One of the most difficult types of attacks to detect are insider threats. An “insider” would be anyone that has legitimate access to your company network and data. This would be via a login or other authorized connection.
Because insiders have authorized system access, they bypass certain security defenses such as those designed to keep intruders out. Since a logged-in user isn’t seen as an intruder, those security protections are not triggered.
There are three troubling statistics from a recent report by Ponemon Institute. They illustrate the importance of addressing this threat. Insider attacks are getting worse, taking longer to detect and becoming more extensive.
The report found that over the last two years:
- Insider attacks have increased by 44%.
- It takes organizations 85 days to contain an insider threat compared to 77 days in 2020.
- The average cost of addressing insider threats has risen by 34%.
It is important for companies to understand what makes up an insider threat. That is the first step toward mitigation.
4 Types of Insider Threats
One reason that insider threats can be hard to detect is that there is not just one kind. Employees, vendors and hackers can all perpetrate insider security breaches. To further complicate detection, some may be malicious and others are accidental.
Here are the four main types of insider threats faced by company networks.
Malicious/Disgruntled Employee
A sales employee that is leaving the company may decide to take all of their contacts with them. This is a malicious theft of company data.
Another example of this type of insider attack is a disgruntled employee. They may be upset with their manager who just fired them and decide to do the business harm. They could plant ransomware or make a deal with a hacker to give over their login credentials for cash.
Careless/Negligent Employee
Some insider threats are due to lazy or untrained employees. They don’t mean to cause a data breach but may accidentally share classified data on a non-secure platform. They may use a friend’s computer to access their business apps while being completely unaware of the security consequences.
3rd Party with Access to Your Systems
Outsiders with access to your network are also a very real concern. Contractors, freelancers and vendors can all constitute an insider breach risk.
You need to ensure that these third parties are fully reviewed. Do this before you give them system access. You should also allow your IT partner to review them for any data security concerns.
Hacker That Compromises a Password
Compromised login credentials are one of the most dangerous types of insider threats. This has now become the #1 driver of data breaches around the world.
When a cybercriminal can access an employee’s login, that criminal becomes an “insider.” Your computer system reads them as the legitimate user.
Ways to Mitigate Insider Threats
Insider threats can be difficult to detect after the fact. However, if you put mitigation measures in place, you can stop them in their tracks. Being proactive keeps you from suffering a costly incident (one that you may not know about for months).
Here are some of the best tactics for reducing insider threat risk.
Thorough Background Checks
When hiring new employees, make sure you do a thorough background check. Malicious insiders will typically have red flags in their work history. You want to do the same with any vendors or contractors that will have access to your systems.
Endpoint Device Solutions
Mobile devices now make up about 60% of the endpoints in a company. However, many businesses are not using a solution to manage device access to resources.
Put an endpoint management solution in place to monitor device access. You can also use this to safelist devices and block unauthorized devices by default.
Multi-Factor Authentication & Password Security
One of the best ways to fight credential theft is through multi-factor authentication. Hackers have a hard time getting past the 2nd factor. They rarely have access to a person’s mobile device or FIDO security key.
Couple this with password security. This includes things like:
- Requiring strong passwords in your cloud apps
- Using a business password manager
- Requiring unique passwords for all logins
Employee Data Security Training
Training can help you mitigate the risk of a breach through carelessness. Train employees on proper data handling and security policies governing sensitive information.
Network Monitoring
Once someone has user access to your system, how can you catch them doing something wrong? You do this through intelligent network monitoring.
Use AI-enabled threat monitoring. This allows you to detect strange behaviors as soon as they happen. For example, someone may download a large number of files or someone may log in from outside the country.
Need Help Putting a Stop to Insider Attacks?
A layered security solution can help you mitigate all four types of insider threats. We can help you with a robust (yet affordable) solution. Contact us today for a free consultation.
