Outsmart Phishing Attacks – Cube Cyber’s Guide for Small and Medium Enterprises

, , ,

In 2023, the Australian Signals Decorate responded to over 1,100 cyber security incidents from Australian entities, with 17% of these reports attributed to phishing. Recognising the unique challenges faced by SMEs, Cube Cyber has developed a strategic approach that combines education, advanced security solutions, and the power of Cisco Umbrella to protect organisations from phishing attacks. 

1. The SME Cybersecurity Imperative

SMEs may perceive themselves as less vulnerable, but the reality is that phishing attacks can have a severe impact. Phishing attacks are generally the first step by an attacker in compromising a business email account that ultimately results in financial crimes such as invoice fraud. 

Did you know? At the lower end of the scale, the cost of a cyber security breach on a medium enterprise is $97,200. Cube Cyber believes in proactive measures to safeguard businesses of all sizes. Here are essential steps for SMEs to protect themselves: 

Two-Factor Authentication (2FA) 

Implementing 2FA is a crucial step in stopping phishing attacks in their tracks. Cube Cyber advocates for this added layer of protection, and it is a “must have” when accessing internet facing systems. It acts as a formidable barrier against unauthorised access. 

Employee Education 

Educating staff members on cybersecurity is paramount. Cube Cyber understands that an informed workforce is less susceptible to phishing attempts. By imparting knowledge about preventive measures, employees can actively contribute to the organisation’s cybersecurity defences. 

Password Hygiene 

ID Support NSW, a state government agency dedicated to helping victims of identity theft and hacking, underscores the critical importance for businesses to elevate their cybersecurity measures. This involves the mandate for strong passwords. Cube Cyber aligns with this recommendation and places a strong emphasis on the significance of robust password practices. 

Cube Cyber advocates not only for the strength of passwords but also for the regular rotation of these credentials. The practice of using unique passwords for various functions adds an extra layer of security, significantly reducing the risk of unauthorised access resulting from compromised credentials.

Investing in Comprehensive Security Software 

Even without clicking on a malicious email or file, vulnerabilities exist. Take, for example, common email services like Outlook or Gmail. Enabling the option to automatically download pictures might seem harmless, but it can pose a significant risk. Cube Cyber recommends investing in a complete security software system. This includes solutions like Cisco Umbrella, which stands at the forefront of Cube Cyber’s defence strategy, offering protection against phishing emails and malicious attachments. 

Regular Data Backups 

Maintaining regular backups of company data is a fundamental aspect of Cube Cyber’s approach. In the unfortunate event of a phishing attack, having backups ensures that critical information can be recovered, minimising the impact on business operations. 

“Phishing based cyber-attacks can happen to anyone in the current landscape. And although they can elude security systems, there are some basic technologies that can slow the attack. Multi-factor Authentication, Secure Service Edge (SSE), and SASI. There’s no silver bullet, but if your security is basic, it is well worth looking into the viability of some of these well-matured methods to give yourself a fighting chance.”

2. Cube Cyber’s Must-Have Solution for SMEs

Small and medium-sized enterprises often underestimate the need for cybersecurity until it’s too late. Cube Cyber, however, stands out by encouraging and delivering a proactive approach.  

Cube Cyber’s MDR Service (Manage, Detect & Respond) 

We go beyond a one-size-fits-all approach and offer cost-effective, advanced security solutions tailored specifically to the requirements of small and medium businesses. With our MDR service, we ensure comprehensive protection that aligns seamlessly with SME operations, offering strong defences against cyber threats.  

Continuous Monitoring and Expert Analysis

Leveraging a combination of expert skills and automation, we ensure continuous monitoring of your entire IT environment 24/7. Our team supplies regular reports and analyses of security incidents, offering actionable insights to drive continual improvement across your IT operations. 

Local Expertise and Australian Team

Cube Cyber’s team is locally based and understands Australian businesses and challenges deeply. Our cybersecurity analysts and consultants bring decades of experience in security, supplying valuable and accessible resources to our clients. 

Flexible and Budget-Friendly Approach

Cube Cyber adopts a menu-style, a-la-carte approach to services. You only pay for what you need, allowing flexibility around budgets, existing capabilities, and risk appetite. 

First Line of Defence: Cisco Umbrella Integration

Cube Cyber integrates Cisco Umbrella as a proactive and vigilant guardian, positioning it as one of the first lines of defence against phishing attacks. With DNS-layer security and real-time threat intelligence, Cisco Umbrella detects and neutralises potential threats right from the start, ensuring a robust and coordinated response to emerging threats. 

Email Security with Advanced Malware Protection

Cube Cyber enhances email security by integrating Email Security with Advanced Endpoint Protection, providing a formidable defence against spam, phishing emails, and malicious attachments. This proactive measure ensures that your email communications stay secure and free from potential threats. 

Is your business ready to outsmart phishing attacks? Our mission at Cube Cyber is to support your business in preventing, detecting, and responding to any kind of cyber threat. 

Contact us to get started protecting your business. 

Book your free Cyber Security consultation today and let Cube Cyber guide you towards a safer digital future. 

/by

How Can SMEs Tackle Escalating Security Challenges? 5 Minutes with Andrew O’Shea

SMEs face a host of security challenges. They lack the resources and scale of large enterprises, meaning that within the skills-constrained environment in Australia, it’s challenging to find and hire the right talent. 

With limited budgets, a lack of expertise, inadequate security tools and a lack of training, cybercriminals are increasingly targeting SMEs as “easy targets.” 

Andrew O’Shea, Principal Consultant Cube Cyber, explains why managed services are the answer and how what is traditionally seen as an enterprise solution can become compelling to small businesses and the mid-market. 

At a high level, what’s your take on Managed Detection and Response? What do people need to know about it, and what is the Cube Cyber’s spin on it?

Managed Detection and Response – MDR – is a cybersecurity service that provides organisations with proactive threat monitoring, detection, and response capabilities. MDR services are designed to help organisations detect and mitigate cyber threats and security incidents more effectively by outsourcing these functions to specialised security experts. 

