BY Stephen Cavey | 13/05/2020
Cybersecurity threats such as ransomware are now well-known. These threats are only becoming more prevalent as organised criminal groups and hackers continue to evolve methods to avoid or defeat security measures. The telecom sector is viewed as one of the most vulnerable to cybersecurity attacks. According to a report from Efficient, 43% of telecom orgs have had a DNS-malware based attack. Couple this with more people now working from home and using their mobile devices to do it, along with it using them as their primary means of staying in touch with people, and the need for data security becomes even more critical. In fact, according to Comscore who recently did a year-over-year comparison to March 2019, mobile phone data usage in the US grew by more than 50 per cent in March 2020.
Telecommunications companies need to ensure that their data security standards are of the highest quality because of the volume of payment card and personal data that they hold. They are most at risk from two specific types of cyberattacks: 1) direct attacks from criminals trying to access their network operations and 2) data and indirect attacks which target the company’s subscribers via their mobile phones and financial and personal identity information (PII).
It turns out there is a lack of awareness about amongst employees about the kind of security threats telecommunications face. Often times, employees unknowingly and inadvertently set in motion security breaches. Telecommunications companies could be well-served to invest in education and training for all employees.
Educating their employees about cybersecurity risks, new ransomware strains and best practices for spotting phishing attempts, suspicious emails and other security risks could greatly reduce security vulnerabilities. Empowering them to be proactive and encouraging them to report questionable content using rewards and incentives will also help increase awareness and decrease overall risk.
Effective security strategies rely on two core concepts – a focus on preventing the threat and then robustly responding and defeating the threat when it occurs. There is always a need for both preventative and reactive measures. Responding to a cybersecurity attack depends on controlling the situation as much as possible. Plan and then implement a coordinated response so the impact to your business and brand reputation is minimal.
Effective preventative measures include:
Threat detection: A thoughtful vulnerability response can help security teams respond faster and more efficiently to incidents and vulnerabilities, and there are solutions that can be implemented to streamline security response with automation.
Sensitive data detection: Technology such as Enterprise Recon enables you to quickly and easily discover, remediate and report on more than 300 predefined and variant personal data types across multiple systems, and makes compliance with security regulations much easier to achieve. With Enterprise Recon, you have the information you need to take measures to ensure the personal data you hold for your subscribers is appropriately secured.
If you’d like to learn more about how Ground Labs can help your company strengthen its data governance posture, please contact us.
Share this article!
Want to keep up with all our blog posts? Subscribe to our newsletter!
As companies all around the world shift to remote work environments, the need to keep sensitive data safe and protected is even more urgent. To help companies navigate these uncertain times and mitigate security risks, we are providing a 90-day complimentary version of our flagship solution—Enterprise Recon. Learn more about it here.