Digital trust can be costly in cyber threat era, expert warns

Cybersecurity expert Marlon Cooper is urging Jamaicans to become more digitally aware following several significant data breaches in recent times.

Speaking at the Government of Jamaica Digital Technology Showcase, held at the Jamaica Pegasus Hotel on March 13, Cooper, the  CEO of  Symptai Consulting, highlighted that digital natives — those who have grown up with technology — are particularly vulnerable to cyber threats due to their inherent trust in digital systems.

He emphasised that cybercriminals frequently exploit this trust through phishing attacks and other deceptive tactics, leading to severe security breaches.

The Government of Jamaica Digital Technology Showcase featured various government ministries and agencies showcasing their digital operations. Interactive demonstrations and exhibits allowed students and attendees to experience firsthand the latest technological solutions and services implemented across government departments. These innovations aim to enhance accessibility and efficiency in public services, delivering significant value to citizens.

During his presentation, Cooper emphasised that many cyber breaches stem from human error, particularly phishing attacks. "You click on everything," he noted, underscoring how individuals often unknowingly compromise their security by clicking on malicious links. Phishing, which involves tricking users into granting access through deceptive emails or messages, remains one of the leading causes of cyber intrusions.

Cooper also highlighted that a staggering 63 per cent of organisations only invest in cybersecurity after experiencing a breach.

Furthermore, 74 per cent of cyber breaches involve human error, including falling victim to social engineering tactics. Many attackers exploit information from social media platforms like TikTok to craft convincing phishing scams.

There are also dangers of third-party vulnerabilities.  A medical lab in Jamaica recently suffered a data breach due to a compromised third-party vendor. This breach exposed highly sensitive patient data, including cancer screening results and HIV test records. Such exposure increases the risk of further phishing scams, where cybercriminals may impersonate legitimate entities to extract more personal information.

Cooper also underscored the importance of the Data Protection Act, which mandates that organisations report breaches within 72 hours. Failure to comply can result in significant fines and even imprisonment. As digital transformation accelerates, organisations must remain vigilant against cybersecurity threats to protect personal and biometric data.