By Jan van Vliet, VP EMEA, Digital Guardian
In spite of organisations’ efforts to double down on cyber security efforts, it seems that ransomware is making a comeback. Last year, financial services firms reported 819 cyber incidents to the Financial Conduct Authority (FCA), a significant increase on the 69 incidents reported the year before. Ransomware was named as the second most prolific type of attack and its resurgence is proving to be an ongoing and serious security challenge for financial institutions.
In late December 2019 currency exchange bureau Travelex became the target of a ransomware attack which disrupted services for many UK bank customers including RBS, Sainsbury’s Bank, First Direct, Virgin Money, and Barclays. Despite paying a $2.3 million ransom in Bitcoin, the company’s long-term survival is still in question.
As ransomware continues to cause havoc, more and more organisations are taking the advice of their cyber insurance provider and paying the ransom. Why? Because in many cases paying the ransom is much cheaper than trying to recover the lost data through other means.
What’s insurance got to do with?
Cybercriminals are becoming commercially smarter and much more ambitious. Alongside encrypting data, they’re also stealing it and threatening to release it on the Internet – thereby exposing organisations to significant regulatory, financial and reputational loss. Little wonder then that more and more organisations are resorting to cyber insurance in a bid to mitigate and protect against business losses.
But that, as it turns out, is contributing to a proliferation of ransomware. In many cases, organisations find that paying the ransom is a much cheaper option than trying to recover lost data – or dealing with the service interruptions that result during the recovery of backup files. The more ransomware victims use insurers to pay ransoms, the more criminals are encouraged to carry out ransomware attacks.
It’s the law of unintended consequences that’s proving to be both profitable and rewarding for hackers – while motivating a growing number of businesses and government agencies to purchase insurance policies.
With the global market for cyber insurance set to be £11 billion by 2022, according to RBC Capital Markets, it appears that cybercriminals aren’t unaware of the fact that when organisations conduct a cost-benefit analysis they often determine that paying a ransom demand and claiming on their insurance policy is preferable to rebuilding systems from scratch. Even if they have backups in place – because it can take up to a month or more to recover a full cloud backup.
What’s more, organisations are paying off cyber criminals with the full agreement of their insurers, for whom paying the ransom is cheaper than footing the bill for recovering the data themselves. Let’s take a look at the economics of how this works.
Last year, the municipal government for Lake City in Florida paid a ransom of around £350,000 via its insurance policy; the government itself was only liable for £7,500 policy excess, while its insurance firm Beazley paid the balance of the ransom. The decision was made on Beazley’s recommendation, because the prolonged recovery from data backups would have run into millions of dollars.
The pragmatism of the decisions taken are difficult to dispute; paying the ransom saved both the government and its insurance firm a significant amount of money, while ensuring the government could get back to work faster.
By contrast, when the city of Atlanta refused to pay a £42,000 ransomware demand it estimated that the costs associated with responding to the attack and recovering files was in the region of £6.8 million dollars.
Payment fuels demand
Emboldened by the knowledge that more organisations are resorting to insurance cover, cybercriminals are upping their game and demanding ever-higher sums. This should serve as a signal warning for enterprises, because recent estimates suggest that the average ransom payment currently stands at around £27,000 – representing a six-fold increase in the last 12 months alone.
While insurance companies will ultimately pay the price in the short term, the cost of cyber insurance is certain to keep escalating. What’s more, it appears that criminals are actively targeting organisations that they know have a cyber insurance policy in place.
Until businesses invest in better security systems of their own, or faster and more reliable data recovery technology becomes available, the current escalation of ransomware attacks looks set to continue for some time to come. For organisations that don’t want to find themselves negotiating with hackers – who may well be using payments to fund terrorism or organised crime – prevention as a first priority must be a better path to follow.
Study: 1 in 10 fintechs’ main priority for 2021 is survival
- FinTech Connect reveals that many fintechs simply want to survive the next year
- 44% of fintechs are focused on optimising business processes to improve efficiencies
- Over a third said they had launched new services addressing new demands
FinTech Connect, the trade show that connects the global fintech ecosystem, today revealed the priority for one in ten fintech firms over the next year is survival. The findings from FinTech Connect’s FinTech State of Play Benchmarking Report, which is based on a survey of 144 fintech professionals, explores the biggest industry issues of 2020 and looks forward to what 2021 has in store.
Impact of Covid-19
As remote working and living remains a priority to keep customers safe, fintechs have adapted their offerings. Although a number of other sectors including hospitality and travel have suffered as a result of the Coronavirus pandemic, fintechs remain confident that business will survive and even thrive.
