Tag: cyber attack

Four in ten Irish businesses have suffered a cyber-attack in the last five years

Four in ten (40%) Irish businesses have suffered at least one cyber-attack in the last five years, with companies facing financial loss as a result.

Research from insurance broker and risk management company Gallagher in Ireland has revealed that more than one in eight (88%) Irish businesses have suffered financial loss and commercial disruption due to a cyber-attack in the last five years.

Gallagher commissioned a survey of 300 business decision makers across the UK & Ireland, 100 of whom are based in Ireland.

Businesses that have experienced a cyber-attack in the last five years reported additional consequences as a result including:

  • the loss of intellectual property (26%)
  • supply chain disruption (23%)
  • reputational damage (23%)
  • ransom payment demands (20%)

Laura Vickers, Director, Gallagher in Ireland spoke of the findings,

Given what we can see from the widespread impact of cybercrime, it is unsurprising that almost every Irish business leader we asked (93pc) said they are concerned about the rise in cyber-crime and the potential impact it could have on their company”.

The Top 3 in Corporate Cybercrime

  • Cyber extortion, whereby cyber criminals threaten to harm a business or steal sensitive information unless a sum of money is paid, was the most common type of attack carried out on Irish businesses, with 37% saying they had been targeted.
  • Phishing attacks, where individuals are tricked into following a malicious link or downloading an infected email attachment, was the second most common attack with 31% suffering this type of incident in the last five years.
  • Followed by what is termed “Man-in-the-Middle (MiTM) attacks”, where the perpetrator intercepts and alters communication between two parties without their knowledge – 23pc of business leaders said their organisation had fallen foul of this.

In Ireland the Gallagher report reveals that large businesses, those with annual turnover exceeding £10m, have been particularly vulnerable, with 57% experiencing cyber-attacks during this period. Mid-sized companies also show substantial exposure, with 39% reporting attacks. Comparatively, smaller businesses have been less frequently targeted, with only 9% experiencing attacks.

Prepare and Respond

Despite the increasing risk of cyber-attacks, 90% of Irish business leaders express confidence in their ability to recover quickly. This optimism may stem from the fact that 94% of businesses have a cyber insurance policy, with 89% confirming their coverage includes risk management, including vulnerability scans and threat monitoring,to mitigate potential threats.

However, the Gallagher survey also highlights areas of concern within Irish business

  • Just 39% of companies provide cybersecurity training for staff, leaving many employees susceptible to phishing and malware attacks.
  • Only 41% conduct regular system vulnerability scans, increasing the risk of undetected weaknesses being exploited by cybercriminals.
  • Less than half (48%) have multifactor authentication (MFA) in place for remote workers, potentially exposing their systems to unauthorized access.
  • Only 42% of business decision-makers are aware that reporting a cyber-attack to the National Cyber Security Centre (NCSC) is a legal requirement. Failure to comply could result in fines of up to €10 million or 2% of global turnover.

Ms. Vickers went on to comment,

“While it’s encouraging to see businesses investing in cyber insurance and risk management, security measures must go beyond just financial protection. Many businesses are still vulnerable due to gaps in employee training, system monitoring, and access controls. Cyber threats are evolving rapidly, and companies that fail to strengthen their security posture risk serious financial and reputational damage.

Equally concerning is the lack of awareness around reporting obligations. Failure to report an attack could lead to significant fines, compounding the financial losses from a breach. Businesses must take a proactive approach, not just in purchasing insurance, but in implementing robust cybersecurity practices and ensuring compliance with legal requirements.”

IT.ie launches gamified cybersecurity awareness training

IT.ie, the Irish IT managed services company, today, coinciding with Cybersecurity Awareness Month, announces the launch of a new gamified cybersecurity awareness training in a bid to help businesses to tackle the increasing risk of cyberattacks.

The service, which keeps employees on their toes by simulating real cyberattacks, reflects a growing use of gamification by organisations globally and across multiple industries to drive user engagement and business success. A study conducted by TalentLMS found that gamification increases engagement levels during cybersecurity training by 70%.

New regulations, including NIS2 and DORA, are resulting in ensuring that businesses are much more accountable for cybersecurity. Minimising the risk posed by employees will therefore help to reduce the success of attacks. This will save businesses money through decreased insurance premiums, as well as any money that may be paid as ransom.

Human error currently accounts for 90% of data breach incidents. IT.ie’s gamified solution aims to reduce that risk by creating an engaging experience which encourages employees to maintain and upskill their cyber-resistance. This is essential as hackers continue to barrage organisations and their employees with attempted attacks using methods such as phishing, social engineering, malware, ransomware, and spoofing.

IT.ie’s solution begins with a gap analysis, which identifies areas where individuals may be vulnerable and require improvement such as awareness of phishing tactics, or effective password management. The result of the analysis allows IT.ie to create a personalised training path for each user to strengthen the areas where they are weakest.

These training paths feed into Learn.IT, which involves digestible, interactive sessions designed to be engaging, allowing employees to develop their knowledge in manageable increments without significant disruption to their daily workflow.

The gamification comes into play with the Phish.IT element of the solution, which regularly targets employees with realistic phishing attempts to test their recognition, awareness, and response to threats. These simulated attempts mean that employees can get practical use out of the skills they have developed through the training.

As employees engage with the solution, this feeds into an overall company risk score. Over time, businesses and their employees can see the benefits that the training is having as their score decreases. This measurement of success also helps to create a sense of collective responsibility and a positive cybersecurity culture within organisations.

