Cyber-preparedness as a first aid service in case of a cyber-attack on companies
Why did KYBERPOHOTOVOST (CYBEREMERGENCY) come into being?
Let's start with statistics on the number of cyber attacks in the Czech Republic. According to the NCIB, a record number of cyber attacks were recorded in 2023. DDoS and Phishing attacks with subsequent attacks on company data played a major role in companies. Nevertheless, a record acceleration of such attacks was recorded in 2024.
Unfortunately, companies are still not prepared for attacks. It is quite common for such companies to be breached and fall victim to an attack. In such a situation, it then calls for help from all sides and needs to address such a situation. Help is often on a "we will try to help you" basis, but not always available.
That is why we are setting up a cyber readiness centre where we will help such companies as much as possible with a clear process.
Why are companies still so vulnerable?
Simply because they don't invest in cybersecurity. It's a new thing for them and by inertia they overlook this necessity. It will take time for companies to understand that the investment in prevention is far less than the subsequent damage. We are seeing damage ranging from hundreds of thousands to tens of millions. In the case of vishing, even hundreds of millions. It sounds like cyberscifi but it is not. Of course, companies do not brag about it and it is not possible to be specific, but those specific cases where a payment of hundreds of millions leaves the company simply exist. And there is no way to sugarcoat it.
So how to ensure prevention?
We see two possibilities. The first one is a bit of a partial prevention, but it's better than nothing. Again, it's a little less financially demanding. We call it cyber-preparedness with prevention. For a flat fee, the customer gets an initial assessment of the situation and a set of recommendations on what to do differently then we guarantee that in the event of a real attack we will intervene to minimize the damage. If the data can no longer be saved then we will focus on crisis management the fastest way to restore the business. We then repeat the preventive assessment on an annual basis or more frequently by individual agreement.
The second option is to introduce full-fledged security surveillance. In this case, we will connect all end devices, servers and network devices to the security monitoring center and we will be able to see in real time only attempts to break the company's protection. Otherwise, we will behave in the same way as in the case of cyber-prevention. However, we are much more likely to prevent an attack, and therein lies the undeniable advantage. It's an active defense against an attack.
What awaits us in the next period?
It will definitely be an increase in the number but mainly in the sophistication of attacks. Artificial intelligence will be involved. Therefore, cybersecurity experts will have to work hard to keep up with attackers. Unfortunately, they are always a little ahead of the game.
So let's keep our fingers crossed and let's fight.
Petr, Co-founder Safee | Cyber Security