No matter the size of your business cyber security is a concern that all organisations need to make preparations for, even if it is just being more vigilant to which emails you open.
Toni Allen, UK head of client propositions at the British Standards Institute (BSI) said: ‘The latest Government Security Breaches Survey found that nearly three-quarters (74%) of small organisations reported a security breach in the last year; an increase on the 2013 and 2014 survey. SMEs are now being pinpointed by digital attackers.’
There are many different things that can put your business at risk when it comes to cyber security. In this blog we have highlighted 4 risks for you to be aware of.
Out of Date Technology
Everything happens so fast now. There’s always something new, something bigger and better, and it’s the same with cybercrime. There will be new malware and new viruses all of the time. What you need to remember is that the technology you have in place to go up against these threats needs to know that these threats exist to combat them. It’s like being asked to make a medicine for a new disease. You can’t make it until you know it exists. You should make sure that your Firewall is up to date to deal with the latest threats. Check your software on your computer as well, if you have ignored the latest update then you might find yourself in trouble.
Backup and Disaster Recovery Testing
If you have a back up and disaster recovery solution then you are doing the right thing. You can sleep easy at night knowing that if something does go wrong then you will be able to restore everything back to how it was. The question you need to ask yourself though is ‘Does that backup work?’ Have you ever checked? We recommend that you do a full test of your backup and disaster recovery at least once or twice a year otherwise you may find the backup not working when it really matters.
We make our lives very public nowadays and cyber criminals are using it to their advantage. Social media, press releases and even your out-of-office messages indicate to people what is going on within your business, who is where and where vulnerabilities may lie. If someone emails your Managing Director and they receive an out-of-office stating that they are on holiday then this is the perfect time to send a phishing email from the MD to Accounts asking for a ‘bill’ to be paid. No one will want to bother the boss on holiday so they will just do it without question and then you become a victim.
If you post on social media saying that you have enjoyed a conference or have just won an award then this could be used against you. Someone may email you and use this information to indicate a comfortable familiarity and draw you in.
We’re not saying don’t use out-of-offices or social media, but just think about how you react and respond to things that may not seem quite right.
The End User
Everyone makes mistakes and they make less mistakes if they have knowledge and understanding. It is so important now that your staff understand that cyber security is not just your IT Manager’s problem anymore, it’s everyone’s problem. Staff need to be fully aware of all of the risks that are waiting for them. Phishing emails can get through spam filters. Malware can get past a Firewall. If all the barriers that are put in place fail then it all comes down to the decisions that your staff make. Think of your business like a Roman Soldier. He will have armour and a helmet but if a sword was to get through those precautions then it leaves the human underneath vulnerable to attacks.
If you’re concerned about cyber security or feel you need any kind of IT support please contact ACUTEC today.