The previous years have seen an increase in cyberattacks that is projected to continue over time. Is your mobile phone adequately secured or is it at risk for a mobile malware attack? Users may be more vulnerable to cybercrime attacks and data breaches if they only use their mobile devices for browsing and other daily activities.Read more
Digital footprints cover today's modern workplace. Employees begin making these from the moment that they are hired. They get a company email address and application logins. They may even update their LinkedIn page to connect to your company. The problems don't occur until the offboarding process happens.
When an employee leaves a company, there is a process that needs to happen. This is the process of “decoupling” the employee from the company’s technology assets. This digital offboarding is vital to cybersecurity.
You don’t want a former employee to maliciously email all of your customers from their work email. Sensitive files left on a former staffer’s computer could leak months later.
20% of surveyed businesses have experienced a data breach connected to a former employee.
Digital offboarding entails revoking privileges to company data and much more. This is a critical process to go through for each former staff member to reduce risk.
We have provided a handy checklist below to help you cover all of your bases.
Your Digital Offboarding Checklist
Knowledge Transfer
Vast corporate knowledge can disappear when a person leaves an organization. It is important to capture this during a digital offboarding process.
This could be something as simple as what social media app someone used for company posts or it may be productivity leveraging (like the best way to enter the sales data into the CRM).
Make sure to do a knowledge download with an employee during the exit interview or have all staff regularly document procedures and workflows. This makes the knowledge available if the employee is ever not there to perform those tasks.
Address Social Media Connections to the Company
Address any social media connections to the former employee. Is their personal Facebook user account an admin for your company's Facebook page? Do they post on your corporate LinkedIn page?
Identify All Apps & Logins That the Person Has Been Using for Work
Your HR or IT department should have a list of all of the apps and website logins that an employee has. However, you can’t assume this. Employees often use unauthorized cloud apps to do their work. This is usually done without realizing the security consequences.
Make sure that you know of any apps that the employee may have used for business activities. You will need to address these. Change the login if you plan to continue using them or close them altogether after exporting company data.
Change Email Password
Changing the employee’s email password should be one of the first things that you do. This keeps a former employee from getting company information. It also keeps them from emailing as a representative of the company.
Accounts are typically not closed immediately because emails need to be stored but you should change the password to ensure the employee no longer has access.
Change Employee Passwords for Cloud Business Apps
Change all other app passwords. Remember that people often access business apps on personal devices. Even though they can’t access their work computer any longer, it doesn’t mean that they can’t access their old accounts.
Changing the passwords locks them out no matter what device they are using. You can simplify the process with a single sign-on solution.
Recover Any Company Devices
Make sure to recover any company-owned devices from the employee’s home. Remote employees are often issued equipment to use.
You should do this as soon as possible to avoid loss of the equipment. Once people no longer work for a company, they may sell, give away or trash devices.
Recover Data on Employee Personal Devices
Many companies use a bring your own device (BYOD) policy. It saves them money but it can also make offboarding more difficult.
You need to ensure that you have captured all company data on those devices. If you don’t already have a backup policy in place for this, now is a good time to create one.
Transfer Data Ownership & Close Employee Accounts
Don’t keep old employee cloud accounts open indefinitely. Choose a user account to transfer their data to and then close the account. Leaving unused employee accounts open is an invitation to a hacker. No one is monitoring the account so breaches can happen. A criminal could gain access and steal data for months unnoticed.
Revoke Access by an Employee’s Devices to Your Apps and Network
Using an endpoint device management system, you can easily revoke device access. Remove the former employee’s device from any approved device list in your system.
Change Any Building Digital Passcodes
Don’t forget about physical access to your building. If you have any digital gate or door passcodes, be sure to change these so that the person can no longer gain access.
Need Help Reducing Offboarding Security Risk?
When you proactively address digital offboarding, the process is easier and less risky. Contact us today for a free consultation to enhance your cybersecurity.
With the end of 2022 fast approaching, business owners may have started planning for the following year. Therefore, it is important to do a year-end technology review to have a clear picture of how the current year was spent and know what to prepare for in the future.Read more
It is Cybersecurity Awareness Month in October which means that it is time to review your organization’s training program and promote good cybersecurity habits to your employees.