It features several components melded together and then used to deliver a robust security outcome for a customer. What we do, which is a little different than everybody else, is that we’ve geared our solution towards smaller and mid-market customers. We do a lot of automation so that we can deliver a complete MDR solution at scale, and in a way that’s affordable for this kind of customer. 

What do midmarket customers struggle with, beyond costs, when it comes to cyber security?

Instead of these organisations hiring a dedicated security person who will effectively only work 40 hours a week, they can engage us for a full MDR service, usually for less than the cost of a full-time employee. One of the biggest challenges for these organisations is the lack of capacity within their teams. They don’t know what they don’t know because they simply haven’t got the expertise, and so it becomes something valuable that we offer them by partnering with them so closely. 

We hold monthly service delivery meetings with our customers where we detail their vulnerabilities; incidents prevented, and the overall cybersecurity posture of the organisation. It’s that in-depth insight into the environment on an ongoing basis that’s usually difficult for smaller and midmarket companies to attain, so they’re essentially getting enterprise-class features through our MDR service. 

This is where MDR services are extremely beneficial for organisations that lack the in-house expertise and resources to effectively monitor and respond to cybersecurity threats. 

What are mid-tier organisations doing about security now, if they can’t afford dedicated staff and don’t have managed services?

They’re carrying the risk in most cases. What we offer that really helps the customer is guidance on articulating what the risk looks like to the business. We help the customer audit their environment and understand where their investments have been so far, what infrastructure and processes they currently have, and how they can be reused to mitigate the risk. 

Most small businesses and mid-tier organisations have some elements of security in their environments, and one of the reasons we have a very high customer retention rate is that we don’t sell them things they don’t need. What works in this space is having a hybrid and adaptable model, where we work with the customer and their existing resources and help them fill the gaps. That allows them to extract maximum bang for their buck. 

To what extent are these mid-tier customers targets?

Just last week, a customer asked, “Why do we need to spend this money? We wouldn’t be a big target to anybody.” That’s a dangerous mindset, and they couldn’t be more wrong because smaller organisations are now the biggest target. Criminals know large enterprise customers have significant cyber infrastructure protection and resources that they need to overcome. 

Enterprises generally have the best cybersecurity protection, whereas hackers and malicious actors know that a small SME has budget, infrastructure, and skills constraints, which makes them easy targets. 

With that being said, smaller organisations are now realising that, yes, they are game for a lot of these kinds of malicious actors. They are looking for solutions to help them address that problem. 

Where do you think the heightened security awareness among SMEs is coming from?

It’s two-pronged. The number of cybersecurity breaches getting airtime is undoubtedly helping people learn about the challenges. In addition to that, the introduction of the mandatory data breach notification guidelines means that we have far more information that is relevant to an Australian audience regarding the extent of the threats and how they’re affecting local businesses. For example, we now have data showing that health care is the number one priority and financial organisations are number two. 

Find out more about Cube Cyber’s MDR solution.

Learn more
/by

SASE – Secure Access Service Edge: A Simple Overview

, , ,

Over the past couple of years businesses and corporations have had to quickly adjust to a significant increase in employees working from home.

With increasing data coming from online sources into corporate networks, more SaaS apps being adopted and new types of traffic taking up increasing bandwidth (videos, collaboration, and shared editing of online documents), corporate data networks are struggling with the bottleneck of traffic.

VPN’s may now not be the best solution for your business. So, let’s talk about the latest next-generation security solution.

Pronounced ‘sassy,’ SASE is short for Secure Access Service Edge, a cloud-hosted framework that protects data, end users and applications by using both security and network services. The term was first coined by Gartner in August 2019, who have calculated that “by 2025, at least 60% of enterprises will have explicit strategies and timelines for SASE adoption, encompassing user, branch and edge access, up from 10% in 2020”.

What is SASE?

SASE is a security framework that uses existing technologies to deliver wide area network and security controls as a cloud computing service directly to the source of the connection rather than a data centre or business premise. Security is based on digital identity, real-time context, and company security and compliance policies.

SASE helps to solve the bottlenecking of traffic into the network, by effectively combining security as a service (SECaaS) and network as a service (NaaS) into a single cloud-based service.

This merging of services allows the end-user to work securely from any location or device, without compromising the same level of security you would have in the office.

Implementing it is not the case of buying a single product and setting it up but requires multiple steps to enable services on existing cloud-hosted platforms. For most businesses, the level of expertise required in setting up a SASE approach will mean collaborating with a trusted vendor who understands your business needs.

SASE network- security diagram

How does SASE work?

Current systems may look something like this; traffic comes in via MPLS, internal traffic, or the internet and enters the router, this is then processed through a VPN, and then once verified through a firewall, access is gained to the network.

old network security model

Traffic ends up passing through the internet, security rules are applied, before being sent back out to the internet. This traffic is essentially passing through twice, meaning each security measure is essentially paying for double the amount of traffic, making this model inefficient and expensive.

With SASE, services are managed at the edge of the cloud, so secure communications are delivered to the specific resources the user wants to access, via the fastest path. This can help to provide the same level of security you would see in the corporate workplace, to any remote user, and from any location, device, or application, surely a necessity at this point in time.

SASE model diagram

The core components of the Framework

A SASE architecture can comprise of the following components:

Software-defined wide area network (SD-WAN). SD-WAN can help simplify communications by finding the best route to the internet or cloud-based apps, optimising user experience.
Cloud access security broker (CASB). CASB’s can secure cloud-based services by controlling data access and through data loss prevention (DLP). This prevents data leakage and malicious activity.
Secure web gateways (SWG). SWG’s implement company security policies and filter any unauthorised access or suspicious behaviour. Any unsecure traffic is prevented from entering the network.
Firewall-as-a-Service (FWaaS). FWaaS encompasses URL filtering, intrusion prevention systems (IPS), and threat protection to prevent cyber-attacks on cloud-hosted platforms.

There are also further recommend levels in the model including Sandbox, WAF, NAC, NGAN/ EDR and browsing Isolation. For an optional level you could also include a VPN or WLAN.

How can SASE benefit my company?

With more people than ever working from home, businesses of all sizes are needing to implement big security changes, fast. With cybercrime on the increase, there is no better time to convert to a SASE framework and secure every single user, device, and application entering your network. The time for updated cloud-based security is now.

