These Are The 6 Things You Must Do Right Now To Secure Your Company’s Data

I recently read about a ransomware attack victim. All of her files were locked and encrypted after this attack. She was informed that for $100, she would receive a "key" that would allow her to decode her data. They demanded payment of the $100 in bitcoin. She was at a loss for what to do. However, she could contact a toll-free number that the ransomware attackers had provided.

You got it right. A toll-free number to contact the ransomware perpetrators. She eventually did.“They walked me through the entire process,” she stated. “They were actually really nice. Even better than the customer service I receive from other big companies.”

Yes, that is a true story. According to the Federal Bureau of Investigation, the ransomware industry is now worth $4 billion annually, and those behind these attacks actually have customer service divisions.

You're lucky if your company hasn't experienced a ransomware assault, "phishing" scam (in which your CEO is impersonated in an email requesting confidential information, for example), or malware attack that wreaks havoc on your platform for no apparent reason. So far.

Verizon's 2020 Data Breach Investigations Report states that small firms were impacted by 28% of breaches in 2019. Another unsettling fact was that the number of cybercrime victims increased by more than 600% in 2020 as a result of the epidemic, according to security company Purplesec.

Prior to COVID, data security was a major concern. Because so many workers have been and will continue to work from home, the issue has grown even worse. Family members' shared home computers are not exactly the most secure setting, especially for children using social media.

Your network is compromised as soon as a device is compromised. Your network may be infiltrated, allowing for the theft or unauthorized access of files or the breach of client data. As a result, there is a chance of legal action, disruptions, or even the closure of your company.

What can you then do? These six actions must be taken right now.

1. Get security software. There are many excellent options available, including Avast, MalwareBytes, and Bitdefender (which we use). We also recommend implementing Microsoft or Google Workplace Security. They both have security at the forefront of their practice. But make sure this software is set up on all of your employees' workstations, including their personal ones. Even better, use an outside IT company to keep an eye on the programs and ensure they are updated.?

2. Set up online backup. Ensure that your databases, whether they are hosted in the cloud or not, are regularly backed up. Utilize cloud storage services like IDrive, Carbonite, or Barracuda. This gives you the choice to wipe everything clean in the event of an attack and restore from your most recent reliable backup.

3. Invest in training. We must be able to recognize "phishing" emails and other possible dangers better. Training on a regular basis is the only method to accomplish this. Consider employing training programs like KnowBe4, Infosec IQ, and Proofpoint, or consider hiring an IT company to do this for your personnel.

4. Strengthen passwords. Enforce that your staff members develop strong passwords and use password management tools like Keeper, LastPass, or Dashlane. The most crucial thing to remember is to add multi-factor authentication (MFA) to everything on your network. Your staff will then need to use a mix of passwords and randomly generated text message codes. The easiest method to do this is to speak with your IT company or the business that hosts your data.

5. Continually update everyone’s operating systems. This might be the most crucial point on the list. Why? Because the main three operating system manufacturers, Microsoft, Apple, and Google, regularly release upgrades to their systems that incorporate the most recent security defenses. Sadly, people occasionally ignore these updates because they are inconvenient. But prevent this from happening. To ensure that updates are being made, you may again need an IT company's assistance.

6. Buy cyber insurance. Unfortunately, none of those mentioned above measures are infallible, and cybercriminals will always be one step ahead. When everything else fails, your best option is to get insurance to cover the liabilities and potential business interruptions brought on by theft or fraud. We recommend partners like Ian Linder from BNC Insurance and Risk Advisors and Brian Bulger from Marsh & McLennan Agency.

These are the measures that companies should take in 2022 to safeguard their data. The more barriers you place in the path of cybercriminals, while none are foolproof—as was already mentioned—the more likely it is that they will become frustrated and move on to simpler targets.

?

??

For more than 20 years, Jeffrey has been defending business owners and their assets from cyber criminals. To speak with an expert security technician, contact RCS Professional Services or visit our website www.rcsprofessional.com to learn how we can help you.

Sources: https://www.ic3.gov/Media/PDF/AnnualReport/2020_IC3Report.pdf

https://www.verizon.com/business/resources/reports/dbir/

https://purplesec.us/resources/cyber-security-statistics/