Cyber Bytes banner RPC law

Cyber_Bytes - Issue 31

08 April 2021. Published by Richard Breavington, Partner and Daniel Guilfoyle, Partner and Ian Dinning, Senior Associate and Rachel Ford, Associate and Christopher Ashton, Associate and Bethan Griffiths, Associate and Ridvan Canbilen, Associate and Alex Matheson, Associate

Welcome to Cyber_Bytes, our bi-weekly round up of key developments in cyber, tech and evolving risks.

Claimant law firm ordered to pay damages for plagiarism

A well-known claimant law firm frequently involved in data subject litigation has been ordered to pay £45,000 in damages after it was discovered that they were using a plagiarised Letter of Claim.

The letter was used on 242 occasions. The law firm has stated that the letter was provided to them by a barrister they had taken advice from and against whom them have announced they intend to pursue in a separate action.

Click here to read more.

Interview with a ransomware organisation published

An interview with ransomware organization REvil has provided insight into the group's operations.

One tactic appears to be "hack the insurers first—to get their customer base and work in a targeted way from there. And after you go through the list, then hit the insurer themselves." Further interesting points include the use of data auctions on the dark web and ransomware organisations working together to trade their tools and experience.

Click here to read the full interview.

Cyber security podcast looks at cyber trends and future threats

The latest episode of the podcast looks at trends from the last year and likely threats for 2021. It states that the pandemic saw a huge increase in ransomware attacks, VPN manipulation as a result of the move to home working, and medical research espionage. Looking ahead, ransomware is expected to continue to be a major threat as well as phishing, supply chain compromise and social engineering.

Click here to listen to the podcast.

Cyber security podcast looks at insurance market trends

Another podcast has issued an episode focusing on trends in the global cyber insurance market. The most noticeable trend seems to be the huge growth in the market; with premiums forecasted to grow to $5bn.

The number of claims being made is also growing; particularly in relation to ransomware and third-party vendors who have experienced a data breach.

Click here to listen to the podcast.

NCSC issues warning to nurseries

The National Cyber Security Centre has warned nurseries of the risk of cyber-attacks and urged them to increase their security infrastructure. Nurseries and other organisations which hold personal data on children are expected to be a lucrative target for ransomware attacks.

Nurseries have been warned to be particularly vigilant of scam emails which have been increasingly used to gain access to systems during the pandemic.

Click here to read more.

Insurance industries struggling to keep up with surge in cyber attacks

The COVID-19 pandemic has driven greater digitalization and remote working and as a result cyber vulnerability has intensified significantly. According to the Hiscox Cyber Readiness Report 2020, only 26% of the firms have stand-alone cyber insurance policies. The majority of firms rely on generic insurance policies which do not explicitly include or exclude cyber cover, giving rise to 'silent cyber' losses. S&P Global has suggested there needs to be further development of stand-alone cyber insurance products which would offer more efficient and optimized control of accumulation risk.

To read more, please click here.

5 cyber threat trends that will remain prominent in 2021

In their Cyber Threats Retrospective report, PWC highlight that over the last 12 months, the five most prolific cyber threat trends were ransomware, using current affairs as bait, supply chain attacks, social engineering and a rise of the defenders. Additionally, the report explores their wider impact on organisations, business and society.

To read more, please click here.

Npower app to be removed after login data was stolen

It is believed that personal contact details and partial financial information may have been obtained, but those affected were immediately alerted and had their accounts locked. The energy provider, which is owned by E.ON, has reinforced that protecting customers' security and data is their top priority and it was thanks to their robust threat detection and other cyber defences that the attack was identified.

To read more, please click here.

Bridewell Consulting reports on aviation's cyber security vulnerability

88% of UK aviation companies have detected cyber attacks in the last year, despite 78% stating their systems are secure according to research by Bridewell Consulting.

They posit that the aviation industry is facing an increased risk of cyber-attacks due to ageing infrastructure, a complex supply chain and the accessibility of operations systems both from corporate networks and over the internet.

The data shows that 28% of companies have reduced their infrastructure budget since the start of the pandemic and the industry is being urged to review and update its security before it is too late.

To read more, please click here.

The different flavours of cyber resilience

In an article on cyber resilience - the ability to anticipate and withstand cyber-attacks - internationally recognized IT security author, Torsten George, offers his insight into best practices.

The steps needed to effectively implement cyber resilience strategies, will vary from business to business but these strategies are essential to ensure organisations can improve their data protection strategies, as well as survive a cyber-attack. To be effective, it must be applied to all cyber resources, namely networks, data, workloads, devices and people. Cyber resilience can also help prevent cyber incidents which may happen due to human error or outdated software.

