4 things ISPs can do to reduce the impact of cybercrime

cyber crime

(Credit: Unsplash)

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Amy Jordan, Lead, Cybersecurity Delivery, World Economic Forum & Arwa Alhamad, Cybersecurity Enablement Director, Saudi Telecom Company


  • ISPs are in a unique position on the frontline of cybercrime.
  • A group of telecom companies has developed a set of principles for ISPs.
  • These set out how ISPs can reduce the global impact of cybercrime.

The role of internet service providers (ISP) in protecting critical national infrastructure cannot be ignored. As Saudi Telecom Company (stc) Group’s CEO Nasser Sulaiman Al Nasser stated during a recent cybersecurity conference: “Cyber-risk is a business issue. It is not the responsibility of one department. The safest businesses are the ones where everyone is aware, knowledgeable and vigilant.”

Every day, an average of 8,497 stc customers’ machines are actively infected by malware and an average of 13,000,000 requests for access to risky domains are initiated. All ISPs play a unique role in global online ecosystems – and in their privileged position as carriers of internet traffic, often have the ability to stop criminal behaviour at the source. They can also work with their customers and their significant supply chains in order to drive the adoption of good practice.

A group of global telecoms companies has been working with the World Economic Forum on an initiative which seeks to address cybercrime at its root and to protect consumers from high-volume online threats. Stc is delighted to have had the opportunity to collaborate on this initiative and in the development of the Principles for Internet Service Providers, which is being launched at this year’s World Economic Forum Annual Meeting in Davos.

The principles we have developed seek to address some of the most indiscriminate high-volume crimes, such as phishing e-mails, distributed denial of service (DDoS) attacks and the distribution of malware across unsuspecting users’ devices. The impact of these attacks is potentially significant. Phishing, smishing and social engineering attacks are now experienced by 85% of organizations, while stc Group comes under DDoS attack on average 70 times a day.

The principles set out four key ways in which telecoms operators can have an impact on reducing the impact of global cybercrime:

1) ISPs can make an impact by protecting their customers by default from known attacks and by collaborating with peers. This means that when ISPs see their networks being used to perpetrate criminal activity, they should act decisively to prevent the consequences from reaching their customers. The working group that developed the principles also recognized the importance of collaboration in defending against attacks. Sharing information about known threats can help stop criminals in their tracks and interrupt attempted attacks more swiftly.

2) ISPs have a role in raising awareness and improving understanding of how to respond to attacks, both across their customer bases and more broadly. Participants in the initiative highlighted many ways in which their companies and other bodies help to raise awareness and build skills. For its part, stc offers various measures to help customers protect themselves from online threats, from live monitoring centres to e-mail security tools.

3) ISPs have a role to play in driving good behaviours through their supply chains – in particular with vendors who provide hardware to consumers, which can often be an easy route through which to conduct an attack. Telecommunications infrastructure must also be shored up in order to avoid being compromised. Stc, like the other operators involved in this work, has a robust supply-chain management process to ensure each third-party supplier goes through strict security-related scrutiny, adheres to their cybersecurity requirements and undergoes cybersecurity audits.

4) The principles also identify more technical ways in which ISPs can help to prevent attacks that seek to undermine the very nature of internet protocols and the routing of online traffic. For this purpose, stc has adopted machine-learning methods to allow the real-time detection and prevention of fraudulent attempts against customers; the potential losses from fraud carried out on services provided by telecom and ISPs have been valued at $32.7 billion annually.

The cost of cybercrime is rising in most sectors
The cost of cybercrime is rising in most sectors
Image: Accenture Cost of Cybercrime Study 2019

Through the development of these principles we aim to raise awareness of the important active role that ISPs play in making life harder for cybercriminals and in securing global online ecosystems. We hope these principles will serve to generate a dialogue between service providers and governments on how the principles can be adopted in a transparent and consistent way around the world.

Currently the incentives for ISPs to act are not always aligned with financial and regulatory drivers. Ultimately, we seek to generate a debate at the most senior levels around how ISPs can activate their privileged positions to make a real difference to online security and to make life harder for cybercriminals and reducing the benefits of malicious perpetration.

What is the World Economic Forum doing on cybersecurity

The World Economic Forum Platform for Shaping the Future of Cybersecurity and Digital Trust aims to spearhead global cooperation and collective responses to growing cyber challenges, ultimately to harness and safeguard the full benefits of the Fourth Industrial Revolution. The platform seeks to deliver impact through facilitating the creation of security-by-design and security-by-default solutions across industry sectors, developing policy frameworks where needed; encouraging broader cooperative arrangements and shaping global governance; building communities to successfully tackle cyber challenges across the public and private sectors; and impacting agenda setting, to elevate some of the most pressing issues.

Platform activities focus on three main challenges:

Strengthening Global Cooperation for Digital Trust and Security – to increase global cooperation between the public and private sectors in addressing key challenges to security and trust posed by a digital landscape currently lacking effective cooperation at legal and policy levels, effective market incentives, and cooperation between stakeholders at the operational level across the ecosystem.Securing Future Digital Networks and Technology – to identify cybersecurity challenges and opportunities posed by new technologies and accelerate solutions and incentives to ensure digital trust in the Fourth Industrial Revolution.Building Skills and Capabilities for the Digital Future – to coordinate and promote initiatives to address the global deficit in professional skills, effective leadership and adequate capabilities in the cyber domain.