Here are four key messages you can use to drive home the importance of personal responsibility in cybersecurity.
Using Strong Passwords and a Password Manager
One of the first things that businesses should do is to require their employees to use strong passwords. A strong password is at least eight characters long and includes a mix of upper and lowercase letters, numbers and symbols.
Using a strong password is one of the best ways to help protect your account from being hacked.
In addition to requiring strong passwords, businesses should also encourage their employees to use a password manager. A password manager is a software that helps you to manage your passwords and keep them safe.
Password managers can help to make it easier for you to use strong passwords by generating them for you and storing them in a secure location.
Enabling Multi-Factor Authentication
When it comes to online security, there is no such thing as being too cautious. That is why more and more businesses are implementing multi-factor authentication(MFA) as an extra layer of protection for their employees. MFA can help prevent unauthorized access to company data and systems even if an employee’s password is compromised.
Before MFA can do the job, employees need to be properly trained on how to enable and use it. Otherwise, they may find it more of a nuisance than a security measure.
Here are a few tips for training employees on MFA:
- Make sure employees understand why MFA is important.
- Explain to employees why MFA is being implemented and how it will help protect the company’s data. It is also important to stress that MFA is not a replacement for other security measures like strong passwords. It is an additional layer of protection.
- Keep the instructions simple.
- When employees are being trained on how to enable MFA, make sure the instructions are clear and concise. Use step-by-step instructions with screenshots (if possible).
- Allow employees to test MFA before using it for real.
- To help employees get comfortable with MFA, create a test environment where they can try it out without affecting live data. This will let them get used to the MFA process without needing to worry about making a mistake.
Updating Software
Software updates will often include security patches that can help to protect your system from being hacked. However, if employees don’t know how to update software, they might inadvertently leave your system vulnerable.
There are a few different methods that you can use to train employees on how to update software. Some of them are:
- Create a training video that goes over the steps involved.
- Creating a written step-by-step guide that employees can reference when they need to update software.
- One-on-one training with an I.T. professional.
Whichever method you choose, it is important to make sure that employees understand the importance of updating software.
Cybersecurity is only going to become more important in the years to come so it is essential that your employees are properly trained on how to keep your system safe.
Recognizing and Reporting Phishing
Phishing is a type of online attack that uses fraudulent emails or other communications in an attempt to trick people into revealing sensitive information like passwords or credit card numbers.
93% of modern breaches involve a phishing attack.
If an employee receives a suspicious email, they should not respond to it or click on any of the links contained within it. Instead, they should report it to their IT department or another designated point of contact. By doing so, businesses can help protect themselves from phishing attacks and other cyber threats.
While it is important for businesses to have security measures in place to protect their data, it is equally important for employees to be aware of the dangers of phishing and how to prevent themselves from becoming victims. By taking the time to train employees on how to recognize and report phishing attempts, businesses can go a long way in protecting themselves from cyberattacks.
Help Your Team Adopt a Culture of Cybersecurity
As we all become more reliant on technology, it is important to remember that we need to be vigilant about our cybersecurity. By following the tips above and staying alert, you can help to keep your company’s data safe from cyberattacks.
It is urgent that we all do our part to protect ourselves and our businesses from cybercrime.
Cybersecurity Awareness Month is the perfect time to make sure that your employees are up-to-date on the latest cybersecurity threats and how to protect against them.
Cybersecurity is vital regardless of the size of your company. Contact us at (860) 577-8060 or via our contact form to learn more about how we can help.
Software vulnerabilities are an unfortunate part of working with technology. A developer puts out a software release with millions of lines of code. Hackers then look for loopholes that allow them to breach a system through that code.
The developer issues a patch to fix the vulnerability. It is not long before a new feature update causes more. It’s like a game of “whack-a-mole” to keep your systems secure.
Keeping up with new vulnerabilities is one of the top priorities of IT management firms. It is important to know which software and operating systems are being attacked.
