Search for insurance help

Defending your business from cyber ransomware attacks

The recent ransomware attacks against Channel Nine in March and the meat processing company JBS’s worldwide operations in June are just some example of an ever expanding problem making news headlines daily.
The recent Australian Government Annual Cyber Threat Report found Cybercrime cost Australian $29 Billion annually, with Cyber crimes occurring every 10 minutes, ranging from denial of service to phishing and malware attack. Cyber criminals, some of which are said to be encouraged by foreign governments are becoming increasing ruthless, with attacks on hospitals, schools as well as small and large businesses.
Cyber criminals are becoming increasingly sophisticated, and just because you own or manage a small business, doesn’t mean that you will be disregarded by these criminals. In fact, it’s possible that your business could be targeted by cyber threats in the future, as larger businesses increase their cyber defences. Hence, it is necessary to put the correct precautions in place to protect your business, it’s customers and profits before ransomware, malware or other types of Cybercrime attacks occur.
 
Why are Small & Medium businesses more vulnerable to cyber attacks?
Cyber criminals are increasing business minded and know that small businesses are often not as protected against cyber attacks like ransomware attacks, which can make them an easier target for a quick profit. Criminals also know that SME’s often lack dedicated internal IT staff to continually maintain software and install the latest security patches and are focussing their efforts on more urgent COVID-19 related issues including supply chain interruptions, lockdown or staffing.
Even if you try and shore up your own security, cybercriminals are now focussing on service providers, enabling them to subsequently attack multiple small businesses.
In addition to the above challenges is the recent accelerated drive to work from home. This has spotlighted a unique set of risks for businesses including unsecured home networks, fake emails sent from co-workers asking to pay invoices (social engineering) and phishing emails which give criminals access to the computer.
 
How to protect your business against cyber and ransomware attacks
The fact that small and medium businesses are vulnerable to ransomware attacks and that their service providers are now being targeted highlights the need for an urgent review of your risks and implementation of security practices.
There are lots of free resources for SME’s on the Australian Cyber Security Centre website including a Phishing Test, Cyber security tool, and guides on how to get your business up and running after an attack.
Below are ten steps that all small and medium sized businesses can take to help secure their online presence and protect their company from cybercriminal attacks.

Management Liability insurance is designed to provide protection to both the business and its directors or officers for claims of wrongful acts in the management of the business.

A business insurance pack can provide cover for your business premises and contents, against loss, damage, theft or financial loss from an insured interruption to the business.

Purchase up to six products under one Business Insurance Package. 

Below are ten steps that all small and medium sized businesses can take to help secure their online presence and protect their company from cybercriminal attacks.
  1. Train all employees in cyber security and how to avoid opening links or acting on information from unknown contacts.
  2. Ensure policies are in place to automatically update and patch software. Also use well known reputable providers of firewalls that can block malicious emails, as well as check for suspicious and spam emails.
  3. Restrict data access to only the employees require specific information.
  4. Back up all your data on a daily basis to cloud storage and weekly to a dedicated secure server in a separate location.
  5. Implement data encryption when sending data over the internet and encourage the use of multi-factor authentication when employees access data remotely on mobiles and tablets.
  6. Avoid public networks, they allow others to see your data and passcodes.
  7. Ensure there are procedures in place to ensure passwords are changed on a regular basis, also that they are unique, strong and secure.
  8. Install security software on all computers, laptops and mobile phones accessing the companies’ IT systems, including anti-viral and anti-spyware filters.
  9. Regularly update user access and remove users that have left the company or have had a change in their IT access.
  10. Consider cyber insurance to help you manage and recover from a cyber or ransomware attack, including cover for lost income.
For help securing cyber insurance for your business, talk to us today.
 
General Advice Warning: This advice is general and does not take into account your objectives, financial situation or needs. You should consider whether the advice is appropriate for you and your personal circumstances. Before you make any decision about whether to acquire a certain product, you should obtain and read the relevant product disclosure statement.

All information above has been provided by the author.


Everest Risk Group Pty Ltd, ABN 9710698462318, AFSL 240549

This article originally appeared on Everest Risk Group News and has been published here with permission.

Comments (0)

Related insurance brokers

Review rating
183 reviews

Featured Featured

Nilima Pokala

SureInsure Insurance Advisors

  • Typically replies within
    a day
  • Review rating
    16 reviews

    Featured Featured

    Shane Brady

    Stone Lane Broking & Risk Advisory

  • Typically replies within
    a few minutes
  • Review rating
    26 reviews

    Featured Featured

    Tony Venning

    Crucial Insurance and Risk Advisors

  • Typically replies within
    a few hours