Until the people in charge, managers, board members realize that
- cyber crime is not going away,
- no one is immune and
- protection is everyone’s problem but needs to be addressed from the management down
We will continue to have spectacular cyber events.
Spectacular cyber events that cross over from the internet into the real world.
Stop the blame game and focus on the solutions.
The solutions need not be expensive, but they have to be implemented.
They are your first line of defence.
In today’s social media driven world any mistakes will be highlighted, in some cases spectacularly.
People no longer keep they mouths shut.
They open their mouths for political gain, to score points, to settle old scores, for just plain vindictiveness or they are just being idiots.
The information will come out.
The information will come out whether you want it to or not.
I was told something a long time ago.
It was called the today tonight test.
and i think that it still applies today. If i had made a mistake and someone put a TV camera and microphone in my face would I still be able to say that i acted in the best interests of what ever i am talking about.
If i could then OK, if not why not?
Armed with this piece of advice I have kept it in mind with everything that I have done since.
I think it is about time that government officials, politicians, board members and C level executives went back to applying the same principle.
If you stuffed up, admit it, take the bumps and bruises and get on with fixing the problem.
The Japanese attitude of fixing the problem not assign the blame is really important in today’s world.
We are all still looking to assign the blame
In the last cyber attack (wannacry) the blame game has once again come to the fore.
- Stop thinking that the cyber event will not happen – it will
- Stop thinking that the cyber problem is going to go away – it will not
- Stop thinking that investing in cyber event prevention is too expensive – it is not
- For F!?k sake, Just stop
Today’s cyber criminal needs you to think that the operating system is fine even though it hasn’t been updated or patched in years.
Needs you to think that easy to remember passwords are not a problem.
Needs you to think that your staff are informed or trained enough to prevent a cyber event – they are not
Needs you to not invest in better security around everything digital.
Needs you to think that the whole cyber problem is an IT problem.
The cyber criminal is happy that you think that, because that is how they get in. Once in, well we saw the repercussions on the weekend of the 12 May 2017.
Roger Smith is the CEO of R & I ICT Consulting Services, Lecturer at ADFA (UNSW – Australian Centre of Cybersecurity), Amazon #1 selling author on Cybercrime, Presenter for the Business Security Intensive, author of the Digital Security Toolbox and Digital Security Framework. Rapid Restart Appliance Creator. He is a Speaker, Author, Teacher and Educator on cybercrime and how to protect yourself from the digital world.