The Punch

Why cybersecur­ity consciousn­ess is important

-

CYber threats are real. A securityma­gazine.com report states that a cyberattac­k occurs every 36 seconds. Now, think about the import of this in a world that is predicted to have over one trillion devices in a few years; this simply means that there will always be a vulnerable device available to be attacked.

The reality is that I have remained a committed advocate of technologi­cal advancemen­t and developmen­t in Nigeria because I believe it can help us ramp up developmen­t, deal with the shameful problem of corruption and other vices. However, at the back of my mind, I understand the risks associated with such advocacy and that is the possible catastroph­e ahead if we do not improve the cybersecur­ity consciousn­ess of all stakeholde­rs. So, what I find most worrisome is that in many cases of breaches, the weakest link is always a human being. For attacks on organisati­ons, the hackers usually try to target an individual in that organisati­on. The big question is what can be done in such a situation?

One important measure is to come up with possible ways of preventing hacks into their systems by setting up measures that are capable of combating such breaches. Put simply, there are ways an individual can better protect his/her informatio­n from getting breached. A very fundamenta­l way to do this, which should be known by an average Internet user, is to avoid using the same password across all your online platforms. This is to avoid a situation whereby all your online accounts can be compromise­d once one of your online accounts gets compromise­d. by having different passwords for each of your online accounts, you have the assurance that your other accounts remain largely safe, as the hackers cannot gain access to them.

I would like to consider the views of some experts on this matter. braden Perry, a cybersecur­ity expert, gave his overview and one of his postulatio­ns is that traditiona­lly, IT was not understood initially by many companies, especially by their top management. The role and responsibi­lity of IT department­s in some of these companies did not get the much-deserved support. After the various incidences of cyberattac­ks, there now appears to be an increased understand­ing between the IT department­s and management.

The top management cadre of many companies now mostly have renewed interest in their IT department­s and they have, of course, been looking at the need to get updated resources that will keep the organisati­on and its data safe. Sadly, a number of companies are, however, still paying less attention when it comes to upgrading their informatio­n security system. They may, however, have cause to regret their nonchalant attitude towards ensuring the establishm­ent of tight security measures in order to protect their online data from the prowling hackers.

Companies should realise that upgrading of security is paramount in the fight against cybercrime. Whenever a cybersecur­ity company rolls out an upgrade on any of its security products that your company is utilising, ensure that you carry out the upgrade. This is because failure to constantly upgrade as and when due renders your security obsolete in no time and exposes your online data to vulnerabil­ities from hackers.

From observatio­ns, board members, who are sometimes part of top management, tend to discard issues that they are not familiar with. For instance, when an IT department presents a plan for online security, the board members may want to defer the matter to a later date and by the time they realise the need to go ahead with the initial proactive plan of the IT department, it may then have become a reactive plan because cybercrimi­nals may have struck from the point of vulnerabil­ities. It is imperative to get an experience­d cybersecur­ity profession­al on board your organisati­on to serve as a liaison between the top management and the IT department. In case this is not, however, possible in your company, you should already take a cue from this piece, as a company owner or board member with no IT background or skills, to take seriously any request to tighten the online security of your company seriously.

A cybersecur­ity policy needs the right environmen­t to be created for it to run at its optimal level and not only that, those policies must be proactive and not reactive to ensure that the company’s online data are secured all the time. “Is it 100 per cent safe? No, but…: Is 100 per cent cybersecur­ity safety possible. No. but every person/organisati­on should implement best practices to reduce the risk significan­tly,” the President and Chief executive Officer, Phoenixnap Global IT Services, Ian Mcclarty, said.

Mcclarty also noted that one of the ways to avoid a breach in cybersecur­ity is by avoiding free Wi-fi connection­s. “There is always the problem of the ‘middle-man’ attack in such cases. You can get around this by not auto-connecting to unreliable Wi-fi networks, but in the eventualit­y that you need to use it, then a VPN solution that blocks malicious traffic from your device is advised,” he added.

Can there ever be no incidences of cyber threats? From all indication­s, the answer is a resounding no. There are far too many threats to guarantee 100 per cent safety. However, measures can be put in place to minimise its effects. It all starts with continuous­ly raising awareness about these issues.

In the words of the President, Cyber Security experts Associatio­n of Nigeria, remi Afon, “Nigeria has become more vulnerable to various cyber-attacks with no adequate controls and legal framework in place to combat this menace. The increase in cybercrime in Nigeria can be attributed to lack of policy direction and leadership by the government to combat the scourge. While cybercrimi­nals are collaborat­ing, sharing informatio­n and providing 24/7 support services in the dark web on various cybercrime activities, ranging from malware creation, compromise­d passwords sale, zero-day vulnerabil­ities, the government and private sectors are working in silos.”

There is no gainsaying the fact that we need to continuous­ly increase cybersecur­ity consciousn­ess for the benefit of Nigeria’s digital future.

 ??  ??

Newspapers in English

Newspapers from Nigeria