Software development companies hit hard by cybercrime


Research by cybercrime experts FoxTech has revealed that among the worst industries at risk for cybersecurity breaches are computer software development companies.

These companies had an average cyber risk score of 166, followed by publishing (152), research (115), transportation, trucking and railroads (111), and civil engineering (102).

The cyber risk score, which is calculated using publicly available information and an analysis of a wide range of cybersecurity indicators, is an immediate indicator of how high or how low a risk is. potential cybersecurity breach for a business, according to FoxTech.

Businesses with a score of 75 or higher are at extreme risk of a cyber attack, while those under 25 are considered low risk.

Anthony Green, CTO and Cybercrime Expert at FoxTech, explains: “We have audited hundreds of companies across a wide range of industries and found that while industries such as banking (cyber risk score 6) and the arts (Cyber ​​Risk Score 5) are at very low risk of a potential attack, other industries have failed horribly when it comes to ensuring that their cyber protection is up to par.

However, the problem isn’t that companies don’t care about cybersecurity – it’s just that their IT infrastructure isn’t robust enough to withstand an attack, says Green.

He says, “In many cases, businesses will be completely unaware that the anti-virus or endpoint protection software they’ve invested in is simply not robust enough or of sufficient scope to prevent a cyber attack from occurring.

“Alternatively, companies may mistakenly think that they are safe from attacks because they have invested in cloud-based services.

“Sometimes a business can be exposed by something as simple as poorly managed user accounts, outdated software, or inadvertently leaving their database visible on the Internet and therefore exposed to hackers.”

On average, hackers will spend 207 days between breaching a company’s computer security and operating it. Green says it shows this is a gradual process rather than something that happens overnight.

He says, “The fact that hackers go undetected for more than six months tells us that it is time to prevent cyber attacks from happening and that it is possible to protect businesses and their customers at a much lower level. higher – as long as businesses are aware of potential weaknesses in their systems and how they can fix them, even if a hacker is already gathering what they need.

“The best thing for any business to do is to conduct a cybersecurity audit of its IT systems, processes and procedures. This won’t necessarily be done through their IT vendor, but through an independent company set up to focus fully on cybersecurity, analyzing cybercrimes and data breaches – ultimately “anti-hack”.


Gordon K. Morehouse