The Ninja Sensei’s Logbook: Who’s the Weakest Link in Cybersecurity?

The thing is, employees may not even be aware of the risks of increasing their digital footprint!

𝐄𝐦𝐩𝐥𝐨𝐲𝐞𝐞𝐬, 𝐭𝐡𝐞 𝐰𝐞𝐚𝐤𝐞𝐬𝐭 𝐥𝐢𝐧𝐤 𝐢𝐧 𝐜𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲.

The ST Logistics data breach incident drives home the point that each employee is a potential access point for cyber attackers. The interconnectivity of our devices, the hybrid work scenario of many businesses, and the lack of cyber hygiene awareness from employees intensify the risk many times over.

We covered the story in this video: https://bit.ly/STLogistics_breach

𝐓𝐡𝐞 𝐒$𝟖,𝟎𝟎𝟎 𝐥𝐞𝐬𝐬𝐨𝐧

ST Logistics was made to pay a financial penalty of S$8,000. This, after a successful phishing attack compromised the personal data of about 2,400 individuals in the Ministry of Defence (MINDEF) and Singapore Armed Forces (SAF).

The incident happened after 13 employees of the organisation clicked an unknown link from a phishing email, resulting in the Emotet malware’s infestation.

𝐇𝐨𝐰 𝐝𝐨 𝐰𝐞 𝐩𝐫𝐞𝐯𝐞𝐧𝐭 𝐭𝐡𝐢𝐬 𝐟𝐫𝐨𝐦 𝐡𝐚𝐩𝐩𝐞𝐧𝐢𝐧𝐠?

🔸 Always conduct periodic security reviews (such as penetration testing) to detect vulnerabilities in IT systems.

🔸 Make sure to install up-to-date anti-virus applications to protect your endpoints from unwanted malware attacks.

🔸 Conduct proper data protection training for your staff for them to be aware of the best practices when they spot a possible phishing attack

🔸 Remember that your Data Protection Officer (DPO) is your ally. They ensure that your employees are well informed of the proper procedure when they receive a suspicious email and ensure that there are no vulnerabilities within the organisation’s IT systems to begin with.

Did you know? Privacy Ninja’s outsourced DPO-as-a-Service has helped over 250 organisations with their data protection compliance. Our cost-efficient and comprehensive scope of work ensures that each organisation has a fair chance to comply with the PDPA.

P.S. For any further questions or if you need help with your cybersecurity and data protection compliance journey, don’t hesitate to reach out to us. We are always a text/call or email away!

📱 WhatsApp: +65 8750 4250
📧 Email: ninjas@privacy.com.sg

This post first appeared on Andy’s LinkedIn wall. Follow us on the following pages for more updates! Facebook | Twitter | LinkedIn | YouTube | Website