The Small Business Development Center of Southern Colorado’s Cybersecurity Summit was a full day packed with learning, networking, and eye-opening facts. The event featured local experts from Colorado cybersecurity companies and nationally renowned thought leaders, including Margaret Graves, Federal Deputy Chief Information Officer of the United States, and Daniel Eliot, Director of Small Business Education for the National Cyber Security Alliance. Here are five cyber basics discussed at the event that are meant to help your business, big or small.
The Facts
- 58% of malware attack victims are categorized as small businesses. (Verizon Data Breach Investigations Report)
- 92.4% of malware is delivered via email. (Verizon Data Breach Investigations Report)
- 47% of small businesses had at least one cyberattack in the past year. (Hiscox Small Business Cyber Risk Report)
- 50% of breaches come from organized criminal groups, and 12% involve nation-state actors. (Verizon Data Breach Investigations Report)
- 60% of small businesses leave within six months of experiencing a cyberattack. (Ponemon 2017 State of Cybersecurity)
Antivirus Software is a Bare Minimum Requirement
Every computer used by staff members to complete work needs to have enterprise-grade antivirus software installed. Multiple vendors provide adequate software. What you are looking for is a light antivirus, meaning it doesn’t take up much computing power and has regular patches and updates.
Secure Your Network(s) with a Firewall
Businesses cannot operate without the Internet. It may be one of the most overlooked assets to any business. Protect your internet connection by implementing a business-grade firewall to encrypt information. Keep your WiFi network and firewall secure with a strong custom password, and do not allow guests to log into your network.
Implement a Mail Washer
With 92.4% of malware being delivered via email, protect your business email with a mail washer. A mailwasher protects beyond your typical spam filter by detecting hidden malicious file types and languages often seen in phishing and spear phishing attacks.
Regularly Install Patches and Updates
The software requires updates. Whether it is for your firewall, operating system, antivirus, or business line software, make sure patches and updates are being installed on user’s machines. Patches and updates are security measures often sent out to users to correct security vulnerabilities and improve functionality. Using patch management software to push updates to devices at the best time ensures protection and uninterrupted work.
Human Behavior is the #1 Risk to Your Business
Employees do not always make the best decisions, especially when using technology. Creating and implementing basic security practices and policies for your business is critical. Require strong passwords that need to be changed regularly, actively manage user permissions, establish rules describing how to handle and protect customer data, and consider a content filter to keep employees off dangerous websites (even if they end up there by accident).