Top 7 Simple Cyber Security Tips That Every Business Should Know
Is your business implementing the most basic cyber security practices? Check out this post to learn more about the security measures all employees should know.
Join the DZone community and get the full member experience.Join For Free
According to a recent SolarWinds study, untrained employees are noted as the largest threat to federal agencies at 53 percent.
1. Create Strong Passwords
Make your password at least 12 characters long, include numbers, symbols, and capital letters and avoid patterns like "123456" or "qwerty."
The most common password is "123456" and can be cracked in less than a second.
2. Practice Password Hygiene
Do not share your password with anyone! Change it on a regular 90-day basis and, where possible, avoid using the same security questions across multiple sites.
One interesting face to consider is that more than 1 billion passwords are already stored in a Russian database.
3. Keep Your Inbox Safe
Enable email scanning by your anti-virus, don't trust attachments, disable automatic previewing, and never respond to email requests for personal or company account information.
91 percent of advanced cyber-attacks begin with email.
4. Don't Share Important Info
Double-check the "send to" field before sending emails to the wrong person, and if you are a repeat offender or know of one in the business, deactivate autofill in Microsoft Outlook:
In fact, 78 percent of those surveyed admitted accidentally sending an email to the wrong recipient.
5. Keep Security in Mind
Develop a simple plan for employees to follow if there is a potential security risk identified. It’s everyone's responsibility to share potential mistakes openly within the company. By doing so, you will shorten the time between a breach and a fix. More importantly, you can proactively plan for problems.
Organizations without security awareness programs report security incident costs to be 4x higher than their peers.
6. Keep Your Devices Secure
Apply encryption to PCs and USB drives and encourage employees to keep devices with them. Keep patches current by enabling auto-update across Microsoft Windows-based devices and common third-party add-ons, such as Acrobat, Java, and Flash —as these are common malware infection vectors.
According to a recent survey, half of the respondents indicated that data on the employee or contractor personal computers and removable storage is most at risk (47 percent).
7. Audit Who Has Access
Regularly evaluate responsibilities and access to sensitive data. If roles change, ensure that only those employees that "need to know" have access by adding credential reviews to your HR process and always verify third-party access and security.
Privilege abuse is cited as the most frequent form of insider misuse (>80 percent of the 11,000 incidents reported, so monitor and verify privileged use.
Published at DZone with permission of Bhavesh Patel. See the original article here.
Opinions expressed by DZone contributors are their own.