We must treat cyber crimes like traditional crimes, says Norfolk security expert
- Credit: FOUR
A Norwich security expert said organisations need to use up-to-date software to avoid the evolving threat of cyber attacks.
Following the NHS cyber attack, Ross McDermott, a former Norfolk detective chief inspector who now works for Norwich-based Dardan Security, warned that older software are more susceptible to scams as they are not regularly updated.
He said the NHS is still using Windows XP, a 16-year-old operating system which has stopped receiving security updates and support from Microsoft since 2014.
Mr McDermott said: 'Public bodies, private companies and even individuals need to be more careful with storing data. Private information is the most valuable commodity we possess and that is the area we need to be particularly prudent with.
'Large public bodies use the older operating systems like XP which have inherent weaknesses.'
You may also want to watch:
As online crime is becoming more sophisticated and prevalent, Mr McDermott said criminals are keeping pace with technology making it harder for people to spot malware.
On ransomware attacks, he said the functionality of systems are systematically closed off and even if the ransom is paid there is no guarantee the data will come back.
- 1 Fire crews battling large house blaze
- 2 £6.1m shopping street revamp will take half of 2022 to complete
- 3 Seven cosy pubs to visit in Norfolk this winter
- 4 Roof collapses into home after major blaze engulfs it
- 5 Councils could spend millions to buy former Aviva office for new HQ
- 6 Three cars crash and two end up in ditches on rural road
- 7 Family forced to live in tent after maggots and rats found in home
- 8 Jailed this week: Primark brawl, attempted murder and abuse
- 9 What might happen to former Debenhams store in city centre?
- 10 Decision due over controversial plans for 200 new homes
He added: 'There is an attempt to catch up with hackers in terms of technology which means we'll always be that step behind.
'With phishing emails, I've heard the experiences of companies where a secretary received an email which looks genuine but there is just one character different on the email address. It's easy to manipulate someone to do something they shouldn't.'
He said policies which focus on simple human elements - such as passwords, access, memory sticks - within organisations could prevent cyber attacks, but with cutting costs policies get watered down and supervision becomes less robust.
'People don't treat cyber attacks like traditional crimes, for example burglary, when it kind of is the same thing. You lock windows and doors but there is always a way to break into a house.
'In most cases people are having there metaphorical windows open. There needs to be policies in place to close those access points but because the NHS is so vast it is more difficult to apply.'