In a new era characterised by digital and technical dominance, data protection is one of the most important issues of our time. Whilst data is an incredibly valuable resource it is also increasingly weaponised and the recent security breaches of Dropbox and MediSecure are prime examples of why your data needs to be secure at the core. As cyber threats continue to evolve to breach even the most ‘secure’ organisations with millions of customers, consumers need to be aware of the importance of investing in technologies that are secure-by-design and focus on data-centric security.
So, what does this mean?
In order for technology to qualify as secure-by-design, data protection and security measures must be integrated into the system from the very beginning, rather than being an add on or afterthought. Technologies with this capability prioritise vital security features such as end-to end encryption, access controls, authentication mechanisms and ongoing security updates. By embedding this level of security into the DNA of technology solutions, organisations can establish a much stronger foundation for protecting their data within a data-centric security framework.
In the case of the Dropbox breach, all reports have exposed that the vulnerability point was around the integration of HelloSign. In 2019, Dropbox acquired HelloSign for $US230 million dollars to “improve document workflows for hundreds of millions of users.” Whilst this is a noble pursuit, we continue to see these software integrations cause vulnerability points that often cause more harm than good. The fallout of this breach was not only detrimental to the millions of users whose data has now been compromised, but also to the company who is now facing reputational damage, a loss of customer trust and operational disruption.
In yet another incident, the former national prescription delivery service provider, MediSecure, was affected by a data breach. While MediSecure is no longer the national prescription delivery service – having lost a tender in late 2023 – the leak nevertheless contained health information relating to prescriptions and healthcare provider information. Although Services Australia advised those concerned about the breach that they do not need to take any action relating to their Medicare, Pensioner Concession, Healthcare Concession, and Commonwealth Seniors cards, the breach is still concerning.
A study conducted by Watchguard found that in 2023 there was a cyberattack every 39 seconds, which translates to over 2,200 cases per day. Of these attacks, the three most common forms were malware, ransomware, and phishing.
These breaches are a stark reminder that conversations between organisations and technology companies need to emphasise the protection of the data itself, not just the perimeters of the organisation. By choosing secure-by-design platforms like DekkoSecure that focus on data-centric security, organisations gain considerable advantage of integrating advanced measures from the outset rather than as an afterthought.
While many platforms provide only partial security, a few specialised providers like DekkoSecure incorporate secure-by-design protocols such as Zero Knowledge and Zero Trust, ensuring that your data remains private and secure at every stage of its life cycle. These protocols prevent unauthorised access, thanks to the way the encryption keys are managed transparently and are never able to be accessed. This is a departure from the way many encrypted solutions work and is the reason why security-conscious organisations around the globe choose DekkoSecure to protect their highly confidential and sensitive data.
In this new technological era, it is imperative for organisations to invest in technologies that are secure-by-design if we are to completely eliminate the threat of third parties, and avoid the detrimental repercussions of having a data leak or breach.
The most effective way to protect your organisation and its data is with a data-centric security posture and using a secure-by-design platform and an unerring dedication to protection. For more information about how DekkoSecure ensures the highest level of security and data protection, explore our security model or speak to our team.