Please wait, authorizing ...

Don't have an account? Register here today.


Employee errors, one of the main causes of cyberattacks on organizations


Latin America. Digitization and remote work have exponentially increased the risk due to the use of insecure connections, the use of personal devices and the disappearance of the perimeter. Now cyberattacks are increasingly aggressive, numerous, sophisticated, specific and targeted at employees, which is causing greater financial, social or reputational damage.

The challenge for Latin American organizations is not only the training of their workers to provide them with the necessary knowledge to prevent cyberattacks, but also to implement advanced security systems that intervene before employees have to make a decision.

According to the report "The Global Risks Report 2022", prepared by the World Economic Forum (WEF), 95% of cybersecurity problems have their origin in human error. Likewise, the WEF stated that 43% of cybersecurity incidents produced in companies have their origin in internal threats, intentional or accidental.

Oswaldo Palacios, Senior Account Executive for Guardicore (now part of Akamai), mentioned that employees continue to be a weak point for organizations and not because they consciously want it but that remote work has opened a door to cyber threats that were not previously considered or contemplated because computers did not leave companies. "There are several risk factors in IT operations, from the processes of access, protection and availability of information, to the correct execution of them but almost always cyberattacks are based on social engineering, that is, taking advantage of the naivety of the user", he added.

- Publicidad -

The Labor Outlook Report 2021 Latin America and the Caribbean prepared by the International Labor Organization (ILO) highlighted the low levels of adoption of digital technologies in the vast majority of small and medium-sized enterprises (SMEs) in the region associated, among other factors, with the lack of basic technological absorption skills (human resources, managerial and organizational skills) and investments in complementary assets that allow taking advantage of new technologies. Additionally, this research also highlighted that SMEs face, in relative terms, high risks in terms of security and privacy due to the lack of information, resources and expertise in the field.

According to the Guardicore expert, traditional perimeter firewalls designed for north-south traffic cannot deliver the control and performance needed to protect today's applications and dynamic workloads in organizations. "Technically, enterprises can use firewalls within the perimeter to implement a layered security model, but it is impractical for most enterprises due to the expense and amount of time required to configure and manage the necessary policies. As a result, today's enterprises need a better way to defend large volumes of east-west network traffic against cyberattacks".

The threat landscape and tools criminals use change too quickly, so it's ideal for technology to intervene before employees have to make a decision. In that sense, Oswaldo Palacios mentioned that Microsegmentation technology is an essential protection mechanism to stop the spread of malware within an organization. In fact, the White House in its statement "What We Urge You to Do to Protect Against the Threat of Ransomware" recommends Micro-segmenting networks, as it is one of the most effective ways to protect digital assets; by reducing the attack surface and encapsulating a threat, we can respond easier and faster to a contingency or even a zero-day attack.

The director of Guardicore (Akamai) stressed that Microsegmentation has three extremely important advantages:

1) Visibility. It is possible to see and control communication processes and clearly understand what the dependencies and traceability of applications are, having this visibility at layer 7 level we know exactly who is talking to whom.

2) Execution. A Microsegmentation tool allows us to make decisions based on the visibility at the process level that we are obtaining, with which we can create micro perimeters and any threat that leaks into our IT environment will be quickly detected and mitigated.

3) Security. By achieving the previous points, we can "reach" a zero trust scheme (Zero Trust) since now we understand 100% the behavior of our applications and who is accessing them, from where and at what time, with a granularity at the process level that is not had with elements such as Firewalls, IPS or Endpoints. "You can't protect what you don't know exists".

- Publicidad -

Finally, Oswaldo Palacios said that with the implementation of a solid, fruitful and successful Microsegmentation, organizations in Latin America will be able to counteract the effects of suffering some cyberthreat derived from human errors or malicious intentions of their employees.

Duván Chaverra Agudelo
Author: Duván Chaverra Agudelo
Jefe Editorial en Latin Press, Inc,.
Comunicador Social y Periodista con experiencia de más de 16 años en medios de comunicación. Apasionado por la tecnología y por esta industria. [email protected]

No thoughts on “Employee errors, one of the main causes of cyberattacks on organizations”

• If you're already registered, please log in first. Your email will not be published.

Leave your comment

In reply to Some User
Subscribe Here
Patrocinado por:
ConsorcioTec Logo

Webinar: Mejores Practicas para la Optimización de Sistemas

Importancia de la correcta automatización de plantas de agua helada con el objetivo de pasar al siguiente nivel, que es la optimización de los sistemas para obtener una mayor eficiencia energética y ahorro del costo operativo y de mantenimiento. Por: Camilo Olvera Rodríguez, Gerente de Ventas - México, ARMSTRONG FLUID TECHNOLOGY

Webinar: Enfriando el futuro: Las nuevas tendencias en refrigerantes para supermercados y almacenes Únete a nosotros en este emocionante Webinar sobre las últimas tendencias en refrigerantes para supermercados y almacenes. Descubre cómo mantener tus productos frescos de manera eficiente, mientras contribuyes a la sostenibilidad y cuidado del medio ambiente. En esta sesión, exploraremos las innovaciones más recientes en refrigerantes ambientalmente preferibles, incluyendo tecnologías avanzadas de enfriamiento. Aprenderás sobre las ventajas de adoptar estas nuevas soluciones, no solo en términos de eficiencia energética, sino también en la reducción de emisiones y el cumplimiento de regulaciones ambientales. Por: Guillermo Brandenstein, Sr Account Manager - Honeywell

Webinar: ¿Es adecuada la forma de vender en las empresas HVAC/R?

En esta presentación se tratarán puntos neurálgicos sobre cómo lograr vender sin necesidad de licitar, teniendo muy presente que el cliente no nos compre porque somos los más baratos sino porque somos su mejor opción. Por: Ing. Rolando Torrado, CEO - Rolando Torrado

Webinar: Válvulas de expansión electrónica

Tema: Válvulas de expansión electrónica ¿por qué reemplazar las válvulas termostáticas por las válvulas de expansión electrónica? Por: Fabio Pettena, Exportación de Full Gauge Controls En este webinar Full Gauge Controls va a presentar las ventajas de instalar válvulas de expansión electrónica en sistemas de frío con tips y gráficas que demuestran el ahorro energético.

Sesión 5: Refrigerantes para Chillers: La Enmienda de Kigali y los refrigerantes de bajo GWP

En esta sesión conocerás las últimas noticias relacionadas al uso de refrigerantes de bajo GWP en Chillers con base a la Enmienda de Kigali y su aplicación en diferentes regiones del mundo, principalmente en Estados Unidos y Latinoamérica. Edwin Echartea, Applied Product Manager, Latin America, Johnson Controls
Load more...

Ultimo Info-Boletin