EMBARCING CYBER SECURITY

CYBER SECURITY

Computer security, also known as cyber security or IT security, is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. 

Cyber-safety is a common term used to describe a set of practices, measures and/or actions you can take to protect personal information and your computer from attacks. 

  

PAST, PRESENT OF CYBER SECURITY

• Cyber security is a young and immature field
• The attackers are more innovative than defenders
• Defenders are mired in FUD (fear, uncertainty and doubt) and fairy tales
• Attack back is illegal or classified

FUTURE OF CYBER SECURITY

• Cyber security will become a scientific discipline
• Cyber security will be application and technology eccentric
• Cyber security will never be “solved” but will be “managed”
• Attack back will be a integral part of cyber security

 

Types of computer-related crimes.

• Identity Theft
• Transmitting child pornography
• Theft of intellectual property 
• Cyber-stalking 
  
• Unlawful coping and distribution of computer programs 
• Unauthorized access to computer (s)
• Computer sabotage 
• Computer forgery 
• Bank card fraud
• Credit card fraud etc

E-Commerce Security

E-commerce revenue is constantly increasing, but the number of fraud cases, as well as the percentage of fraud in online transactions, is increasing faster still. What types of fraud exist and more importantly how can we protect ourselves against them?

 

Card-based payments -  Internet payment fraud is constantly increasing, and is, apparently, unstoppable. The number of fraud cases has increased by 19 percent compared to 2013. Fraud is not exclusive to credit card payments, however. Criminals are becoming more sophisticated in their use of malware to command online banking logins via phones, tablets and computers, using the stolen bank account details to make fraudulent payments.

Identity Theft -  In traditional identity theft, the criminals’ goal is to carry out transactions using a different identity. Instead of having to come up with a completely new identity to do this, they simply take over an existing one. This is easier to do—and usually much faster. In order to commit identity theft or appropriate someone’s identity, fraudsters target personal information, such as names, addresses and email addresses, as well as credit card or account information. This enables them, for example, to order items online under a false name and pay using someone else’s credit card information or by debiting another person’s account.

Friendly Fraud - using this method, customers order goods or services and pay for them – preferably using a “pull” payment method like a credit card or direct debit. Then, however, they deliberately initiate a chargeback, claiming that their credit card or account details were stolen. They are reimbursed—but they keep the goods or services. This fraud method is particularly prevalent with services, such as those in the gambling or adult milieus. Friendly fraud also tends to be combined with re-shipping. This is where criminals who use stolen payment data to pay for their purchases don’t want to have them sent to their home addresses. Instead, they use middlemen whose details are used to make the purchases and who then forward the goods.

 

 Clean Fraud -  The basic principle of clean fraud is that a stolen credit card is used to make a purchase, but the transaction is then manipulated in such a way that fraud detection functions are circumvented. Much more know-how is required here than with friendly fraud, where the only goal is to cancel the payment once a purchase has been made. In clean fraud, criminals use sound analyses of the fraud detection systems deployed, plus a great deal of knowledge about the rightful owners of their stolen credit cards. A great deal of correct information is then entered during the payment process so that the fraud detection solution is fooled. Before clean fraud is committed, card testing is often carried out. This involves making cheap test purchases online to check that the stolen credit card data works.

Affiliate Fraud - There are two variations of affiliate fraud, both of which have the same aim: to glean more money from an affiliate program by manipulating traffic or signup statistics. This can be done either using a fully automated process or by getting real people to log into merchants’ sites using fake accounts. This type of fraud is payment-method-neutral, but extremely widely distributed.

Triangulation Fraud - During triangulation fraud, the fraud is carried out via three points. The first is a fake online storefront, which offers high-demand goods at extremely low prices. In most cases, additional bait is added, like the information that the goods will only be shipped immediately if the goods are paid for using a credit card. The falsified shop collects address and credit card data – this is its only purpose. The second corner of the fraud triangle involves using other stolen credit card data and the name collected to order goods at a real store and ship them to the original customer. The third point in the fraud triangle involves using the stolen credit card data to make additional purchases. The order data and credit card numbers are now almost impossible to connect, so the fraud usually remains undiscovered for a longer period of time, resulting in greater damages.

Merchant Fraud - It’s very simple: goods are offered at cheap prices, but are never shipped. The payments are, of course, kept. This method of fraud also exists in wholesale. It is not specific to any particular payment method, but this is, of course, where no-chargeback payment methods (most of the push payment types) come into their own.

Taking into account the weak security due to the lack of two-factor authentication amongst almost all online services, the problem is only going to get worse until there is a more rigorous standard adopted. This security standard for e-Commerce vendors would remediate the online risks of doing business with vendors of every size, and be mediated by the government, the credit card companies, or both.

10 tips for preventing breaches and hacks and keeping customer data safe for E-Commerce platforms 

1. Educate employees on cyber security

2. Make sure your hosting company is a trusted provider for hosting services 

3. Use a secure ecommerce platform.

4. Deploy SSL encryption.

5. Make sure your ecommerce site is PCI DSS compliant.

6. Utilize Web Application Firewalls (WAFs).

7. Have employees regularly change their passwords

8. Use multi-factor authentication. 

9. Keep up-to-date on security patches, especially for open source platforms

10. Make sure to back up your site regularly.        

 

CLOUD BASED ACCOUNTING

For many business owners, cloud accounting seems like a risk. Why trust your entire operation’s financial information on a server somewhere you can’t see? As it turns out, cloud accounting is the safest way to keep all of your records. Not only does it allow for flexibility – you can work on your files anywhere you have an internet connection – but it’s also more secure. Your information is kept in large data centres with more backup systems and redundancies that you most likely have in your own business.

