Tips To Protect Against Cyber Attacks

While there is no 100% protection against cyber attacks, the following options each provide an additional layer of security:

  • Employee Training: Conduct security awareness training for your employees.
  • Network Management: Avoid mapping network drives; create shortcuts instead. Limit access to data – even the CEO doesn’t need read/write access to all folders.
  • User Permissions: Minimize local admin rights for users or, even better, disable them altogether. Block USB ports for storage devices.
  • Policies and Protocols: Establish guiding policies for your staff.
  • Authentication: Ensure everyone utilizes multi-factor authentication (MFA).
  • Document Security: Encrypt vital documents.
  • Password Practices:
  • Use complex and unique passwords, with a minimum of 14 characters.
  • Avoid using the same password for multiple services.
  • Employ a password manager.
  • Updates and Passwords:
  • Ensure firmware is consistently updated for all devices, including modems, routers, switches, NAS storage, etc.
  • Alter all default passwords to new passphrases that are not easily guessed.
  • Consistently update all software and operating systems.
  • Backups: Ensure backups are encrypted and off-site. Avoid allowing backups to be deleted within the software.
  • Network Security:
  • Implement firewalls.
  • Employ endpoint security measures and monitoring.
  • Close unnecessary or high-risk ports, such as RDP.
  • Cloud Management:
  • If using SharePoint, access via a web browser instead of syncing to OneDrive. The same rule applies to G Suite.
  • For O365 email users, consider subscribing to Defender to prevent harmful link and attachment access.
  • Emergency Preparedness:
  • Have a disaster response and recovery plan on hand.
  • Consider investing in cybersecurity insurance.

Remember, layering these security measures provides a more robust defense against potential cyber threats.