How to protect against cyber-attacks during the lockdown

NMU-Cyber-&-Financial-Lines-Underwriting-Manager-Matthew-Drinkwater

With a coronavirus ‘lockdown’ in effect across the UK, various countries in Europe and around the wider world, many of us now find ourselves working from home. This change has no doubt had a profound effect on businesses. Beyond the economic impact to businesses, we’re also beginning to see an increase in cyber-attacks aimed at employees working remotely, which can have devastating effects.

Phishing

One form of cyber-attack in particular is phishing, where attacks have increased 667% since February. Scammers often create these scam emails and texts after global phenomena occur; the most common of these topical attacks currently include: scam emails and texts from organisations such as the CDC and WHO containing; malicious links or attachments, requests for charity donations, communications which purport to have information on coronavirus cases in your area containing dangerous links. To protect against such attacks, we recommend the following:

  • Never click links or download attachments from an unexpected email or text.
  • If you receive a suspicious email from an official organisation i.e. the WHO or CDC, report this to the organisation via their website.
  • If you would like to make a charity donation, type the organisation’s web address into your browser rather than following an email link.

Protection from cyber-attack

Last week, the Cybersecurity and Infrastructure Security Agency (CISA) warned that, by allowing employees to work remotely, businesses are opening themselves up to vulnerabilities that hackers can abuse. To access an organisation’s IT systems, employees working remotely are using private WiFi networks and are typically required to use a virtual private network (VPN), which makes them targets to cyber-attackers seeking access to these networks. Video conferencing tools have also become popular to keep in contact with colleagues, some however are reported not to be end-to-end encrypted, and may inadvertently leak data.

To protect against this, here are some key cybersecurity tips for businesses:

  • Ensure VPNs, infrastructure network devices, and devices used to work remotely are updated regularly.
  • Use strong passwords.
  • Use Multi-Factor Authentication (MFA) for your private accounts, if possible.
  • Protect your private WiFi and be extra careful using public WiFi
  • Be vigilant – Distrust LinkedIn requests from profiles you don’t know, a supposed Microsoft employee that contacts you, and unexpected e-mails. Question any unrecognized or suspicious sender, don’t click on a link carelessly, and ask yourself why you received the email if it’s not work-related.
  • Make your employees aware of the increased volume of phishing attacks.
  • Don’t use tools or software which haven’t been security approved by your IT department.
  • Make sure your IT personnel are prepared to increase tasks including log review, attack detection, incident response and recovery.

Education

At NMU, we are actively trying to raise awareness of cyber risks by providing real life examples where data breaches and cyber-attacks have been suffered.

Cyber crime is on the increase, and insurance brokers are at as much risk of falling victim as any other type of business. As an example of where this has happened, a broker’s email account was hacked and they were subsequently impersonated by a fraudster, who then tricked their client into making a payment into a fraudulent bank account. We go into the detail of Customer Payment Fraud in our recent blog here.

AI has been used as a tool to both identify and prevent fraud, but it seems that the tide is turning – with AI mimicry being used to fool our eyes and ears in the form of DeepFake. Our blog explores the growing threat being used to scam businesses out of thousands, which you can read here.

Addressing the issues, our Cyber & Financial Lines Underwriting Manager, Matt Drinkwater said.

“During these unusual times, businesses must take steps to reduce the risk of opportunistic cyber-attackers penetrating their networks and ensure employees are aware of scams.”

To speak to someone at NMU about their CyberSafe Insurance or e-trade solution, CLICK HERE, leave a message and youTalk-insurance will pass your enquiry on.

Authored by NMU

CLICK HERE TO SIGN UP FOR OUR
FREE BI-WEEKLY NEWSLETTER

NMU
https://www.nmu.co.uk/
ContactNMU

About NMU

NMU is an award-winning provider of specialty insurance solutions

We are the first choice for brokers looking for specialty insurance, offering solutions that are not simply off-the-shelf, but built upon a real understanding of the risks faced by policyholders. This, together with our ability to write risks such as storage, installation, construction and exhibitions outside of the UK and offer terrorism cover on overseas property, sets us apart from the competition.

You can count on us, when you need us most! We are NMU

Our team of professionals based across the UK, provides customers with an in-depth product knowledge and a real personal service.

We provide bespoke insurance products that are not simply off-the-shelf solutions, but built upon a real understanding of the risks faced by policyholders as well as offering added value services to benefit our clients.

Our product and services range comprises:

Cargo InsuranceMarine cargo policies cover goods during import and export, including any incidental storage, as well as domestic distribution. Stock throughput polices can cater for all this plus other, intentional storage…read more

Freight Liability InsuranceCovering the liabilities to which hauliers, freight forwarders and warehouse keepers are exposed when they contract to move or store goods owned by others…read more

Engineering InsuranceCovering contractors’ all risks (CAR), erection all risks (EAR) and contractors’ plant; machinery movement (and installation), breakdown and business interruption; deterioration of stock; and electronic risks…read more

Marine Equipment InsuranceCovering remotely-operated and autonomous underwater equipment – ROVs, AUVs and the like…read more

Terrorism and Sabotage InsuranceStandalone terrorism cover can be a more flexible and cost-effective alternative to traditional placement routes…read more

Motorsport InsuranceDesigned for commercial risks, our motorsport policy offers 24/7 cover for teams at all levels across all disciplines…read more

Cyber InsuranceProviding SMEs with a simple, robust solution for cyber liabilities, cybercrime and restorative support…read more

Risk ControlWhilst we pride ourselves on our claims service, there is far more benefit to policyholders in preventing loss and damage in the first place…read more

Online FacilitiesTo complement our award-winning service, we use online facilities to assist NMU policyholders and brokers alike…read more

Claims ManagementWe pride ourselves on prompt and efficient claims management, which is supported by the use of independent surveyors and adjusters to quantify larger losses and to give advice on mitigation measures…read more

Latest video

NMU video: Celebrating 40 years in business

Authored by NMUA lot has changed over the last four decades – the way we work and communicate, the risks we insure, the technology we use to provide the best... click here for more