Sauress : Why companies in ME need to be alert over how cybercriminals exploit their brands

Nazaha arrests 158 ministry employees over corruption charges Saudi Arabia's non-oil exports with Gulf countries soar 43% to SR9.4 billion in November Health minister: 40% fall in mortality rates caused by chronic diseases since 2017 Arab ministerial meeting in Cairo rejects displacement of Palestinians Venezuela frees six detained Americans after Trump envoy meets with Maduro Fitch affirms Saudi Arabia's Credit Rating at 'A+' with a Stable Outlook Saudi foreign minister and US Secretary of State discuss bilateral relations and regional developments Saudi Arabia mandates national attire for male secondary school students Small plane crashes into buildings in northeast Philadelphia, sparking fires and injuries Trump imposes tariffs on Mexico, Canada, and China, escalating trade tensions Al Nassr signs Colombian striker Jhon Durán from Aston Villa Al Hilal returns to winning ways with a dominant 4-0 victory over Al Okhdood Al Ahli signs Brazilian winger Galeno from Porto on a long-term deal Saad Al-Shehri leads Al Ettifaq to a crucial victory over Al Shabab in his debut match Saudi composer Nasser Al-Saleh passes away at 63 Saudi drama icon Mohammed Al-Towayan passes away at 79 Saudi Arabia approves new financial settlement rules for corruption cases Riyadh Season 2024 attracts over 18 million visitors Singer and actress Marianne Faithfull dies at 78 Saudi Arabia launches inaugural Art Week Riyadh on April 6-13 Bollywood star Saif Ali Khan 'out of danger' after attack at home in Mumbai Order vs. Morality: Lessons from New York's 1977 Blackout India puts blockbuster Pakistani film on hold The Vikings and the Islamic world Exotic Taif Roses Simulation Performed at Taif Rose Festival Asian shares mixed Tuesday Weather Forecast for Tuesday Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI 41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions Saudi Karate Team Wins Four Medals in World Youth League Championship Third Edition of FIFA Forward Program Kicks off in Riyadh Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals SFDA Offers Various Recommendations for Safe Food Frying SFDA Provides Five Tips for Using Home Blood Pressure Monitor SFDA: Instant Soup Contains Large Amounts of Salt Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan

Thank you for reporting!

This image will be automatically disabled when it gets reported by several people.

Why companies in ME need to be alert over how cybercriminals exploit their brands

Werno Gevers Published in The Saudi Gazette on 24 - 11 - 2020

Middle East organizations are growing wary of criminals exploiting their brands to target their customers, partners or the general public. According to the latest Mimecast State of Email Security Report, 74% of organizations in Saudi Arabia and United Arab Emirates are concerned about a web domain, brand exploitation or site spoofing attack.
Cybercriminals are acutely aware of the ease with which they can register lookalike domains and launch sophisticated attacks impersonating trusted brands that are nearly indistinguishable from the real thing. It's become common for malicious actors to use our favorite retailers or other loved brands and services to trick people into handing over money or sensitive information.
And it's becoming harder for these brands to continue to avoid responsibility. Local concerns outweigh global averages, with 50% of UAE organizations admitting they are very concerned about an attack that directly spoofs their email domain, compared to a global average of 40%.
It's critical that organizations look beyond the perimeter to determine how threat actors are damaging their brands online. As a start, they need to adopt Domain-based Message Authentication, Reporting & Conformance (DMARC), an email validation system designed to uncover anyone using a brand's domain without authorisation.
This means brands can monitor who is sending mails on their behalf and instruct receiving servers to reject unauthorised emails. This helps protect receivers from falling victim to fraudulent mails. In KSA all respondents were aware of DMARC, but only 40% were using it. Ninety-eight percent of UAE respondents were aware of it while only 34% were using it. Perhaps an indication that the importance of using such a solution to protect brand reputation has not yet been realised for many organisations.
And while brand protection is certainly on the radar for IT and security decision makers, has its importance reached the rest of the C-suite? The report found that in the UAE chief information officers (CIOs) and chief information security officers (CISOs) are most likely to control the budget for securing the organisation's corporate brand from web or email spoofing or other forms of exploitation and impersonation.
Encouragingly, in KSA 48% of organizations had the chief financial officer (CFO) overseeing the budget, which means organisations here are looking beyond traditional IT and security roles to own brand protection. There is an argument to be made for the chief marketing officer to take ownership of this budget since they are typically responsible for their brand's reputation, but our research revealed this is the case at only 14% of UAE and KSA organizations.
No matter who manages the budget — whether it's the CFO, CMO or CIO — what's critical is having budget set aside for this important element of cybersecurity. And the budget owner also needs to work closely with the organisation's security leader to make the right purchasing decisions.
All of the countries surveyed in this year's report expect web and email spoofing attacks to increase in the coming year, but Saudi Arabia and UAE organizations were among the ones on highest alert with 52% and 54% respectively, predicting an increase. It therefore makes sense to have a dedicated senior resource looking after the organisation's online brand integrity.
On average UAE organizations were made aware of six web or email spoofing attacks in the last year, while KSA organizations were made aware of seven. Of course, that's just the ones they were aware of and if left unchecked, brand spoofing could have devastating effects on the brand's reputation. If organizations don't have the tools to actively look for exploits, or unless someone takes the time to report them, they're difficult to find which leaves brands none the wiser.
Standard web and email security strategies are no longer enough. Organizations need to protect their brands online and ultimately protect their customers and supply chains by preventing fraudulent senders using their domains or lookalike domains.
— The writer is cybersecurity expert at Mimecast

Clic here to read the story from its source.