- 40% said Covid-19 had accelerated their digital transformation model
- 36% said they had launched new services addressing new demand
- 34% said their growth had accelerated as a result of the pandemic
- 65% said that the remote working had driven innovation
The Wake of Wirecard
Despite the Wirecard scandal prompting industry soul searching and a review of regulation and governance practices, 83% of fintechs said the collapse had no impact on their own business. However, when fintechs are asked about the wider impact on the industry:
- 59% said it will result in overcorrection from regulatory bodies
- 42% said it will result in declining trust from customers
- 25% said it will lead to declining investment into the sector
Despite the uncertainty caused by Brexit, fintechs remain confident in their ability to manage Brexit:
- 40% of respondents believe London will remain the European capital of fintech after Brexit
- 30% of fintechs admit they haven’t made significant headway preparing for Brexit
“The spread of COVID-19 has brought the sector’s profitability and long-term business model sustainability into sharp focus—to a point where I believe the path to profitable scale for challenger banks has been structurally altered. But it is not at all to write off the sector,” said Abhijit Akerkar, Non-Executive Director, TBC Bank Group PLC. “Challenger banks have several long-term advantages—they are native to the digital arena, with more efficient cost structures, organizational agility, and, most importantly, higher customer loyalty. These advantages will help challenger banks weather the storm.”
“Whether we look forwards or backwards, Covid-19 is defining a new status-quo for the industry. From regulation to innovation to funding and culture, it is impossible to step out of the shadow cast by the pandemic,” Laurence Coldicott, Content Director, FinTech Connect “In response, fintech’s are prioritising digital transformation to meet customers where they are, and improving operational processes to ensure they are as efficient as possible.”
How to Build an AI Strategy that Works
By Michael Chalmers, MD EMEA at Contino
Six steps to boosting digital transformation through AI
In the age of artificial intelligence, the way we interact with brands and go about our work and daily lives has changed. No longer blithe buzzwords, AI tools and algorithms are solving real business problems, streamlining operations, boosting productivity, improving customer experience, and creating opportunities for advantage in a competitive marketplace.
However, many businesses struggle to unlock the full benefits that come with its adoption across the whole organisation. Making the most of AI requires a strategic focus, alignment with the specific operating model of the business, and a plan to implement it in a way that delivers real value.
Not all AI strategies are equal. To be successful, businesses need to set out how the technology will achieve objectives and identify the specific assets and case uses that will set them apart from competitors. The process of creating and delivering a successful AI strategy includes the following six essential elements that will help to bake in business success.
- Start with your vision and objective
One slip-up companies often make when developing an AI strategy is a failure to match the vision to the execution. Almost inevitably, this results in disjointed and complicated AI programmes that can take years to consolidate. Choosing an AI solution based on defined business objectives established at the start of a project reduces the risk of delay and failure.
As with any project or initiative, it’s crucial to align your corporate strategy with measurable goals and objectives to guide your AI deployment. Once a strategy is set and proven, its much quicker and easier to roll it out across divisions and product teams, maximising its benefits.
- Build a multi-disciplinary team
AI is not an island. Multi-disciplinary teams are best placed to assess how the AI strategy can optimally serve their individual needs. Insights and inputs from web design, R&D and engineering will together ensure your plan hits objectives for key internal stakeholders.
It’s also important to recognise that with the best will and effort, the strategy might not be the perfect one first time around. Being prepared to iterate and flex the approach is a significant success factor. By fostering a culture of experimentation, your team will locate the right AI assets to form your unique competitive edge.
- Be selective about the problems you fix first
Selecting ‘lighthouse’ projects based on their overall goals and importance, size, likely duration, and data quality allow you to demonstrate the tangible benefits in a relatively short space of time. Not all problems can be fixed by AI, of course. But by identifying and addressing issues quickly and effectively, you can create beacons of AI capability that inspire others across the organisation.
Lighthouse projects should aim to be delivered in under eight weeks, instead of eight months. They will provide an immediate and tangible benefit for the business and your customers to be replicated elsewhere. These small wins sow the seeds of transformation that swell from the ground up, empowering small teams to grow in competency, autonomy and relatedness.
- Put the customer first, and measure accordingly
Customer-centricity is one of the most popular topics among today’s business leaders. Traditionally, businesses were much more product-centric than customer-centric. Somebody built products and then customers were found. Now, the customer is, and should be, at the heart of everything businesses do.
By taking a customer-centric approach, you will find that business drivers determine many technology decisions. When creating your AI strategy, create customer centric KPIs that align with the overall corporate objectives and continually measure product execution backwards through the value chain.
- Share skills and expertise at scale through an ‘AI community of practice’
The journey to business-wide AI adoption is iterative and continuous. Upon successful completion of a product, the team should evolve into what’s known as an ‘AI community of practice’, which will foster AI innovation and upskill future AI teams.
In the world of rapid AI product iterations, best practices and automation are more relevant than ever. Data science is about repeatable experimentation and measured results. Suppose your AI processes can’t be repeated, and production is being done manually. In that case, data science has been reduced to a data hobby.
- Don’t fear failure: deploying AI is a continuous journey
The formula for successful enterprise-wide AI adoption is nurture the idea, plan, prove, improve and then scale. Mistakes will be made, and lessons learned. This is a completely normal – and valuable – part of the process.
Lighthouse projects need to be proven to work, processes need to be streamlined and teams need to upskill. Businesses need a culture of learning and continuous improvement with people at the centre, through shorter cycles, to drive real transformation.
