sb-au logo
Story image

Indirect damage: Why service providers should care about customer security

11 Jan 2017

This year witnessed the further spread of the disease we call ransomware. After seeing the profitability of this “revenue stream” in the consumer segment, cybercriminals are moving ever deeper into the business segment, looking for the most vulnerable victims.

Several cases of data encryption followed by extortion have been documented in a new sector, where vital services such as healthcare have been targeted in recent months. The infamous case of Hollywood Presbyterian hospital demonstrates how suffering a ransomware attack can cause direct financial losses – in this case $17,000 in BitCoins – as well as reputational damages.

After seeing the attack scenario repeat itself multiple times throughout 2016, it’s fair to assume that healthcare is only an initial interest of cybercriminals, and other business sectors will likely follow. According to FBI estimates, ransomware is on track to become a $1 billion a year criminal enterprise by the end of 2016.

However, ransomware is not the only cyberthreat businesses have to face today. Just recently, ESET reported on Retefe malware which targeted customers of various banks mostly in Switzerland, Austria, and the UK. By redirecting clients of these banks to fake or modified banking webpages, it attempted to harvest login credentials and misuse this information for malicious purposes.

Despite the fact that MSPs might not be first-line targets in such cases, they can take the hit indirectly as the providers and operators of IT services for banking or health care clients. All the potential losses and the burden of extensive IT support generated by a malware attack is theirs, and thus, their responsibility to solve.

Offering reliable security solutions from a respected security vendor can be the difference that helps MSPs and ISPs build their brand as responsible partners able to handle cyber security threats and reinforce a perception of expertise, as well as provide high quality services in the field.

Article by Ondrej Kuboič, welivesecurity analyst

Story image
Fast track your digital transformation with dynamic security services from Fortinet
Jon McGettigan, Fortinet A/NZ Regional Director, explains how enterprises can speed up their network service delivery programmes by embracing Fortinet’s dynamic security services.More
Story image
SMBs seeking service providers in face of rising cyber threats
SMBs are struggling with their cybersecurity solutions, with three quarters worried about being the target of a cyberattack in the next six months, and 91% considering using or switching to a new IT service provider if offered a better option.More
Story image
Gartner: By 2023, 65% of the world will have personal data covered under modern privacy regulations
“Security and risk management (SRM) leaders need to help their organisation adapt their personal data handling practices without exposing the business to loss."More
Story image
Global attack volume down, but fraud and cyber threats still going strong
“The move to digital, for both businesses and consumers, has been significant. Yet with this change comes opportunity for exploitation. Fraudsters look for easy targets: whether government support packages, new lines of credit or media companies with fewer barriers to entry."More
Story image
Microsoft brings endpoint & Azure security under Microsoft Defender
Microsoft Defender brings Microsoft 365 Defender and Azure Defender under the same umbrella.More
Story image
Video: 10 Minute IT Jams - The benefits of converged cloud security
Today, Techday speaks to Forcepoint senior sales engineer and solutions architect Matthew Bant, who discusses the benefits of a converged cloud security model, and the pandemic's role in complicating the security stack in organisations around the world.More