Half of all businesses would pay off cyber criminals to avoid GDPR fines

Almost half of all business IT directors would hand over money to cyber hackers in order to avoid the costly fines that come with falling foul of the General Data Protection Regulation (GDPR).

According to a new survey conducted by digital security company Sophos, some 47% would ‘definitely’ be willing to hand over a ransom if it meant avoiding reporting the breach to authorities. Likewise, another 30% said that they would consider paying off the cyber criminals.

Just one in five ruled out any possibility of paying off a ransom altogether.

The survey found those less likely to pay a ransom were small businesses. More than half of respondents from companies with less than 250 employees said that they would pay up. Likewise, only one in 10 from companies with 500 – 750 employees would consider paying a ransom.

The reason for this is likely the consequences that come with breaching GDPR, which would likely be far more costly for larger businesses. Under the new laws, businesses that are found to have failed to protect customer data face a fine of up to €20m or 4% of global annual turnover, whichever is greater, meaning that big businesses face paying much larger amounts than cyber attackers would likely demand.

“Don’t pay the ransom”

However, according to Adam Bradley, UK managing director at Sophos, this shows that businesses “misunderstand the threat and consequences” of data breaches. Paying a ransom does not guarantee the safe return of company data, nor does it guarantee that the business will avoid a GDPR fine.

Bradley said:

“It is concerning to learn that so many UK IT leaders misunderstand the threat and consequences of even a minor data breach. Companies that pay a ransom might regain access to their data, but it’s far from guaranteed and a false economy if they do it to avoid a penalty. They still need to report the breach to the authorities and would face a significantly larger fine if they don’t report it promptly.

“‘It is surprising that large companies appear to be those most likely to pay a ransom. It is a mistake for companies of any size to trust hackers, or to expect that they’ll simply hand the data back.

“Our advice? Don’t pay the ransom, do tell the authorities promptly and make sure you take steps to minimise the chances of falling victim again.”

UK businesses among most misinformed

According to the study, businesses based in the UK are more confident that they adequately comply with GDPR. Some 46% of UK-based IT directors said they are confident that their organisations are compliant.

This is higher than the rest of Europe, where the percentage only topped 40% in the Netherlands. Just 37% of businesses in France believe they are fully compliant, as well as 35% in Ireland and 30% in Belgium.

And yet, the study found that UK firms were perhaps not as prepared to deal with cyber threats post-GDPR as they believe. Just 13% of UK-based directors reported that they had tools in place to prove compliance following a breach, compared to 27% in the Netherlands, 24% in France and 20% in Belgium.

The post Half of all businesses would pay off cyber criminals to avoid GDPR fines appeared first on Mining Technology | Mining News and Views Updated Daily.



from Mining Technology | Mining News and Views Updated Daily https://ift.tt/2zzqD7I

Comments

Post a Comment

Popular posts from this blog

Mine management and predictive maintenance are top priorities for miners

Image
While miners are starting to trial and make small investments in technologies such as augmented reality (AR), virtual reality (VR) and cloud computing, the traditionally conservative mining sector remains focused on improving efficiency and productivity by continuing to invest in mine management software and predictive maintenance. GlobalData’s latest report, Global Mine-Site Technology Adoption Survey 2018 , reveals that while investment by the majors is currently well ahead of mid-tier miners and producing juniors, higher shares of the latter two groups are planning investments in mine management software and predictive maintenance given their immediate impact on improving productivity. Source: GlobalData Mining Intelligence Center The report includes data and analysis from the company’s survey of over 200 worldwide mine sites which investigated the extent to which mines had invested in 13 different technologies ranging from communication systems to drones, predictive maintenance
Read more

Down with the kids: can mining ever be cool?

“Do you want to win a bucket load of cash? Of course you do!” is the eye-catching strapline of the Mining Association of Nova Scotia’s (MANS) annual Mining ROCKS! contest. It offers cash prizes totalling C$8,000 for junior high and high school students who produce the most interesting and engaging videos about mining across five categories. Held between October 2018 and 22 February 2019, the contest hopes to inspire young people to teach themselves about the mining industry in Canada and beyond. Sean Kirby, executive director of MANS, says the association launched the competition because the industry needs to do better at explaining itself to the public and, in particular, reaching out to young people to educate them about mining, minerals and geoscience. “We started the Mining ROCKS! video contest as a way to appeal to young people, to give them a reason to want to learn about what we do by doing their own research,” he says. Attracting the next generation of miners Ingratiating
Read more

GR Engineering wins OZ Minerals Northern Wellfield project contract

OZ Minerals has awarded a contract to GR Engineering Services for the design and construction of the Northern Wellfield for the Carrapateena project located approximately 160km north of Port Augusta in South Australia. The engineering, procurement and construction contract is valued at A$16.3m ($11.77m). For the Northern Wellfield project, GR Engineering will provide the detailed design, survey, supply, transportation, construction, testing and commissioning services for the development of the trunkline and transfer pumping stations associated with four wells. The Carrapateena mineral processing plant, which is currently under construction, will obtain water through the wellfield project. The Northern Wellfield project will include access roads, pipeline corridors, staging tanks, wellheads and pumps to source groundwater from deep underground aquifers for providing raw saline water to the mining operations. “This work demonstrates GR Engineering’s credentials in the supply of proc
Read more