March 20, 2017

Increases in Cyber Crime Tied to Employee Fraud

Cyber crime statistics around the world are frightening - and employee fraud may be playing a role.

Cyber crime was the second most reported economic crime in the Global Economic Crime Survey 2016 from PwC affecting 32% of organisations and rising from 4th position in 2014.  

A recent crime survey in the UK showed an 8% increase in cyber cream offences. Online fraud is a huge issue, and fraud has far surpassed burglary and theft as the highest volume crime.

According to a securityintelligence.com post, the global cost of cyber crime will reach more than £161 billion by 2019, which is more than four times the 2015 estimate of £40.2 billion.

But while you often hear that all types and sizes of workplaces and businesses are being attacked, cyber crime trends show that fraudsters are increasingly targeting people directly, according to Katy Worobec of Financial Fraud Action UK. So while it’s important to invest in computer software and other safeguarding systems to stop criminals, the workplace must also recognise that people are the first line of defence.

Here are 6 ways the rise in cyber crime is linked to employees... and what to do about it:   
  1. Mistakes. Employee errors cause the most data breach incidents in cyber attacks, according to a recent Identity Management Institute report. It just takes one employee to click on a (malicious) link in an email to compromise an entire network. Create a cyber security plan that includes computer security monitoring solutions as well as comprehensive rules and processes for employees to follow online. Teach employees to recognise ransomware and other scams in ongoing security awareness training. 
  2. Insiders. According to the PwC research, almost half the incidents of serious economic crimes were carried out by insiders. To address this, improve security systems, teach characteristics of fraudsters and provide a ‘Tips Hotline’, conduct background checks, and create a culture of security.
  3. Mobile device management. Fraud attempts originating from the mobile channel have increased 173% between 2013 and 2015, according to a US study, the 2016 Current State of Cybercrime from RSA. With an estimated 80% of people having a smart phone by 2020, it’s important to put a comprehensive mobile security policy in place now.
  4. Access to information. Access to personal information was one of the categories of computer misuse crimes identified by the UK Crime Survey. A comprehensive document management process protects information from creation to destruction. Partner with a trusted document destruction company that has a secure chain of custody for the secure disposal and destruction of paper and digital documents.
  5. Complacency. As one blog post pointed out, complacency is deadly when it comes to workplace security. Protecting against hackers and online thieves has to become the responsibility of all employees, and culture is an essential tool. Support a culture of security from the top down, actively engage employees on the risks of cyber crime, and involve employees in data breach solutions.  
  6. Data breach response. The PwC survey showed that only 37% of organisations have a cyber incident response plan. Without one, employees don’t know what to do when a data breach occurs. Perform regular risk assessments, and create an incident response plan.  

A Clean Desk Policy is one of the simplest and most effective ways to protect confidential information in the workplace. Start yours today with the help of this free guide.