Benefits of using SASE:

• Costs are lowered due to fewer hardware installs and a simplified system.
• Latency is reduced by finding the quickest path to the network.
• Zero-trust ensures secure data is only accessed by those authorised.
• Better performance and efficiency as users can access the network from anywhere.
• Keeps your data secure, within the network and prevents web attacks and malicious activity.

Implementing SASE

Steps your organisation can take to implement a SASE approach:

• Move branch offices to a cloud-based perimeter.
• Set up zero-trust network access (ZTNA) for all users.
• Simplify your setup (VPN’s, CASB, SWG) to combine services into a single, more effective system.
• Use an SD-WAN based network, as opposed to MPLS.
• Ensure you have a high-performance edge network to reduce latency issues.

The SASE infrastructure can be overwhelming. If you think your business could benefit from a SASE framework, or you simply just want to find out more, then please do not hesitate to contact one of our experts at Cube Cyber. We are always happy to help.

/by

Beginners Guide to Cloud Computing & How it Can Help Small Businesses

, , ,

With more businesses working from home, it may be time to invest in cloud computing for your company. In fact, it is more than likely you are already using some form of cloud computing. If you have ever used Dropbox or Google Docs, as two examples, then you are already familiar with working from cloud-based systems.

As more organisations are moving to online working, now is a good time to learn more about cloud computing, and how it can help your business.

What is cloud computing?

Simply put, cloud computing is using programs and storing data online, rather than using your computer’s hard drive. Local computing or storage systems will use programs and store data directing to your computer, whereas cloud computing runs all these programs over the internet.

Cloud computing types include data storage, software, application hosting, databases, servers, and online programs, such as Google Drive or Microsoft Office Online. These web-based systems mean that users can access the same files from any location or device.

Types of cloud computing

There are numerous ways cloud computing works. Types of services include:

Software as a service (SaaS)

Software a service applications are typically run on subscription or pay-as-you-go models. They allow users or members of the same team to work on files simultaneously. Teammates can collaborate on the same file, which is updated in real time, so users will always have access to the most recent version. Examples of SaaS are Microsoft Office 365 and Google Workspace.

Platform as a service (PaaS)

Similar to SaaS, platform as a service (PaaS) allows you to create a service that is used over the web. Cloud based resources such as APIs, web portals and gateway software are used by software developers. This is the more multifaceted form of cloud computing. Examples include Salesforce and Google App Engine.

Infrastructure as a service (IaaS)

Infrastructure as a service uses cloud-based servers, rather than traditional physical systems, to deliver a range of services such as storage and servers. Examples of IaaS include Amazon Web Services, Microsoft Azure and IBM Cloud.

computer hardware

Examples of cloud computing

Google Drive

Google drive is a cloud-based storage service, where users upload files directing over the internet. These files can be accessed from any location or device connected to the internet. With the ability to gain access to files from your phone, laptop or tablet, Google Drive is an efficient way to work remotely and data is easily accessible.

Other Google Apps

Many of Google’s applications are cloud-based, such as Google Sheets, Google Docs, Google Calendar, Gmail, and Google Maps. Being able to access these apps from anywhere makes it easier and quicker to access data and work productivity.

Microsoft Office 365

Microsoft Office 365 is great for businesses of all sizes to work collaboratively and access systems from any location. Co-workers can use Microsoft Office email, work on the same projects, and share information and files amongst the team. This is a subscription-based service, with varying prices depending on how many users it is for.

Dropbox

Dropbox has been around for years and is a service that allows users to upload and store files over the internet. These files can be synchronised and shared amongst users. Prices start from AU$18.69 per month for individual users to AU$33 per month for larger teams.

Salesforce

Salesforce is one of the world’s leading providers in cloud computing, allowing users to access CRM, sales, marketing automation, commerce, ERP, analytics and more.

Apple iCloud

For Apple users (and those using Windows devices), iCloud synchronises all your data onto a virtual server. This includes emails, photos, messages, your calendar, contacts, and backups. This is a storage based system which allows you to have a backup of your files.

Cloud Security

Cloud computing stores data via three different methods; public, private and hybrid.

Public cloud

Public cloud providers use the internet for their storage and web services. Your data will be handled by a third party and you will receive a portion of the cloud service, over a shared infrastructure. For larger companies it may not be wise to share sensitive data over a public system, although advantages are that you will be getting up to date services at a cheaper price.

Private cloud

Instead of storing all data over the internet, a private cloud system is installed within your company. This will be conducted by an in-house IT team and can be a great option for bigger corporations with large amounts of data or any company wishing to have a higher level of security.

Hybrid cloud

As the name suggests, this cloud service provides both public and private cloud based systems. This is a flexible way to store the most confidential information on the private cloud and general data on the public cloud. The private cloud will be managed by the organisations own IT team.

man holding tablet

Positives of cloud computing

Flexible working

One of the biggest benefits of cloud computing is the flexibility and efficient way of working it offers. Employees can access services from any device and any location. When previously many systems could only be accessed from the office, which had the software installed, staff can now work from anywhere. This is especially important now as many more people are working remotely.

Up-to-date files

With programs such as Google Docs and Microsoft Office 365, teammates can be assured that they are working on the most up to date file and can do so simultaneously. This seamless workflow can mean projects can get completed faster and better communication is had amongst the team.

Cost efficient

Although cloud computing is still an expense, it is also predicable. You know how much money is coming out of the account each month, making budgeting easier. Rather than paying for an expensive server and the expertise to run it, businesses can work more efficiently when managing a monthly subscription.

Your data is backed up

One of the benefits of cloud security is that if your system crashes, you should be able to retrieve your data. A cloud backup service is different from a cloud storage service, which will allow you to store any files you upload to it. A cloud backup will allow you to restore data which has been lost or damaged.

Negatives of cloud computing

With potentially sensitive information being stored in the cloud, there will always be some vulnerabilities to watch out for. If the cloud service provider crashes from a bug, power cut or cyber attack, then company data can be lost.

There is also the rapid development of the Internet of Things (IoT). Smart devices and anything which uses the connection to the internet can be a vulnerability path into your network and cloud services.

