Connect with us

Technology

UK Organisations turn to artificial intelligence to fight sophisticated cyberattacks

Published

on

New research by cybersecurity expert Mimecast finds that email attacks are becoming more frequent and sophisticated

More and more companies in the UK are using artificial intelligence (AI) and machine learning (ML) to fend off increasingly sophisticated cyber-attacks, according to new research from cybersecurity specialist Mimecast. The research finds that 40% of UK organisations are already using AI or ML in their organisations’ cybersecurity programme, with 30% planning to do so within the next 12 months.

The use of advanced technologies such as AI and ML is in direct response to the growing sophistication of cyberattacks that UK businesses are experiencing. 53% believe that increasingly sophisticated attacks will be their biggest email security challenge in 2022, leading to 80% believing it is at least likely their organisation will suffer a negative business impact from an email-borne attack this year.

 

Growing threat landscape

The research shows that email remains the largest threat vector for UK businesses, with 71% of respondents reporting an increase in the volume of email threats their organisation has faced in the last 12 months. This includes phishing with malicious links or attachments (56%), impersonation fraud or Business Email Compromise (53%), and malicious insiders (43%). However, it isn’t just email attacks that are on the rise, as 90% of UK businesses experienced at least one spoofing attack that uses a lookalike web domain or a clone of their organisation’s website in the last 12 months. The average UK company has experienced 11 of these attacks.

On top of this, employees are also presenting organisations with a very real threat to their cybersecurity. The survey identifies that IT decision makers have relatively low confidence in their colleagues’ cyber awareness , believing that there is a risk of an employee making a serious security risk due to oversharing company information on social media (84%), poor password hygeine (80%), using personal email (80%), or using cloud storage and other shadow IT functionality (81%). When an employee does full victim to an attack, it frequently results in more widespread consequences. 85% of respondents say threats have spread from one infected user to other members of the organisation.

 

AI to the rescue

To overcome this growing threat landscape, more and more UK organisations are turning to advanced technologies to strengthen their cybersecurity position. The 40% of UK organisations that are already using AI as part of their cybersecurity strategy are already seeing a number of benefits, including increased accuracy in terms of threat detection (54%), reduced human error within cybersecurity team (51%), and reduced workload/working hours for cybersecurity team (45%).

Despite these very real benefits, there is the very real danger that many UK organisations will miss out due to a lack of budget dedicated to cybersecurity. The research highlights a clear discrepancy between the amount IT decision makers believe should be spent on cyber resilience and how much budget is actually allocated by business leaders. IT decision makers in the UK believe that 16% of their IT budget should be allocated to cyber, but at the moment they see less than 12% allocated. Missing out on new technology innovations such as AI is identified as the most likely consequence (49%) for organisations where the cybersecurity budget is not as high as respondents believe it should be.

Elaine Lee, AI expert at Mimecast, said: “There is no doubt that cyberattacks are becoming more frequent, as UK businesses adjust to the world of hybrid work. On top of this increase in frequency, we are also seeing a rise in the sophistication of attacks. This is creating a perfect storm and making it more difficult than ever for organisations to keep their businesses secure. With this in mind, it is no surprise to see so many organisations turn to advanced technologies such as AI to bolster their cybersecurity defences. AI solutions can help businesses to automate security processes, ensuring they are better able to fend off attacks, as well as providing their security experts with more time to focus on high-level analyses that require human interaction.”

Lee continued: “Organisations that have yet to invest in AI technologies as part of their cybersecurity strategy should do so. Cyberattacks are going to continue to be a major threat to UK businesses and these businesses need to respond accordingly with sufficient budget. A successful cyberattack has the potential to cause serious ramifications for a business, including both financial and reputational damage. Now is the time to take this threat seriously and get prepared.”

 

Technology

How Digital Adoption Platforms can enhance digital transformation and customer experience in the insurance industry

Published

on

By

By Vara Kumar, CPTO & Co-founder, Whatfix

 

Like many industries, the insurance sector was prematurely hastened towards digitalisation due to the Covid-19 pandemic. Now, digital adoption continues to be a key focus of many organisations to strengthen their fully or partially remote workforce with nearly 50% of IT spend being put behind the growth of core applications and infrastructure, and an additional 25% being invested into digital solutions.

But with millions of claims processed every year, needing to provide superior customer service to drive retention, complex procedures and processes to navigate and both internal rules and external regulations to follow, digital transformation plans for insurance organisations are filled with challenges.