Without ongoing patch and update management, company networks are vulnerable. These attacks are completely avoidable. 82% of U.S. cyberattacks in Q1 of 2022 were due to exploiting patchable vulnerabilities. This is a global problem.
What new vulnerabilities are lurking in products from Microsoft, Google, Adobe, etc? We will go through several. These were recently noted in a warning by the Cybersecurity and Infrastructure Security Agency (CISA).
Make Sure to Patch Any of These Vulnerabilities in Your Systems
Microsoft Vulnerabilities
Microsoft vulnerabilities include those in three of its products. Internet Explorer (IE) is one of them. Microsoft discontinued IE in June of 2022. You should remove this from any computers that still have it installed.
You will see the acronym “CVE” used in the vulnerability names. This is an industry-standard naming structure. It stands for Common Vulnerabilities and Exposures.
Here is a rundown of these vulnerabilities and what a hacker can do:
CVE-2012-4969: This Internet Explorer vulnerability allows the remote execution of code. This is a “critical” vulnerability because of the damage it enables. Hackers can release this via a website. Formerly safe sites can become phishing sites when hackers exploit this loophole.
- CVE-2013-1331: This is a flaw in the code for Microsoft Office 2003 and Office 2011 for Mac. It enables hackers to launch remote attacks. It exploits a vulnerability in Microsoft’s buffer overflow function. This allows hackers to execute dangerous code remotely.
- CVE-2012-0151: This issue impacts the Authenticode Signature Verification function of Windows. It allows user-assisted attackers to execute remote code on a system. “User-assisted” means that they need the user to assist in the attack by opening a malicious file attachment in a phishing email.
Google Vulnerabilities
Google Chrome and applications built using Google’s Chromium V8 Engine are also on the list. These applications are targets of the following vulnerabilities.
- CVE-2016-1646 & CVE-2016-518: These both allow attackers to conduct denial of service attacks. They do this against websites through remote control. This means they can flood a site with so much traffic that it crashes.
- Those are not the only two code flaws that allow hackers to crash sites this way. Two others (CVE-2018-17463 and CVE-2017-5070) both do the same thing. They have patches already issued that users can install to fix these holes.
Adobe Vulnerabilities
People use Adobe Acrobat Reader widely to share documents. It makes it easy to share them across different platforms and operating systems. However, it is also a tool that is on the list of popular vulnerabilities.
- CVE-2009-4324: This is a flaw in Acrobat Reader that allows hackers to execute remote code via a PDF file. This is why you can’t trust that a PDF attachment is going to be safer than other file types. Remember this when receiving unfamiliar emails.
- CVE-2010-1297: This is a memory corruption vulnerability. It allows remote execution and denial of service attacks through Adobe Flash Player. Similar to IE, the developer retired Flash Player. It no longer receives support or security updates. You should uninstall this from all PC's and websites.
Netgear Vulnerability
Netgear is a popular brand of wireless router. The company also sells other internet-connected devices. These are also vulnerable due to the following flaws.
- CVE-2017-6862: This flaw allows a hacker to execute code remotely. It also enables bypassing any needed password authentication. It is present in many different Netgear products.
Cisco Vulnerability
- CVE-2019-15271: This is a vulnerability in the buffer overflow process of Cisco RV series routers. It gives a hacker “root” privileges. This means they can basically do anything with your device and execute any code they like.
Patch & Update Regularly!
These are a few of the security vulnerabilities listed on the CISA list. You can see all 36 that were added here.
How do you keep your network safe from these and other vulnerabilities? You should patch and update regularly. Work with a trusted IT professional to manage your device and software updates. This ensures you don’t have a breach waiting to happen lurking in your network.
Automate Your Cybersecurity Today
Patch and update management is just one way that we can automate your cybersecurity. Learn how else we can help by scheduling a consultation today. You can reach us at (860) 577-8060 or use our contact form.
Have you felt more secure from cyberattacks because you have a smaller business? Maybe you thought that you couldn’t possibly have anything that hackers could want? Maybe you didn’t think they even knew about your small business.
