Skip to main content

Hackers targeting companies that fake corporate responsibility

Hackers targeting companies that fake corporate responsibility

When we think about hackers, we might imagine someone stealing data and selling it on the dark web for financial gain. But new research from the University of Delaware’s John D’Arcy suggests that some hackers may have a different motivation: disappointment in a company’s attempts to fake social responsibility.

“There is emerging evidence that the hacking community is not homogenous, and at least some hackers appear to be motivated by what they dislike, as opposed to solely financial gain,” said D’Arcy, who is a professor of management information systems (MIS) at UD’s Alfred Lerner College of Business and Economics. “Recent hacks against the World Health Organization, due to its actions (or supposed inactions) related to the COVID-19 pandemic, are a case in point.”

D’Arcy and his coauthors, interested in exploring whether a firm’s corporate social performance (CSP) impacts their likelihood of being breached, studied a unique dataset that included information on data breach incidents, external assessments of firms’ CSP and other factors. The results, published on Sept. 18 in the Information Systems Research paper “Too Good to Be True: Firm Social Performance and the Risk of Data Breach,” were intriguing.

The key to these results, D’Arcy explained, lies in understanding the difference between two different types of corporate social responsibility efforts: those that are more minor and peripheral (like recycling programs or charitable donations) versus those that involve social responsibility being embedded throughout the firm’s core business and processes (like diversity initiatives and producing eco-friendly products).

Companies only participating in peripheral efforts and not more deeply embedded ones are sometimes called “greenwashing,” attempting to give the appearance of social responsibility without infusing such practices throughout their entire organization. According to D’Arcy’s research, firms that do this are more likely to face problems from hackers.

“An example of a firm that has been accused of greenwashing is Walmart,” D’Arcy said. “This is because Walmart has touted its investments in charitable causes and environmental programs, but at the same time has been criticized for providing low wages and neglecting investments in employees’ physical and psychological working environment.”

The study found that hackers of all kinds — from internal disgruntled employees to external hacktivist groups — can “sniff out” these actions that only give the appearance of social responsibility. To an even further extent, when companies not only are trying to improve their image but also are using these actions to mask poor overall CSP, they are especially likely to be breached.

“Consequently, these firms are more likely to be victimized by a malicious data breach for these reasons,” D’Arcy said. “Firms may be placing a proverbial target on their back, in an information security sense, by engaging in greenwashing efforts.”

Conversely, the study found that when firms that engage in more embedded and meaningful forms of corporate responsibility, they are more likely to see solely positive outcomes. In this case, that means fewer hacks and data breaches.

“These same internal and external hackers are likely to see such embedded CSP efforts as genuine attempts at social responsibility (in other words, the company is ‘walking its talk’ when it comes to social responsibility) and thus they will be less likely to target these firms for a computer attack that results in a breach,” D’Arcy said.

What lessons should companies take from this research? D’Arcy warned that companies should be cautious about promoting peripheral CSP efforts if they have otherwise poor records on corporate social issues.

“What was once accepted as meaningful CSP activity may no longer appease certain stakeholders,” he said. “And in this era of increased information transparency and greater expectations of the firm’s role in society, engaging in only peripheral actions may result in stakeholder backlash. Firms need to be cautious about promoting their CSP activities unless they can defend their actions as embedded in core practices and as authentically motivated.”



from ScienceBlog.com https://ift.tt/30nHc3Q
Labels:

Comments

Post a Comment

Popular posts from this blog

Wiggling worms suggest link between vitamin B12 and Alzheimer’s

Worms don’t wiggle when they have Alzheimer’s disease. Yet something helped worms with the disease hold onto their wiggle in Professor Jessica Tanis’s lab at the University of Delaware. In solving the mystery, Tanis and her team have yielded new clues into the potential impact of diet on Alzheimer’s, the dreaded degenerative brain disease afflicting more than 6 million Americans. A few years ago, Tanis and her team began investigating factors affecting the onset and progression of Alzheimer’s disease. They were doing genetic research with  C. elegans , a tiny soil-dwelling worm that is the subject of numerous studies. Expression of amyloid beta, a toxic protein implicated in Alzheimer’s disease, paralyzes worms within 36 hours after they reach adulthood. While the worms in one petri dish in Tanis’s lab were rendered completely immobile, the worms of the same age in the adjacent petri dish still had their wiggle, documented as “body bends,” by the scientists. “It was an observa...
Post a Comment
Read more

‘Massive-scale mobilization’ necessary for addressing climate change, scientists say

A year after a global coalition of more than 11,000 scientists declared a climate emergency, Oregon State University researchers who initiated the declaration released an update today that points to a handful of hopeful signs, but shares continued alarm regarding an overall lack of progress in addressing climate risks. “Young people in more than 3,500 locations around the world have organized to push for urgent action,” said Oregon State University’s William Ripple, who co-authored “The Climate Emergency: 2020 in Review,” published today in Scientific American. “And the Black Lives Matter movement has elevated social injustice and equality to the top of our consciousness. “Rapid progress in each of the climate action steps we outline is possible if framed from the outset in the context of climate justice – climate change is a deeply moral issue. We desperately need those who face the most severe climate risks to help shape the response.” One year ago, Ripple, distinguished profess...
Post a Comment
Read more

Ancient Shell Sounds

Abandoned at the mouth of your shelter you quivered apprehensively at our approach, crying out to be held as we proclaimed the exception of your discovery. Sighing wearily as we consigned you to the dusty silence of our archives. But now When I hold you in my hands, I see the face of your purposefully speckled complexion. When I lift you to my ear, I hear the sound of an ancient sea lapping at your shores. When I place you at my lips, I feel the heartbeat of your creator pulsing to my breath. I close my eyes, as you call out to all that you have lost. The shell that was recovered from the Marsoulas cave in the Pyrenees of France (Image Credit: C. Fritz, Muséum d’Histoire naturelle de Toulouse). This poem is inspired by recent research , which has discovered that a large seashell that sat in a French museum for decades is actually a musical instrument used around 18,000 years ago. In 1931, researchers working in southern France unearthed a large seashell at the entr...
Post a Comment
Read more