Despite the well-known risks, a significant portion of respondents also admitted to conducting financial transactions over public Wi-Fi networks, which are notoriously less secure than private networks. Shockingly, a quarter of those surveyed have accessed their bank accounts on public Wi-Fi, while almost a third have used their credit or debit cards in similar circumstances. What’s more, many of these individuals forego basic security measures such as antivirus software and VPNs, further increasing their exposure to cyber threats
In today’s digital age, where convenience often trumps caution, many individuals unknowingly put themselves at risk of cyber attacks. From weak passwords to careless online behavior, the opportunities for hackers to exploit are plentiful. A recent survey conducted by Security.org sheds light on some alarming trends among consumers when it comes to safeguarding their financial information online.
According to the survey, nearly half of respondents admit to using the same passwords across multiple online accounts, including sensitive ones like banking and social media. Even more concerning, a quarter of participants confessed to never changing their online banking passwords, leaving their accounts vulnerable to exploitation.
“Almost all the companies out there, startups or not, are dealing with customer data and it has become crucial to protect it now more than ever. As a startup, we pursue a proactive approach toward data breaches by deploying strong security measures such as firewalls, encryption, and intrusion detection systems to shield from cyber attackers. We impose strict access control rules and multifactor authentication in order to prevent unauthorised accessAdditionally, we use state-of-the-art data encryption technologies for our customers. This includes installing the role-based access control (RBAC) feature to restrict any third party who has not been authorised to access the data beyond a certain access point.
We also believe it is crucial to conduct periodic systems security audits and vulnerability assessments to discover and correct possible weaknesses in our systems.Cybersecurity preparedness is top priority for us and all businesses in general. Over the last decade there has been an increase in the number of cyber attacks to gather consumer data, and it has affected businesses at scale. The biggest reason is, A data breach can elevate consumer risk of identity theft and fraud.
These recurrent cyber attacks have put businesses that collect user data in a spot, and falling short of protecting user data can cost businesses their users’ trust and faith in the products.In a highly competitive market where there is a customer acquisition cost, cyber attacks are adding customer attrition costs – affecting businesses bottom line. With each lost customer, businesses face financial losses, and reputational harm.” said Vaibhav Kaushik, Co – founder & CEO, Nawgati
Despite the well-known risks, a significant portion of respondents also admitted to conducting financial transactions over public Wi-Fi networks, which are notoriously less secure than private networks. Shockingly, a quarter of those surveyed have accessed their bank accounts on public Wi-Fi, while almost a third have used their credit or debit cards in similar circumstances. What’s more, many of these individuals forego basic security measures such as antivirus software and VPNs, further increasing their exposure to cyber threats.
The consequences of such lax security practices can be dire. A quarter of respondents who reported experiencing a data breach revealed that they store credit card information on their personal devices, and nearly a third have accessed their bank accounts from devices that aren’t their own.
Security.org emphasises the importance of adopting robust security measures to mitigate these risks. This includes using unique and secure passwords, avoiding financial transactions on public Wi-Fi networks, and leveraging security software like antivirus programs and VPNs.
However, it’s not just individuals who are at risk. Organisations that fail to prioritise cybersecurity are also vulnerable to data breaches. Ryan McGonagill, CMO for Security.org, provides valuable insights on how companies should respond to such incidents.
“In the wake of rising data breaches, it’s imperative for the AI industry as a whole to prioritise data privacy and implement robust governance framework. This necessity goes beyond the boundaries of any single entity and requires a collective effort to protect the sanctity of individual privacy and the integrity of generative AI systems. To achieve this, the industry must adopt advanced encryption techniques, ensure regular security audits, and rigorously adhere to international data protection regulations. One simple yet practical approach is to leverage private large language models and invest into open source generative AI technologies which can fit and run in enterprise’s existing IT infrastructure and adhere to IT security policies. The objective is to harness the transformative power of generative AI responsibly, with a focus on ethical usage that includes maintaining transparency, accountability, and prioritising data privacy. Establishing these practices will not only safeguard against breaches but also foster public trust in AI technologies, paving the way for broader adoption and secure applications in the future”.highlights Vijay Navaluri, Co-Founder & CCO, Supervity
The Federal Trade Commission (FTC) recommends a three-pronged approach for businesses dealing with data breaches: securing systems, addressing vulnerabilities, and notifying relevant parties. This comprehensive strategy aims to contain the breach, prevent further attacks, and mitigate the impact on affected individuals and entities.
“Start-ups today realise the importance of being thoroughly prepared in cyber defence and in response strategies. Breaches don’t just affect data; they threaten a company’s operations, finances, and their reputation as well as opening the company to legal liability. A data breach can cause significant financial strain due to forensic investigation costs, possible fines, and the negative impact on customer trust and future opportunities.’Human error’ is a single largest factor in cybersecurity incidents. This highlights the need to build a culture of vigilance among all start-up team members. As much as 95% of cybersecurity incidents can be traced to human mistakes. So, it is imperative for start-ups to educate their teams and implement stringent cybersecurity practices.Startups in India and around the world are implementing several measures such as forming incident response teams, deploying firewalls and intrusion detection systems, regular data backups, and using antivirus software. It is also critical to ensure end-to-end encryption for data in transit and ensuring all software within the organization is regularly updated.A less commonly used tool is cyber liability insurance for start-ups. Post an attack; this can be a lifeline for young ventures to help recover their reputation and financial losses. Yet, this is unavailable in India for small and medium businesses.However, preparation is not just about having the right tools and policies in place but also about creating a culture that understands the importance of cybersecurity risks and encourages continuous learning and vigilance. Effective cybersecurity is not a static goal but a continuous process of adaptation and improvement, a lesson that startups are now increasingly learning”.emphasised Sajju Jain, Harvard Alumni & Start-up Coach
Key steps in responding to a data breach include securing physical areas related to the incident, conducting thorough internal investigations, collaborating with forensic experts to address vulnerabilities, and implementing a transparent communication plan for all stakeholders.
Ultimately, the key to navigating a data breach successfully lies in swift and decisive action, coupled with transparent communication and a commitment to remediation. By prioritising cyber security and adopting proactive measures, both individuals and organizations can reduce their susceptibility to cyber threats and safeguard their valuable information.