Business security following the Crowdstrike incident

With all the recent buzz about Crowdstrike and the disruption their mistakes caused, we thought now would be a great time to stop and talk about the basics of IT security for small businesses again.

What’s the deal with Crowdstrike?

First, let’s break down what happened with Crowdstrike. Crowdstrike is a major player in cybersecurity, known for protecting companies from cyber threats using cloud-based software. Recently, though, they’ve faced scrutiny and concerns about their business practices after a problem during an update caused widespread disruption across the globe, including businesses like, banks, news firms and airports.

Why It Matters to You

This may well have affected you (and there’s not a lot the end user could do to protect themselves in this situation) but we want to use this opportunity to talk about the important basics – as they can not only help prevent other security breaches for small businesses, they can help you bounce back quicker if you do face an unprecedented outage caused by an external provider.

You might be wondering, “I’m just running a small business. Does this really affect me?” The answer is: absolutely! Cybersecurity isn’t just a concern for large corporations. In fact, small and medium-sized businesses are often prime targets for cyber attacks because hackers know their defenses might not be as robust.

So, what can you do to safeguard your business when it feels like things are changing by the day?

Bolstering your IT security

Here are some simple, practical steps to boost your IT security without needing to be a tech guru yourself.

1. Keep everything updated

This might seem obvious, but many people overlook those annoying software update alerts. Keeping your software and systems updated is one of the easiest ways to protect against threats. Hackers love exploiting old software vulnerabilities, but if you do the updates which often contain security patches – you are quite literally slamming one point of entry closed.

2. Strong passwords

“PA55w0rD!1” or anything even slightly similar just isn’t going to cut it anymore. Use strong, completely unique passwords for all your accounts. Password managers are a great way to keep track of these, you only need to remember your password manager password, which is like a key to a vault of all of your other passwords – it’s even easier than a notebook, or god-forbid, sticky notes!

3. Education for your whole team

Your employees are your first line of defense. Make sure they know how to identify potential phishing emails and understand basic IT security principles. A little training can go a long way in preventing huuuge problems. There are also ways of making sure you’re getting the biggest bang for your buck when it comes to training spend.

For example, we can offer a simulated phishing attack where a fake phishing email gets sent round, and you can see who clicks on it/ whether they provide any information etc. You can then see who needs what training, to help it be targeted and more effective across your business.

4. Regular data backups

Imagine waking up one day to find all your important data gone. Scary, right? Regular backups ensure you can quickly recover from an attack. Use cloud services or external drives, and make it a regular habit to check that your backups are working as they should. It could potentially be devastating to suffer an outage, then realise your backups haven’t been working for several months.

5. Good security software

A good antivirus and anti-malware solution can keep unwanted intruders out. And remember to keep this software updated too!

We know this wouldn’t prevent something happening like Crowdstrike’s mistake, and what they’ve done has eroded a lot of trust in them and the industry, but it’s important to remember although it’s had a huge impact, incidents like this are not a regular occurence, and it’s more beneficial to be using software than it is to swerve it.

6. Ask the experts

Sometimes, you just need a bit of help – and that’s okay! If IT security feels overwhelming, don’t hesitate to reach out to an IT company (it doesn’t have to be us, but we’re happy to help!) that can help you navigate these constantly changing waters. We’re here to ensure your business stays secure without you having to stress over it.

The Crowdstrike situation is a reminder that no company, regardless of size or reputation, is immune to issues. By paying attention to the basics, your business can embed the best protection possible, and prepare for the bounceback if something does happen to a third-party company you use.

Got more questions about IT security or need expert advice? Feel free to get in touc h with us. We’re here to help!

You may also be interested in: Safeguarding your remote team