Increasingly digitalised workforce

With the pandemic came an overhaul of how we work. Remote and hybrid working is now the norm, and across most industries, there’s been a huge expansion in both the number and type of digital applications used to communicate, collaborate and enhance productivity across an organisation.

For the insurance industry, this has meant that every employee, from underwriters to customer service agents, has had to adapt to handling their steps of the process, from setting up coverage to filing a claim, remotely, and across multiple platforms and tools.

The challenge is ensuring this more digitalised workforce fully understands how to successfully navigate each application effectively and efficiently to ensure they can deliver on their services and customer experience (CX). But putting together a skilled, high-performing IT team can be difficult – according to an enterprise study, 54% of organisations said they’re not able to accomplish their digital transformation goals because of a lack of technically-skilled employees. This is further complicated by the fact that, in an age of labour shortages, the sector is forced to get creative and find ways of managing the workload and navigating new technologies with a smaller workforce.

Changing customer expectations

On top of the challenges that the increasingly digitalised workforce is experiencing, the tech-savvy customer of today also expects more from their insurers. Indeed, the pandemic forced customers as well as organisations to become more IT-literate, and in the customer service space in particular, customer expectations are high.

Customers today want and expect to be able to make maturity or house insurance claims in an efficient and straightforward manner, across multiple platforms, from phone to email to social media, preferably in a matter of minutes.

McKinsey observes that improving the value chain from the customer’s point of view is an important step within digital-ecosystem efforts, and HubSpot found that 90% of consumers expect an immediate response to a customer support issue, with 60% defining ‘immediate’ as under ten minutes. Even pre-pandemic 44% of customers were comfortable utilising chatbots for insurance claims, and 43% were comfortable using them when buying insurance policies.

Undergoing a digital transformation on the customer side is crucial then, as insurance providers that can meet these changing customer expectations are more likely to attract and retain customer loyalty now and in the future. However, just 30% of insurers believe that they have the capabilities to fully digitalise their customer experience.

So, what can insurers do to meet the technological demands of a digitalised workforce and a multi-channel CX for tech-savvy customers?

Using DAPs to boost digital transformations and CX

In a rapidly changing market, Digital Adoption Platforms (DAPs) can be a huge advantage to insurers looking to manage the challenges of today and come out on top. A piece of instructional no-code software that sits as an additional layer on top of other software applications, such as Claims Management or Policy Administration Systems, to help train and guide users on how to best use the software, DAPs can massively improve the agility and effectiveness of business processes across an organisation.

On the employee side, for example, DAPs can help insurers to manage challenges of a frequently changing workforce by making it easier for employees to get to grips with new digital applications. With the likes of  guided walk-throughs and task lists, which help employees through each step they need to know and just-in-time nudges to reduce policy administration, claim, or underwriting processing times, employees are more efficient and technology adoption is streamlined and accelerated. Easy to integrate into existing systems, DAPs can be used to not only train and onboard new employees but also upskill veteran workers, training the workforce as a whole on the latest technologies being used across the industry. As a result, everyone from underwriters, claims, and service representatives will better understand insurance tools that will enable them to be more productive and better deliver customer experiences leading to better business outcomes. Indeed, from the customer perspective, DAPs can enable companies in the insurance industry to keep CX positive and smooth. Firstly, by training on near real-life scenarios and secondly, by being able to more easily navigate applications, processes and systems internally, customer service representatives will be able to spend more time and focus on the customer and on resolving their queries, without being hindered by technological hurdles. For example, errors made in policy or claims processing can be reduced if employees can use self-help elements of DAPs to mitigate issues and solve queries themselves, in real-time. As a result, customers will be happier with their service, and more likely to stay loyal to that brand.

Customer-facing platforms can also be improved using DAPs. Typically, legacy apps whether on our phones or online, can make it difficult for users to complete their tasks, leaving them frustrated. With DAP user-specific content and just-in-time support, such as pop-ups, automated walk-throughs and user guides for every part of the user journey, customers can experience a smoother journey and have their queries and issues resolved more efficiently..

Drive efficiency and customer satisfaction

DAPs are already growing in popularity, with Gartner predicting that by 2025, “70% of organizations will use digital adoption solutions across the entire technology stack to overcome still insufficient application user experiences.”

So, now is the time for insurance providers to leverage this technology to facilitate their digital transformation plans. By ensuring their increasingly dispersed and digitalised workforce can use the latest applications to their full potential, and that their customer journey is as efficient and easy-to-use across the multiple channels customers expect, insurers will see huge benefits, from increased efficiencies to improved customer satisfaction.

