Cybersprint Blog

- The information in this article will be updated frequently -  The 2020 pandemic has forced us all to adapt the way we work and communicate. Cybercriminals are leveraging the situation at the expense of others. At Cybersprint, we aim to keep these digital risks to a minimum. Therefore, we're sharing our latest research, containing a list of dodgy Corona-related domains you can use for blacklisting purposes.

2020 is surely not starting out as we expected, as the horrible virus is disrupting and even ending the lives of many. We have mixed emotions writing this up, because there many people doing way more important work, like healthcare workers. Unfortunately, the bad guys have leveraged the crisis like clockwork. We looked at the three most common activities of bad actors.

Cybersprint is expanding their services in Germany. The development and awareness of cyber security in the German markets is interesting to see. This inspired us to make a comparative analysis of the cyber-resilience between German organisations and those in the rest of Western Europe. Does the German approach to regulatory control and cybersecurity result in a noticeable difference?

How do you rob a bank in 2019? Forget balaclavas, safecrackers and getaway cars. All you need is a laptop, some software and a little imagination. The result? A phishing “business”, which fools online banking users into thinking they are logging into their account, when they are actually giving away their login details to cybercriminals. Bank customers have always been the easy target in this kind of scam. A report from Kaspersky Labs found that almost 50% of phishing campaigns used this method. But as banks have improved their fraud prevention measures to protect their customers, the focus of the phishers has broadened to include the banks themselves.

As more and more public services go online, citizens need to feel they can trust governments with their data – especially those reluctant to start using digital versions of familiar services such as passport renewal or residency registration. Moreover, sensitive government documents and sensitive communication channels between departments and politicians need to be kept secure, even as cyberthreats become increasingly sophisticated and effective. Digital Risk Protection (DRP) solutions are a key element of cyber-defence strategies for public sector organisations when it comes to keeping citizens, politicians and their data safe.

Downtime, especially when it happens unexpectedly, is the enemy of productivity. Just ask Sony. When their online gaming platform was hacked in 2011, the service had to be taken offline for a month, resulting in unplanned costs of around $171 million, not including the reputational damage caused by 77 million user accounts being compromised. So, what can you do to prevent this kind of disaster?

It looks like your website. It feels like your website. It even works like your website. There’s just one problem: it’s not your website. It’s a fake, set up by cyber crooks to defraud your loyal customers by taking their money and delivering fake goods, or perhaps nothing at all. Not only does this kind of fakery have a damaging impact on your brand’s reputation, it also costs millions of dollars per year. And perhaps the most worrying thing of all is that setting up this kind of criminal enterprise is surprisingly easy to do. So what kind of solutions are there?

The days of IT being a sunk cost are over – at least they are for organisations that want to leverage the full power of digital transformation, while minimising the risks. This new reality applies to many of the ways in which technology supports the realisation of business goals – both offensively and defensively. And as business becomes increasingly digital, both assume ever greater importance.

Within most organisations, digital security infrastructure grows organically, and it’s easy to lose clarity over exactly what capabilities are in place. So, although Digital Risk Protection (DRP) solutions are an increasingly important weapon in the fight against digital threats, it’s important to know what you need before you pull the trigger on an investment. Here are the questions we believe CISOs should be asking in the decision-making process.