The 4 Myths of IT Data Security

October 6, 2017

Myth #1: We really don’t have any confidential information to protect.
You might think an old-line manufacturing company has little or no exposure to a network security event. However, they more than likely hold data on their current employees, and probably have information on employee prospects as well as recently-terminated employees. They also likely hold the design plans of key customers, acquisition targets and partners. Virtually any business has billing records of many customers on hand, which often contains sensitive data.

Myth #2: We use a third-party vendor so we do not have the exposure.
Using a third-party vendor may actually present additional exposure to your business. As your systems link with other systems and connect with other companies’ data, you take on the added exposure of potentially corrupting or breaching the data of multiple businesses due to your processes and your people.

It’s also important to fully understand the indemnification agreements and hold-harmless contractual wording in place with the third-party vendors, and to verify that they have adequate resources, including insurance, to back their indemnification obligations to your business.

Myth #3: Our IT Department assures us that we do not have any exposure.
Consider the recent Sony case. This is an example of a large, sophisticated company with the latest and greatest technology protection that was hacked with apparent ease. Businesses with the best controls still have data breaches. You can’t engineer the people-factor out completely: Laptops get stolen, and PDAs get left in airports.

There have been reports of the FBI, the State Department and multiple Fortune 500 companies being hacked despite sophisticated control measures and teams of people working to protect their systems. An IT manager who says their systems are impenetrable is either extremely naive or horribly overconfident.

Myth #4: Hackers only attack large companies.
A new 2016-2017 Radware’s security report found that 98 percent of organizations survived the cyber-attack in 2016. Thirty-one percent of these attacks were committed against small and medium-sized businesses with less than 250 employees. Visa Inc. estimates about 95% of the credit-card data breaches it discovers are on its smallest business customers.

For more information, please contact your local Marsh & McLennan Agency representative or visit: marshmma.com/cyberliability

The 4 Myths of IT Data Security

Related Offerings

You May Also Be Interested In

Webcast | Senior Care - The New Normal

Webinar | Cyber Security-The Complex & Inevitable Exposure

INSIGHTS Newsletter

Webcast | Navigating the Cyber Liability as Organizations Return to the Workplace

Webinar | Paycheck Protection Program- Q & A Town Hall

Webcast | Navigating the D&O Market Through Unprecedented Times

Webcast | Navigating Challenging Business Insurance Market Shifts

Q1/2020 Business Insurance Marketplace

Webcast | COVID-19: Managing the Impact- Weekly Update 4.30.20

Client Advisory: Dealing with increasing retail cyber risks during the COVID-19 crisis

Workers’ Compensation Insurance

WEBCAST | Cares Act Overview

WEBCAST | COVID-19: Navigating Insurance Implications

Webinar | Navigating the Coronavirus and Managing the Impact

MMA COVID-19 Coverage 2020

Cyber Security and Privacy Concerns: COVID-19

Business Insurance Marketplace Outlook 2020

The 2020 Cyber Outlook

Webinar | New Cyber Privacy Regulations & Risks Affecting U.S. Businesses

Tornado Preparation and Recovery Tips for Ohio Businesses

FDA to Begin Food Defense Plan Inspections on Food Facilities in 2020

The State of Cyber Security

12 Best Practices to Secure and Protect Passwords

Podcast | Choosing Your Broker

Five Trends in the Business Aviation Industry

Protect Your Business from these 5 Cybersecurity Risks

Top Challenges Facing the Banking and Financial Services Industry

How Technology is Impacting the Wholesale Distribution Industry

Businesses Required to Obtain a Spotted Lanternfly Permit

How Technology is Reshaping the Agriculture Industry

Is Ocean Wave Power the Next Big Thing in Renewable Energy?

Five Technologies Impacting Safety and Productivity in the Construction Industry

Four New Advances that are Revolutionizing the Hospitality Industry

Social Engineering Fraud

Does Your Company Know What To Do After a Cyber-Attack?

Brain Injuries in the Workplace

New Algorithms to Spot Fake Pictures for Insurance Claim Verification

Digital Transformation Unlocks New Opportunities for Financial Services Industry

Five Critical Risks Impacting Public Sector Organizations Today

Framework of a Cyber Breach

IoT-connected Devices Are Increasing Cyber Risk Exposure

Workers Compensation Red Flags

What's Keeping CEOs Awake These Nights?

15 Best Practices to Protect Your Website From Malware & Cyber-Hacking

Why Manufacturing Companies are Now More Susceptible to Data Breaches

Mid-Year Economic, Insurance and Risk Management Marketplace Update

Construction Industry Employee Engagement

Subcontractors without Workers’ Compensation Coverage May Cost You

2018 Cyber & Data Security Risk Survey Report

Drones: The New Highway in the Sky

Identity Protection: The Right Voluntary Employee Benefit

GDPR is Coming. Are You Ready?

OSHA Compliance Alert

Consider the Fair Labor Standard Act for Internships

Plan Sponsor Quarterly Calendar

Hours of Service Rules for Commercial Drivers

Severe Weather: Why it Matters

Understanding Your Investment Policy Statement

Preparing for a Product Recall

Safety Resources - Excavation Safety Stand Down

Electronic Logging Devices - A Hacker's New Window?

Aviation CGL Coverage and Contracts

Recap of MMA Seminar: Employment Law 2018

Understanding Your Aviation Policy: There's More to Consider Than Price

Construction Contracts

Texting While Driving

Got Hail?

Catastrophic Disasters

Cyber Breach - Equifax

Employee Retention

A Gap In Coverage

Drones expand business' horizons - and their liability