A main concern for many business owners is how exactly their data is stored in the cloud. Before paying for a cloud service, you should be asking the right questions. Ask them how they will store your data and who has access to it. Be sure they are following security protocols, have a good support service and ask which methods they use to keep your data safe.

Cloud computing is evolving as technology evolves. This is the new way to work and as long as you are using good cyber security measures to protect your cloud services, then you are in a good position.

At Cube Cyber we help businesses protect themselves when using cloud based services and can help you stay protected whilst online.

Find out more on how we can help your business.

 

/by

Top 7 Cyber Attacks Threatening SME’s (and how to prevent them)

,

Small and medium sized enterprises (SME’s) frequently underestimate the need for cyber security protection. This miscalculation could end up being a risky strategy for those not willing to invest in the best preventative measures for their business. Just because an enterprise is small, does not mean it is not at risk from the top cyber attacks circulating the web.

In fact, SME’s could have an even greater level of risk against them, as they often will not have sufficient cyber protection. Criminals know this and will take advantage of more vulnerable systems. SME’s can also work with larger corporations too, and hackers will try to get into these large organisations via a vulnerability in the smaller businesses network.

Smaller enterprises may not have the large budgets, the knowledge/ expertise or the time and resources to commit to a decent cyber security plan. This could end up being a deadly mistake. According to the National Cyber Security Alliance small businesses will go bust after 6 months of a cyber breach. Many SME’s simply underestimate the chance of a cyber attack, as well as how a serious data breach could effect the company.

The key? Awareness, knowledge, and prevention. The best way to stay in tune with the current top cyber attacks is to be in the know about what type of attacks are out there. Once you know what to look for, the easier they will be to spot. Ensuring you have a decent cyber security protection is also vital. So, what are the top cyber attacks companies are facing right now?

cyber attacks hacker on laptop

Phishing attacks

The age-old phishing attack. This one has been around since the beginning and, unfortuanlty, it is not going away anytime soon. In fact, phishing attacks are becoming even more sophisticated with the advance in technology. So, what are phishing attacks?
Cyber criminals will send an email, text message, or message via social media, often imitating a well known company, and request that you click on a link, update payment or login details, or sign-up to something, inadvertently giving away your private details or money.

The messages or emails sent are usually very convincing and create a sense of urgency such as ‘your subscription is almost up, enter your card details to keep this service’, etc. They will use similar wording, colours, logos, and email address as the real site, making it easy for someone to be convinced.

Phishing attacks are the biggest threat to most businesses, with 90% of all data breaches being caused by such attacks. SME’s also need to watch out for spear phishing attacks, similar, but instead of a generic email that is sent out to hundreds of users at a time, a spear phishing email will be sent to a specific person. The attackers will have researched the person they want to imitate (often CEO’s or other executives higher up in the company) and will pretend to send an email from that person.

They may send an email to employees of the company, pretending to be the CEO and saying a payment needs to be sent urgently to such and such. Because the name, logo, wording, everything is in the same style as the real person, users can be easily misled.
Good cyber awareness is crucial to help employees recognise a phishing attack. Installing a next-generation firewall can help to filter out malicious websites and traffic.

Lack of knowledge

You can have all the best security protection you want, but this means little if staff members lack any knowledge of cyber security. As we have seen from the previous paragraphs, phishing attacks are the most common cyber attack out there. Now, if staff members have no awareness of phishing attacks, how much more likely are they to click on a malicious link or send an ‘urgent’ payment? The more employees know about the most common attacks, the easier it will be to spot them before it is too late.

Even the smallest of businesses can still hold a good deal of customer information and financial data, and for this reason, organisations of every size should at least have a basic knowledge of cyber security. Staff members should have training in cyber security practices, attack simulation and be aware of common cyber attacks to watch out for. This training should be ongoing and revised as new attacks emerge.

DDoS Cyber Attack

DDoS stands for ‘Distributed Denial of Service’. These attacks will disrupt a website, server, or network with a huge amount of web traffic, so users are refused access to it. DDoS attacks can be complicated, and the cyber criminal will often start and stop them, to confuse businesses or to hide the fact that an attack is even happening.

Websites may be forced to go offline, which will disrupt online sales, leading to huge losses, particularly as these cyber attacks can last from 6 to 24 hours. Using a good DDoS mitigation service and having a plan of action for this type of attack is a great way to eliminate some of the traffic overloading the site.

Malware

Malware attacks are another common threat facing small and medium enterprises. It is often used alongside other type of attacks, for example a malicious code embedded into a phishing email. Malware can be injected into your system via a malicious website or download, or by connecting to an infected device.

Customer and company data can be easily extracted in malware attacks and it can even damage devices, with expensive repairs to match. With customer data at risk, businesses need to ensure they are complying with relevant government data regulations, or you could be at risk from a costly fine.

Endpoint protection is advised for all devices, including personal devices. This will help protect every access point and stop data being encrypted.

BYOD

Bring your own device (BYOD) is becoming increasing common during the pandemic. With more employees working from home on their own devices, the risk of a malware or virus attack is only increased. Personal devices do not often have the right amount of protection as a company device. This can be seen as an easy way in for hackers.

Personal devices that are not properly protected are prone to cyber attacks, which can lead to the hacker gaining access to your company’s entire network and files.

Setting up a good cyber policy for what employees can work on/ send over the internet is a great start. For sensitive data, ensure staff members are not using public Wi-Fi and are using a VPN (virtual private network) to send those files. This will make sure IP address remain hidden and company data is encrypted.

laptop with vpn padlock on screen

Inside threats

Rouge employees, contactors, business associates or disgruntled former staff members can actually be a huge threat to a business. They have the means to get into company networks and may have access to sensitive data. Through this access, an insider threat can cause real harm to a business.

Keeping employees trained in cyber awareness will prevent any attacks from ignorance and only allowing access to the most sensitive data to trusted staff members. You should stop any accounts of former employees that may still be active and monitor active accounts for malicious activity.

Ransomware

Ransomware are common cyber attacks that have been around for years. Cyber criminals will hack into a network or device, gain access to private information and then encrypt that data. The only way the business can get the data back is by paying a ransom, after which they will be given an encryption key to secure the files back. A development of the ransomware attack is hackers may now threaten to publish sensitive data online to ensure the ransom money is paid.