WHAT IS CLOUD BASED ACCOUNTING???

Cloud accounting, also known as “online accounting”, serves the same function as cloud computing. You might install the software on your computer but it runs on servers and you can access it using your Internet. In some instances, you won’t need to install the software on your computer and can access it via web browsers.

Cloud Accounting softwares, serves the same functions of normal accounting software that you would install on your computer, however the application & the data is stored in a remote external server and can be accessed through internet at any point of time from any location.

Best Cloud Accounting Softwares 

AccountEdge Pro — AccountEdge Pro does more than accounting. It features DIY or outsourced payroll services, so you can link accounting to payroll, pay your employees (including direct deposit), track time and prepare payroll taxes. Retailers will also enjoy its inventory management suite, which also integrates with popular e-commerce solutions. AccountEdge Pro is available on Mac, Windows, mobile and in the cloud. accountedge.com/pro - See more at: http://www.businessnewsdaily.com/7543-best-accounting-software.html#sthash.nuKygNQ9.dpuf

AccountEdge Pro — AccountEdge Pro does more than accounting. It features DIY or outsourced payroll services, so you can link accounting to payroll, pay your employees (including direct deposit), track time and prepare payroll taxes. Retailers will also enjoy its inventory management suite, which also integrates with popular e-commerce solutions. AccountEdge Pro is available on Mac, Windows, mobile and in the cloud. accountedge.com/pro - See more at: http://www.businessnewsdaily.com/7543-best-accounting-software.html#sthash.nuKygNQ9.dpuf

1. FreshBooks 

A favorite among business owners, FreshBooks offers one of the most user-friendly cloud-based accounting software for non-accountants. It's also our top pick for the best accounting app for iOS and Android devices for offering a wide range of accounting tasks you can perform on the go. - See more at: http://www.businessnewsdaily.com/7543-best-accounting-software.html#sthash.nuKygNQ9.dpuf

A favorite among business owners, FreshBooks offers one of the most user-friendly cloud-based accounting software for non-accountants. It's also our top pick for the best accounting app for iOS and Android devices for offering a wide range of accounting tasks you can perform on the go. - See more at: http://www.businessnewsdaily.com/7543-best-accounting-software.html#sthash.nuKygNQ9.dpuf

A favorite among business owners, FreshBooks offers one of the most user-friendly cloud-based accounting software for non-accountants. It's also our top pick for the best accounting app for iOS and Android devices for offering a wide range of accounting tasks you can perform on the go. - See more at: http://www.businessnewsdaily.com/7543-best-accounting-software.html#sthash.nuKygNQ9.dpuf

2. Sage one

3. Intuit Quickbooks online

4. Zoho Books

5. Xero

6. Paychex Accounting  Online 

7. Free Agent 

8. Less Accounting 

9. Intacct

10. AccountEdge Pro

Cloud based accounting software offers a number of benefits for businesses including:

The cloud alleviates the need for businesses to store and manage data and maintain expensive computer hardware. You can operate the software from a single computer with a standard modem providing an internet connection, without being connected to a server or having specific software installed on the computer.

Data on the move; Data can be entered & accessed from any location at any point of time. The user's doesn't required to go to their office to enter transactions or to retrieve reports.

Increases your accuracy; There is only one ledger kept and that is the file in the cloud, which improves the accuracy of the information and therefore minimises errors.

Real time Interaction; The ability for owners to interact with their accountant in real time instead of having to send the data file to the accountant each time.

Saves money; A monthly access fee is paid which usually works out less than the cost of buying the software and then paying for annual subscriptions.

Savings in upgrade cost; The software is automatically kept up-to-date by the provider meaning that you don’t need to download updates such as new tax rates where the payroll module is used.

Helps collaboration; Being able to add different users makes it much easier to collaborate with your team. It doesn’t even matter where they are, as you can all log on from different locations. 

More compatibility;  The chances are your accountant’s software can sync with yours, or you can easily export your books and send them to your accountant with a couple of clicks in a comprehensible form.

Syncs with your bank; Automatic bank feeds mean that bank transactions are immediately fed into the right accounts and sorted by category. 

Checks for you; Accounting software has clever ways of checking and reconciling different figures. If you entered the wrong amount on an invoice, or entered a date the wrong way, it will likely pick up the inconsistency and alert you. 

Can prevent fraud; With customisable user roles and built-in audit trails, your software helps you minimise, detect and track fraud activity before it actually damages your business. 

Better security; If you’re using cloud based accounting software, the professional grade security technology employed means your data is safer than on your own hardware. It’s also generally safer from fire, flood and other disasters.  

Offers instant overview; You always know exactly where your business is, as well as how it’s performing against projections, because your software can spit out an instant report showing your exact financial position.   

Access using multiple devices: The data can be accessed through laptops, smart phones & tablets. This is convenient for users who are on travel.

Nothing is perfect, so what are the disadvantages of cloud accounting?

Confidentiality of Data: The biggest disadvantage of cloud accounting is that you are sharing your data with a third party. They can use your data for their business interests, as the storage of data is fully controlled by the providers. The data could be stored in different countries and the government can also review & audit your data if required.

Restrictions in the applications: The cloud accounting may not support all the applications you have, they provide you what they have. Some of your requirements may not be available in cloud accounting.

Data Back up: Most of the cloud accounting softwares don't provide you the facility to back up your data on your computer. When you change the software, you might lose the data you already entered with the previous cloud accounting software or you will have to continue paying them to use your data.

NOTE: Financial records are extremely important for any organisation, the decision to move to cloud accounting has to be made after considering the above advantages & disadvantages.