A new report by cybersecurity firm Barracuda Networks debunks this myth. Their report analyzed millions of emails across thousands of organizations. It found that small companies have a lot to worry about when it comes to their IT security.
Barracuda Networks found something alarming. Employees at small companies saw 350% more social engineering attacks than those at larger ones. It defines a small company as one with less than 100 employees. This puts small businesses at a higher risk of falling victim to a cyberattack. We will explore why below.
Why Are Smaller Companies Targeted More?
There are many reasons why hackers see small businesses as low-hanging fruit. They are becoming larger targets of hackers out to score a quick illicit buck.
Small Companies Tend to Spend Less on Cybersecurity
When you’re running a small business, it is often a juggling act of where to prioritize your cash. You may know cybersecurity is important but it may not be at the top of your list. At the end of the month, cash runs out and it is moved to the “next month” wish list of expenditures.
Small business leaders often don’t spend as much as they should on their IT security. They may buy an antivirus program and think that is enough to cover them. However, with the expansion of technology to the cloud, that is just one small layer. You need several more for adequate security.
Hackers know all this and see small businesses as an easier target. They can do much less work to get a payout than they would trying to hack into an enterprise corporation.
Every Business Has “Hack-Worthy” Resources
Every business (even a 1-person shop) has data that is worth scoring for a hacker. Credit card numbers, SSN's, tax ID numbers and email addresses are all valuable. Cybercriminals can sell these on the Dark Web. From there, other criminals use them for identity theft.
Here are some of the data that hackers will go after:
- Customer records
- Employee records
- Bank account information
- Emails and passwords
- Payment card details
Small Businesses Can Provide Entry Into Larger Ones
If a hacker can breach the network of a small business, they can often make a larger score. Many smaller companies provide services to larger companies. This can include digital marketing, website management, accounting, etc.
Vendors are often digitally connected to certain client systems. This type of relationship can enable a multi-company breach. While hackers don’t need that connection to hack you, it is a nice bonus. They can get two companies for the work of one.
Small Business Owners Are Often Unprepared for Ransomware
Ransomware has been one of the fastest-growing cyberattacks of the last decade. So far in 2022, over 71% of surveyed organizations experienced ransomware attacks.
The percentage of victims that pay the ransom to attackers has also been increasing. An average of 63% of companies pay the attacker money in hopes of getting a key to decrypt the ransomware.
Even if a hacker can’t get as much ransom from a small business as they can from a larger organization, it’s worth it. They often can breach more small companies than they can larger ones.
When companies pay the ransom, it feeds the beast and more cyber criminals join in. Those newer to ransomware attacks will often go after smaller, easier-to-breach companies.
Employees at Smaller Companies Usually Aren’t Trained in Cybersecurity
Employee cybersecurity training is not usually high on the list of priorities for a small business owner. They may be doing all they can just to keep good staff. Priorities are often sales and operations.
Training employees on how to spot phishing and password best practices often isn’t done. This leaves networks vulnerable to one of the biggest dangers - human error.
In most cyberattacks, the hacker needs help from a user. It’s like the vampire needing the unsuspecting victim to invite them inside. Phishing emails are the device needed to get that unsuspecting cooperation.
Phishing causes over 80% of data breaches.
A phishing email sitting in an inbox can’t usually do anything. It needs the user to either open a file attachment or click a link that will take them to a malicious site. This then launches the attack.
Teaching employees how to spot these ploys can significantly increase your cybersecurity. Security awareness training is as important as having a strong firewall or antivirus.
Need Affordable IT Security Services for Your Small Business?
Reach out today to schedule a technology consultation. We offer affordable options for small companies. This includes many ways to keep you protected from cyber threats.
Give us a call at (860) 577-8060 or use our convenient contact form.
The pandemic has been a reality that companies around the world have shared. It required major changes in how businesses operate. The status quo of having everyone work in the office no longer made sense for everyone. Many organizations needed to quickly evolve to becoming a digital workplace.