This can be a real threat for businesses, particularly if private customer information is released on the dark web and sold. The company will then be liable for a possible breach of data protection laws, and an incoming large fine.

This is why backing up your data is absolutely crucial. If you have a backup of your data, then you can rest assured you still have access to it (it being published online is a different matter however). Regular backups should be completed and systematic checks that your backup system is working, are also necessary.

Advanced endpoint protection is also recommended. This will provide protection for devices and help to stop criminals encrypting data.

Conclusion

As said at the beginning of this post, awareness, knowledge, and prevention are the best measures to protect your business from a cyber attack. Having a good all-round security policy, as well as active cyber protection is the best way to ensure your business is protected as it should be.

For more information on how we can help your business, please talk to an expert at Cube Cyber today. We can help evaluate the specific needs for your business.

/by

GDPR Cyber Security and How It Might Impact Your Business

, , ,

The European Union’s General Data Protection Regulation (GDPR), came into effect back in May 2018, but what does that mean for Australian businesses and cyber security?

What is GDPR?

First of all, what actually is GDPR? The GDPR is short for General Data Protection Regulation. It was brought in by the European Union on 25th May 2018. The regulations were created to give individuals more control over their personal data and to ensure businesses comply with how they handle personal customer data. This data could include name, address, IP address, phone number, email address or location data.

It is worth noting that an IP address or a transaction ID alone is not enough to identify an individual. However, if you only collect this information the rules are likely to still apply to you. While this data seems anonymous, if you were to cross-reference a transaction ID with your online store data, the individual could be identified. Therefore, the GDPR regulations will still apply, even though you may not be openly collecting personal information.

If you are collecting detailed personal information such as gender, biometrics, ethnicity, or personal data about children, then you will need to be extra careful when handling this data.

man in corporate jacket pointing finger

Is GDPR relevant to Australian businesses?

Even though you may not be a business in the EU, you may still have to comply with GDPR regulations.
Any business, no matter where you are in the world will need to comply with GDPR if they process any personal data from a person living in the EU. This could be a client, customer or even someone signing up to your online newsletter or visiting your website.

For Australian organisations it is likely that you will be dealing with customers or suppliers who are from the European Union. If this is the case, then GDPR regulations will apply to you.

The basic values or rules concerning GDPR is that you must tell the person that you are collecting their data, what specific data you are collecting and how you will use that data. You must have a lawful reason to collect someone’s data and only use the data for the reasons you have told them. You must get an individual’s consent before collecting any personal data from them.

For example, if someone is signing up to an email newsletter, you must include consent boxes for email marketing, if any future emails will be used to advertise or promote your business. If you state to the customer that by putting in their name and email, they will get some sort of ‘freebie’ or a monthly newsletter with tips for businesses, you cannot then use that email for advertising purposes, as that is not what the person signed up for. You will need a consent box that clearly states by adding their email, they may receive advertising and promotional emails. It is up to the individual to decide and if they do not want such emails, so you must only send emails for the reasons you have stated in the sign up form.

The data should be secured safely and not be held for any longer than need be. You should have a detailed privacy policy which is easy to read and understand, outlining what information you are collecting and what you are doing with it. You also need to state that you will delete all personal data upon an individual’s request.

business fist bumps

GDPR cyber security

In terms of GDPR cyber security, you will need to ensure that personal data is processed and stored securely, in order to lower the risk of any data breaches. Not only does a major data breach hurt a company’s reputation, you may also be liable for a hefty fine (up to €20 million or 4% of worldwide yearly income), if you have not fully complied with GDPR regulations. This is enough for cyber security professionals to up their game and to ensure businesses have the best protection to prevent any data loss.

Organisations should make sure that only authorised staff can access any personal information from customers or suppliers. Limiting the amount of people who can access that data and ensuring only those who need the data for their jobs are allowed access, can help prevent accidental data breaches. Those employees who do have access to sensitive customer data should also have training on how to handle, store and send any data and to make sure it complies with your privacy policy.

Any data you collect that can be adnominalized or ‘Pseudonymised’ should be. This will make it harder to identify individuals. Whether you are the controller (the person who decides what data is collected and how) or the processer (the person collecting, storing, and organising the data), you are liable if any information is leaked. If you are working with a third-party processer, such as Mail Chimp for email marketing, then you should ensure they also are complying with GDPR regulations.

Data Loss Prevention (DLP) devices should be implemented to ensure that data is kept secure and personal information is not shared outside the company. In case of an unfortunate data breach, you must have an incident response plan already in place. This sets the groundwork for how you deal with a cyber attack, from identifying the attack and what data has been lost, to containing the attack, notifying the Data Protection Authority, and then recovering and learning from the incident.

For the best protection for GDPR cyber security, it is best to have a multi layered security solution. Firewalls will help prevent malicious software from entering or leaving your network, endpoint protection will help secure all devices (or entry points) into the network, VPN’s and other encryption tools will ensure data is kept secure and cloud security will protect data storage. Managing and monitoring threat detections is also key to preventing any attempted attacks early.

Risk assessment and vulnerability scans need to be performed to assess cyber security solutions and to make sure everything is working correctly.

If you are worried about GDPR cyber security, or would like advanced protection for your organisation, then get a quote with Cube Cyber today, and our friendly experts will talk you through everything.

/by

How to Prepare A Cyber Defence Plan for Your Enterprise

, ,

No business, small or large is not at risk from a cyber attack. From small businesses to huge government organisations, all companies must ensure they have an excellent cyber defence plan in place. Planning what to do in a cyber attack is just as important as managing active preventative measures.

Many smaller enterprises do not even know where to start with preparing a cyber defence plan or what things are of most importance when creating one. In this post we will address the key components to establishing a good cyber incident response plan.

Risk Assessment

A risk assessment is one of the first things you should look at. You will not be able to say what cyber security measures you need until you know what risks are specific to your business. Whether you are updating an old cyber defence plan or starting from scratch, you should look at all the common cyber attacks especially those relevant to your business. The Australian gov website has good articles for assessing cyber risks.