Continue Reading

Technology

Are cyber insurance and incident response budgets the same thing?

Published

on

By

Dominic Trott, head of strategy – UK, Orange Cyberdefense

 

Cyberattacks on businesses increased by 13% in 2021 compared to the previous year. Yet while it’s not necessarily the case that the number of bad actors is increasing, it is the scale on which they’re operating that has broadened exponentially.

In addition, the manner in which cyberattacks are being carried out has also evolved. While some cybercriminals hack for fun, the vast majority of malicious activity is, unsurprisingly, conducted for financial gain and targets organisations on the basis of two simple principles: first, where there is the most value to be targeted; and second, where the attacks are most likely to be successful.

It’s also likely that the full extent of the cybercrime landscape is hidden. Accurate data on the impact of cyberattacks is often hard to come by because, in many cases, the breached organisations are unaware of the full extent of the attack – or even that one took place. They might genuinely not know this information if they don’t have accurate oversight of their digital estate, or keep quiet for fear of incurring legal liabilities or causing reputational damage.

The current security landscape has created the perfect storm for cybercriminals, as cyber insurers and Computer Security Incident Response Teams (CSIRT) often end up fighting over the same budget. Traditionally, it has been relatively easy for firms to obtain cyber insurance coverage at low premiums. However, the heightened cyber risks and exponential growth of ransomware attacks in recent years has led to premiums rising.

The question that businesses often ask, therefore, is ‘why do I need an incident response retainer when I already have cyber insurance? Surely, it’s a waste of money? If the worst does happen, the insurance company will pick up the bill for any damage done after the event’. I would argue that is a short sighted and potentially dangerous approach. Let’s look at the different roles of incident response and cyber insurance.

  1. Cyber Insurance: like other types of insurance, this aims to give businesses a way to ensure that if the worst happens, they can recover some of the costs. Cyber Insurance will likely cover you for some of the tangible costs associated with a breach, but it probably won’t cover all of them. By acting quickly and limiting the scale of the breach, you may be able to reduce the full impact. In addition, some insurance companies will expect you to have demonstrated a level of preparedness before accepting your claim – a bit like having a burglar alarm or dead-bolt locks on your house before a house insurance claim is accepted.
  2. Incident Response Retainer: aims to provide rapid, on-demand expertise in an emergency if the customer calls them immediately after an incident. The key to mitigating the impact of any cybersecurity incident is the reaction time between detection and response. Many companies lack the infrastructure needed to react in a quick and secure manner. Having an incident response team available 24/7 to identify, contain and eradicate threats and to get businesses back up and running as soon as possible may be crucial to their ability to continue successfully trading.

 

Cyber resilience

But isn’t incident response included in the insurance policy? In many cases, it will be. And perhaps this is where the confusion comes. Cyber insurers will often pay out, but only as long as the incident is covered by an incident response retainer. Their objective is of course to help cover the financial losses that result from cyber events and incidents and in numerous policies, the presence of a retainer agreement with an external incident response provider can help prevent severe losses. This will often bring down the premium of the insurance policy. Having a retainer also means you get to choose the CSIRT team that you are going to be working with in advance. You can assess their credentials, their experience, talk to their other customers – all before an incident occurs.

The key thing here is building cyber resilience. Of course, there is no such thing as complete security. For starters, incident response alone is insufficient to deliver cyber resilience from either a technical or procedural perspective. Good practice advocates that solutions should be in place across the full threat lifecycle. For example, the NIST framework recommends that organisations identify their threats and vulnerabilities; protect against them with security tools and operations; detect threats as they address the enterprise; respond to contain and remediate an incident as it occurs; and recover to take lessons learned from incidents and improve ‘business as usual’ appropriately.

But, leaving an end-to-end approach to threat lifecycle management to one side, having both cyber insurance and an incident response retainer working seamlessly together will at least provide organisations with a fighting chance of continuing their core business functions if and when disaster strikes.

 

Making cybersecurity a joint enterprise

There are worrying trends emerging in the cybersecurity market. While attacks are becoming more sophisticated and ransoms are rising, there are concerns that there might not be enough money in the still-emerging sector to cover everyone’s needs. So, what can companies do? They should still invest in insurance coverage, but they also need to look for other ways to cover their potential exposure, including CSIRT rapid response teams.

