One of the most publicized security breaches was the 2013 hack of Target’s payment and security system. What's not as well known is that access credentials were stolen from an HVAC contractor that was working with Target. The data connection that was accessed was being used for electronic billing, contract submissions and project management. An employee of the HVAC company fell victim to a phishing attack by clicking on an email that contained malware. The rest is cybersecurity history.
While the construction industry does not generally face the same information security regulatory requirements as the healthcare and financial sectors, it does face the same threats. At a time when remote work is increasing risks, many sources report that the construction industry lags behind others in bolstering its security systems. That lack of security can lead to liability for significant losses.
Reprinted courtesy of James T. Dixon, Construction Executive, a publication of Associated Builders and Contractors. All rights reserved.