{"id":307,"date":"2020-05-15T14:44:23","date_gmt":"2020-05-15T14:44:23","guid":{"rendered":"http:\/\/www.cyberlaws.org\/?p=307"},"modified":"2021-07-12T04:01:47","modified_gmt":"2021-07-12T04:01:47","slug":"startups-are-easy-target-and-more-vulnerable","status":"publish","type":"post","link":"http:\/\/www.cyberlaws.org\/startups-are-easy-target-and-more-vulnerable\/","title":{"rendered":"Startups are Easy target and more vulnerable"},"content":{"rendered":"<h1 style=\"text-align: center;\">Startups are Easy target and more vulnerable<\/h1>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">startups are easy targets. Startup world is filled with examples of data theft and how a beautiful idea just came down thrashing. Startups have a very narrow financial funnel and Startups are weaker targets, in case of any cyber attacks they are unable to handle legal implications and die. Most important is Planning, cybersecurity threats in today&#8217;s times can not be ignored. Startups are more vulnerable and this will increase day by day.<\/span><\/p>\n<p>&nbsp;<\/p>\n<figure id=\"attachment_309\" aria-describedby=\"caption-attachment-309\" style=\"width: 1280px\" class=\"wp-caption aligncenter\"><img class=\"wp-image-309 size-full\" src=\"http:\/\/www.cyberlaws.org\/wp-content\/uploads\/2020\/05\/Startups-Cybe-rsecurity.png\" alt=\"Startups are Easy target and more vulnerable\" width=\"1280\" height=\"959\" srcset=\"http:\/\/www.cyberlaws.org\/wp-content\/uploads\/2020\/05\/Startups-Cybe-rsecurity.png 1280w, http:\/\/www.cyberlaws.org\/wp-content\/uploads\/2020\/05\/Startups-Cybe-rsecurity-300x225.png 300w, http:\/\/www.cyberlaws.org\/wp-content\/uploads\/2020\/05\/Startups-Cybe-rsecurity-1024x767.png 1024w, http:\/\/www.cyberlaws.org\/wp-content\/uploads\/2020\/05\/Startups-Cybe-rsecurity-768x575.png 768w\" sizes=\"(max-width: 1280px) 100vw, 1280px\" \/><figcaption id=\"caption-attachment-309\" class=\"wp-caption-text\">Startups are Easy target and more vulnerable<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<ul style=\"text-align: justify;\">\n<li><b>Startups are Easy target or more easily vulnerable\u00a0 &#8211; <\/b>Large organizations already have procedures or have good infra &amp; spending power to mitigate these threats, but small companies or startups are not so lucky. Cyber crime is increasing day by day and these startup\u2019s are easy targets for them. Basic concern is protecting customer data. It&#8217;s all about protecting your digital assets, one of the ways is to use tools for Vulnerable Management.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Tarnish Reputation\u00a0 &#8211; <\/b>Basically startups have to be more vigilant\u00a0 about their reputation, only a single incident in news can tarnish their reputation. Startups business are like planes taking off from the runway, it&#8217;s very important to be very vigilant while taking off. Once startups have enough customer base or good investments, then it&#8217;s easy to handle.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Dependency upon Third Party API\u2019s &#8211; <\/b>Most of the startups initially take support of third party API\u2019s due to the fact that it&#8217;s impossible to develop API from scratch or the business model is not financially viable hence, third party API\u2019s are the only source, using API means dependency and data exchange and we never know how this is taking place. Recommendation is that some legal documentation should be done before going for this arrangements.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Less Spending upon IT Infra &amp; Technology\u00a0 &#8211; <\/b>It&#8217;s very important that you select the best IT infra and technology solutions, we are living\u00a0 in an advanced era, although there are many IT infra solutions available these days which offer services on the basis of bandwidth usage, this actually means Pay as you use. Ie: AWS , Google Storage&#8217;s etc These tools have actually made life easier because we are getting the same quality which larger setups are getting and are actually paying on the basis of usage, these advantages were actually not available even a few years back.<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul style=\"text-align: justify;\">\n<li><b>Testing &amp; Performance\u00a0 &#8211; <\/b>Most of the startups ignore this process called \u201cTesting &amp; Performance\u201d. Although it&#8217;s a very important department, in case there is a financial crunch, startups can go for freelancers available at low cost and high quality.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Lack of Legal know how &#8211; <\/b>We all know startups are betting on new ideas or playing on new technology which might disrupt the market, and it&#8217;s not possible that a legal journey would be so simple for the company, hence just starting on mere ideas is not the only important. Analyzing the legal aspect would be a very wise decision. It&#8217;s recommended to hire a Cyber laws expert before going forward, this will not only help the company get a second opinion.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Startups are Less Likely to fight back &#8211; <\/b>Most of the startups have very small small financial backbone or narrow funnel for finances, In incidents like data thefts or legal notices, many startups haven&#8217;t even planned these financial aspects or we can say they have not planned for this situations, these incidents actually lose focus on the actual technology which they are working and leave the focus on what the actual idea was resulting in shutting down of startups or moving in wrong direction.