Did you know that since the pandemic started, there’s been a 600% uptick in cyber-crime? Over 2,200 cyber-attacks occur every day, and human error still accounts for roughly 85% of breaches according to Verizon.
Cyber Security is essential when it comes to protecting your business and its data. It’s become even more critical today as offices adapt to a hybrid work environment, and the cases of cyber-attacks are on the rise. So, what can you do to minimize the risks? Besides having security hardware in place, it’s just as important your employees know what they can do to minimize the risk. Below are 3 things you can do to educate your employees, so they are also part of the solution of keeping your data and business safe from an attack.
Passwords and Multifactor Authentication
Passwords are used to protect your computer and personal information. Using a weak password, or even the same password for many applications makes you more susceptible to being hacked. Password guessing is one of the most common ways criminals get into your computer or system, so it’s best to create strong passwords for all your accounts.
Multifactor Authentication (MFA or 2FA) adds yet another layer of security. Just as the name suggests, it requires another factor to authenticate your account access. A simple example of MFA would be your debit card. If you want to withdraw money from your bank via an ATM, you must insert your bank card into the machine, then you must enter your PIN number. Another example of MFA is where a One-Time Password (OTP) is generated and delivered to your contact information on file, such as an email or your smartphone. If you do not put in the correct code, you will not be able to get into your account, and neither will a hacker. Setting strong passwords and MFA for all accounts are your first line of defense.
Phishing attacks account for more than 80% of security breaches amongst companies, and over 90% of cyber-attacks occur through email. The purpose behind phishing attacks is to either gain personal information or access to your computer systems through these channels, and cyber criminals have gotten pretty good at making these messages look legit. Because of this, it’s important for you and your employees to take caution with received emails, text messages, and direct messages on social media.
Things for you and your employees to look for are messages that require urgent action, such as an email stating your account is locked and you need to reinput your username and password to gain access. More common giveaways are generic greetings, bad grammar, long or non-existent return email addresses, and unexpected attachments.
It is better to be safe than sorry in these instances. If something feels off about a message, it’s best to call the sender to confirm that they did, in fact, send you the email. If you cannot get in touch with the sender, contact your managed service provider for help. Educating your employees about the dangers of phishing attacks could mean the difference between keeping your data safe or getting a ransomware attack that affects the whole company.
Security Awareness Training
Since cyber security is for your business is so important, some spam filtering programs, such as Proofpoint, offer Security Awareness Training. It provides modules that can help educate your employees on what to look for, as well as training exercises. The program will simulate fake phishing attacks and track the results of which employees passed or failed the test. This is a great way to keep your employees on the lookout for types of attacks that take place every day.
Training your employees on cyber security doesn’t have to be complicated. And with the help of a good managed service provider like Cleartech Group, you can get assistance with setting up strong passwords, MFA, and Security Awareness training easily. Reach out to one of our IT Specialists today at 978-466-1938 so we can help keep your business safe.