To read more, please click here.

Insurance industries struggling to keep up with surge in cyber attacks

The COVID-19 pandemic has driven greater digitalization and remote working and as a result cyber vulnerability has intensified significantly. According to the Hiscox Cyber Readiness Report 2020, only 26% of the firms have stand-alone cyber insurance policies. The majority of firms rely on generic insurance policies which do not explicitly include or exclude cyber cover, giving rise to 'silent cyber' losses. S&P Global has suggested there needs to be further development of stand-alone cyber insurance products which would offer more efficient and optimized control of accumulation risk.

To read more, please click here.

5 cyber threat trends that will remain prominent in 2021

In their Cyber Threats Retrospective report, PWC highlight that over the last 12 months, the five most prolific cyber threat trends were ransomware, using current affairs as bait, supply chain attacks, social engineering and a rise of the defenders. Additionally, the report explores their wider impact on organisations, business and society.

To read more, please click here.

Npower app to be removed after login data was stolen

It is believed that personal contact details and partial financial information may have been obtained, but those affected were immediately alerted and had their accounts locked. The energy provider, which is owned by E.ON, has reinforced that protecting customers' security and data is their top priority and it was thanks to their robust threat detection and other cyber defences that the attack was identified.

To read more, please click here.

Bridewell Consulting reports on aviation's cyber security vulnerability

88% of UK aviation companies have detected cyber attacks in the last year, despite 78% stating their systems are secure according to research by Bridewell Consulting.

They posit that the aviation industry is facing an increased risk of cyber-attacks due to ageing infrastructure, a complex supply chain and the accessibility of operations systems both from corporate networks and over the internet.

The data shows that 28% of companies have reduced their infrastructure budget since the start of the pandemic and the industry is being urged to review and update its security before it is too late.

To read more, please click here.

The different flavours of cyber resilience

In an article on cyber resilience - the ability to anticipate and withstand cyber-attacks - internationally recognized IT security author, Torsten George, offers his insight into best practices.

The steps needed to effectively implement cyber resilience strategies, will vary from business to business but these strategies are essential to ensure organisations can improve their data protection strategies, as well as survive a cyber-attack. To be effective, it must be applied to all cyber resources, namely networks, data, workloads, devices and people. Cyber resilience can also help prevent cyber incidents which may happen due to human error or outdated software.

To read more, please click here.

Insurance industries struggling to keep up with surge in cyber attacks

The COVID-19 pandemic has driven greater digitalization and remote working and as a result cyber vulnerability has intensified significantly. According to the Hiscox Cyber Readiness Report 2020, only 26% of the firms have stand-alone cyber insurance policies. The majority of firms rely on generic insurance policies which do not explicitly include or exclude cyber cover, giving rise to 'silent cyber' losses. S&P Global has suggested there needs to be further development of stand-alone cyber insurance products which would offer more efficient and optimized control of accumulation risk.

To read more, please click here.

5 cyber threat trends that will remain prominent in 2021

In their Cyber Threats Retrospective report, PWC highlight that over the last 12 months, the five most prolific cyber threat trends were ransomware, using current affairs as bait, supply chain attacks, social engineering and a rise of the defenders. Additionally, the report explores their wider impact on organisations, business and society.

To read more, please click here.

Npower app to be removed after login data was stolen

It is believed that personal contact details and partial financial information may have been obtained, but those affected were immediately alerted and had their accounts locked. The energy provider, which is owned by E.ON, has reinforced that protecting customers' security and data is their top priority and it was thanks to their robust threat detection and other cyber defences that the attack was identified.

To read more, please click here.

Bridewell Consulting reports on aviation's cyber security vulnerability

88% of UK aviation companies have detected cyber attacks in the last year, despite 78% stating their systems are secure according to research by Bridewell Consulting.

They posit that the aviation industry is facing an increased risk of cyber-attacks due to ageing infrastructure, a complex supply chain and the accessibility of operations systems both from corporate networks and over the internet.

The data shows that 28% of companies have reduced their infrastructure budget since the start of the pandemic and the industry is being urged to review and update its security before it is too late.

To read more, please click here.

The different flavours of cyber resilience

In an article on cyber resilience - the ability to anticipate and withstand cyber-attacks - internationally recognized IT security author, Torsten George, offers his insight into best practices.

The steps needed to effectively implement cyber resilience strategies, will vary from business to business but these strategies are essential to ensure organisations can improve their data protection strategies, as well as survive a cyber-attack. To be effective, it must be applied to all cyber resources, namely networks, data, workloads, devices and people. Cyber resilience can also help prevent cyber incidents which may happen due to human error or outdated software.