An experimental culture and continuous improvement, through shorter cycles, can drive real transformation. A successful AI strategy acts as a continually evolving roadmap across the different business functions (people, processes and technology) to ensure your chosen solutions are working towards your business objectives. In short, let your business goals guide your AI transformation, not the other way around.
Iron Mountain releases 7-steps to ensure digitisation delivers long-term benefits
Iron Mountain has released practical guidance to help businesses future-proof their digital journeys. The guidance is part of new research that found that 57% of European enterprise plan to revert new digital processes back to manual solutions post-pandemic.
The research revealed that 93% of respondents have accelerated digitisation during COVID-19 and 86% believe this gives them a competitive edge. However, the majority (57%) fear these changes will be short-lived and their companies will revert to original means of access post-pandemic.
“With 80% still reliant on physical data to do their job, now is a critical time to implement more robust, digital methods of accessing physical storage,” said Stuart Bernard, VP of Digital Solutions at Iron Mountain. “Doing so can enhance efficiency and deliver ROI by unlocking new value in stored data through the use of technology to mine, review and extract insight.”
When COVID-19 hit, companies had to think fast and adapt. Digital solutions were often taken as off-the-shelf, quick fixes – rarely the most economical or effective. But they are delivering benefits – those surveyed reported productivity gains (27%), saving time (20%), enhancing data quality (13%) and cutting costs (12%).
So what now?
The Iron Mountain study includes guidance for how to turn quick-fixes into sustained, long-term solutions. The seven-steps are designed to help businesses future-proof their digital journeys and maximize value from physical storage:
1) Gather insights: The COVID-19 pandemic allowed organisations to test and learn. Companies should ensure these insights are fed into developing more robust solutions.
2) Use governance as intelligence: Information governance and compliance are fundamental to data handling. But frameworks aren’t just a set of rules, they hold valuable insights that can be turned into actionable intelligence. Explore your framework to extract learnings.
3) Understand your risk profile: A key early step is to analyse where you are most vulnerable. With data in motion and people working remotely, which records are at risk? What could be moved into the cloud? Are your vendors resilient?
4) Focus where you will achieve greatest impact: To prioritise successfully, you need to know where you will achieve the largest impact. This involves looking beyond initial set-up costs towards the holistic benefits of digitisation, including reducing time spent on manual scanning, and the risk of compliance violations.
5) Reach out and collaborate: We are all in this together. Your IT, security, compliance and facility management teams are all facing the same challenges. Ensure you collaborate across functions to develop robust, integrated solutions.
6) Find a provider who can relate to your digital journey: For companies that still rely heavily on analogue solutions, digitisation can be daunting and risky. It pays to find a vendor who has been on the same journey, understands your paper processes and can guide you through the digital world.
7) Prioritise and evolve communication and training programmes: To reap the full rewards from any digitisation initiative, thorough and continuous communication and training is critical. Encouragingly, our survey found that 81% of data handlers have received training to work digitally which is an excellent step in the right direction, but consider teams beyond data handling to truly succeed.
The research was commissioned by Iron Mountain in collaboration with Censuswide. It surveyed 1,000 data handlers among the EMEA region. It found that the departments that have digitised more due to COVID-19 include IT support (40%), customer relationship management (36%), and team resource planning (34%).
COVID-19 and PCL property – a market on the rise?
By Alpa Bhakta, CEO of Butterfield Mortgages Limited Over the last five years, demand for prime central London (PCL) property...
Are bots eating your Facebook budget?
By Mike Townend, founding CMO of Beaconsoft Ltd In an increasingly digitised world, social media has arguably become the most...
The Hidden Costs of International E-commerce
By Gavan Smythe, Managing Director, iCompareFX Taking a business globally can be an attractive prospect, potentially targeting markets with fewer competitors, taking...
Digital Euro Could Spur Major Breakthrough Towards More Liberal EU Payments Market, Expert Says
The recent talks about a possible digital version of euro have raised discussions throughout the industry. According to Marius Galdikas,...
Advanced Acquiring: How can omnichannel merchants optimise all payment needs through one provider?
By Marc Docherty, Head of UK Acquiring / Large – Strategic Business, Ingenico, a Worldline brand Today’s consumers are constantly moving,...
UKRSIBBANK, part of BNP Paribas Group, announces a strategic partnership with financial wellbeing startup Dreams, to enhance the digital user experience of its 2 million customers in Ukraine
The technology powering popular consumer app, Dreams – which has helped 460,000 users save over 440M EUR – will be...
Study: 1 in 10 fintechs’ main priority for 2021 is survival
FinTech Connect reveals that many fintechs simply want to survive the next year 44% of fintechs are focused on optimising...
Motivate Your Management Team
A management team, typically a group of people at the top level of management in an organization, is a team...
The Income Approach Vs Real Estate Valuation
The Income approach is only one of three main classifications of methodologies, commonly referred to as valuation approaches. It’s particularly...
How To Create A Leadership Philosophy
A leadership philosophy describes an individual’s values, beliefs and principles that they use to guide a business or organization. Your...