[et_pb_section fb_built=”1″ admin_label=”section” _builder_version=”3.22″][et_pb_row admin_label=”row” _builder_version=”3.25″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”][et_pb_column type=”4_4″ _builder_version=”3.25″ custom_padding=”|||” custom_padding__hover=”|||”][et_pb_text admin_label=”Text” _builder_version=”4.9.1″ background_size=”initial” background_position=”top_left” background_repeat=”repeat” hover_enabled=”0″ sticky_enabled=”0″]<\/p>\n
![\"\"](\"http:\/\/kinetics.co.nz\/wp-content\/uploads\/2020\/07\/garmin-port.jpg\")
By now, its well understood that hackers and cyber-criminals are busy and it\u2019s only a matter of time before they hit you. They will keep trying and trying and whether they succeed, or whether your defenses work, the next attempt will follow quickly.<\/p>\n
We recently had a client ask “why is multi-factor-authentication (MFA) important?”<\/em> We were able to show them the attempts to hack their Microsoft account that had happened in the last few days \u2013 we were all shocked by the quantum<\/strong> and it highlighted how vital this protection is. It also highlighted how protections that used to seem a little excessive are now the bare minimum.<\/p>\n So in that context, we all know that hackers are more determined, more sophisticated and more prevalent than ever.\u00a0 You can mitigate your risk and make your organisation safer, but you can\u2019t eliminate it. One day, the hackers will get through.<\/strong><\/p>\n Under the new Privacy Act 2020, organisations now have an obligation to notify stakeholders and the Privacy Commission. Ultimately, this is an exercise in crisis management. One of the lessons I have learned over the years is, when in crisis, own it. It\u2019s tempting to downplay it or be a bit of a Pollyanna, but that generally makes things worse as you lose trust with your audience.<\/p>\n That\u2019s the lesson from Garmin. This is a worldwide business that most of us will recognise from their sporting electronics and GPS solutions. If you haven’t seen already, check out the drama they are going through… https:\/\/www.techrepublic.com\/article\/experts-devastating-ransomware-attack-on-garmin-highlights-danger-of-haphazard-breach-responses\/<\/a> and https:\/\/www.bbc.com\/news\/technology-53553576<\/a><\/p>\n It seems they were aware of the risks and impacts at a theoretical level. They understood there was a liability and an obligation. However, media reports tell a story of that not connecting with the right actions when they fell into the hands of a threat operator with the sinister name of \u201cEVIL CORP\u201d<\/strong>. These threat actors started targeting them and dismantling their defences piece by piece.<\/p>\n There were smaller scale attacks that gained partial access to various parts of their infrastructure, and these laid the platform for a larger scale attack that occurred subsequently. A co-ordinated response to the earlier attacks might have avoided disaster.<\/p>\n In the meantime, if you are relying on their products to help you track your fitness or find your way, we hope you are back online soon! We note the BBC is reporting that the company is, even now, being coy about the attack and being a little opaque. Our view is that we need to take any shame away from these incidents, to recognise that even the best are vulnerable and that even they can only mitigate the risk. By sharing and learning, maybe we can start to get ahead of these cyber criminals!<\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":" What should you do when \u2018Evil Corp\u2019 comes to call?\u00a0 (Yes, that\u2019s a real name.) By now, its well understood that hackers and cyber-criminals are busy and it\u2019s only a matter of time before they hit you. They will keep trying and trying and whether they succeed, or whether your defenses work, the next attempt […]<\/p>\n","protected":false},"author":5,"featured_media":4872,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"Organisations need to have a plan.<\/h2>\n
![\"\"](\"http:\/\/kinetics.co.nz\/wp-content\/uploads\/2020\/07\/unnamed.jpg\")
<\/p>\n[wow_colorme]What should you do when \u2018Evil Corp\u2019 comes to call?\u00a0 (Yes, that\u2019s a real name.)[\/wow_colorme]<\/h2>\n
By now, its well understood that hackers and cyber-criminals are busy and it\u2019s only a matter of time before they hit you. They will keep trying and trying and whether they succeed, or whether your defenses work, the next attempt will follow quickly.\n\nWe recently had a client ask \"why is multi-factor-authentication (MFA) important?\"<\/em> We were able to show them the attempts to hack their Microsoft account that had happened in the last few days \u2013 we were all shocked by the quantum<\/strong> and it highlighted how vital this protection is. It also highlighted how protections that used to seem a little excessive are now the bare minimum.\n\nSo in that context, we all know that hackers are more determined, more sophisticated and more prevalent than ever.\u00a0 You can mitigate your risk and make your organisation safer, but you can\u2019t eliminate it. One day, the hackers will get through.<\/strong>\n[wow_colorme]Organisations need to have a plan.[\/wow_colorme]<\/h2>\nUnder the new Privacy Act 2020, organisations now have an obligation to notify stakeholders and the Privacy Commission. Ultimately, this is an exercise in crisis management. One of the lessons I have learned over the years is, when in crisis, own it. It\u2019s tempting to downplay it or be a bit of a Pollyanna, but that generally makes things worse as you lose trust with your audience.\n\nThat\u2019s the lesson from Garmin. This is a worldwide business that most of us will recognise from their sporting electronics and GPS solutions. If you haven't seen already, check out the drama they are going through... [wow_colorme]https:\/\/www.techrepublic.com\/article\/experts-devastating-ransomware-attack-on-garmin-highlights-danger-of-haphazard-breach-responses\/<\/a>[\/wow_colorme] and [wow_colorme]https:\/\/www.bbc.com\/news\/technology-53553576<\/a>[\/wow_colorme]\n\n
\n\nIt seems they were aware of the risks and impacts at a theoretical level. They understood there was a liability and an obligation. However, media reports tell a story of that not connecting with the right actions when they fell into the hands of a threat operator with the sinister name of \u201cEVIL CORP\u201d<\/strong>. These threat actors started targeting them and dismantling their defences piece by piece.\n\nThere were smaller scale attacks that gained partial access to various parts of their infrastructure, and these laid the platform for a larger scale attack that occurred subsequently. A co-ordinated response to the earlier attacks might have avoided disaster.\n\nIn the meantime, if you are relying on their products to help you track your fitness or find your way, we hope you are back online soon! We note the BBC is reporting that the company is, even now, being coy about the attack and being a little opaque. Our view is that we need to take any shame away from these incidents, to recognise that even the best are vulnerable and that even they can only mitigate the risk. By sharing and learning, maybe we can start to get ahead of these cyber criminals!","_et_gb_content_width":"","footnotes":""},"categories":[4],"tags":[],"class_list":["post-4867","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"_links":{"self":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/4867","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4867"}],"version-history":[{"count":0,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/4867\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/"}],"wp:attachment":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4867"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4867"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4867"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}