4 Key Steps to Better Cybersecurity
In many ways, explaining why sufficient cybersecurity is important for your business has become redundant – especially when it is much more important to understand how this cybersecurity needs to protect you. The threats to data and privacy are known, but no less potent. In order to counter them, you need to make sure you have what you need to protect your business – starting with a few key considerations.
While these rules have been borrowed, we’ve injected a few of our own insights that have come from our experience in serving Cleveland-area businesses.
Think Before You Click
Many threats rely on the end user to actively do something to trigger an infection or other issue. As a matter of fact, we like to remind people that the safest network is the one which doesn’t have users on it! Due to the solutions developed by Microsoft and other security software providers, the idle workstation waiting for a new hire is far less likely to be a security issue than the one next to it, where a user logs in each day to do their job.
This is known to cybercriminals, and so they focus their efforts on targeting end users as their points of entry.
One way they do so is to use email to distribute their attacks. They’ll disguise their threat to look like just another attachment on just another business email, so a user clicks on it and – whoops – there goes your network. Other threats may be bundled in an installation of some other application – kind of like how those old browser toolbars used to be automatically installed and cause problems with your computer.
Some of these threats, like the browser toolbars, are slowly going extinct through improvements to the software itself, but many threats remain, and new ones continue to appear. Scareware can still appear on a website and fool you into downloading the “antivirus needed” (actually just the malware) and infecting your system yourself. Taking a moment and considering what you are about to do before you actually follow through with it may help you avoid a problem. Remember, your IT support provider is always there to help you out if you need assistance in one of these situations. When in doubt, give Ashton a call. We’d rather you call us to ask a question, than call us to report an issue.
Keep Everything Updated
Consider how often the software programs you use are updated by their developers. Every so often, developers will release improvements to their existing programs – shoring up issues and bugs in the software, compatibility problems, and adding patches to vulnerabilities, as well as simply adding new features and enabling the software to run more effectively.
Now, can these changes be scary? You bet. Nobody likes to have their cheese moved, and even the slightest upgrade (while seemingly well-intentioned) can be a pain in the neck. It can take months to break old habits and remember how the new update has effected your usage.
As scary or as frustrating as these updates may be, they usually include some security feature that you can’t afford to neglect. Cybercriminals are relentless in their search to find new ways to exploit the software that millions of potential targets use – as you’d expect them to be. In fact, many of them pay attention to the security updates that developers release, because they know that many people wait to run the update. As a result, the longer you procrastinate a security update, the more you risk falling victim to the precise threat it remedies.
This is exactly why we offer automated patching on all network attached devices, and why you should regularly update your personal devices. Every workstation, mobile device, laptop, tablet, e-reader, every smart appliance in the break room, everything and anything with an Internet connection. While many devices like these have updates applied automatically, you need to be sure – otherwise, you run a much greater risk of a security breach.
Channel Marie Kondo
Speaking of keeping things updated, how many times have you been prompted to update software that you don’t really use anymore? Why not just remove it from consideration?
While your business’ solutions may not, as tidiness and organization guru Marie Kondo says, “spark joy,” they should certainly serve your company some purpose – otherwise, they are just sitting on your network. This means that there’s one more solution that you could easily overlook when the time comes to update (and if you aren’t using it, you very well might forget you have it), meaning that there’s one more potential vulnerability on your network.
As Kondo has said, “Once you learn to choose your belongings properly, you will be left with only the amount that fits perfectly in the space you own.” In other words, it helps to audit your technology, which brings us to our final cybersecurity recommendation.
Audit and Document
There are a lot of decisions that you have, to be frank, forgotten about. Unless you were blessed with the greatest memory in history, there is no chance that you remember each and every choice you’ve made in just the last week, let alone in the last month, or year, or however long you’ve been in operation. So, even if you have the particular scent of a certain terrifying high school teacher’s perfume burned into your brain, or a vivid memory of the first time you tried cauliflower as a child, you’ve probably installed a few applications onto your network that you have no recollection of installing.
As we’ve already established, this can be a problem.
You also need to keep in mind that it isn’t just the odd application that can create these issues. They can also come from old hardware on your network, outdated server settings or online security credentials for your bank, your email, or your social media. Regular housekeeping of active directory is a great example of something that usually gets forgotten, but can be a huge concern. An audit can help you catch these kinds of issues before they develop into real problems, and keeping in-depth and detailed records updated can make this process easier over time.
By subscribing to these rules, you stand a much better chance of keeping your company safe for a much, much longer time. However, they aren’t the only things you need to do to be secure. We can help with the rest, too. For more assistance in keeping your business safe, give Ashton Technology Solutions a call at 216 397-4080.