During the worst of the pandemic, it is estimated that 70% of full-time workers were working from home. Even now that the pandemic has hit a new waning phase, remote work is still very much a reality. 92% of surveyed employees expect to still work from home at least 1 or more days per week.
This transformation has forced companies to rethink the tools and policies that they use. Many have also needed to completely revamp how they work. They needed to switch to a cloud-based digital workspace to enable a hybrid team.
This transition has brought newfound benefits such as:
- Lower costs for employees and employers
- Better employee work/life balance
- Higher morale
- The same or improved productivity
- More flexibility in serving clients
However, the transition to a digital workplace has also brought challenges and risks. These include:
- Vulnerable networks and endpoints
- Employees feeling disconnected
- Communication problems
- Difficulty tracking productivity and accountability
- Increased risk of data breaches
20% of organizations experienced a breach during the pandemic due to a remote worker.
Overcoming the challenges and reaping the benefits takes time and effort. It often takes the help of a trained IT professional to avoid costly mistakes.
Below are some of the biggest company mistakes when building a digital workplace. For the statistics, we referenced IGLOO’s State of the Digital Workplace report.
1. Poor Cloud File Organization
When companies go virtual for their workflows, files live in a cloud-accessible environment. If those cloud storage environments aren’t well organized, it becomes a problem. It can be difficult for employees to find the files that they need.
About 51% of employees have avoided sharing a document with a colleague for this reason. They either couldn’t find it or thought it would be too hard to find. It is notable that this is the highest percentage recorded for this stat in the IGLOO report. This means that the problem is getting worse.
Some tips for making shared cloud storage files easier to locate are:
- Keep file structure flat (2-3 folders deep)
- Create a consistent hierarchy and naming structure
- Don’t create a file for fewer than 10 documents
- Archive and delete older files monthly to reduce clutter
2. Leaving Remote Workers Out of the Conversation
No one likes to hear people start talking about something at a meeting and realize they're lost. They missed an important piece of an earlier conversation. Many companies haven’t yet overcome in-person vs remote communication challenges.
In fact, nearly 60% of remote workers say they miss out on important information. This is because colleagues first communicated it in person. Efficiency suffers when in-office workers make decisions without regard for remote colleagues.
Managers and bosses must lead the way in changing this culture. While old habits do take a while to change, mindset can transition to be more inclusive of the hybrid world.
3. Not Addressing Unauthorized Cloud App Use
Unauthorized cloud app use (also known as Shadow IT) was already a problem before the pandemic. That problem escalated once people began working from home because they are often using their personal devices.
Over half (57%) of employees use at least one unauthorized app in their workflow. When this happens, organizations can suffer in many ways.
Some of the risks of shadow IT include:
- Data leakage from non-secured apps
- Date privacy compliance violations
- Redundancies in app use that increase costs
- Unprotected company data due to a lack of visibility
- The employee leaves and no one can access the data in the unauthorized app
4. Not Realizing Remote Doesn’t Always Mean From Home
Remote employees aren’t always working from home and connected to their home Wi-Fi. They may also be working from airports, hotels, a family member’s home or local coffee shops.
Companies that don’t properly protect company data used by remote employees can be at risk of a breach. Public networks are notorious for enabling “man-in-the-middle” attacks. This is where a hacker connects to the same public network. They can then use software to access data transmissions from others on that network.
It is advisable to use a business VPN for all remote work situations. VPNs are fairly inexpensive and easy to use. The employee simply enables the app on their device. The app then reroutes their data through secure, encrypted servers.
5. Using Communication Tools That Frustrate Everyone
Are virtual meetings giving your team problems? As many as 85% of remote workers say that they have had 1-2 meetings interrupted by technology. It is getting so you can hardly have a virtual meeting without someone having a technical issue.
Communication is the oil that makes the engine of a digital workplace run. Effective cloud-based video calls, audio calls and chats depend on the right technology. This facilitates a smooth experience.
