2019 has been the year of the data breach with over 10 billion records estimated to have been leaked. The news headlines have been flooded with unfortunate attacks with enterprises on both sides of the Atlantic suffering. Whether it’s ransomware, phishing or endpoint attacks, there’s always something on the horizon waiting for its turn in the spotlight. Yet, with 2020 now on our doorstep, cyber security professionals are concerned with what new threat vectors may lie around the corner as we enter the next decade, especially with new legislation becoming enforced.
On the topic of legislation, 3rd January 2020 will be the formal start date of the California Consumer Privacy Act (CCPA) which is a bill passed to enhance privacy rights and consumer protection for residents in the state of California. But what else could 2020 bring in terms of regulation changes? Stu Sjouwerman, CEO at KnowBe4, expects there to be “federal legislation to be passed that makes any ransomware infection of more than 500 records, automatically a data breach with all the resultant disclosure requirements and legal expenses.” Given there have been over 620 ransomware attacks against government agencies, healthcare providers and schools in the first nine months of 2019, the threat of ransomware will continue to plague enterprises. If a bill that was described by Stu was approved and resulted in fines for businesses affected, this could prompt enterprises to take cybersecurity and awareness training seriously to help reduce the overall threat of a ransomware attack.
Security awareness training will also reduce the number of employees suffering from business email compromise (BEC), which can result i ..
Support the originator by clicking the read the rest link below.
