Elite CIO Logo

BECOME MEMBER
Back

Book Review - Why Cybercriminals Succeed

  • By Ashok Jade
  • Date Nov 05, 2019
  • Quotes25

This book could be ready reckoner to CEO to common users... Language is very simple... most importantly, authors has explained breaches with real life examples so one can relate it quickly in their day to day life... examples are not imaginary so reader gets connected easily..

Just finished reading “Why Cyber Criminal Succeed” written by Cdr K K Chaudhary... One of the enjoyable and knowledgeable reading I had after long gap... In 20 years of my experience in technology field, Cybersecurity is one of fascinating subject for me and so I enjoyed reading this book a lot... One of the key reason of breaches I could figure out while reading this book is, human ignorance is main factor which attributes to success of Cybercriminals... . Author suggests linking security awareness with appraisal system... People can debate on process but it is true that lack User awareness is bigger factor in cyber breaches which needs to be handled by every organisation... User does intentional or unintentional mistake and cyber criminals enjoy its advantages... Today, every organisation has Cybersecurity Policy however as stated by Author, Enforcement of Cybersecurity Policy is one of the challenge due to privileged class of users and ease of system administration... If we handle this then policy enforcement will be much easier and effective... Author states, 60% breaches are caused by Insiders. They have two advantages —- Trust and Authorization access... Both these factors make it difficult to detect breaches... As a reader I feel, Trusting employees is always good but should not link trust with monitoring framework... There must be balanced monitoring framework to monitor cyber activities of employees... It was interesting to know how one letter change in domain name of email Id lead to cyber scam in ONGC... Cybercriminal used domain name as @ognc.co.in instead of @ongc.co.in... “Neem-Karela” Treatment is unique remedy Author gives... As name suggest, Neem and Karela has medicinal usages in Ayurveda. It is used to improve immunity of human body... Although these are inexpensive and easy treatment but most people avoid this due to its very bitter test... In similar fashion, author has suggested few remedies to minimise cybercrime risk but it need lot of discipline and user awareness... but those are very useful... In conclusion, as a reader I can say, we CXO are working hard towards building secure environment for our users, IT Systems and Assets but we tend to forget to build strong monitoring framework and ignore user awareness... Companies invest heavily on DLP, Rights Mgmt and so on however; very few companies end up implementing it successfully... many a times it is observed that these solution are only for namesake with too many exceptions... In any organisation, unless security is not top mgmt agenda will end up in cyberattacks one or other day... Finally, this books tend to think you on many aspect of Cybersecurity... You relate your day to day job with stories mentioned in this books and prepare your mind to act on these aspect of Cybersecurity...