In response to a rising number of cyber threats, the UAE Cyber Security Council has urged businesses to enhance their cybersecurity practices. A significant concern is the high rate of data breaches, with 56% of businesses experiencing such incidents in the third quarter of 2023. The Council has identified key steps for companies to bolster their defenses, including keeping systems updated, improving DDoS protection, and actively monitoring for threats.
Businesses are advised to activate their cyber operations centers and report any suspicious activities immediately. It is also crucial to enhance protection against distributed denial-of-service (DDoS) attacks by evaluating and adjusting current security configurations. Regular updates of software, operating systems, and security applications are essential to ensure that the latest security patches are applied.
Monitoring network traffic using Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) is recommended to detect suspicious behavior early. Additionally, developing a comprehensive cyber incident response plan will help businesses manage and mitigate the impact of any potential incidents. Vigilance against phishing scams and the use of strong passwords with two-factor authentication are also emphasized.
To safeguard data, businesses should follow the ‘3-2-1 Rule’ for backups: maintain three copies of data, store them in two different locations, and ensure one copy is offsite or offline. This approach provides a critical safety net in case of data loss or cyberattacks, as highlighted by Harish Chib from Sophos.