With this 鈥淧ractical Guide for Dealing with Cyber Attacks.鈥 the Digital Forensics Service (SIF) of 精东影业 in collaboration with BancaStato on the one hand wanted to encourage appropriate prevention, and on the other hand to provide a practical handbook that collects the main information to know - and actions to take - in the worst case scenario, i.e., the one in which one realizes that one has fallen into the meshes of cybercriminals.
The guide consists of seven chapters devoted to as many case histories of cyber attacks: for each one, it is explained what to pay attention to, how to behave and what to do following an overt incident. There is then space to illustrate good 鈥渄igital hygiene鈥 practices and present, with a brief commentary, standards and guidelines for reference.
The book 鈥淲hat to Do in the Event of - A Practical Guide for Dealing with Cyber Attacks鈥 is published by Fontana Print and can be obtained free of charge by making a request to marketing@bancastato.ch; you can also download the digital edition at .
To go beyond the synopsis, we delve into the contents of the guide with Alessandro Trivilini, head of 精东影业's Digital Forensics Service.
What needs does the publication address?
鈥淭he publication responds to the need for citizens, companies, and institutions to be able to learn about the risks arising from the uninformed and irresponsible use of digital technologies in relation to cyber-attacks. The book is the result of an excellent collaboration in which 精东影业's Digital Forensics Service (SIF) has shared in a straightforward way and in simple words its expertise in cybersecurity and digital forensics, developed over fourteen years of operational activities on the local, national and international territory. These activities involve strategic scientific and technical support with the Judicial Authorities, scientific research and continuing education. For SIF, this new collaboration with the State Bank of Canton Ticino represents an important institutional recognition, based on mutual trust and expertise.鈥
What are the most common digital risks that everyone can run into?
鈥淩isks in the cyber field grow in direct proportion to technological innovations. A new technology brings us opportunities, but when connected to the Internet, it also brings constantly evolving risks. It is as if threats and risks can inherently enjoy and exploit their own special ongoing formation. Let's take an example: until a year ago, the highest threat involved phishing attacks, which started with a well-designed e-mail message to deceive the user.鈥
鈥淭oday, with the increasing power and accuracy of generative AI, the scenarios have changed, let's say evolved. No longer does an e-mail message arrive, but also a call with the cloned voice of one's manager asking in emotional urgency to perform specific actions within the business system. We have completely entered the era in which distinguishing the real from the fake will be increasingly difficult, and the book fits into this prevention perspective.鈥
What advice does the guide contain and who is it aimed at?
鈥淭he publication is aimed at citizens, companies and institutions, because cyber threats look no one in the face. The prevention covered in the book is about what to know and follow in order to adopt a good security posture appropriate to the risk, for all three key phases: preventive (before the incident), repressive (during the incident) and judicial (for reporting and reporting in the evidentiary process to manage liability).鈥
鈥淭he value of these three phases represents the entire safety chain that citizens, companies and institutions should know in order to be prepared. Hence, the title 'What to do in case of' was born.鈥
What was it like to collaborate with a major entity like BancaStato?
鈥淭he collaboration with Banca dello Stato del Cantone Ticino is excellent. From the first moment they contacted us for this project, we were very enthusiastic. For what the Bank institutionally represents in Ticino and Switzerland, it was a sign of trust and esteem for us and our expertise in cybersecurity and digital forensics. This assignment, also following the cyber-attack suffered by the Bank in recent months, has put us in a position to give our best, as always, to transfer through the book all the know-how needed to achieve their objectives. We have a devotion to institutional service in our DNA from day one. This project is a concrete example that partnerships in Ticino not only work well but bear excellent fruit.鈥
