Rising Cyber Threats

Abstract

In a current situation where technology dominates in all senses and actions of our existence as human beings, the importance of organizations developing protections and taking care of security is also growing, not only characterized by physical fences or walls, which protect their material goods, but also the protection of their virtual space, including their digital and physical information. The
security of a company's information is related to the protection of a set of data in order to preserve the value that this information represents for the company's business. Based on this concern, organizations began to invest a large part of their profits in equipment and software in order to preserve their business, which is subject to kidnapping or theft of information, resulting in compromising the functioning of the company's business. The objective of this article is to approach,
through the methodology of bibliographical research, the important relevance of the theme of data security and, using history as a method of comparison, to present possible losses that organizations may suffer in their business. Through the discussion of 10 cases widely publicized by the media since 2011, it can be seen mainly the financial loss registered in the organizations. It was also found
in the research for the preparation of this article that many cases were not disclosed even for fear of the company presenting a vision of fragility for the market, so these cases remain anonymous and do not appear in the surveys, making it impossible to obtain real statistics. With the data discussed in this article, it can be seen the main losses for organizations that had information stolen by rackers, who, in addition to having their confidential project data shared worldwide on networks, suffer from unavailability of infrastructure, emails, website, systems for customers and employees, and that all
these items directly impact the financial scope because the entire organization “locks”. Information security comprises a series of actions that are strategically adopted to control and avoid the risk of damage or loss of data in organizations. Based on confidentiality, integrity and availability of information, these practices support the data protection policy in companies. Security policies must be implemented in the organization in a clear and objective way, clearly defining the responsibility of each area and its employees in the use of technological resources. Policies should provide a framework for implementing security mechanisms, defined through security procedures and auditing processes.