To read more, please click here.

Insurance industries struggling to keep up with surge in cyber attacks

The COVID-19 pandemic has driven greater digitalization and remote working and as a result cyber vulnerability has intensified significantly. According to the Hiscox Cyber Readiness Report 2020, only 26% of the firms have stand-alone cyber insurance policies. The majority of firms rely on generic insurance policies which do not explicitly include or exclude cyber cover, giving rise to 'silent cyber' losses. S&P Global has suggested there needs to be further development of stand-alone cyber insurance products which would offer more efficient and optimized control of accumulation risk.

To read more, please click here.

5 cyber threat trends that will remain prominent in 2021

In their Cyber Threats Retrospective report, PWC highlight that over the last 12 months, the five most prolific cyber threat trends were ransomware, using current affairs as bait, supply chain attacks, social engineering and a rise of the defenders. Additionally, the report explores their wider impact on organisations, business and society.

To read more, please click here.

Npower app to be removed after login data was stolen

It is believed that personal contact details and partial financial information may have been obtained, but those affected were immediately alerted and had their accounts locked. The energy provider, which is owned by E.ON, has reinforced that protecting customers' security and data is their top priority and it was thanks to their robust threat detection and other cyber defences that the attack was identified.

To read more, please click here.

Bridewell Consulting reports on aviation's cyber security vulnerability

88% of UK aviation companies have detected cyber attacks in the last year, despite 78% stating their systems are secure according to research by Bridewell Consulting.

They posit that the aviation industry is facing an increased risk of cyber-attacks due to ageing infrastructure, a complex supply chain and the accessibility of operations systems both from corporate networks and over the internet.

The data shows that 28% of companies have reduced their infrastructure budget since the start of the pandemic and the industry is being urged to review and update its security before it is too late.

To read more, please click here.

The different flavours of cyber resilience

In an article on cyber resilience - the ability to anticipate and withstand cyber-attacks - internationally recognized IT security author, Torsten George, offers his insight into best practices.

The steps needed to effectively implement cyber resilience strategies, will vary from business to business but these strategies are essential to ensure organisations can improve their data protection strategies, as well as survive a cyber-attack. To be effective, it must be applied to all cyber resources, namely networks, data, workloads, devices and people. Cyber resilience can also help prevent cyber incidents which may happen due to human error or outdated software.

To read more, please click here.

Insurance industries struggling to keep up with surge in cyber attacks

The COVID-19 pandemic has driven greater digitalization and remote working and as a result cyber vulnerability has intensified significantly. According to the Hiscox Cyber Readiness Report 2020, only 26% of the firms have stand-alone cyber insurance policies. The majority of firms rely on generic insurance policies which do not explicitly include or exclude cyber cover, giving rise to 'silent cyber' losses. S&P Global has suggested there needs to be further development of stand-alone cyber insurance products which would offer more efficient and optimized control of accumulation risk.

To read more, please click here.

5 cyber threat trends that will remain prominent in 2021

In their Cyber Threats Retrospective report, PWC highlight that over the last 12 months, the five most prolific cyber threat trends were ransomware, using current affairs as bait, supply chain attacks, social engineering and a rise of the defenders. Additionally, the report explores their wider impact on organisations, business and society.

To read more, please click here.

Npower app to be removed after login data was stolen

It is believed that personal contact details and partial financial information may have been obtained, but those affected were immediately alerted and had their accounts locked. The energy provider, which is owned by E.ON, has reinforced that protecting customers' security and data is their top priority and it was thanks to their robust threat detection and other cyber defences that the attack was identified.

To read more, please click here.

Bridewell Consulting reports on aviation's cyber security vulnerability

88% of UK aviation companies have detected cyber attacks in the last year, despite 78% stating their systems are secure according to research by Bridewell Consulting.

They posit that the aviation industry is facing an increased risk of cyber-attacks due to ageing infrastructure, a complex supply chain and the accessibility of operations systems both from corporate networks and over the internet.

The data shows that 28% of companies have reduced their infrastructure budget since the start of the pandemic and the industry is being urged to review and update its security before it is too late.

To read more, please click here.

The different flavours of cyber resilience

In an article on cyber resilience - the ability to anticipate and withstand cyber-attacks - internationally recognized IT security author, Torsten George, offers his insight into best practices.

The steps needed to effectively implement cyber resilience strategies, will vary from business to business but these strategies are essential to ensure organisations can improve their data protection strategies, as well as survive a cyber-attack. To be effective, it must be applied to all cyber resources, namely networks, data, workloads, devices and people. Cyber resilience can also help prevent cyber incidents which may happen due to human error or outdated software.

To read more, please click here.