UK Guidance on Threats during Deals

Monday, January 20, 2014 @ 02:01 PM gHale

Security should be a top concern for any company, but especially those engaging in mergers and acquisitions, buyouts, capital raisings and stock market listings because they are prime targets for cyber attacks, according to a British government-backed guidance.

The volume and sensitive nature of information generated and shared widely during the course of a deal makes the corporate finance community particularly vulnerable to cyber crime, according to the Institute of Chartered Accountants in England and Wales’ (ICAEW) Cyber-Security in Corporate Finance report.

More Malware Working in Cloud
Mobile Apps Growing in DDoS Attacks
Cyber Attacks Top Threat to Nation
Securing ‘Internet of Things’

The report, published Thursday, cites cases that discuss the risks related to deals, including one midcap UK company which saw data related to a new technology stolen after its computer network end up infiltrated.

Overall, cyber crime costs UK businesses several billion pounds per year, the ICAEW said.

The report contains tips to help guard against threats from organized crime networks, nation states, hacktivists and employees looking to profit from advance notice of a deal, to sell on information or data, or to sabotage deals entirely.

Written by 12 major professional organizations, including the Cabinet Office and the London Stock Exchange, and backed by the government’s 860 million pound ($1.4 billion) National Cyber Security Program, the taskforce’s guidance spans all phases of a deal from initial information gathering to completion.

Among its recommendations, the taskforce suggests limiting the number of people “brought inside” early deal talks, appointing an IT team to monitor activity around shared information, carrying out due diligence on the cyber security systems of all parties involved in a transaction and creating incident response plans.

“It’s very important to guard against over-confidence within circles of trust and to question whether all information should be shared with all parties during a corporate finance transaction,” said ICAEW Chief Executive Michael Izza.

“A weak link in the security of any of the parties can easily be exploited,” he added.

Leave a Reply

You must be logged in to post a comment.