No matter how effective or expensive of the security tools protecting your company network, there is no way to predict the damage caused by a single careless employee. The war against cyber criminals is fought each time when an employee decides to click an unfamiliar link or open an attachment and just a single mistake could be the reason for massive data loss for your organization.
How to minimize the risk of cyber-attack?
1) Apply Good Password Management
Eight characters password is not enough. Use a strong mix of characters and numeric, and no single password for multiple sites or login. Do not write it down and or attached to your monitor / pc or visible places. Do not share your password with others. Change your passwords every three months.
2) Beware of Phishing Emails
Always be careful when clicking on a links or attachment in your email. Do not click on any unexpected or suspicious email. Double check the URL before you click, check the source first and make sure the sender is genuine.
3) Physical security precautions
Do not leave your devices unattended. Lock or safe keep your computer, smartphone, tablet or USB drives if you are away from your desk. Always lock your screen whenever you are away from your desk.
4) Secure Website Browsing
Interact only with well-known, reputable websites and are conservative with online downloads. Make sure they know not to click links in emails, go to sites directly. Use social media best practices.
5) Back Up
Back up your data and information frequently, and make sure your anti-virus software is always up to date.
6) Physical Cyber Safety
Be alert on what you plug in to your computer. Malware can be injected through infected flash drives, external hard drives, and even smartphones.
7) Social Engineering
Be cautious of social engineering, where someone attempts to gain information from you through manipulation. If someone calls or emails you asking for sensitive information, you can always call the company directly to verify credentials before giving out any information.
8) Use Wi-Fi right
Be cautious of unauthenticated “free public WiFi” and be alert of what wireless networks you are connecting to. If you are travel and or working in public spaces, please do connect to your company VPN when you are accessing company data. If you are travel frequently, recommended that you have your personal wireless hotspots (MIFI) available.
9) Don’t ignore Operating system and or application updates and patches
Updates are vital to maintaining the security of your OS, applications and software. Hackers know the vulnerabilities of out-of-date application and software. Many employees believe that application updates are optional or unnecessary, but in reality, they implement essential security features to ward off new strains of attacks.
10) Train and Test
Employees need to be trained and educate about the organization’s security policies and procedures, and they should be tested on a regular basis to ensure that their knowledge is up-to-date.
Condition Zebra seeks to educate IT professionals to work against threats by learning more about Cyber Security. In this pandemic, since last year, 2020, we have adapted to do Online Training.
Check out our Online Training for 2021 here: https://condition-zebra.com/training-schedule-2021/