ORGANISATIONS ACROSS the UK now have access to tailor-made advice on how to keep their customers and their brand secure from cyber criminals. The new guidance has been published by the National Cyber Security Centre and is designed for retailers with an online presence – particularly for those which have online customer accounts – and those who are at risk of having their brand spoofed by criminals for malicious purposes.
Authentication methods: choosing the right type helps organisations to select an appropriate authentication method that goes ‘beyond passwords’ to help customers secure their accounts, such as two-step verification, OAuth and one-time passwords, and encourages decision-makers to consider the security and usability of each method.
Takedown: removing malicious content to protect your brand provides a step-by-step guide on how an organisation can remove malicious websites which have spoofed their brand to make it seem legitimate. This can include false representation of products and services, fake endorsements or cyber criminals using a given brand in phishing campaigns.
Sarah Lyons, deputy director for economy and society at the National Cyber Security Centre, said: “Online shopping is bigger than ever and that’s something to be welcomed. but unfortunately it comes with the risk of shoppers’ accounts being exploited. Businesses have a major role to play in protecting online shoppers, which is why we’ve produced new guidance to help them do so. Following this guidance will allow businesses to keep their customers safe online as well as protecting themselves from crippling cyber attacks.”
The buyer authentication methods and takedown guidance are the latest additions to a suite of advice offered by the National Cyber Security Centre to help organisations of all sizes better protect themselves and their customers.
While this new guidance outlines the steps that organisations can take to protect their brand and their customers, the public are also reminded that they too have an important role in helping to keep themselves and others safe online.
Cyber Aware campaign
The Cyber Aware campaign encourages the public and small businesses to adopt six behaviours to protect their online accounts and devices. These are:
*use a strong and separate password for e-mail
*create strong passwords using three random words
*save passwords in a browser
*turn on two-step verification
*update devices and apps
Members of the public are also encouraged to forward any suspicious e-mails to the Suspicious Email Reporting Service at firstname.lastname@example.org and should forward any suspicious text messages to 7726.
The Government is committed to driving down the volume of cyber crime and recently launched a nationwide, eight-week long Call for Information. This public consultation will seek views from individuals and businesses on how to reduce the hacking of online accounts and personal data, and what extra steps digital service providers can take to prevent cyber attacks.
64 High Street, RH19 3DE
04478 18 574309