The Biggest Threat to Your Cyber Security is Your Employees
According to historical claim data analyzed by Willis Towers Watson, 90% of all cyber claims stemmed from some type of employee error or behavior. If you think your organization couldn’t possibly fall victim to a cyber attack, you’re wrong. Cyber attacks can happen to any business. Below are some examples of cyber attacks caused by company employees:
Example #1: Equifax Data Breach
The 2017 Equifax data breach, which exposed the sensitive information of nearly 146 million Americans, happened because of a mistake of a single employee, according to the company’s former executive, Richard F. Smith. Smith told members of Congress that an individual in the technology department failed to heed security warnings and did not ensure the implementation of software fixes that would have prevented the breach. While the total cost of the breach has yet to be totaled, the sheer number of individuals affected demonstrated the need for employee cyber awareness and training.
Example #2: Snapchat Data Breach
In February 2016, Snapchat fell victim to a type of phishing scam know as a whaling attack. In the attack, a social engineer with a criminal intent posed as CEO Evan Spiegel and sent an email to someone in the social network’s payroll department. As a result, the personal protected information of some 700 employees was released.
Example #3: Chipotle Data Breach
In 2017, a group of cyber criminals in Eastern Europe sent out emails with malware to Chipotle staff. Untrained staff members clicked on the fake emails and inadvertently enable the hackers to compromise the point-of-sale systems at a majority of Chipotle locations. The hackers were then able to obtain the credit card data of millions of people.
Employee error or behavior played a crucial role in these three high-profile cyber attacks. Educating employees and making them aware of potential risks related to cyber security is just one way businesses can help to safeguard protected data. For more tips and training materials related to cyber security, contact us today!