Don’t rush to use just any communication tools. Take your time and test them out. Get help optimizing settings to improve your virtual meetings. Additionally, ensure your remote team has tools to foster smooth communications. This includes headsets, VoIP desk sets, webcams, etc.
Boost the Productivity of Your Hybrid Office
Reach out today to schedule a technology consultation. We can help you improve the efficiency and productivity of your digital workplace.
Give us a call at (860) 577-8060 or contact us via our convenient contact form.
More employees are working remotely which means that the bring your own device (BYOD) trend has grown in popularity.
58.3% of surveyed employees said their use of personal devices for work increased during the COVID-19 pandemic.
BYOD programs can offer a number of benefits for businesses including increased productivity and flexibility. However, there are also security risks that come with BYOD programs.
In order to reduce these risks, businesses should take the following steps:
Define The Scope of The BYOD Program.
The first step in creating a secure BYOD program is to define the scope of the program.
- What devices will be allowed?
- What apps and data will employees be able to access?
By defining the scope of the program, businesses can set clear expectations for employees and reduce the risk of unauthorized access to company data.
Be sure to differentiate between devices that are for work and devices that are for personal use. Devices that are for work should be dedicated to work tasks and should not be used for personal tasks.
There should be a clear definition of what devices are allowed on the network in order to maintain BYOD programs. This will ensure that only approved devices are used and that will minimize security risks.
Develop Policies and Procedures for Employees.
Once the scope of the BYOD program has been determined, businesses should develop policies and procedures for employees.
These policies should cover topics such as:
- Device Security
- Data Security
- Acceptable Use
By having clear policies in place, businesses can ensure that employees are aware of their responsibilities and the risks involved with BYOD.
Employees should be made aware of any changes to the policies and they should also be given the opportunity to ask questions and provide feedback.
Educate Employees on Security Risks.
One of the most important steps in creating a secure BYOD program is educating employees on the security risks involved. Employees should be made aware of the risks of downloading malicious apps, accessing unsecured Wi-Fi networks and sharing company data.
By educating employees on the risks, businesses can help reduce the likelihood of a security breach.
When it comes to security, ignorance is not bliss.
Businesses should also provide employees with the necessary tools to help them secure their devices. This can include mobile device management (MDM) software, data encryption and antivirus protection. Employees should be trained on how to use these tools and how to keep their devices secure.
Implement Security Measures.
In order to further reduce the risk of a security breach, businesses should implement security measures such as:
- Mobile device management (MDM)
- MDM can help businesses control which apps are installed on employee devices and remotely wipe data if a device is lost or stolen.
- Data encryption
- Data encryption can help protect company data if a device is lost or stolen.
- Antivirus protection
- Antivirus protection can help protect devices from malware and other malicious software.
- Firewalls
- Firewalls can help protect devices from malicious traffic.
These are just a few of the many security measures businesses can take to reduce the risk of a security breach.
By implementing these measures, businesses can help keep their data and devices safe from harm.
Monitor the BYOD Program.
Businesses should monitor their BYOD program on an ongoing basis. They should keep track of which devices and apps are being used as well as any security breaches that occur. By monitoring the BYOD program, businesses can quickly identify and address any security risks.
Businesses can also ensure that employees are complying with BYOD policies. For example, you can track which devices are accessing corporate data and ensure that only authorized devices are being used.
By keeping track of which devices and apps are being used, businesses can quickly identify and address any security risks.
60 percent of endpoints are mobile devices and are woefully under-protected.
Review and Update the BYOD Program Regularly.
The BYOD program should be reviewed and updated on a regular basis. As new devices and apps become available, the program should be updated to reflect these changes. Businesses should also review the program if there are any changes in the company’s security posture.
Reviewing and updating the BYOD program is essential for businesses to keep their data secure. By keeping the program up-to-date, businesses can ensure that only authorized devices are being used to access corporate data.
Be Proactive with Help from Sound Computers.
These are just a few of the many steps businesses can take to create a secure BYOD program. By being proactive and taking the necessary steps, businesses can help reduce the risk of a security breach.