The most common attacks are phishing and spear phishing attacks, malware, and ransomware, but you should also consider developing attacks such as deepfakes and vulnerabilities with 5G and artificial intelligence (AI).

For each type of cyber threat, you should assess how big a risk it is to your business and how each attack would affect the company. You should also look at each aspect of the busines, example sales, marketing, finance and prioritise which sectors are most vulnerable. Identify the staff members who have access to the most sensitive company information and re-evaluate whether every one of those people needs that access. Only trustworthy staff who absolutely need sensitive company information to do their jobs, should be allowed access to minimise the risk of any accidental (or intentional) breaches.

During the risk assessment, you should not only be assessing the cyber risks to your business but the vulnerabilities already in your company’s network or systems. Are there any holes in your cyber security? Are staff members working from unprotected personal devices? All these weak points can be an easy way for cyber criminals to gain access to your network.

You should determine the likelihood of each attack, how much such attack would impact the business and the threat level of attacks (low, medium, high).

cyber defence work planning

Early Warnings

Your cyber defence plan should include early warnings on how to recognise a cyber-attack. Phishing attacks are the most common attack on businesses (up to 90% in fact), but these are the types of attack we can prevent. Human error is the most common reason behind a data breach. As phishing and spear phishing attacks are evolving to be more sophisticated, the easier it is for employees to become fooled.

However, if staff are professionally trained in the most common attacks, they may become better at spotting a suspicious email. Sometimes it is the smallest of things that will give a dodgy email away, such as a change in just one letter in an email address. If staff members are on the lookout for such details, they are far less likely to open a malicious site or download link. Education and ongoing training should be part of your cyber incident response plan and company culture.

Prevention Measures

First of all, you should be aware of every protection measure in the business and what it does. You need to know which applications are installed on which devices and so on. Keep an account of every piece of software you are using and every update.
Once you know what cyber risks are a threat to your business and the software you are already using, you can re-evaluate. Is it enough, or do you need further protection? Prevention measures should be analysed an implemented within the business.

Common preventative measures are:
– Multi-factor authentication (MFA)
– Firewalls
– Endpoint protection
– Virtual private networks (VPN)
– Email security
– Security monitoring
– Cloud security

Whether you have an in-house cyber security team or you are outsourcing to an expert firm, you will need to make sure the cyber protection systems are secure and up to date. Any system bugs need to be fixed and patch work should be implemented where necessary. Checks of all cyber systems should be tested regularly to ensure everything is running correctly. Proper monitoring of all cyber security measures should be carried out to ensure you are seeing potential threats in real time.

work team hands together

Incident Recovery

Your cyber defence plan should include how you intend to respond to a cyber incident. Communication is key, so there should be a team, or several staff members assigned to deal with an attack. Each person should be assigned a role of how to execute the plan, to avoid confusion and havoc.

If customer data has been breached, then you will probably need to consult data protection laws. For this reason, having a plan for public statements is a good idea. Having these statements written out in advance puts you in a much better, calmer and more controlled environment then quickly whipping up a panicked statement that is not as thought through.

The cyber defence plan should include how you intend to report the breach via event logs, including the time of the attack, how it was implemented and the communications between the team.

Conclusion

A major data breach can be devasting to any size business, but particularly for smaller enterprises. The idea of cyber attacks can be scary, but by having a plan in place will safeguard your data as much a possible and put you in a better position to be able to control the attack.

Creating a cyber defence plan is crucial in preventing cyber crime to your organisation and being organised if an attack does occur. If you would like more information on how an expert team like Cube Cyber can help you, then please check our website for more information.

We are a dedicated team of professionals who provide expert cyber advice to businesses of all sizes. We have many different solutions to prevent cyber attacks and would love to hear see we can help you and your team.

/by

Cyber Security Australia: Increasing Attacks on Businesses

, , ,

Cyber security in Australia is an essential tool to protect businesses both large and small, from advancing cyber crime threats. In this current environment it is vital that no matter the size of the company, everyone is doing what they can to stay secure online.

In the past, businesses only had to really worry about the physical security on their business, easily implemented by security gates and CCTV cameras. In recent years however, there is a new threat. One that we cannot see but it is very real and potentially even more damaging.

Cyber crime is on the rise and attacking Australian businesses. In fact, according to a post by Infosecurity during the first six months of 2020 alone, ransomware payments doubled. With hackers finding new ways to compromises organisations, these ransom demands are likely to increase.

Scott Morrison cyber attack

Back in June 2020, an attack on Scott Morrison’s government was carried out by a state-sponsored actor. This attack was not just on the prime minister but on all levels of government from the healthcare industry, education, political sectors, and other primary sectors in the infrastructure.

It is unclear whether these state-actors got what they came for or what they will do with the information. Reasons for foreign state-actors infiltrating other governments could be to send a warning, to spy, find out sensitive information or research, or to steal data for financial gain.

Whatever the reason behind this attack, it only goes to show that even the most high-profile of organisations can be the victim of cybercrime. Whether you are a large government agency or an individual running a small business, cyber security needs to be a priority.

Increasing vulnerabilities in cyber security Australia

Why are there increasing cyber security attacks on Australia? Cyber security in Australia needs to be at the top of every organisation’s priority list. Australian businesses have money to steal. A wealthy economy that makes use of the latest technologies will always be at risk from harmful cyber threats.

In the current situation with the pandemic, we are seeing even more cyber threats to Australian businesses. In April 2020, the Australian Cyber Security Centre (ACSC) reported an increased in the amount of COVID-19 themed cyber attacks. Hackers and cyber criminals are taking advantage of the fear and uncertainty of coronavirus, as well as the increased in people working remotely.

For smaller businesses, where the level of cyber security may be limited, this can put SME’s at a greater risk. For smaller business check out this helpful graphic from the government site on best cyber practices.

The ACSC has recently warned the healthcare industry of the latest attacks that have been seen rising throughout the pandemic. One of these threats is SDBBot Remote Access Tool (RAT). This piece of malware is used by criminals to remotely take over multiple systems within an organisation. Hackers will go through the system and copy any sensitive information they can use to sell or blackmail the victim. Another recent attack is named Cl0p ransomware. Once a hacker has gained access using RAT, they can then use Cl0p to encrypt the organisations files to make them unreadable (in order to charge a ransom).

