Story image

Physical, digital and behavioural security the key to cyber protection

07 Jul 16

Singapore's new Personal Data Protection Act (PDPA) may not be enough to cover all aspects of data security, a new white paper by Shred-it says.

The PDPA received 3700 complaints about data leaks since July 2014, with additional research stating that more than 20% of fraud cases equal at least S$1.37 million, says the white paper. With a typical organisation losing 5% of revenues, it can be damaging for small businesses in particular.

The white paper, titled Identity Theft - What the Future Holds, states that card theft affected 28% of the population over the past five years. Card theft is closely linked to identity theft.

Even stolen mobile phones can expose confidential information to unwanted access. Leaving paper in a rubbish bin or on messy office desks also jeopardises organisational security.

Data security has used digital platforms to prevent outside hacking attempts, however the white paper states that 58% of breaches are committed by employees, whether intentional or by accident. As a result, external threat protection is useless. Social hacking is also a threat that leverages employee gullability to access sensitive information, instead of committing a full-scale external attack.

The white paper suggests that cybersecurity should be a well-rounded approach, managing security and people to better protect organisations against threats.

"We believe every business would do well to take a holistic approach to data security, which involves taking into account physical security, digital security and human behaviour," says Duncan Brown, General Manager of Shred-it Singapore.

"Companies need to focus on methods to protect both physical and digital security, while at the same time putting processes in place to ensure employees are not susceptible to accidental breaches or phishing scams while still being able to carry out their duties without too much red tape," Brown continues.

The white paper suggests shredding physical documents as well as implementing digital data protection.

Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
Oracle Java Card update boosts security for IoT devices
"Java Card 3.1 is very significant to the Internet of Things, bringing interoperability, security and flexibility to a fast-growing market currently lacking high-security and flexible edge security solutions."
Sophos hires ex-McAfee SVP Gavin Struther
After 16 years as the APAC senior vice president and president for McAfee, Struthers is now heading the APJ arm of Sophos.
Half of companies unable to detect IoT device breaches
A Gemalto study also shows that the of blockchain technology to help secure IoT data, services and devices has doubled in a year.
Huawei founder publically denies spying allegations
“After all the evidence is made public, we will rely on the justice system.”
Malware downloader on the rise in Check Point’s latest Threat Index
Organisations continue to be targeted by cryptominers, despite an overall drop in value across all cryptocurrencies in 2018.
IoT breaches: Nearly half of businesses still can’t detect them
The Internet of Thing’s (IoT’s) rapid rise to prominence may have compromised its security, if a new report from Gemalto is anything to go by.