26. Jul 2022

What you need to know now!

Ransomware & other potential threat scenarios

Occupational safety and the capability to ensure delivery and business operation are among the most significant success factors in companies and organizations. Unfortunately, potential threat scenarios that pose serious risks continue to emerge.

We have summarized the most recent threats, particularly in the field of cyber security, as well as some ways to prepare yourself.

Ransomware, a type of malicious software, has a very high damage potential for management system documentation, as it could affect the entire company, including the areas of quality, environment and safety”, says Eckehard Bauer, MSc, Executive Vice President Business Development Safety Management, Business Continuity, Risk, Security, Compliance and Transport, Quality Austria.

Other cyber threats from 2021

Looking back to 2021, the independent information platform on Internet fraud and fraud-like online scams “Watchlist Internet” categorized the top 5 cyber threats that can be dangerous for individuals as well as entire businesses:

  1. Fake stores have been around for a long time and were usually recognizable by poor spelling, missing imprints or prices that were too low. However, scammers are increasingly adapting to seasonal demands and copying websites of reputable providers. Therefore, it is advisable to pay even closer attention to the imprint and experience on the Internet.
  2. Dubious drop shippers actually send their goods to the customers (in contrast to the above mentioned fake stores). However, the goods often arrive with great delay or high cost traps occur, such as customs and expensive returns.
  3. “Smishing” is a new fraudulent practice using SMS (short message service). Here, text messages are sent by supposed banking institutions or parcel services and ask the recipient to click on a link or enter personal data. This may trigger unintentional payments or install viruses. Significant signs to identify “smishing” activities include spelling and grammatical errors, a direct request to click on a link, or requests for package tracking without packages having been ordered.
  4. Investment platforms: high profits, low costs and personal support attract more and more users to dubious trading portals. The loss of capital (fraud) is often followed by a “recovery scam”. In this case, the recovery of the previously lost capital is offered in exchange for money. However, this is almost always another form of scam.
  5. Tech-support scam: these are classic scammers who want to gain access to the people‘s PCs, usually through malware. Therefore, do not trust any alleged Microsoft employee or other supposed service offers where you are contacted personally via phone to close security gaps.

Better safe than sorry

In addition to using secure software and tools, it is important to raise employees’ awareness of the problem by developing their skills in a targeted manner, and also to consider the factor “human“. This includes, on the one hand, further training and education, for example in the areas of risk, security and compliance. Such training courses provide a practical approach to these topics and prepare the participants for possible emergencies.

Another effective protective measure, on the other hand, is to systematically address the issue, for example in the context of a business continuity management system (BCM) acc. to ISO 22301, ÖNORM D 4901 (risk management) or an information security system acc. to ISO 27001. In the event of an emergency, a BCM can help to improve the course of the incident and to quickly and systematically regain the operational or delivery capability.  Organizations with a certified BCM are in a position to resume the interrupted or impaired business processes much more quickly if the worst comes to the worst.

Existing emergency systems, in the sense of a holistic and sustainable approach, must therefore also be expanded to include cyber issues and be recognized as an overall framework.

qualityaustria trainings in this context:

The "Watchlist Internet" keeps you updated about Internet Fraud, Traps and Fakes. Learn more here!

Contact person

Team

quadratisches Portraitbild von Claudia Kerpe

Ms. Claudia Kerpe, MSc

Head of HR, Business Development Risk, Business Continuity, Compliance and Anti-bribery

Send e-mail

News & Events

The basis for long-term success!

30. Apr 2024

5 hints on how companies can get a grip on their reporting requirements

Building on existing systems:

Learn more
23. Apr 2024

Climate change becomes the focus of management system standards

New ISO requirements:

Learn more
18. Apr 2024

Above-average high recommendation rate for Quality Austria

Achieving top performance together

Learn more
28. Mar 2024

ISO 14001 is being revised – what can we expect?

New revision planned

Learn more
22. Mar 2024

Into the future with a system

New qualityaustria Overview of Services 2024 published

Learn more
08. Jan 2024

Current information on the ISO 450xx series

New publication EN ISO 45001:2023

Learn more
13. Mar 2024

Event: 29. qualityaustria Forum

Learn more
21. Dec 2023

ISO 9001 Revision: What you need to know now!

The first board meeting has taken place

Learn more
18. Dec 2023

Whistleblower system SecuReveal now accessible via qualityaustria website

All about the anonymous whistleblowing system for whistleblowers

Learn more
28. Nov 2023

SCC: Current status and important news

Known key points and further information

Learn more
07. Nov 2023

Quality Austria is new Certification Body for ISO/IEC 27001

Increasing demand for information security

Learn more
28. Aug 2023

Notified Body for in vitro diagnostics and medical devices

Communication from QMD Services GmbH

Learn more

Show all news Show all events

+43 732 34 23 22
0