October 2020 saw German company Software AG fall victim to this attack. The hackers demanded US$20 million in ransom. The company’s data was leaked online after they did not pay the ransom.

Cyber threats are also increased with many staff members country-wide now working from home, often using insecure devices such as smartphones, personal laptops and devices used via the Internet of Things (IoT). When using insecure devices or networks, the chance for a data breach is greatly increased.

The more applications, devices, systems, networks, and Wi-Fi we use, the more chance of malware being infected into businesses. Once a company has been compromised, it is at risk from a ransomware attack, stolen money, damage to internal systems and devices, customer information being leaked, identity theft and more. If personal customer data has been leaked, you may also be facing more hefty fines for breaking data protection laws. Risking a cyber attack is simply not worth it.

What is the Government doing in cyber security?

The 2020 cyber security strategy from the Australian government has said it will invest $1.67 billion in cyber security, over the next ten years. The strategy outlines detailed advice for individuals, SME’s, large corporations, and government sectors.
There are three sectors the report details, where cyber security practices and different approaches need to be put in place: government, businesses, and the community.

Government

• Safeguard essential infrastructure, crucial services, and families
• Tackle cyber-crime, together with the dark web
• Protect government information and systems
• Sharing cyber threat intelligence
• Keep cyber security alliances strong
• Help organisations to implement cyber security practices
• Improve resources for cyber security

Businesses

• Enhance standard cyber protection for critical services
• Advise SME’s of best cyber security measures
• Deliver secure merchandise and services to customers
• Develop trained personnel in cybersecurity
• Monitor and stop attempted malware hacks

Community

• Advise and guide individuals on cyber security
• Make familiar buying choices
• Ensure cyber incidents are reported
• Know how and where the find cyber support

The report documents clear advice and guidance for individuals, businesses, and government sectors. They will do this by providing advice on the latest cyber threats, how to keep your business and devices secure, including the Internet of Things (IoT), and by stating clear obligations for businesses.

Each sector will have a role to play. Governments need to ensure they are protecting the most essential infrastructure and Australian businesses. Business themselves should make sure their products and customer data are made secure. Individuals need to stay vigilant and to understand the cyber threats on the web, before releasing any personal data or buying goods online.

The 2020 Australian cyber security strategy provides all Australian’s and organisations the tools they need to stay cyber secure. The strategy hopes to build trust and awareness of cyber security attacks in Australia and to advise on how to deal with those attacks. By addressing the community and organisations as a whole, this guidance provides a valuable tool for everyone to implement good cyber security measures, whether at home or work.

Cyber Security protection from Cube Cyber

Here at Cube Cyber, we are passionate about protecting businesses of all sizes. We believe in going that extra mile to protect our customers businesses. We build lifelong partnerships and provide the best protection to our customers.
For more information about our services please visit our contact page.

Psstt…we are also on LinkedIn and would love for you to give this article a share!

/by

Cyber Security Risk: What would it cost if your company could not work for one day?

, , ,

Cyber security risk is a problem all companies face, from large corporations to small, independent businesses. But cyber security is much more than a simple IT issue, it can have a huge impact on your revenue…and reputation.

Have you ever thought about what you could lose if your business were to go offline from a distributed denial-of-service (DDoS) attack, or if your employees could not work on files after they have been hacked into and encrypted? What would just one single day of not being able to work cost your company?

You would not leave your house or your car before locking it first, so why not protect the most important aspect of your business- the money making. Cyber security should not be thought of as another chunk out of the budget, but an essential tool to protect the core of the business. Cyber security and revenue really do go hand in hand.

Many companies, particularly small businesses, and SME’s, see cyber security risk as something that may or may not happen to them, perhaps not considering the full implications of what a cyber attack would have on their organisation.

Businesses no matter the size are at a risk of all kinds of cyber threats from phishing attacks (the number one and most common cyber attack), ransomware attacks, DDoS threats, malware attacks and more. These cyber threats are ever-growing and are always being developed to become even more sophisticated. It is vital that whatever the size of your organisation, cyber security risk is taken into account and taken seriously. But how do we do this?

man and women drawing work diagram

How businesses can calculate the risks

A cyber security risk assessment is a vital start for any business looking to purchase cyber security. Before you know which solutions will work for your company, you must first assess the risks. Every organisation should individually access their own risks, as this of course will vary from business to business. The Gov website has more information here.

By looking at the risks and performing a security assessment, you can determine the strengths and weaknesses of your systems, any weakness or vulnerability holes in your systems and how effective your current cyber security plan is working. From here, you will be in a better position to implement practical solutions in the right areas.

When calculating the cost of potential cyber security solutions, you should ask yourself what it would cost if your company went down for just one day. What would you lose in sales, revenue, potential new customers, even reputation? Work this out, and you may find that the cost of a single day is the same or greater than the yearly cost of cyber security protection. Those not willing to invest in the right cyber security solutions are taking a huge risk, particularly for SME’s who often find it hard to even recover at all from a cyber incident.

When completing a cyber security risk assessment, you need to identify the main cyber threats to your company. Most businesses all have the potential to be a victim of common cyber attacks, such as phishing, malware and ransomware attacks, but some organisations may be more likely to face other types of attack. For example, a government organisation may be at extra risk from cyber espionage or the healthcare industry may be at risk of advanced domain hijacking or DDoS attacks.

Once you have a list of the most vulnerable threats, you will need to determinate how each of those attacks would affect your business.

  • If your files were encrypted in a ransomware attack, would you have backups of that data?
  • And what would the implications be if any sensitive files were to be uploaded to the dark web?
  • How would you deal with data protection laws?
  • If hackers were able to take your ecommerce site offline for a day, or even a few hours, what would you gain to lose from loss of sales?
  • If any of your machines are physically damaged, what would the costs be to replace them?
  • How will you regain trust back in any customers who have lost faith in the reputability of your organisation?
  • Do you have a recovery plan for a data breach, do your staff know what to do in the event of an attack?