The platform is working on a number of ongoing activities to meet these challenges. Current initiatives include our successful work with a range of public- and private-sector partners to develop a clear and coherent cybersecurity vision for the electricity industry in the form of Board Principles for managing cyber risk in the electricity ecosystem and a complete framework, created in collaboration with the Forum’s investment community, enabling investors to assess the security preparedness of target companies, contributing to raising internal cybersecurity awareness.

For more information, please contact info@c4c-weforum.org.

At the upcoming Global Cybersecurity Forum, hosted by the Kingdom of Saudi Arabia’s National Cybersecurity Authority, and under the patronage of the Custodian of the Two Holy Mosques King Salman Bin Abdulaziz Al Saud, stc will explore some of these issues in greater detail and initiate a dialogue between providers and governments on how to secure a transparent and open internet, to protect the world from a range of easily preventable online threats.

The Global Cybersecurity Forum, which will take place in February 2020 as Saudi Arabia assumes the G20 presidency, will bring together a range of government officials, C-suite executives, international organizations and other key stakeholders drawn from expert communities and academia. Together, they will seek to highlight and elevate dialogue, actions and initiatives to create a global cybersecurity roadmap that aims to build a secure, resilient and prosperous cyber world for all.

the sting Milestone

Featured Stings

Can we feed everyone without unleashing disaster? Read on

These campaigners want to give a quarter of the UK back to nature

How to build a more resilient and inclusive global system

Stopping antimicrobial resistance would cost just USD 2 per person a year

Digital IDs and the Digital Economy: the (still) missing link?

South Eurozone needs some…inflation and liquidity

Researchers have invented a brick that can build itself

$675 million appeal to stop coronavirus in its tracks, as deaths rise

UN agencies welcome green light for Rohingya projects in northern Myanmar; urge ‘more effective access’

Facebook/Cambridge Analytica: MEPs pursue personal data breaches probe

EU Parliament shows its teeth in view of 2014 elections

A new global platform to unleash entrepreneurs on the world’s toughest problems

The EU can afford to invest trillions in support of employment

Migration situation at the Greek-Turkish border: ensuring the right to asylum

International Women’s Day 2019: more equality, but change is too slow

Why city residents should have a say in what their cities look like

EU elections: Can EU citizens’ awareness eradicate fake news more efficiently than Facebook, Twitter and Google?

A lack of affordable homes is forcing young Britons to live with their parents

As Saudi women take the wheel, UN chief hopes end of driving ban creates more opportunities for kingdom’s women and girls

Bitpay @ TheNextWeb 2014: Innovation’s Best Friend

People, not technology, shape the future of manufacturing

EU to Turkey: No other ties than €3+3bn to upkeep refugees

The importance and the need of mobile technology in the health care system and in saving lives.

Cybersecurity should be a source of hope, not fear. Here are 5 reasons why

Courage of terrorism survivors underlines ‘urgency’ of UN Investigative Team’s work in Iraq

Civil society can make sure no one is left stranded by the skills gap

Coronavirus: Commission concludes exploratory talks with Valneva to secure a new potential vaccine

The European reaction to the neo-fascist wind

Black Lives Matter – for Pakistan’s Sheedi community too

5 times people predicted the future and got it really wrong

OECD: Rising employment overshadowed by unprecedented wage stagnation

‘Ground Zero’: Report from the former Semipalatinsk Test Site in Kazakhstan

Is 2019 the beginning of the end for coal in Europe?

This is why coral reefs are so vital for the planet

These scientists are using sound waves to filter plastic fibres from washing machine wastewater

MEPs call on EU leaders to end MFF deadlock without giving in on rule of law

European Business Summit 2014 : The Sting Report, Day II – Business, Politics and EBS 2015

Why do multinationals pay women less in developing countries?

Infinite Oath

Algorithms could give the world its first ‘born digital’ free trade agreement in Africa

Climate Change: a challenge yet to be tackled in medical schools

World remains a ‘violent, highly discriminatory place’ for girls

EU prepares a banking union amidst financial ruins

Digital education is both a necessity and an advantage for the Global South. Here’s why

JADE Spring Conference 2018 is on its way: Young entrepreneurs gather in Brussels to shape Europe

We need to protect 30% of the planet by 2030. This is how we can do it

Davos participants call for digital trade deal

5 facts about global military spending

No great discovery was made without a bold guess – Isaac Newton

One Health approach to combating Antimicrobial Resistance – how can professionals from different backgrounds unite in this common fight?

If Macron defies Britain about the banks, Paris and London to clash over ‘La Manche’

3 ways China is using drones to fight coronavirus

How listening to patients could change the way we tackle cancer

Europe is designing satellites that ‘surf’ their way past space debris

Around 2.5 billion more people will be living in cities by 2050, projects new UN report

Mali: Presidential elections critical to consolidate democracy, says UN peacekeeping chief

Voices of young climate action activists ‘give me hope’ says UN chief

Nearly four million North Koreans in urgent need, as food production slumps by almost 10 per cent

EU to give more power to national antitrust authorities in a bid to secure regulatory fines

More than one billion people do not have access to electricity. What will it take to get them connected?

Parliament adopts deal to improve quality of tap water and reduce plastic litter

Solitary Britain sides with US aggressing Russia and chooses hard Brexit

Removing deadly mines means ‘new horizons and hope’, clears a path to SDGs, says UN chief

Rohingya crisis: EU strengthens humanitarian support with €10 million

More Stings?

Advertising

Speak your Mind Here

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s