<\/li>\n<\/ul>\n<ul style=\"text-align: justify;\">\n<li><b>Less due diligence\u00a0 &#8211; <\/b>Duedelegence for the idea is very important, a startup team should spend more and more time on this, Managing their resources, Technology aspects, research, IPR, demographic, usage, bandwidth, People, taste etc. \u00a0 There are the most important aspects in understanding businesses. It&#8217;s also important to understand the Cyber Laws, although the world is becoming borderless, the internet has no boundaries, but these cyber laws would be acting as borders for different communities. Hence it&#8217;s very important for IT startups to design their\u00a0 software in a way that is easily configurable according to the change in laws. Scalability not only refers to the tech infra, but also refers to how immediately you change your policies and how easily it is configurable in your software.<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h3 style=\"text-align: center;\"><b>Recommendation <\/b><\/h3>\n<p style=\"text-align: justify;\"><b>Get your Idea Patented\u00a0<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">The Most important aspect of an idea is to get that registered, you again need some attorney and get to read some local or national laws just going to get your idea registered. Although it&#8217;s difficult and time consuming but people have come up with innovative ideas to get it mark in the history that they thought for the idea first and small small efforts they did in this direction could save them from losing their idea.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>Cyber Risk Analysis\u00a0<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><a href=\"https:\/\/www.opensecurityalliance.org\/\">Cyber Risk Analysis<\/a> is the best due diligence which you can start initially, this report will basically touch endpoints where cyber risks are involved. Moreover this gives more insights before taking steps.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>Before going for full scalability, have a cyber laws lawyer on your panel.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">It&#8217;s very important, startups need to have cyber security &amp; Legal advisors on their panel, this will help them analyse local laws and understand the legal implications before taking any steps. This will help companies to do due diligence before going further.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>Keep a cyber security plan always ready in case of emergency response.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In case of data breach or <a href=\"https:\/\/www.cyberlaws.org\/cyber-attacks\/\">cyberattacks<\/a>, always be ready with Plan B and try to minimize the risk to customers data, because that will be the only way to safeguard, once this risk is mitigated all other risks seem secondary and will automatically be secured.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>Always be in touch with the regulators or authorities regarding any thefts which you think would be in advance addressed to policy makers.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">If you think your product is new and is somewhat governance is needed with public authorities or regulators, always get connected via events with the regulators of industry. You never know\u00a0 whom you need to connect at the time of crisis.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">\u00a0<\/span><b>Before releasing any version of your product always keep your Terms &amp; conditions, and disclaimer updated and enforced.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">The most important part is the disclaimer policy, most of the court cases have fought and won or loose on the basis of Terms &amp; Conditions of usage and Disclaimer. It is strongly recommended that always keep your Policies Updates and keep it reviewed with your legal consultant every time.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>Be proactive in addressing issues with your users.\u00a0<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Let&#8217;s assume, your system is attacked in past months, and you want users to change their passwords asap, don&#8217;t hesitate to this announcement, It&#8217;s a responsible step, we have seen any automobile companies recalling cars for some defective part, it&#8217;s similar to that, you are becoming responsible company trying to save your customers and their data.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<p style=\"text-align: justify;\">Hence by becoming a proactive founder dont let your Startups become\u00a0 Easy target and vulnerable. SAVE YOUR STARTUP<\/p>\n<p>&nbsp;<\/p>\n<p>Related Articles :<\/p>\n<p><a href=\"https:\/\/www.cyberlaws.org\/cyber-security-challenges-faced-by-fin-tech-start-ups\/\">CYBER SECURITY CHALLENGES FACED BY FINTECH START-UPS<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Startups are Easy target and more vulnerable &nbsp; startups are easy targets. Startup world is filled with examples of data theft and how a beautiful idea just&#8230; <\/p>\n","protected":false},"author":1,"featured_media":310,"comment_status":"closed","ping_status":"closed","sticky":true,"template":"","format":"standard","meta":[],"categories":[64,54,1,4,124],"tags":[16,88,91,90,69,87,89],"_links":{"self":[{"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/posts\/307"}],"collection":[{"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/comments?post=307"}],"version-history":[{"count":18,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/posts\/307\/revisions"}],"predecessor-version":[{"id":737,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/posts\/307\/revisions\/737"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/media\/310"}],"wp:attachment":[{"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/media?parent=307"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/categories?post=307"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.cyberlaws.org\/wp-json\/wp\/v2\/tags?post=307"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}