Eamon Gallagher, founder and managing director, IT.ie, said:

Through experience, we know that the journey a business takes in developing a coherent cybersecurity strategy is not achieved overnight, and employees are the last line of defence in terms of the cyber threat landscape. Our Cyber Awareness Training & Phishing simulation platform paves the way for organisations to invest in their people so as to ensure the development of a robust and healthy cyber security culture.  Our goal is to create an experience that is personalised, easily consumable and not overly disruptive from other important day-to-day tasks.”

Dell Technologies Introduces Multicloud Data Protection and AI Advances to Counter Increasing Cyberattacks

Dell Technologies is expanding its data protection portfolio of appliances, software and as-a-Service offerings to help customers strengthen cyber resiliency in the face of increasing cyber attacks.

With advances across the Dell Data Protection portfolio, Dell is helping customers build a modern and resilient foundation to protect data on-premises, in public clouds and at the edge. These innovations help address concerns raised in the 2024 Dell Global Data Protection Index (GDPI) survey, which revealed that 75% of organizations believe their existing data protection measures are unable to cope with ransomware threats. Nearly 70% lacked confidence that they could reliably recover from a cyberattack.

“With the exponential growth of data, generative AI (GenAI) presents organizations with opportunities to streamline processes, improve decision-making and drive innovation, but it also extends the attack surface for cyberattacks – especially with trained models, which are quickly becoming one of the most valuable assets for enterprises,” said Arthur Lewis, president, Infrastructure Solutions Group, Dell Technologies. “With this expanding digital landscape that exposes more vulnerability gaps, companies are increasing their reliance on Dell to help protect their data wherever it resides with trusted data protection and AI offerings.”

New Dell PowerProtect Appliances Increase Security, Performance and Efficiency

Dell’s new Dell PowerProtect Data Domain DD9410 and DD9910 systems designed for large enterprises to offer increased:

  • Performance for traditional and modern workloads, providing customers with up to 38% faster backups, and up to 44% faster restores
  • Security and cyber resilience for customer data
  • Efficiency, with up to 11% less power consumed  and industry-leading 65x deduplication
  • Scalability with up to 1.5 PBs of usable capacity in a single appliance

“With increasing cyber threats putting organizations on constant high alert, the demand for trusted high performance data protection systems has never been greater,” said Phil Goodwin, research vice president, IDC. “Dell’s portfolio of data protection solutions supports numerous data protection best practices to help organizations modernize their data protection environment. With major performance enhancements in backup and restore, we expect the latest PowerProtect Data Domain appliances to remain a key element of critical data protection and cyber recovery infrastructure.”

“We have been relying on PowerProtect Data Domain appliances to keep our data secure for over a decade and a half now,” said Rich Jackson, data protection architect, State of Michigan. “We have no doubts that the latest generation of appliances will continue to increase protection performance and the security of our data.”

Dell PowerProtect Data Domain systems are also at the center of a broad partner ecosystem, helping leading data protection software vendors grow their business while strengthening resiliency for their customers.

“Dell and Commvault have a shared belief that a strong foundation for resilience is absolutely required in the face of AI-driven cyber threats,” said Sanjay Mirchandani, president and CEO, Commvault. “Together, we are delivering industry-leading cybersecurity, performance, and efficiency to our joint customers. With a deep API integration between the Commvault Cloud platform and Dell’s latest PowerProtect Data Domain appliances, we can leverage the full strength of our combined cyber resilience, data security and rapid recovery capabilities to empower organizations to effectively mitigate risks and ensure uninterrupted business continuity.”

Increasing Productivity and Efficiency with Integrated GenAI Assistant

With the introduction of Dell APEX Backup Services AI, an integrated GenAI assistant for backup and recovery, customers can streamline protection processes. Dell APEX Backup Services AI helps address the growing demand for GenAI data protection, as evidenced by 52% of GDPI survey respondents who believe GenAI will provide an advantage to their organization’s cyber security posture.

Dell APEX Backup Services AI capabilities help users:

  • Request real-time custom reports, ask follow-up questions to refine report variables and act on AI-powered suggestions to remediate backup failures
  • Understand and improve their backup and security postures with assisted troubleshooting with simple written prompts, analyze logs, and troubleshoot errors
  • Use intelligent responses with recommendations and best practices customized to their specific environments
  • Simplify administrative operations, from creating new backup policies to triggering new backups of specific workloads

 Powerful Backup and Recovery with Storage Direct Protection Innovation

Storage Direct Protection in Dell PowerProtect Data Manager offers native integration with Dell PowerMax enterprise storage for fast, efficient and more secure backup and recovery to and from Dell PowerProtect Data Domain.

Storage Direct Protection in PowerProtect Data Manager for PowerMax delivers:

  • Fast backup and recovery of multiple storage arrays with up to 46TB/hr for a single backup and up to 21TB/hr for a single recovery
  • Efficient data protection of Dell PowerMax with full restore to original or alternate PowerMax system
  • Secure data integrity and optional cyber vault integration
  • Simple operations with centralized management and orchestration
  • Multicloud support for PowerProtect Data Domain replication and cloud tiering

Availability

  • Dell PowerProtect Data Domain DD9410 and the DD9910 systems are available globally
  • Dell APEX Backup Services AI is available globally
  • Storage Direct Protection for Dell PowerMax will be available globally in the third quarter of 2024