Cybercrime is growing and no business or individual that interacts electronically can take their financial security for granted.
Every year, thousands of Australians and Australian businesses fall victim to online crime, or ‘cybercrime’. In the first three months of 2018 alone there were 14,189 reports made to the Australian Cybercrime Online Reporting Network (ACORN).
That was just the crimes that were reported and the financial services industry will always be a prime target.
“At Profile Financial Services, our IT systems, supplier contracts and internal policies place client data, as the single most important asset our business needs to protect. Each of these areas is reviewed on a regular basis and every staff member and supplier is bound by regulation, policies and rules of engagement in these areas.
“We see instances of fake and suspicious emails several times each week. Sadly, we have seen several, sophisticated examples in the industry in recent weeks. Diligence is the key around all client data and interactions,” said Lena Ridley, Head of Operations, Profile Financial Services.
Common types of attempted cybercrime in our industry include:
- Online scams or fraud
- Issues with buying or selling investments online
- Identity theft
- Attacks on computer systems
- Email spam and phishing
- Illegal and prohibited content
Profile Financial Services has clear avenues available re clients’ data:
- Personally telephoning a client who makes a request to move money
- Setting up multi-factor authentication requirements with our suppliers
- Having appropriate internal policies and training for staff around the collection, storing and use of data, IT and password security and office security
- Using external IT consultants to track activity in and out of our systems
- Maintaining up to date and business-relevant firewalls and security systems
- Blocking suspicious domain names and websites
Reporting concerns to relevant authorities, such as ACORN and the Australian Cyber Security Centre.
What can you do if an email looks suspicious?
- Check all details on emails appearing to be from your trusted source.
- Fake emails often contain small yet critical errors in people’s names or domain names.
- Consider the language used. Does the email ‘sound’ like the person you are corresponding with? – We have picked up several suspicious emails in the past because the language is not consistent with the client we know.
- Pick up the phone to verify the information or request.
- Do not respond to emails that look suspicious – This can allow additional information to be gleaned for malicious purposes.
Cybercrime is growing and no business or individual that interacts electronically can take their financial security for granted. If there is any belief that financial data has been compromised, from any source, take action immediately.