Menú Security Signal

October 2, 2019

10 basics of cybersecurity

by Monserrat Toledo

A couple of years ago it was a common thought that we would never be a victim of cybercrime, one would assume that because to your company’s size you weren’t going to be a target, or there just wasn’t enough information going around for it to be a concern.

The current scenario is much different, there is a ransomware attack every 14 seconds and half of the cyber crimes target small businesses.

That’s the reason why we want to give you 10 basic cybersecurity practices that you can start using now!

Protect your files and devices

1. Update your software

This includes your apps, web browsers, and operating systems. Set updates to happen automatically.

2. Secure your files

Back up important files offline, on an external hard drive or in the cloud. Make sure you store your paper files securely, too.

If you want to know more about physical security you can check our next post dedicated exclusively to the subject.

3. Use passwords

Use passwords for all laptops, tablets, and smartphones. Don’t leave any devices unsupervised in public places.

4. Encrypt devices

Encrypt devices and other media that contain sensitive personal information. This includes every laptop, tablet, smartphone, removable drive, backup tape, and cloud storage solution that you may have.

A Small Business Guide to Computer Encryption

How to Encrypt All Your Online and Offline Data

5. Use multi-factor authentication

Require multi-factor authentication to access your network’s sensitive information. This requires more steps than just logging in with a password. It’s like a temporary code on a smartphone or a key that’s introduced on a computer whenever a login is required.

For more information about this type of protection, you can click here.

Protect your wireless network

6. Secure your router

Change the default name and password, turn off remote management, and log out as the administrator once the router is set up.

7. Use at least WAP2 encryption

Make sure your router offers WPA2 or WPA3 encryption, and that it’s turned on. Encryption protects information sent over your network so it cant be read by outsiders.

Make smart security your business as usual

8. Require strong passwords

A strong password is at least 12 characters and includes a mix of numbers, symbols, and capital lowercase letters.

Never reuse passwords and don’t share them over the phone, in texts, or by email.

Limit the number of unsuccessful log-in attempts in order to limit password guessing attacks.

9. Train your staff

Create a security culture by implementing a regular schedule of employee training. Update employees as soon as you find out about new risks and vulnerabilities. If they refuse to attend, consider blocking their access to the network.

You can also attend events and webinars related to the industry, we will leave you some down below:

FS-ISAC Events

Digital transformation expo Europe

ISACA Webinars

Infosecurity Magazine Webinars

10. Have a plan

If you want your business to survive, have a plan for saving data, running the business and notifying customers if you experience a breach.

If you still don’t have one, but you want to start building it, we leave a link that can help you prepare your security plan.

Knowing and implementing these basic cybersecurity measures will help you and your company reduce the risk of having a cyber attack. If after implementing these practices you still feel that you could take more action to protect your business, you can contact us and we will be happy to help you.