What is the risk?
We have seen a significant increase in sophisticated cyber-attacks from the last quarter of 2022. These include attacks this week on Royal Mail and the Guardian that prompted the Financial Times front page headline: “Attacks on Royal Mail and Guardian stoke fears over surge in cyber crime”.
For the Royal Mail this resulted in a large-scale system closure. At the Guardian, sensitive and confidential details, including financial and personal data of employees and customers have been taken. This data can be used to facilitate fraud or sold on the dark web. We have also seen a resurgence in ransomware attacks that significantly impact company operations.
Our Crisis & Risk team have worked in recent weeks on cyber-attacks that potentially mirror the assault on the Guardian where it is believed an employee password authentication process was replicated and breached in a phishing attack. These attacks target employees, who allow the criminals access to company systems by accepting requests for access and authentication that are sophisticated and seem authentic. Another recent attack led to a company’s confidential data being removed from their servers, including commercially sensitive details on clients and suppliers. This was then ransomed back to the company and the criminals provided notice of the breach to selected stakeholders.
Why is this a reputational risk?
Data breaches, where customer or stakeholder data has been compromised, have attracted low and diminishing levels of media interest in recent years. However, in recent weeks the impact, such as the damage to overseas mail, and scale of attacks, including the increased number and amount of data lost, has generated significant media interest and prolonged scrutiny from journalists.
Reputational risks originate from:
Media interest has also focused on claims the increase in attacks is linked to geo-political issues and state actors including Russia and China. Whatever the reality of those claims, businesses risk significant damage to operations, stakeholder trust and wider reputation in the event of a significant and sophisticated attack.
What should you be doing now?
In light of the increased reputational threat, we would urge organisations to:
Critically you must remind staff of the rising threat of phishing and other attacks.
Contact Us
Should you wish to learn more about this risk or would like support, please contact crisis@mhpgroup.com or call Barnaby Fry, Head of Crisis & Risk on 020 3128 8761
By Barnaby Fry
"*" indicates required fields
Following the controversial announcement of plans for a Major Conditions Strategy, James Juster and Noah Froud examine the rationale for the strategy, as well as the potential downsides for patients a...See More
As Trump makes his return to Meta following his two-year ban, Ali Goldsworthy, President, Accord, explores the UK’s take on his return, social media as a polarising force and how the moderate point...See More
Cookie | Duration | Description |
---|---|---|
cookielawinfo-checkbox-analytics | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category . |
CookieLawInfoConsent | 1 year | Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie. |
PHPSESSID | session | This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed. |
Cookie | Duration | Description |
---|---|---|
_ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
_gat_gtag_UA_12122976_1 | 1 minute | Set by Google to distinguish users. |
_gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
vuid | 2 years | Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website. |
Cookie | Duration | Description |
---|---|---|
wc_session_ids[all_forms] | 8 minutes | No description |
wc_session_ids[default] | 8 minutes | No description |
wc_session_ids[multi][0] | 8 minutes | No description |
wc_session_ids[multi][1] | 8 minutes | No description |
wc_session_ids[multi][2] | 8 minutes | No description |
wc_session_ids[multi][3] | 8 minutes | No description |
wc_session_ids[multi][4] | 8 minutes | No description |
Cookie | Duration | Description |
---|---|---|
__cf_bm | 30 minutes | This cookie, set by Cloudflare, is used to support Cloudflare Bot Management. |
__sharethis_cookie_test__ | session | ShareThis sets this cookie to track which pages are being shared and by whom. |