Hiscox stages ‘real world’ cyber attack on bike shop to illustrate risks
Re/insurer Hiscox took a novel approach to raising awareness around the risk of cyber attacks – and thus the importance of cyber insurance – in a guerrilla marketing stunt held in the UK this week.
The insurer staged a ‘real world’ cyber hack of bike manufacturer Brompton whereby it created a clone of its existing London-based store across the road from its real one overnight, hired look-a-like staff to work in it and stocked the shelves with counterfeit merchandise.
It then launched a series of cyber attack simulations on the genuine Brompton store in Shoreditch.
Common hacking techniques such as ransomware and phishing were brought to life through a series of simulated offline attacks; the real store was boarded up, displaying a ransom note demanding Bitcoin in exchange for re-entry; genuine stock deliveries were diverted to the fake ‘3rompton' store, highlighting the potential effects of a phishing scam; finally the real Brompton store was flooded with imitation customers overwhelming staff, simulating a denial-of-service (DDoS) attack.
The stunt was to raise awareness of the risks of cyber crime to businesses. According to the insurer, one in three (33 percent) of UK small businesses have suffered a cyber breach and this simulation is the latest initiative in its cyber awareness campaign, set-up to highlight this risk.
James Brady, head of cyber at Hiscox, said: "The frequency and severity of cyber attacks on UK businesses is alarming. Cyber criminals are swift, sophisticated and consider businesses of all shapes and sizes worthy targets so it's vital that organisations are both aware of these risks and prepared to manage them.
"Businesses need to take ownership of their cyber security and put solid preventative measures in place. Unfortunately attacks will still get through and being prepared for those attacks is critical."
Robert Hannigan, former director of GCHQ and special advisor to Hiscox, commented: "Cyber crime is one of the biggest security risks facing businesses today but many aren't taking it seriously and many more are underprepared. It's a less tangible risk than burglary or a fire which can make it hard for businesses to grasp, so bringing cyber crime to life with an exercise like this is a useful way of conveying an important message.
"The hacking techniques being simulated such as ransomware and phishing are extremely commonplace and have been for many years. At the same time, new types of cyber crime continue to emerge, which makes staying on top of cyber security an ever-evolving challenge."
