It's near impossible to hide online. No matter how under-the-radar an executive tries to be, it's not just notoriety that attracts attention anymore -- it's their access to wealth, power, and information, which needs excessive security protection.
In April, it was announced that Facebook CEO Mark Zuckerberg's allotted security budget was $20 million in 2018 -- four times the amount he received for security in 2016. Meanwhile, there are executives like Larry Ellison, whose security spending has declined in recent years, even though his net worth has risen.
It is flawed logic to think that because a billionaire practices stealth wealth, or "flies under the radar," that he or she is not going to get caught in a hacker's crosshairs. A company's C-suite, leadership teams, and board of directors are all sources of sensitive, privileged, and confidential information. This makes them prime targets for hackers, regardless as to whether the public knows their names, because hackers don't care why you have money -- they just care that you do. All these individuals require just as much security protection from cyber threats.
CEOs can easily become victims of fraud via business email compromise/email account compromise attacks, which, according to FBI statistics, is now a $12 billion scam. And when private information about these high-net-worth individuals is exposed online, it carries a high degree of risk for that individual, their families, associates, and his or her business and they all equally need to have security protection. This is because even if an executive hides from Forbes' list of the world's billionaires, any of their data in the digital world is fair play. Cybercriminals practice the utmost due diligence to identify targets and exploit their most private details. A cyberattack of surgical precision can happen to anyone at any company.
Consider the example of Sony. The FBI believes North Korean hackers accessed the company's networks and stole data -- including unreleased movies, financial information, company plans, and personal emails -- before publishing it for the public. The hit to the company's reputation was overwhelming. "Investigation and remediation expenses" related to the hack cost Sony $41 million, according to the Associated Press. And before this scandal, it's likely the exploited Sony employees were household names, yet they still played a critical role in the breach of data.
Most importantly, digital assailants no longer remain hidden behind computer screens holding a company's hardware hostage with ransomware. The lines between cyberattacks and physical attacks are increasingly blurred.
Ten years ago, a person's constant public exposure would have had a strong correlation with needing increased security protection. There was far more exposure to these people than those who laid low. Back then, an executive's security team would audit their physical space, installing alarm systems, security cameras, and assigning a bodyguard. However, that level of security falls short by itself nowadays. According to one report, "Traveling executives have been the target of kidnapping plots in certain parts of the world, and several foreign individuals were detained in China as possible retaliation to Huawei's CEO being arrested in Canada."
Executives need boots on the ground and savvy hands online. By scouring the web for sensitive information related to an individual, cybersecurity teams can quickly handle credible threats and escalate them to physical teams when necessary.
The executives who have the most sophisticated security protection see safety holistically. No longer are digital threats isolated to the abstract space of the internet. Physical security teams must work with digital counterparts to understand risks in both worlds and develop a plan that protects against it all because, after all, it's near impossible to hide on the internet.
Internet-wide Visibility for the C-Suite
Executives are 12 times more likely to be the target of security incidents and nine times more likely to be the target of data breaches than they were last year. With financial losses related to reputational attacks ballooning above 400% between 2012 and 2017, much of it from leaked information, organizations can no longer afford to ignore the risk of C-suite's attack surface.
For over a decade, RiskIQ has been protecting the digital attack surfaces of Fortune 500 IT organizations by giving them internet-wide visibility into the risks associated with their business and the threats targeting them. Now, with IT threats have shifted toward these organizations' most prominent individuals, the C-suite, RiskIQ is applying our technology to protecting this critical attack vector.
Individuals protected by RiskIQ Executive Guardian can bring their physical and cybersecurity teams together to understand risks in both the physical and digital landscapes, developing a plan to defend them, 24x7. In addition to our petabytes of data collected over ten years, we've built a team of former CIA officers who have previously built corporate intelligence programs for some of the largest tech companies in Silicon Valley.
RiskIQ Executive Guardian detects the presence of breach data or unwanted information about individuals and their families online, helping prevent financial, reputational, and even physical attacks. Some of the world's most high-profile business leaders are using RiskIQ Executive Guardian™ for extensive security protection and a 360-degree view of their online risk.
The RiskIQ Intelligence Connector for Microsoft Azure Sentinel Is the Context-Rich Force Multiplier Security Teams Need
Digital initiatives have changed the enterprise attack surface and how organizations appear online, both to users and malicious actors. Meanwhile, the threat landscape has evo...