[CAVIE-ACCI] In a recent CSC webinar, we welcomed information security expert Robin Schouten of ABN AMRO Bank N.V. to share his thoughts and experiences of online fraud during the onset of the coronavirus pandemic.
In the interview, Robin corroborated CSC’s own findings that there has been a sharp uptick in phishing and online fraud activity as a result of the pandemic. Fraudsters are taking advantage of the new normal of increased online activity and working from home.
Statistics show that, alongside the usual targeting of unsuspecting consumers with replicated emails from recognized brands, scammers have also increasingly been targeting employees of companies using social engineering tactics to gain data, money, or access to systems. Companies need more than ever to have security and anti-fraud protocols in place to keep themselves and their customers safe, and avoid the hefty fines associated with a data breach.
As Robin himself put it, “You must invest in security; it’s not a question of whether you want to do it, or consider it. You have to.” For those without a fully realized fraud protection strategy in place, Robin also gave his suggestions for where to start — with domains. “The first step is to take a look at your domain portfolio,” he said, so that you can see all of your domains and their status for domain name system security extensions (DNSSEC), certificate authority authorization records (CAA records), digital certificates, and MultiLock. Knowing your company’s domain landscape will enable you to spot the blind spots in your security posture.