These are all questions which will need to be answered. Once you have an idea of the threats to your business and how they will affect you, you can start to determine the right solutions to protect against each threat. Order the threat list in terms of the highest priority or threat level, to the lowest, putting security in place for the biggest threats first.

man on laptop and women writing on board

How a cyber security risk assessment can help

The biggest benefit, other that being protected from cyber threats, is the long term cost for an all-round cyber plan. The cost of cyber security will likely be lower than the cost of recovering from an attack. Applying a risk reduction point of view can help protect your businesses revenue and most valuable assets.

A complete cyber plan will protect your organisation against data breaches, comply with data protection regulations, prevent the loss of sensitive files, and help prevent malicious activity from entering your network. If you think that the cost of an annual cyber subscription may be the same as a day’s revenue, then it is really a no brainer.

At Cube Cyber, we can help both SME’s and large corporations come up with a complete cyber protection plan. We do all the hard work, finding the vulnerabilities in your systems, implementing advanced cyber solutions, and then monitoring and reporting back to you.

For any questions or details, please ask one of our cyber experts via our website.

/by

Managed Security Services: Why Small & Mid-sized Businesses Should Consider It

, , ,

As the rate and sophistication of cyber crime is ever-growing, more businesses are turning to managed security services for their cyber protection. But what exactly are managed security services and how can they help your business? Read on for the benefits of outsourcing your business IT security.

What are managed security services?

A managed security service provider (MSSP) will provide security protection to your business, usually remotely, and will oversee all of the cyber security measures needed for the business. They can help with anything from finding vulnerabilities in your business, to implementing cyber protection, and then managing that protection 24/7.

Common services include cloud protection, firewalls, endpoint security, intrusion detection, anti-virus security, email security, VPN’s (virtual private networks), and monitoring. This protection is usually in the form of software-as-a-service (SaaS), meaning you do not have to employ a dedicated IT team to run your cyber security.

2 men talking in office

How can managed security services help your business?

Expertise and knowledge

One of the main benefits of hiring a managed security service provider is that your business will gain access to industry experts who have been professionally trained in cybersecurity. For small and medium sized businesses (SME’s) who may not have a dedicated team of IT experts, then managed security services can help immensely.

Outsourcing your cyber security to a team with industry expertise, specific knowledge and experience can mean you are getting the best protection for your company.

Cost effective

Using managed security services can be cost effective in several ways. First of all, it eliminates the need to hire, train and keep an in-house team of IT professionals. The cost of hiring a team and providing ongoing training can much outweigh the cost of managed IT services. Hiring an MSSP means you get 24/7 protection, whilst knowing exactly how much is coming out of the budget each month.

Latest technology

With an MSSP, you get access to the latest technologies and the best applications for your cyber protection. With cyber attacks evolving at an alarming rate, you want to be sure that your business is receiving the latest in cyber protection.

Focus back on the business

By using managed security services, you are able to put your attention fully on the business and the goals you are aiming for. Instead of trying to fix time-consuming tech issues yourself, resulting in slower business operations, you can put more time into growing your business and meeting goals.

24/7 security

By hiring a MSSP, you can have peace of mind that your business is being protected day in, day out. Efficiency is improved via automatic detection and vulnerability scans. If a threat is found, you can be assured of a quick response time. With some cyber applications, the longer it is installed, the better the system recognises abnormalities or suspicious behaviour. Threats can be seen sooner, before they infiltrate your network.

man working on laptop from cafe

What can managed security services help with?

Next Generation Firewall Security

Installing firewalls is essential for any business. They can stop harmful or malicious content from entering and leaving your network. This is particularly important if your business handles customer data or sensitive company information. Firewalls should be one of the first lines of defence.

Cloud Security

If you are using any cloud-based systems, then you will want to ensure you have some cloud security in place. Cloud applications can include systems such as Office 365, Google Docs and OneDrive. Cloud security will protect your data being stored over the cloud, using the latest technologies and controls.

Backups and reports

A managed service provider can do all the hard work for you, including regularly backing up your data and providing easy to understand reports. This can help save you time to focus on other areas of the organisation.

Monitoring

Regular monitoring and patch work will all be carried out by the third party provider. You do not have to worry about updating systems and checking that they are working ok, that is all taken care of for you.

Anti-malware

Advance malware protection is a necessity to protect your organisation against malicious websites, downloads and spyware that can destroy your business. A MSSP can provide the latest technologies to detect known and unknown malware.

Email security

Email security is vital, since most cyber attacks are caused by someone in a company opening a phishing email. The simple act of clicking on a malicious link via an email can cause a major data breach, even within a large corporation. Managed security services can ensure that all emails are scanned, filtered and clean of malicious content before arriving in your inbox. At Cube Cyber, we work with CISCO systems to give our customers the best protection available.

Vulnerability management

Vulnerability management will scan your devices and network for any vulnerabilities, evaluate any risks, and then decide on how to deal with those threats. Vulnerability scans will provide reports of the strengths of the risks and prioritise what needs to be dealt with first.

Conclusion

Cyber security requires an understanding of the current threats, the best cyber practices, technological cyber solutions and how to measure, report and implement defence plans. For smaller businesses without the expertise, time, or budget for an in-house IT team, using managed security services is an appealing and cost-effective way to stay cyber secure.

At Cube Cyber we provide managed services, using the latest technologies and trusted world-class partners. If you would like a quote for your business, then please get in touch with one of our experts today.

/by

Wondering how much our solutions cost?

GET A FREE QUOTE

Not sure yet? Get a Free Trial now.

GET A FREE TRIAL

ABOUT CUBE CYBER

About Us
Contact Us
Terms and Conditions
Privacy Policy

CALL 1300 085 366

SERVICES

Cyber Risk & Technical Assurance
Segmentation and Zero Trust
Penetration Testing
Infrastructure security assessment
 Secure Architecture Development

MANAGED SECURITY

Managed Security
Managed Detection & Response
Security-as-a-Service

RESOURCES

Cyber Security Blog
Case Studies
Cyber Security FAQs

ISO 27001 CERTIFIED

© CubeCyber 2025. All Right Reserved | Designed & Developed by Escope

Book a Consultation

You successfully booked a consultation

Unable to send.

* Your data will be used only within Cube Cyber system. We never share any data with a third-party.