Chief Revenue Officer at Wire, Rasmus Holst, is not a man given to hyperbole. So, when he points to the growing risk of cyberattacks as the greatest cybersecurity risk for 2020 and the number one threat to the global economy, we needed to catch up with him to discuss it further.
Understanding how easy, how low-risk, cybercrime remains is paramount β as information surpasses oil as the worldβs most valuable commodity, while security measures on both business and consumer services remain inadequate for protection.
βYou can sit at home, you donβt have to break into the bank physically to steal from them. Itβs just computer programmingβ
A lot of it is very simplistic, based on good old-fashioned phishing messages: βIf one person clicks on the link, you can get a ransomware component installed, and lock everything up, and where large databases are concerned people WILL pay for that to be releasedβ.
The extent to which such demands are paid remains unknown, and this is where the bigger global economic threat emerges. βWith such attacks, itβs not just businesses losing money β that money is going straight to criminal organisations and rogue states. Weβve never had such an easy way for funds to flow from legitimate businesses to illegitimate ones, to go into fortifying and strengthening criminal organisations, at rates weβve never seen beforeβ.
Reducing the surface of attack
While businesses may have rightly been concerned about sanctions from regulators in the event of breaches, the macro financial impact is far greater, and will only be solved by better security and encryption. Moving towards zero-trust environments and multi-factor authentication, as well as better regulation, is a start. But given the low risk and unit cost to the attacker, the only real solution, according to Holst, is to drastically reduce the potential ROI for the attacker.
βAt Wire we approach it by encrypting each piece of data, each message, individually β with a unique keyβ, he explains
βThe bad actors then have to break into each one separately, and itβs not worth the effortβ
This contrasts with the way that many large datasets are managed, where they become linearly more attractive to hackers as their honeypot grows day by day.
βItβs like having a million dollars in a physical safeβ, Holst elaborates, βand by the following day, youβve added a million more, making it way more tempting. Instead, you should be putting each dollar bill in its own safe, with its own lock and key.β
Communication = information
It will require thinking about the data generated by UC in a new way, and recognising the potentials risks for organisations of losing that data β whether leaking it to those who can misuse it, in the case of personally identifying information or intellectual property, or losing access to it altogether.
With enterprises adopting privacy and security regulation from the consumer realm, bills and laws like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) are ushering in a new age of government regulation. And as we enter a new decade, itβs time to reconsider the true worth of the data our online communication and collaboration tools generate as both intention and surplus, and make sure weβre doing enough to keep things safe, for our own businesses, and for the world as a whole.
Β
