By Andrew Fergus
As cyber-attacks continue to make headlines...
...in Northland hackers are exposing or selling customer data files in record numbers. But just like with any threat, there are actions you can take to minimize risk and ensure your business retains a positive reputation among customers. One only needs to look at the data from the last 5 years that has doubled in the healthcare sector as an example.
1. Stop using the same password on repeat.
Set a mandate for all staff that passwords must be unique for each user and for your workplace. That means it can’t be remotely like the one on their home PC, tablet or online banking. Passwords are hacked more than ever, and there have been many Northland business affected by this particular issue. When you’re prompted for a password change, dig deep and really think about what goes into a hacker-proof password. If remembering them is a problem, consider one of the latest password management tools like LastPass or Google Chromes password manager.
2. Go on a shredding spree.
How much sensitive data is being dumped into the recycling bin? Valuable customer data is often taken from the bins of small businesses and quickly sold or published. It’s not just good practice to shred sensitive documents, it’s the law. Take 5 seconds to run documents through the shredder or book in the services of a secure shredding company.
3. Ditch the accounting spreadsheets.
Still using an Excel doc for all your number-crunching? Besides making your accountant’s job harder (and more expensive), you’re opening your business to a massive range of vulnerabilities. Even with password-protection, spreadsheets aren’t designed to safeguard your financials or those of your clients. Upgrade to a proper accounting solution with built-in customer data protections and security guarantees. Or you can use Microsoft 365 and SharePoint with 2FA to support your security.
4. Train staff explicitly.
You can’t rely on common sense because what you think is a given might be news to someone else. It can be extremely beneficial to hold special data-safety training sessions once or twice a year as a reminder, as well as take the time to induct new staff into the way things are done. Using Microsoft DLP solutions can help staff to remember when to use this training or even to train them.
5. Limit access to data.
Just like the bank manager who guards the keys to the vault, you can limit who accesses your data. Revoke employee access as soon as they leave your business for good and set rules around who can access what – and when. Do they need access to sensitive information while working from home? Should they be able to change the files, or only view them?
6. Keep your software updated.
Possibly the most preventable hack, having outdated software, can be an open invitation for cyber-criminals. They look for known weaknesses in business software and waltz right in.
While the nagging pop-ups and reminders to update can feel like a selling ploy, they’re actually helping your business to stay in the safe zone. Updated software gives you protection against new viruses and hacking techniques, plus closes off those nasty weaknesses.