What are the main expert report on cyber attacks for this year? Firstly, I would say that a year is a special year for several reasons. First of all, because this is an important election year with several national polls with serious cybersecurity issues. Secondly, because it allowed British experts to better understand that cyber risk is not – no longer for some – the business of others, a file that needs to be processed “later”, but a beautiful and well-relevant problem. Finally, because the attacks that enameled the calendar showed a new dimension: more sophisticated, more thoughtful, more destructive and now affecting the whole society, a citizen of a large company and even our democracy.
In a broader sense, the development of digital technology is currently accompanied by the concomitant development of a digital threat. In this context, more than ever, it is necessary to recall the important role that political and economic leaders should play when thinking about security in the light of their economic, strategic or image problems.
How did experts respond to these cyberattacks in 2017? Reply is only part of our actions. We are here to anticipate, track, train, train and develop an effective ecosystem that can prevent and detect attacks. Indeed, experts report about healthy Internet could shed light on the whole spectrum of actions that we perform daily, in addition to the sometimes more noticeable “computer firefighter”. A firefighter intervenes when a fire breaks out; this is important, but not enough in our area, because our goal is to avoid losses as much as possible and, in particular, to be suppressed by an exponentially growing number of disasters. The office develops and maintains a culture of innovation, positioning itself not as a follower, but as a prescriptive. Forecaster of good practices, good reflexes, good information.
To share them, our partners and we create tools, hold awareness-raising events and support the development of modern solutions so that everyone can take advantage of them and thus contribute to these efforts in the field of digital security, which can only be collective. This effort is not only national. Work is also part of European and international logic. How? I want to answer the steps. Because, even if there is urgency, decisively moving forward is counterproductive. For many years, we have been patiently working with the Member States of the European Union to form a single whole in the face of the threat. This collaboration is also illustrated by ongoing exchanges with the European Commission. The development and transformation of the Network and Information Security Directive (NIS) into national law is a particularly effective and efficient example.
It also establishes ties with states that want to improve their security, and we answer questions to share best practices, advice and information. Finally, the idea that maintaining closer ties with our partners enhances our ability to combat attacks encourages us to engage in many discussions with countries whose organizational model and maturity to these issues are sometimes different from ours. If the French model may seem original in comparison with other approaches, every day brings us evidence of a truly effective echo. A reality that puts at the center of a strategic game, not just operational and technical. Digital security is not an option; this is definitely everyone’s business.
A survey of an insurance company among 5400 companies in 7 different countries again shows a significant increase in cyber attacks and related costs this year. According to experts report about healthy Internet, more than three out of five enterprises (61%) have been targeted by one or more attacks over the past 12 months. However, from year to year there are still so few to properly prepare for these attacks. In the 2019 report, a representative sample of private and public companies located in the United States, Great Britain, Belgium, France, Germany, Spain and the Netherlands was surveyed. Each company was evaluated according to its cybersecurity strategy and the implementation of this strategy. Then they were ranked according to the points received. The results are obvious: only 10% of these companies have high enough grades to be considered ready for a cyber attack.