More cybercriminals targeting UK businesses
UK business were, on average, subject to almost 230,000 cyber attacks each during 2016. According to research by internet provider, Beaming, the volume of attacks hitting individual firewalls exceeded 1,000 per day, on average, in November of last year.
While a third of attacks attempted to access company databases in the first quarter of 2016, cybercriminals have since shifted their focus to connected devices such as networked security cameras and building control systems that can be controlled remotely over the internet.
The analysis reveals a 310% increase in the volume of attacks seeking out Internet of Things devices between the first and final quarters of 2016 – by the end of last year, over 90% of cyber attacks on UK businesses sought to take control of connected devices in the workplace. Beaming’s research also shows a fivefold increase in the number of unique IP addresses used to launch attacks during 2016. More than 98% originated from outside of the UK.
Sonia Blizzard, managing director of Beaming, comments: “There are many more elements involved in cybercrime than a year ago. They are launching more sophisticated attacks on UK businesses and covering their tracks carefully.”
“The majority of internet cyber attacks are computer scripts that search the web for weaknesses and probe firewalls constantly for a way in. With the Internet of Things, businesses are punching holes in their own firewalls to provide suppliers with access to devices on their networks. This can open the door to criminals too if not done properly.
“It is imperative that companies regularly review their firewall policies to ensure they are as restrictive as possible and prioritise security over convenience. Once inside, it is relatively easy for hackers to take over connected devices and lie dormant before misusing those assets as part of a bigger hack or distributed denial of service attack at a later stage.
“The cyber threat is real and it is growing. Any business that is connected to the internet needs to take responsibility for cyber security at board level and ensure they are doing everything they can to ensure they don’t expose their people, assets, customers and business partners to greater risk. A modest investment in next generation firewalls, unified threat management devices and intrusion detection makes a lot of sense for most businesses today.”