We’ve directed you on how you can recover after a breach but we all know that prevention is the best cure so here are some tips to preventing a cybersecurity breach.
Passwords are critical when protecting your sensitive data so it’s important to keep them strong and up to date. To keep the hackers on their toes, ensure you change your passwords every six months or so and encourage your staff to never share passwords that they have access to with others. Secure passwords tend to include:
- Lowercase letters.
- Uppercase letters.
- Upwards on 10 characters.
With phishing emails being the cause of 72% of breaches, there’s no wonder why this is a big deal. In 2016, Snapchat was affected by a breach caused by a phishing email after a member of staff, thinking the sender was the CEO, disclosed information about the company’s payroll. Yes, it may sound stupid but a lot of people fall for it. Just make sure your staff are aware of phishing emails and who they should and shouldn’t send information to.
As we said in the last blog, it’s important to use trusted anti-virus and anti-malware software to protect your networks and devices. The use of firewalls would also be recommended to reduce a hacker’s access as well as the risk of multiple breaches. Just make sure that you choose the best software you can to protect your data.
Testing your security regularly can be an integral part of preventing a breach. By having your security tested on the regular, you can find out where your vulnerabilities are and where you need to boost your defenses. Advice from Jack Hague when asked how often penetration tests should be carried out: “Ideally, once per year at minimum. 6 monthly advised if it’s a critical system. If any new systems are to be put in place, then they should be pen-tested prior to using.” It all comes down to this; knowing your weaknesses can be your largest strength.
It may sound obvious but make sure your staff are trustworthy. Many cyberattacks are the result of a member of staff leaking sensitive information. This can also come from staff members that are no longer working with your company. The best way to reduce the risk of this happening is to limit the access given to staff on sensitive information and to immediately cut off access when a member of staff leaves your company.