You never even hear about it,” Shade said. 65 percent of the companies that are compromised by ransomware never report it. “Why does ransomware work? The big factor is that companies don't report this. He noted that the majority of ransomware attacks not only don’t make the news, they aren’t even reported to authorities. They’re recruiting talent, they have pipelines, they're trying to exploit their targets, realize the revenue and then move on to the next one.” These are well-funded businesses that are doing research on their targets. They aren't people sitting in their basement. “These are businesses that are operating these ransomware operations. As long as you make money and you have systems, you're going to be a target for ransomware,” Shade said. “One of the things that ransomware really changed is that now everybody is a target - every business. But he said that when criminals discovered the opportunities of ransomware – the encrypting of information on a computer or system that won’t be released until a ransom is paid – the field of potential victims became nearly endless. Shade said that in the beginning of cybersecurity, the fight was over account information, then over personal information. “That skill is one of the biggest areas of opportunity in business, being able to translate risk from a technical perspective into something that business leaders can understand.” Shade was quick to agree that Sinko touched on a key skill that students should try to acquire. Sinko and EY partner David Shade were the guest speakers at the first Cybersecurity Symposium since the new EY Cybersecurity Initiative was created at the Farmer School’s Information Systems and Analytics Department. If they don't under understand it, they're not going to fund it and they're not going to support it,” he said. So when they present, they talk in their language, but board members, management, and operations, they have no idea what the tech folks are talking about. They assume everybody knows what they're talking about. “It’s a value to you to understand cyber and the programs that are going to be taught here, because one of the problems that professionals have is communicating to people outside of their own profession.” I meet with our cyber group every Tuesday afternoon, and we talk about cyber frequently,” Sinko said. “I still am heavily involved in the oversight role. That $7 million price tag has increased a lot since then as malware, exploits, and ransomware have swept the world. “I ended up putting together a PowerPoint that I took to the capital committee and asked for $7 million for cyber projects, talked about the need, the vulnerabilities, and the cost of the organization.” Could you do something about it yourself?’” he recalled. I keep trying to get assets, but I'm not getting them approved. “About nine years ago, the CIO comes to me and says, ‘Don, you keep talking about our vulnerabilities. The chief integrity officer at the Cleveland Clinic became an important person in IT and cyber because he could make tech make sense to non-tech leaders. Don Sinko will be the first person to tell you that he is not an information technology expert.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |