the-summer/
https://www.reveelium.com/en/cyber-hygiene-social-networks/
https://securelist.com/analysis/kaspersky-security-bulletin/73038/kaspersky-security-bulletin-2015-overall-statistics-for-2015/

Take a Roman Holiday Let’s Go Golfing! - Roseburg Area

Take a Roman Holiday Let’s Go Golfing! - Roseburg Area

Documents
The Cybersecurity Ecosystem Playbook - Infoblox · 2019-12-16 · The Cybersecurity Ecosystem Playbook Take a Unified Approach to CyberSecurity and Get Better ROI Automate Incident

The Cybersecurity Ecosystem Playbook - Infoblox · 2019-12-16 · The Cybersecurity Ecosystem Playbook Take a Unified Approach to CyberSecurity and Get Better ROI Automate Incident

Documents
Take a Mountain Biking Holiday Morzine

Take a Mountain Biking Holiday Morzine

Travel
In cybersecurity there should be no ifs, ands, or butts · In cybersecurity, there should be no ifs, ands, or butts! Don’t let cybersecurity take a backseat

In cybersecurity there should be no ifs, ands, or butts · In cybersecurity, there should be no ifs, ands, or butts! Don’t let cybersecurity take a backseat

Documents
Block Criminals · Consumer Alert: Top 3 Holiday Scams. ... Wiessmann At the beginning of 2018, I declared the word of the year to be cybersecurity. National Cybersecurity Awareness

Block Criminals · Consumer Alert: Top 3 Holiday Scams. ... Wiessmann At the beginning of 2018, I declared the word of the year to be cybersecurity. National Cybersecurity Awareness

Documents
5 valid reasons to take a brisbane holiday

5 valid reasons to take a brisbane holiday

Lifestyle
Take back control of your cybersecurity now | Advisen Ltd

Take back control of your cybersecurity now | Advisen Ltd

Documents
7 Habits of Highly Take a Holiday - goventura.org

7 Habits of Highly Take a Holiday - goventura.org

Documents
GAO-20-241, Cybersecurity: DOD Needs to Take Decisive

GAO-20-241, Cybersecurity: DOD Needs to Take Decisive

Documents
Ratkaisu18 cybersecurity article: Take care of the …...tips on how to succeed in cybersecurity Increase user awareness of cybersecurity. 2 Manage vulnerabilities both technically

Ratkaisu18 cybersecurity article: Take care of the …...tips on how to succeed in cybersecurity Increase user awareness of cybersecurity. 2 Manage vulnerabilities both technically

Documents
Cybersecurity Management Guidelines Ver. 2€¦ · improve corporate value, management must take leadership and consider cybersecurity within the overall corporate strategy. If the

Cybersecurity Management Guidelines Ver. 2€¦ · improve corporate value, management must take leadership and consider cybersecurity within the overall corporate strategy. If the

Documents
Take Your App to the Top This Holiday Season

Take Your App to the Top This Holiday Season

Marketing
How can boards avoid cybersecurity pain? · FINRA encourages firms to take a “risk management-based approach” to cybersecurity. The following formulation of the term “risk management”

How can boards avoid cybersecurity pain? · FINRA encourages firms to take a “risk management-based approach” to cybersecurity. The following formulation of the term “risk management”

Documents
Holiday Capsule Futuristic take of a home away from home

Holiday Capsule Futuristic take of a home away from home

Documents
Take Anxiety and Impatience Out of Holiday Air Travel | TheLedger.com

Take Anxiety and Impatience Out of Holiday Air Travel | TheLedger.com

Documents
Cyber Security Guidance for Schools - NENapproach to cybersecurity which protects themselves, their school, and their users. This may take the form of a dedicated cybersecurity policy

Cyber Security Guidance for Schools - NENapproach to cybersecurity which protects themselves, their school, and their users. This may take the form of a dedicated cybersecurity policy

Documents
NIST Cybersecurity Framework - Cohesive Networks NIST Cybersecurity Framework Core section, which groups actions an organization can take to achieve business outcomes, as well as a

NIST Cybersecurity Framework - Cohesive Networks NIST Cybersecurity Framework Core section, which groups actions an organization can take to achieve business outcomes, as well as a

Documents
CYBERSECURITY - Gogo Business Aviationlearn.business.gogoair.com/rs/097-RTO-429/images/... · CYBERSECURITY 1 Solutions brief. CYBERSECURITY: IT’S IN OUR DNA You should take cybersecurity

CYBERSECURITY - Gogo Business Aviationlearn.business.gogoair.com/rs/097-RTO-429/images/... · CYBERSECURITY 1 Solutions brief. CYBERSECURITY: IT’S IN OUR DNA You should take cybersecurity

Documents
5 Holiday Web Presence Tips That Take Less Than 5 Minutes

5 Holiday Web Presence Tips That Take Less Than 5 Minutes

Marketing
Running a Computer Consulting Company – How to Take a Holiday (Slides)

Running a Computer Consulting Company – How to Take a Holiday (Slides)

Technology
Holiday Make-n-take gift ideas 2016

Holiday Make-n-take gift ideas 2016

Lifestyle
Take Control With Cybersecurity - CGI › sites › default › files › 2018-11 › cgi... · with cybersecurity issues. CGI pro-vides the people, tools and processes to protect

Take Control With Cybersecurity - CGI › sites › default › files › 2018-11 › cgi... · with cybersecurity issues. CGI pro-vides the people, tools and processes to protect

Documents
MARRAM HOLIDAY HOMES · MARRAM HOLIDAY HOMES Take your pick from more than 150 holiday homes in New Zealand’s leading holiday destinations. (#) = Number of homes T: 04 801 2920

MARRAM HOLIDAY HOMES · MARRAM HOLIDAY HOMES Take your pick from more than 150 holiday homes in New Zealand’s leading holiday destinations. (#) = Number of homes T: 04 801 2920

Documents
Immediate Steps You Can Still Take for a Flawless Holiday Season

Immediate Steps You Can Still Take for a Flawless Holiday Season

Technology
How to take fantastic Holiday Photos Part 1

How to take fantastic Holiday Photos Part 1

Self Improvement
How to take perfect holiday selfie

How to take perfect holiday selfie

Entertainment & Humor
Take a Minute to Unwind Over the Fun Holiday Facts Holiday

Take a Minute to Unwind Over the Fun Holiday Facts Holiday

Documents
Day Runner: Take Control of Your Thanksgiving and Holiday To-Do Lists

Day Runner: Take Control of Your Thanksgiving and Holiday To-Do Lists

Business
Amazing Holiday Gigs® to Take Seasons Greetings to The Next Level!

Amazing Holiday Gigs® to Take Seasons Greetings to The Next Level!

Internet
The Travel Gurus We take the hassle out of your holiday ... · We take the hassle out of your holiday planning Dear Karen, Thank you for asking the Travel Gurus to organise your holiday

The Travel Gurus We take the hassle out of your holiday ... · We take the hassle out of your holiday planning Dear Karen, Thank you for asking the Travel Gurus to organise your holiday

Documents