It cannot remain a budgetary decision for a CTO and a CFO to fight over whether to firefight OR recoup what has been lost in cyber-attacks. Both are important. An incident response team is the first port-of-call to help respond to any cyber accident or incident. Then and only then – once the breaches have been made safe – should you call in the moneymen.

Continue Reading

Magazine

Trending

Finance11 hours ago

Hey, Gen Y and Gen Z do you think you can retire comfortably?

By Penelope Gregoriou, technical investment specialist at Alexforbes   Millions of South Africans rely on the money saved in their...

Uncategorized11 hours ago

GDPR: data security four years on

Bruce Penson, the managing director of cyber security and IT support company Pro Drive IT, outlines how GDPR has changed...

Banking11 hours ago

The importance of Customer Experience (CX) for retail banks today

By James Isaacs, President, Cyara   Today’s retail banks face considerable challenges. Open banking initiatives –  that make it easier...

Finance11 hours ago

Getting ready for VAT digitisation: automation is key

Christiaan Van Der Valk, Vice President for Strategy and Regulatory at Sovos, says technology will power real strategic success for...

Banking11 hours ago

Challenging the challenger: Why the digital transformation of traditional banking is key for competing with challenger banks

By Sam Schofield, Senior Vice President: Global Enterprise at Udacity   Monzo and Revolut are only seven years old. Starling,...

Wealth Management12 hours ago

Green with Envy – an Environmentally Conscious Data Center

Mark Fenton, Product Manager, Future Facilities   Environmental considerations are at the top of every business leader’s agenda and an...

Technology12 hours ago

How Digital Adoption Platforms can enhance digital transformation and customer experience in the insurance industry

By Vara Kumar, CPTO & Co-founder, Whatfix   Like many industries, the insurance sector was prematurely hastened towards digitalisation due...

Business21 hours ago

Why do Traders Need a Managed Service Partner?

Jeff Mezger, Vice President of Product Management, Financial Markets, TNS   Does your financial institution have the understanding, resources, talent...

Business21 hours ago

The FCA will take immediate action on customer vulnerability; here’s how firms can prepare.

Author: Jonathan Barrett, CEO and Co-Founder at Comentis   Identifying and supporting vulnerable clients has become a priority for financial...

The Green Revolution In Investing - Sustainable Investing The Green Revolution In Investing - Sustainable Investing
Business1 day ago

How fintech is key to empowering climate action

Attributed to: Rory Spurway, CEO & Founder of CarbonPay   As human activity continues to have a significant impact on...

News2 days ago

Fractional NFTs- A Positive Impact on the Market

Non-Fungible Tokens (NFTs) have been making headlines for quite some time now. The phenomenon is getting a lot of attention...

Technology2 days ago

Are cyber insurance and incident response budgets the same thing?

Dominic Trott, head of strategy – UK, Orange Cyberdefense   Cyberattacks on businesses increased by 13% in 2021 compared to...

Business2 days ago

Ticketing modernization: the key success factors for an outstanding deployment

Arnaud Depaigne, Product Manager, Smart mobility, Fime   Technology has transformed the way we pay, and transport ticketing has been...

Finance2 days ago

How to increase the growth of crypto apps in a challenging market environment

By Alexandre Pham, Vice President, EMEA at Adjust   Crypto and digital assets became one of the hottest tech topics...

Business3 days ago

Businesses must adapt to meet customers’ evolving payment needs

Nathan Shinn, Founder and Chief Strategy Officer, BillingPlatform   From the lingering impact of the COVID-19 pandemic, through to the...

Banking4 days ago

Carbon Neutral and Net Zero: The New Disrupter-in-Chief

Authored by Jason Matteson, Director of Product Strategy, Iceotope   When we think of market disruptors we typically think of...

Business4 days ago

Balancing risk management with a seamless customer experience

By Andrew Davies, VP, Global Market Strategy, Financial Crime Risk Management, Fiserv   For quite some time, measures to mitigate...

Business4 days ago

The need for blockchain to be interoperable and why it matters

By Kai Waehner, Field CTO and Global Technology Advisor at Confluent   In mid-2022, it would be fair to say that...

Interviews4 days ago

How MFA can protect the financial sector from the unprotectable

The financial sector has long been a primary target for threat actors. However, the unique infrastructure of core financial systems...

Business5 days ago

Why a three-step framework can help financial advisers support their most vulnerable customers.

Author: Tim Farmer, Co-founder and Clinical Director at Comentis   We are witnessing a vulnerability epidemic. With the Financial Conduct...

Trending