Cyber criminals are are turning more to connections inadvertently opened up by unsuspecting employees, making it more difficult for IT departments to control security, says ANDREW WILSON, CEO at LucidView.
In today’s always-connected world, companies face a new wave of threats as cybercrime continues to escalate. Cyber security is becoming more challenging as businesses are having a tough time trying to address growing threats while maintaining focus on their core business. These evolving threats are more and more frequently external cyber criminals using connections inadvertently created from within the organisation by unsuspecting users. These criminals then piggy back off the connection to gain remote access into the organisation, circumventing the organisation’s Firewall Policy, thereby placing the confidentiality, integrity and availability of the organisation’s data at extreme risk.
Most cyber breaches occur as a result of employee behaviour and all it takes to compromise an organisation’s network security is one employee. One accidental malware download from playing an online game or clicking a phishing link and all of the organisation’s databases containing sensitive customer data could be at risk of encryption by external ransomware attackers. These criminals more often than not, are in locations where there are no consequences to their activity aside from their own profit and causing embarrassment to the organisation.
Visibility as a key threat intelligence tool
Without the ability to have a meaningful view of your organisations network traffic it is impossible to identify suspect connections into and out of an organisation’s network. Employees frequently and unintentionally open the organisation to external risks by misusing and often abusing the Internet resources, going as far as to use these resources to download their favourite series and movies from torrenting sites.
The lack of meaningful visibility leads to huge potential security risks, impacts the performance of this key resource and results in a loss of productivity to the organisation. The Internet is a shared resource and its misuse and abuse negatively impacts the performance of business-critical applications increasing risk to the overall functioning of the organisation. Yet, how can this be identified and managed without massive expense and skilled technical resources?
It’s time for businesses to take charge of their shared resources by gaining visibility and insight into its usage in order to manage resource performance, enhance employee productivity and maintain security integrity by reducing external threats brought into the organisation using internal sources, thus rendering firewall policies ineffective. To combat both external and internal risks requires a holistic approach to security, as well as the right technological tools to help businesses to manage both intentional and unintentional threats within the organisation itself.
The risky business of connectivity
Most cyber-attacks happen in order to steal confidential information through the use of malware like worms, Trojan horse viruses and phishing. Businesses are targets for cyber intruders for the simple reason that they hold valuable customer information. This personal information has a price tag, and stealing data (or even holding it ransom) is the perfect crime without consequence. In addition, we are seeing more and more cases reported in the media which means the number of companies being hit by this type of threat is likely significant and growing daily. These type of threats including Malware and Phishing are most frequently brought into the network inadvertently by users or employees accessing software through the web, allowing malicious attackers access to the internal network without their knowledge.
Because the employee acted in such a way that sensitive data was compromised and whether or not this was accidental, the effect is the same – your organisation’s security is now compromised. The organisation is now at risk of contravening laws such as piracy, business critical applications become unavailable due to slow response times and performance issues are brought about by users abusing the Internet. Worse still, your organisation’s sensitive data is now threatened by malicious cybercriminals who can hold it to ransom, costing you money and compromising your reputation.
It’s time for meaningful visibility
With so many threats businesses are faced with today, it’s tempting to panic and feel the need to block employees from using the Internet to access anything that isn’t work-related. However, that is not the solution. Business is highly dependent on the Internet, email and Wide Area Networks (WAN). Instead, companies should leverage the advantage of companies specialising in Big Data analysis and Artificial Intelligence (AI) solutions where emphasis is placed on visibility. This is particularly relevant when it comes to identifying connection types, rather than those solutions that focus only on blocking types of content or certain activities based on known signatures and standard lists. Companies should look towards solutions that provide threat intelligence through visibility at a network router level on unsecure or unwanted connections, in order to monitor and provide reporting on network resources and their usage.
Simple solutions to complex problems
Fortunately, businesses don’t have to go it alone as there are already technology providers out there that can proactively identify threats and block them – before they have a chance to do damage. Such services are subscription-based and deliver easy-to-understand reporting functionality. Inexpensive and uncomplicated, all that is required to make use of such services is basic easy to access and easy to use hardware that is compatible with certain analytics software. This analytics software makes use of an analysis engine to crunch big data numbers and sift through network activity and connectivity logs for anomalies, identifying all the cyber threats that businesses would want to avoid: from malware, ransomware, phishing attempts and Distributed Denial of Service (DDoS) attacks to engagement with explicit, illegal and pirated content. Once these threats have been identified, they can be neutralised and removed.