Breaches cost businesses time, money and resources. It is important to do everything you can to prevent them.
Do you have a BYOD program in place? What steps have you taken to ensure the security of your data?
No matter what size company you have, security is important. Contact us at (860) 577-8060 or via our contact form to learn more about our security solutions.
Few things invoke instant panic like missing a mobile device or laptop. These devices hold a good part of our lives. This includes files, personal financials, apps, passwords, pictures, and videos.
The information they hold is more personal than even that which is in your wallet. It's because of all your digital footprints. This makes a lost or stolen device a cause for alarm.
It is not the device that is usually the biggest concern. It is the data on the device and access the device has to cloud accounts and websites. The thought of that being in the hands of a criminal is quite scary.
There are approximately 70 million lost smartphones every year. The owners only recover about 7% of them. Workplace theft is all too common. The office is where 52% of stolen devices go missing.
If it is a work laptop or smartphone that goes missing, it is even worse. This can mean the company is subject to a data privacy violation. It could also suffer a ransomware attack originating from that stolen device.
In 2020, Lifespan Health System paid a $1,040,000 HIPAA fine. This was due to an unencrypted stolen laptop breach.
The Minutes After the Loss of Your Device Are Critical
The things you do in the minutes after missing a device are critical. This is the case whether it is a personal or business device. The faster you act means the less chance there is for exposure of sensitive data.
What Types of Information Does Your Device Hold?
When a criminal gets their hands on a smartphone, tablet or laptop, they have access to a treasure trove. This includes:
- Documents
- Photos & videos
- Access to any logged-in app accounts on the device
- Passwords stored in a browser
- Cloud storage access through a syncing account
- Emails
- Text messages
- Multi-factor authentication prompts that come via SMS
Steps to Take Immediately After Missing Your Device
As we mentioned, time is of the essence when it comes to a lost mobile device. The faster you act means the more risk you mitigate for a breach of personal or business information.
Here are steps you should take immediately after the device is missing.
Activate a “Lock My Device” Feature
Most mobile devices and laptops will include a “lock my device” feature. It allows for remote activation if you have enabled it. You will also need to enable “location services.” While good thieves may be able to crack a passcode, turning that on immediately can slow them down.
What about “find my device?”
There is usually also a “find my device” feature available in the same setting area. Only use this to try to locate your device if you feel it has been misplaced rather than stolen. You don’t want to end up face to face with criminals!
Report the Device Missing to Your Company If It is Used for Work
If you use the device for business, notify your company immediately. Even if all you do is get work email on a personal smartphone, it still counts. Many companies use an endpoint device manager. In this case, access to the company network can be immediately revoked.
Reporting your device missing immediately can allow your company to act fast. This can often mitigate the risk of a data breach.
Log Out & Revoke Access to SaaS Tools
Most mobile devices have persistent logins to SaaS tools. SaaS stands for Software as a Service. These are accounts like Microsoft 365, Trello, Salesforce, etc.
Use another device to log into your account through a web application. Then go to the authorized device area of your account settings. Locate the device that is missing and log it out of the service. Revoke access if it is an option.
This disconnects the device from your account so the thief can’t gain access.
Log Out & Revoke Access to Cloud Storage
It is very important to include cloud storage applications when you revoke access. Is your missing device syncing with a cloud storage platform? If so, the criminal can exploit that connection.
They could upload a malware file that infects the entire storage system. They could also reset your device to resell it and delete files from cloud storage.
Active a “Wipe My Device” Feature
Hopefully, you are backing up all your devices. This ensures that you have a copy of all your files in the case of a lost device.
Does it look like the device is not simply misplaced? Has it been stolen or lost for good? If so, then you should use a remote “wipe my device” feature if it has been set up. This will wipe the hard drive of data.
Need Mobile Device Security Solutions?
No matter what size company you have, mobile device management is vital. Contact us at (860) 577-8060 or via our contact form to learn more about our endpoint security solutions.