Protecting your data to protect your company

 

Twenty years ago, cybersecurity was already a hot topic. Today, the problem continues to spread at an extraordinary rate, particularly in the wake of the events that have shaken the world over the last three years. “The lockdown associated with the coronavirus and the war in Ukraine have contributed hugely to an increase in online attacks", confirms Vincent Ceriani, Head of NRB Group’s Cyber Risk Services.

 

The threats are well known, as is the nature of the attacks. “Hacking and ransomware are the two trendy options, so to speak. For example, two of our clients have already been hacked during the first three months of this year", says Michaël Boeckx Chief Operations Officer - Infrastructure. “Malicious characters can take possession of data because updates have not been carried out regularly. Yet it’s a simple thing to do, but too many companies still don’t have that reflex. Everyone talks about cybersecurity but, in reality, we notice that there’s a real lack of knowledge in this area."

 

Obtaining the data can be done with a single click. “Imagine that a member of the secretariat, who’s not very security conscious, opens an email promising them they’ll win a super telephone if they give their name, telephone number and password. Like this hackers can access all the data and undertake whatever actions they want. A client told me recently that a hacker had stopped his company’s billing emails being sent, had edited them to include the hacker’s own account number and had then sent them out to the clients. You can imagine the consequences.”

 

Companies are responsible for any personal data they have at their disposal, whether it concerns their own personnel or their clients. The General Data Protection Regulation (GDPR) was passed in April 2016, but the general public is still not familiar enough with its contents.“Sometimes I get the impression that there are those who are only just discovering this law. If a hacker steals data, it’s the company that will be held responsible. A client recently explained to me that they had given a sheet of paper to their delivery drivers with customer details and the schedule. Strictly speaking that doesn’t pose a problem - unless the delivery drivers leave the sheet with the last customer because they don’t need it anymore. Then the customer ends up with all the other customers’ data (address, phone number, etc.) ", explains Vincent Ceriani.

 

The NRB Group invests in Cybersecurity and offers a complete service to its clients. Our experts can intervene on the legal and compliance level as well as on the technological level. Our company has a full package available, so as to be able to provide the best service for its clients.

 

• The group is active in preventing attacks from inside and outside the company. The results are already significant, including, in particular, better protection against ransomware and awareness campaigns launched throughout the company.
• Our experts are also specialised in detection, and carry out security audits of our clients, especially using “ethical hacking ". Based on their findings, they draw up a roadmap for security improvements.
• We help companies that have been victims of a cyberattack to recover their data and we offer them support concerning the regulations (GDPR).
• NRB is ISO 27001 certified, and our experts assist our clients in their own ISO 27001 certification.