You’ve heard the names: Cryptolocker, Locky, WannaCry, Petya -as news continues to roll in about the latest massive global ransomware attacks affecting schools, hospitals, government entities and small businesses world wide and even here locally in Albuquerque, New Mexico. The “cyber arms race” continues to evolve as criminals find new and creative ways to combine exploits and hacks in order to target organizations large and small.
To date, the WannaCry ransomware attack has been the largest ransomware campaign ever. In the course of a single weekend, it spread to over 250,000 computers in 150 countries, crippling operations at hospitals, telecom providers, utility companies, and other businesses around the globe.
Can your security solutions protect from this threat?
Most small businesses are easy prey because they fail to take precautions. But you don’t have to be like most small businesses. Here are four things you can start doing TODAY to prevent a very preventable and possibly very expensive shutdown of your business’s technology infrastructure.
1. Understand evolving threats.
Know what’s at risk in your company. Stay on top of the different schemes hackers use to gain entry. Learn all you can about phishing, spoofing, social engineering, malware, systems hacking, pharming and the all of the latest scams so you can see them coming. Identify your company’s weak points and bolster them as needed.
2. Institute a dual signature policy.
Require that two people sign off on every transaction. At the very least, when in doubt, pick up the phone. Verify all fund transfers or requests for payment before releasing funds.
Ingrain a solid data security policy in your company’s culture – Yes, you need to deﬁne and document protocols… but that’s not enough. In order for them to work, they must permeate every activity you and your team engages in.
3. Your employees are the gatekeepers of critical data.
Train them to see the warning signs, engage in safe practices and respond effectively to an attack. Examples include using only unique, complex passwords and keeping a “clean desk,” where sensitive information isn’t exposed.
4. Have – and practice – an incident response plan.
Just like a ﬁre drill, being ready for a breach gives your team an edge when faced with a crisis. When everyone knows exactly what to do, you’re better able to nip a hack in the bud.
Why play Russian roulette with your company’s data? If you’ve been putting off cyber-protection measures, thinking, “Oh, that would never happen here,” you are putting your company’s entire future in jeopardy. NOW is the time to call in an expert you can trust to verify that your data is safe in today’s rapidly evolving battle against a host of online bad guys.