With up to 80% pf cyber attacks beeing preventable and in a bid to become one of the “safest places in the world to do business” the chancellor Philip Hammond has launched the Governments new five year National Cyber Security Strategy. Businesses are encouraged to “up their game to prevent damaging cyber-attacks”, and a budget of £1.9 billion has been has been confirmed. The strategy document can be viewed in full on the NCSC website.
Businesses are encouraged to report all potential cyber fraud through Action Fraud’s dedicated reporting portal for phising emails.
The 10 Steps to Cyber Security published in 2012 is now complemented by the Common Cyber Attacks: Reducing The Impact, which sets out what a comon cyber attack looks like and how attackers typically undertake attacks.
Targeted towards Small and Medium Enterprises (SME’s), an updated Little Book of Cyber Scams is now available.
Understanding the cyber environment and adopting approach with these guidelines can be an effective means of protecting your business from attacks.
We would like to highlight the following warning to our members:
Tesco Bank customers are being warned to be on the alert for fake emails, phone calls and other approaches made with the objective of committing fraud or identity theft – or both. They should also take extra care when logging into the bank’s website.
The warning, issued by Get Safe Online, comes in the wake of a criminal attack on the bank which has resulted in some 20,000 of its customers losing money from their accounts, with a similar number experiencing suspicious transactions. Tesco Bank has promised the customers who have lost money that it will be refunded, but it is still not known exactly how its systems were breached.
Get Safe Online warns that it is commonplace for opportunistic fraudsters to exploit breaches, as was the case when telecoms provider TalkTalk’s data was compromised last year. Tesco Bank customers (as well as people who are not Tesco account holders) may well receive ‘phishing’ emails, ‘vishing’ phone calls, fraudulent texts and social media links instructing them to take an action such as ‘moving money to a new account’, ‘confirming their login details for security reasons’ or even handing their cards over to a courier for ‘checking’.
If you receive such an approach – which will sooner or later request your confidential login details – you should not comply, but report it to Tesco Bank and Action Fraud.
If you are a Tesco Bank account holder, you should also take additional care when logging into your account by checking that the web page address begins with ‘https’ (the ‘s’ stands for secure) instead of simply ‘http’ … that the site looks familiar and that there are not any additional fields where you are asked to enter details, nor full passwords or memorable details requested.