< Back to listing

Posted 13 octobre 2016

According to a study published in 2015 by Capgemini, over 90% of French companies have already fallen victim to a cyber-attack. This is not so surprising considering cyber-attacks are exploding throughout the world (+38% according to PwC) and especially in France (+51%) in 2015. Beyond the growing volume of data being processed, increased in mobility and telecommuting also contribute to the phenomenon, as is the lack of awareness among employees. The legal and financial risks for companies caught off guard are real.


Risks? What risks?

According to a study published by Wellcom/Opinion Way in 2016, the number of companies exposed to the loss of sensitive data has doubled in 7 years. Increased telecommuting and mobility, often considered as new productivity levers, also contribute to the phenomenon. At a time when data protection laws become more stringent in Europe and personal responsibility can now be engaged: have companies truly integrated the new challenges of securing their data in their risk management initiatives? Not quite, according to the results of the Cegos Uses and impacts of social networks and digital in the workplace (2014) study. According to this study, 56% of French employees connecting daily to the Internet admit “not understanding the risks associated with viruses and invisible online threats“. This is proof that employee awareness in France still needs to progress, especially that many employees consider their personal computing devices more powerful than those they have at work and increasingly tend to use them to boost their productivity. All of these tools are beyond the control of IT departments and result in a number of security gaps.

Are managers spared by the phenomenon?

Not really! According to the Protecting Corporate Information in the Cloud survey from Symantec (2015), 44% have already uploaded professional documents to file sharing websites in order to work on other devices. More worryingly, 38% have shared information and business documents using social networks. As a result: an increased risk of loss or theft of sensitive strategic data, and an increased risk of system breach when managers connect using a personal device or from outside the office.

Why chose between productivity and safety?

Adapting to the new challenges of the open enterprise necessarily involves rethinking security protocols for data exchange. It is difficult for IT leadership to ignore the contribution of tools and consumer services such as DropBox, Google Docs or WeTransfer to business productivity, and just as difficult for them to ignore the security certifications these solutions lack. When it comes to security among software vendors, there are those who claim, those who do and those who prove. Very few eventually possess a security certification delivered by an independent organization designed to ensure the alleged security level to protect access and transfers. CryptoBox, the professional secure data sharing solution launched by Ercom, a company specialized in secure communications, is among these. CryptoBox is undergoing qualification by ANSSI. CryptoBox solves the challenge brought by the controversial use of consumer solutions that are not always secure. https://www.ercom.fr/cryptobox/