Cyber security – are you prepared?

The Furniture Makers Company is proud of its links to the City of London Police and especially when it benefits from expert briefings to keep ahead of the game when it comes to cyber security.

Cyber Griffin is an initiative by the City of London Police that helps businesses and individuals in the Square Mile protect themselves from cyber crime.

Two members from the Cyber Griffin team came in and gave a presentation at Furniture Makers’ Hall on Thursday 5 September and shared intel to mitigate cyber risks.

They reminded us that our people are both our greatest security asset and our greatest risk so, being aware, prepared and proactive can help reduce cyber risks by taking a few simple steps. Each year fraud and cybercrime costs the UK economy £193 billion.

Cyber Crime is when fraudsters target us through our computers, tablets or smart phones or through the internet to steal valuable personal and or commercial information to illegally make money. Today, our lives increasingly depend on technology providing criminals with easy targets.

Cybercrime is not faceless, and guests were reminded of the vulnerability of mobile devices and that 91% of cybercrime starts with an email. To put cybercrime into perspective and demonstrate its growth, one in seven crimes are now cyber related and one in 47 are burglary. Clearly, the ease in which criminals make money through cybercrime is a cause for concern and action.

City of London commissioner Ian Dyson said: “About 80% of cyber crime in the City of London is from business, so it’s important that we work with businesses to make sure they don’t become victims of cybercrime in the future. Cyber Griffin is about making sure that people t all levels of those organisations and businesses have access to be the best advice in order to protect them and their businesses.

“Armed with some simple tools, the challenge is winnable. If it doesn’t feel right, it probably isn’t! A little common sense can go a long way in tackling this insidious crime,” said presenter Sgt Ian Brosnam.

Dids Macdonald, OBE., Master of the Furniture Makers, said: “This was a real wake-up call to the threats posed by cyber and fraud crime and the specialist team from Griffin Police gave us all some valuable tips and advice that we can implement today. I thoroughly recommend attendance at any future presentations like these.”

Advice that the team shared included:

Phishing

This is the unlawful act of obtaining sensitive information such as usernames, passwords and credit card details by criminals faking themselves as a credible entity in an electronic communication.

What is malware?

Is any software which is intentionally designed to cause damage to a computer, server, client, or computer network.  Malware is any software intentionally designed to cause damage to a computer, server, client, or computer network so ensure you obtain Malware protection.

Check your settings are secure; tweet or use Facebook in secure locations; ensure Location Services are switched off when not in use; keep personal and business email separately; download anti malware software; go to Spooftel and report it; beware of cleverly disguised emails from well-known brands such as TV licensing, Netflix, Microsoft 365asking for personal information or payment details, don’t open or respond.

Avoid using public Wi-Fi when transferring sensitive information, such as payment details

Ransomware

This is a type of malicious software that can infect a computer and restricts genuine users’ access until a ransom or payment is paid, often into an anonymous Bit Coin account.

Ensure antivirus systems are up to date and that appropriate firewalls are in place together with checking that legitimate software updates are current. Did you know that 78% Apps fail basic security checks so be aware! 90% of hot spots are also insecure and easy targets for criminals. Look out for antennae (called pineapples) in cafes and public places, disconnect immediately. Gangs operate in cafes, researching personal information through this mean; Be aware http:// is insecure; https:// is secure and make sure the padlock is green. If broken or greyish, it is probably not secure, so double check. Don’t use a free VPS (Virtual Private Network), use a secure paid for VPS.

Do you have a company cyber policy?

A disgruntled ex-employee who has had access to sensitive information can wreak havoc so ensure there is a policy for user privilege. For example, don’t share log-in details, discourage bringing personal devices into the office, if equipment is stolen, ensure you have the capacity to “wipe” remotely. If you use USB’s ensure there is security and always use ones which you know, some criminals can ascertain information at 200 words per minute so be very careful about what you plug into your systems.

Passwords

Don’t use familiar names, date of birth, pet’s names, consider using permutations of random common words e.g., balloondesksun* or winehatblue$ You can find out if your password has been hacked by going to Google and entering haveIbeenpwned? Fill in your email and it will tell you instantly. Think about having all your passwords managed by password managers. Use strong, separate passwords for email accounts. Where available, use two-factor authentication on your accounts.

The internet of things

Devices like Alexa, Fridges, doorbell security systems etc., with smart capabilities are potentially insecure. Programs used by hackers such as Botnek and Dolphin Whistle can hear frequencies that we can’t. Don’t plug in a device that you don’t know and focus on network security. Also don’t buy any technology that will soon reach the end of its life because software updates will stop being available.

Your computer

Always back up your most recent data. Never respond to unsolicited approaches for personal and financial information.

Useful numbers to know: 0300 123 2040 if you suffer a cyberattack or report via www.actionfraud.police.uk or sign up for fraud and cybercrime alerts at www.actionfraudalert.co.uk