The Federal Office for Cybersecurity (BACS) provides up-to-date information:
(Source: BACS press release dated 6 May 2024)
Twice as many cyber incidents were reported to the Federal Office for Cyber Security (FOCS) in the second half of 2023 than in the same period last year, namely over 30,000. The strategic direction of the new Federal Office is based on four pillars in order to strengthen cyber security for the population, the economy and the authorities in the face of increasing threats and the emergence of AI-driven fraud.
The BACS looks back on its first few months as the new federal office. Director Florian Schütz gave an initial assessment at an expert discussion on 6 May. The transfer of the National Cybersecurity Centre (NCSC) to a federal office on 1 January 2024 marked an important milestone in strengthening Swiss cybersecurity. The primary tasks of the BACS continue to be to increase Switzerland’s security in cyberspace. To this end, it informs and sensitises the public about cyber threats and attacks. In addition, the BACS acts as a contact point for reporting cyber incidents and supports operators of critical infrastructures in particular in dealing with these incidents. The BACS also prepares technical analyses to assess and defend against cyber incidents and cyber threats. It identifies and remedies weaknesses in Switzerland’s protection against cyber threats in order to strengthen the country’s resilience.
The core mandate of the BACS is to strengthen the cyber security of critical infrastructures, the economy, education, the population and the authorities by coordinating the implementation of the National Cyber Strategy (NCS). The Federal Office’s strategy presented today shows how this core mandate is being fulfilled. The aim of the BACS is to improve cyber security in collaboration with all relevant stakeholders. To this end, it organises its services along four strategic pillars: Making cyber threats understandable, providing means to prevent cyber attacks, reducing damage from cyber incidents and increasing the security of digital products and services.
The number of cyber incidents reported in the second half of 2023 almost doubled to 30,331 compared to 16,951 in the same period of the previous year. This increase is mainly due to fraudulent job offers and alleged calls from the police. The most frequently reported incidents included attempted fraud, with the categories ’CEO fraud’ and «invoice manipulation fraud» being particularly conspicuous. With 5536 reports, the number of phishing reports doubled (previous year: 2179). Of particular note is so-called «chain phishing»: phishers use hacked e‑mail inboxes to send e‑mails to all addresses stored in this inbox. As the sender is likely to be known to the recipients, there is a high probability that they will fall for the phishing. The phished e‑mail account is then used to write to all the contacts in the account.
There was also an increase in reports of attempted fraud involving the use of AI. Cyber criminals use AI-generated images for sextortion attempts, pretend to be celebrities on the phone or carry out investment fraud. Although the number of reports in this area is still comparatively low, the BACS believes that these are the first attempts by cyber criminals to explore the potential uses of AI for future cyber attacks.
Broker Security Forum
29 August 2024
For brokers and customers
Every company should pay close attention to its security — regardless of whether it is a broker or a policyholder. Certified security providers offer valuable support here, from security checks and ethical hacking to 24/7 monitoring.
Selution AG is one of several security providers. WMC has been working successfully with these specialists for several years.
Find here some information about the services or contact roger.burch@selution.ch
