Cyber Threats Not Addressed by Companies in the Philippines



A great number of us are not aware of cyber threats and what they really are. It's time that we get to know what's going on since we're now more into online transactions and studies.


According to CISCO 2018 Asia Pacific Security Capabilities Benchmark Study, companies in the Philippines do not address nearly half of the legitimate cyber threat alerts they receive.


With the survey, 42 percent say they receive more than 5000 alerts each day. While companies in the Philippines rank the lowest in Southeast Asia among those receiving more than 5,000 alerts per day, the real challenge lies in what comes after the alerts is received, and how many are actually investigated. 

Studies show:
  • On average just 50 percent of the alerts received are investigated by companies in the Philippines.
  • On average, only 30 percent turn out to be legitimate
  • 51 percent are taken into action and corrected.
  • 79 percent of respondents saying their organization has suffered a breach in the past year.
This suggests that more work is needed to help companies and security professionals in the Philippines to undertake the fast cyber threat landscape.

Because of the cyberattacks, it has a compelling financial impact. Here shows their loss for the past twelve months that includes costs from lost revenue, loss of customers, and out of pocket expenses, etc:
  • 35 percent say it cost them US$500,000 or more.
  • 25 percent say the cost was US$1 million or more.

Ïn the Philippines, digital transformation has been a favourite theme for consumers, businesses, and the government. While we have seen many benefits from digital innovation and adoption, it is important to ensure that we have the right infrastructure, processes, and technologies in place that continue to enable and empower digital growth. The ability to tackle the cybersecurity threat is critical on that front,"says Karrie Ilagan, Managing Director for Philippines at Cisco.

Äll stakeholders need to work together in a coordinated manner to achieve this. Businesses need to raise awareness about the issue, have proper processes in place and deploy the right technologies to help identify, block or address any attacks. We need strict regulations that deter malicious actors from taking the risk of launching such attacks. Finally, we need to develop local cybersecurity talent so we have the manpower to support the country's digital drive in a sustainable manner,"she adds.

Cyberattacks are starting to evolve from just targeting IT infrastructure to attacking operational infrastructure, intensifying the challenge for companies. According to the survey:
  • 19 percent of respondents sat they have already seen cyberattacks on their operational infrastructure.
  • 35 percent said they expect similar attacks to take place on them within the next one year.

Giving the growth scale of cyber threats, respondents say they expect scrutiny of their security policies to increase over the next one year from all stakeholders, especially their customers who are keen to ensure their data is protected. Among those surveyed, 76 percent say they expect increased scrutiny from customers. Privacy concerns are also delaying sales for the companies, with 66 percent of respondents saying such concerns are adding time to the sales cycle.

"When it comes to cyber security, it is no longer a case of a company needing to protect just its own IT infrastructure. Today, business partners, customers, and employees expect a company to keep their data secure. With stringent regulations like the European Union's General Data Protection Regulation (GDPR) coming into force, the pressure on companies to have the right policies, technology and resources in place will only increase. Those who lag behind run the risk of not only facing high financial penalties, but also losing the the trust of customers,"says Stephen Dane, Managing Director of Security for Asia-Pacific, Japan and China at Cisco.

The use of multiple vendors and products is making the challenge more complex. The study shows:
  • 39 percent of surveyed organizations work with more than 10 security vendors.
  • 41 percent use more than 10 security products or solutions.
This creates complexity and increases vulnerability, as having different security products, can lengthen the time to identify and contain a breach. The study highlights that companies are already facing this issue, with 97 percent of respondents saying they find it challenging to orchestrate multiple vendor alerts.

To put this in context, it is estimated that an almost instant detection of a cyber security breach within a large enterprise costs the business US$433,000. If detection is delayed by more than a week, this figure triples to an average US$1,204,000.


Comments

Popular posts from this blog

Asia Digital Marketing Conference 2016

Color Game Jackpot: A Lone Winner Takes Home 303 Million Pesos!

Pag-IBIG Loyalty Card Discounts and Rewards