We are delighted to announce the arrival of our brand new CRIBB Cyber Security service catalogue, which you can view in PDF format by using the link further down the page.
Detailing the services we will be offering clients for the next 12 months, this handy guide is essential for those concerned about Cyber Security – and let’s face it, that is increasingly starting to include the vast majority of us…
Just this week, in fact, it was revealed that a company in the US had recently been the victim of a cyber-attack to the tune of $8 million when a seemingly innocuous email request to the CFO resulted in a payment being made under false pretences.
This is known as ‘Business Email Compromise’, an act where cyber-criminals use trickery and social engineering to spoof the email address of a company executive before submitting a request to an unsuspecting employee.
CRIBB Cyber Security’s Technical Director (Certification Auditor & International DPO) Patrick Carolan believes that Business Email Compromise is something we should be acutely aware of right now:
“It’s a growing trend this year particularly in the US, with the FBI confirming that the number of scams taking place is very much on the up. In fact, over the past few years they have accounted for losses worldwide of more than £20 million”.
“BEC is an incredibly expensive problem in cyber security and it is one that is definitely accelerating. Just last month there was a huge takedown operation where almost 300 suspected scammers were arrested across 10 countries. It is vitally important to take your own cyber security efforts very seriously indeed, and that is exactly where we can help.”
Business Email Compromise is very likely here to stay, given the fact that email spoofing is simple and can be achieved using any number of free-to-use online services.
Here at CRIBB Cyber Security we encourage all of our clients to maintain a high level of awareness regarding BEC attacks, not to mention a wide range of other potential risk factors. Our new service catalogue therefore contains a wide range of solutions and services:
(Assisted) IASME Governance ‘STD’ Certification
(Audited) IASME Governance ‘GOLD’ Certification
Cyber Essentials Plus Certification
CMCA – Cyber Maritime Assurance (read more)
Unauthenticated Penetration Testing
Data Protection Consultancy
PCI DSS Consultancy
Cyber Security Consultancy
IG Adviser Assistance
DPO as a Service (DPOaaS)
Software Licence Compliance
Maintenance Support Services
Technology is integral to the way we live and work these days and as a result, there will unfortunately always be those seeking to prey upon the weaknesses inherent in any technical system or set-up. Working in partnership with CRIBB Cyber Security can help you to be as prepared as possible for attacks and mishaps, with our vast years of expertise and experience proving invaluable for clients both large and small.
You can view our new Service Catalogue here, or alternatively feel free to contact us directly for further information.
TOP TIP: A simple way to help prevent this type of attack is to agree in your weekly or monthly Finance meetings a keyword which should be placed in the subject line of any email from anyone requesting a payment to be made. For example, you could use a subject line like this: “Please pay urgently $8m to xyz company – Marmalade”. Agree the word verbally and ensure anyone in the company with the authority to request a payment is aware. Also double-checking via mobile phone is advisable as hackers can sometimes even intercept a real time email.