Such technology is a total game changer, as it empowers the Chief Information Officer (CIO) with all the tools needed to monitor network traffic and establish whether employees are abusing network resources and ascertain the impact of such abuse on productivity. It also allows CIOs to maintain an open Internet policy, as well as accommodate employee demands to bring their own devices, without having to compromise on security, network resource and application performance or employee productivity. It’s clear that it’s time for businesses to stop over-complicating the issue of cyber security and gain proper visibility of their risks. When businesses have a meaningful view of their Internet gateways and the right technology in place, they’re able to see the threats before they materialise and that can make all the difference.
Showmax launches in Nigeria
Basketmouth and Bovi are the hosts of an exclusive Big Brother Naija recap show, Big Brother Naija Hot Room, as Showmax launches in Nigeria.
Showmax has launched its video-on-demand service in Nigeria. The video streaming service features a dedicated slate of Nigerian TV shows and movies, international hit series, Hollywood blockbusters, and a Big Brother Naija partnership with live streaming and exclusive new BBNaija shows.
The launch brings two important firsts: the first time a wide range of popular Nigerian series can be binged from the beginning, and a partnership with Big Brother Naija featuring live streaming of the Sunday night evictions as well as two new BBNaija shows that are exclusive to Showmax. One of the new shows will be hosted by comedians Basketmouth and Bovi, who will provide commentary on happenings in the Big Brother Naija house.
“We’re aiming for the sweet spot that other services may have missed,” says Niclas Ekdahl, CEO of MultiChoice Group’s Connected Video division. “Taking a generic service and tacking on a few Nollywood movies won’t cut it, so we’re coming in with a strong mix of bang up-to-date Nigerian shows, international hits and favourites from across Africa, and now, as something completely new: on-demand and live Big Brother Naija content.”
Showmax will live-stream all Sunday eviction episodes of Big Brother Naija as well as the finale, and recordings of the nomination shows will be posted on Tuesdays. In addition to this, two brand-new shows, exclusive to Showmax, have been produced. Big Brother Naija Extra View is a 25-minute compilation of unseen footage and will be added to the site daily from Tuesday to Saturday. Big Brother Naija Hot Room is a 25-minute satirical commentary on the week’s main drama and action, hosted by legendary comedians Basketmouth and Bovi, with new episodes coming every Sunday evening ahead of the evictions.
The following shows will be added daily, as they air on Africa Magic channels, with all past episodes available to binge from the beginning:
– Tinsel, one of Nigeria’s longest running TV series and Africa Magic Viewers Choice Best Drama 2017
– The Johnsons, featuring City People Award winners Olumide Oworu and Charles Inojie
– My Flatmates, starring 2018 Savanna Pan-African Comic of the Year Basketmouth
The new Showmax service will feature hundreds of Nollywood movies and thousands of TV show episodes and Bollywood shows. Telenovelas will also be part of the lineup, as will hits from the rest of Africa like Kenya’s Supa Modo, winner of 50 international awards, and South Africa’s big Africa Movie Academy Awards winner Five Fingers For Marseilles.
The lineup of international shows on the new service includes Chernobyl, Vikings, Power, Game of Thrones, True Detective (starring Mahershala Ali), Insecure, Billions, Ballers, and Luther (starring Nigerian BAFTA winner Wunmi Mosaku opposite Idris Elba). The latest episodes of Big Little Lies are added weekly.
There’s also a major focus on kids, with shows like Paw Patrol, PJ Masks, and Doc McStuffins.
To get Showmax, visit www.showmax.com. Showmax has a risk-free trial: once signed up, cancel within the first 14 days and pay nothing. Once the 14-day free trial is over, the cost is N2,900 per month.
Want a competitive edge? Unlock your business data
By Dr YUDHVIR SEETHARAM, head of analytics, insights and research for FNB Business
The businesses which will be able to count themselves amongst the most successful in the coming years will be those that have succeeded in fully harnessing the power of data. But while you’d be hard pressed to find many businesses that are not currently building or acquiring systems and technical resources aimed at unlocking the value of data, the same priority does not appear to have been given to embedding data-driven organisational cultures.
This failure to focus on culture in parallel with technology not only reveals a lack of understanding of the symbiotic nature of the relationship between the two, but also presents a real risk that the massive investments being made into data might not deliver the returns that companies are hoping for.
The problem lies in the fact that while data analytics and processing are relatively exact sciences, a data-driven culture is significantly more difficult to define. So while company owners, managers and executives may not be able to tell you exactly how data analysis works, they can tell you what they want to get out of it. The same isn’t true of their understanding of a data-driven culture, and so the creation of such a culture is either assigned a lower strategic priority, or simply handed off to the organisation’s Chief Technology Officer, Chief Data Officer or HR executive.
This approach is very unlikely to unlock the full value of being data driven. To do that, every person in the organisation has to recognise the importance of being fully data-driven as a competitive differentiator and embrace the need to build a data-driven culture within that organisation.
This is by no means a small ask. Apart from the significant challenges – both technical and human – that a business is bound to face en route to becoming truly data-driven, it’s likely that every person in a company has little to no idea of what the concept of ‘culture’ actually means in a company, let alone what a data-driven culture looks or feels like.
And that’s why the process of transforming a culture to be data driven must begin with the end in mind. That, of course, begs the question: What is a data-driven culture? Unfortunately, there is no simple answer as every business is different and will have different culture parameters. However, it is relatively safe to say that, irrespective of how businesses look or work, their data-driven cultures will have a few things in common.
For one, a data-driven culture will be built on the broad recognition of data as a vital, strategically essential business asset; one that allows the business to make well-considered decisions based on facts and figures rather than on intuition or past experience. Having a data-driven culture will also mean that the business fully recognises and embraces the ability of data and its application to empower all employees to perform their functions much more effectively. And lastly, a business will know that it has completed its transformation to a data-driven culture when it is able to identify and align its technical and business challenges and leverage data to solve both together.
When you consider these factors as characteristics of a data-driven culture, it becomes obvious that being data-driven is not solely a technical strategy. So, while it is important to recruit skilled and talented data scientists and technology professionals to give physical effect to the data-driven vision, trying to become data-driven in isolation from the business and all its other employees is almost certainly a recipe for failure. Which brings me to the second obvious question that will, or at least should, be asked by every business that wants to be able to unlock the full potential of data as a transformative, business building asset. And that is: How do we do it?
This, too, is a simple question without a simple answer. Most of the global organisations that are considered to have succeeded in becoming data driven still admit to being in the learning phase when it comes to embedding a data-driven culture. FNB is no exception. But we remain committed to the process and, I believe, have gained some valuable insights into the steps that businesses, and especially financial services organisations, need to take to move closer towards achieving a data-driven culture.
The first of these is to start by transforming thinking. You need to get the entire leadership body to commit to supporting and promoting a data-driven culture. Even if very few of them understand what that means, a good first step is to simply get board and executive management agreement to being willing to embrace a culture of openness and collaboration.
Then, with that leadership support, start to communicate with the entire organisation to create an understanding of the meaning and value of being data driven, both for the company and its employees and customers. Ultimately, any shift in culture is only possible when culture is mainstreamed. It cannot be the domain or responsibility of HR. So, an organised and strategic education campaign is essential to explain the benefits that embracing a data-driven culture will provide.
The next step is to commit to democratising data. When employees have access to data, its impact becomes obvious. Break down silos and protectionism. Make data, and its analyses, readily available, understandable, and transparent across the organization.
Obviously, it’s dangerous to just give everyone in the organisation unfettered access to all its data, since they probably don’t have the skills or tools to make use of that data. And that’s where the real culture shift happens, or must happen. Businesses need to focus on building collaborative, multi-functional teams. While tech experts may understand the technology and systems, data is first and foremost a business asset. So a data-driven culture has to be driven by the business. And since it’s unlikely that you’re going to find too many employees with a balanced combination of business and data skills, you need to build your data-driven culture on collaborative teams in which every team member is willing to acknowledge what he or she doesn’t know, and work closely with teammates that do. This approach should also inform all future recruitment decisions. In a data-driven culture, you don’t recruit just for a vacancy, you recruit to make teams stronger.
Finally, be patient. Changing a company’s culture takes time, effort and commitment. Even when the leadership sets the example, the shift only happens through organic growth and evolution.
Realise that there are legacies that have to be changed. The technology legacy systems are actually the easy part because you can throw money at those. But human legacies around how things have always been done in the past are much more difficult to shift. But it must be done, because it is impossible to change to a data-driven culture if all your people are not willing to recognise and embrace data as a key success facilitator.
While the need to build these types of data-driven cultures is becoming increasingly obvious, the unexpected, and valuable, side effect of achieving such a culture is that it has the potential to massively enhance employee morale and productivity. That’s not just because data-based decisions are infinitely more effective than those based on hunches. It’s also because employees grow as people when the work they do has meaning.
Data has the ability to quantify the impact that each employee is having on the customers and the business. And when staff see the tangible value of the contributions they are making, they become far more connected to the company values and their own professional goals, and the result is incremental improvements in personal performance and, of course, bottom-line results.