Cybercriminals targeting employees'' wage and tax data: Verizon
The ransomeware attacks are moving into critical systems which encrypt file servers or databases, inflicting more damage and commanding bigger ransom requests. "Businesses find it difficult to keep abreast of the threat landscape, and continue to put themselves at risk by not adopting dynamic and proactive security strategies," said George Fischer, President of Verizon Enterprise Solutions
)
02:16 PM IST
Ransomware has become the most prevalent type of malicious software -- found in 39 per cent of malware-related cases -- as cybercriminals are now targeting HR departments to obtain personal data for the filing of fraudulent tax returns, a new report said on Tuesday. According to US wireless communications service provider Verizon`s 2018 Data Breach Investigations Report (DBIR), ransomware attacks have doubled since 2017 and now target business critical systems rather than just desktops. "Pretexting has increased over five times since 2017, with 170 incidents analysed this year (compared to just 61 incidents in 2017). Eighty-eight of these incidents specifically targeted HR staff to obtain personal data for the filing of fraudulent tax returns," the report, now in its 11th edition, said.
Pretexting is defined as the practice of presenting oneself as someone else in order to obtain private information. "HR departments across multiple verticals are being targeted in a bid to extract employees` wage and tax data, so criminals can commit tax fraud and divert tax rebates," the report added.
The ransomeware attacks are moving into critical systems which encrypt file servers or databases, inflicting more damage and commanding bigger ransom requests. "Businesses find it difficult to keep abreast of the threat landscape, and continue to put themselves at risk by not adopting dynamic and proactive security strategies," said George Fischer, President of Verizon Enterprise Solutions.
Employees are still falling victim to social attacks. Financial pretexting and phishing represent 98 per cent of social incidents and 93 per cent of all breaches investigated - with email continuing to be the main entry point (96 per cent of cases). "Companies are nearly three times more likely to get breached by social attacks than via actual vulnerabilities, emphasising the need for ongoing employee cybersecurity education," the report emphasised.
The 11th edition of the report included data from 67 contributing organisations, with analysis on over 53,000 incidents and 2,216 breaches from 65 countries. While, on average, 78 per cent of people did not fail a phishing test last year, 4 per cent of people did for any given phishing campaign.
"A cybercriminal only needs one victim to get access into an organisation," the report said. "One breach can have multiple attackers and we found the following: 72 per cent of attacks were perpetrated by outsiders, 27 per cent involved internal actors, 2 per cent involved partners and 2 per cent feature multiple partners," it added.
"Ransomware remains a significant threat for companies of all sizes," said Bryan Sartin, Executive Director, Security Professional Services, Verizon. Companies need to continue to invest in employee education about cybercrime and the detrimental effect a breach can have on brand, reputation and the bottom line, he added.
Get Latest Business News, Stock Market Updates and Videos; Check your tax outgo through Income Tax Calculator and save money through our Personal Finance coverage. Check Business Breaking News Live on Zee Business Twitter and Facebook. Subscribe on YouTube.
RECOMMENDED STORIES
)
Top 6 Largecap MFs with up to 39% Return in 6 Months: No. 1 fund has turned Rs 20,000 monthly investment into Rs 1,31,527
)
Power of Rs 13,000 SIP: How long will it take to turn Rs 13,000 monthly investment into Rs 5,00,00,000 corpus?
)
Top 5 Midcap Mutual Funds With Best SIP Returns in 7 Years: Rs 13,000 monthly SIP in No. 1 fund has led into Rs 31.02 lakh wealth
)
Rs 19 Lakh Lump Sum Investment in Mutual Funds: How many years can it take to create a Rs 1 crore, Rs 2 crore & Rs 3 crore corpus?
)
10 Stocks To Buy For Long Term: Analysts recommend largecap, midcap, smallcap scrips; Glenmark Pharma, TCS on the list
)
SGB Gold Bond vs Top Gold ETF: Which has given higher return on Rs 5 lakh investment in 5 years? See returns and calculations
)
8th CPC for Paramilitary Forces: How basic pay of BSF's SI, inspector, commandant, DIG & others can be revised at 2.28, 2.57 fitment factors
02:16 PM IST