Contents
A Zug association wants to protect companies from cybercrime. To this end, he is launching a new national information platform.
It is the latest major case of cybercrime: a software company fell victim to a hacker attack. Federal data stored externally by service providers was also presumably stolen.
But the attackers’ focus is not just on the big fish. “Every company that has a PC and the Internet is potentially at risk,” says René Hüsler, director of the Lucerne University of Applied Sciences – Computer Science: “Every tenth SME is attacked by cybercriminals.” And the number of unreported cases is high.
Legend:
The Swiss reporting platform for cyber attacks had already recorded around 19,000 reported cases by the middle of the year. This corresponds to an increase of around 2,000 reports compared to the first half of 2022.
Getty/iStock/Tero Vesalainen
A new association has made it its mission to support local SMEs in the fight against cybercrime. He calls himself ITSec4KMU – it is the abbreviation for “IT Security for SMEs”.
Phishing is often the beginning of all evil
René Hüsler is a founding member of ITSec4KMU. Above all, he wants to make companies aware of one security risk: phishing. In other words, trying to obtain personal data via fake emails or SMS. “The main attacks occur via phishing,” says Hüsler. “They are becoming more individualized. And they’re getting better.”
Classic phishing often takes place via a link. “One click is all it takes and a small program is installed that collects information in the background and steals rights.”
Data is encrypted and access to it is no longer possible. From customer contact to customer appointments. Everything gone. No more invoices can be written. The sensor-controlled door may even be blocked. “Something like that can affect the baker just as much as the hairdresser.”
The new platform also provides examples of current cyber attacks – as well as a checklist for possible measures. You have to be aware of what risks exist. And then decide which one you want to take, says Hüsler: “You don’t always need a new IT security specialist.”
Holzbauer played through the emergency
One company that has experienced the consequences of a cyber attack is Baarer Abt Holzbau AG. Fortunately, most of the people in his carpentry work in production, says managing director Daniel Abt. “But the entire office system would no longer work.”
So the employees were trained. How can you recognize phishing emails? And what do you do if you still fall into the phishing trap?
Many traders are not aware of the dangers lurking here.
The company now also has passwords and logins on paper. There is also now a register with emergency contacts in the event that both the computer and the telephone system fail. The company has also taken out cyber risk insurance.
Abt, who also chairs the trade association of the canton of Zug, welcomes the new platform against cybercrime: “Many traders are not aware of the dangers lurking here. They simply trust that their IT works.”
It is precisely because of this blind trust that the club and the platform are needed, says René Hüsler. «We will not offer any training. But rather support SMEs in the area of awareness.” So increase your awareness of IT risks.
And all of this in a language that is not aimed at specialists, but is also understandable for the Velomech or the sales person. “If the majority of companies just start thinking about it, we have already achieved a lot.”