Velocity Technology Partners Blog

Velocity Technology Partners has been serving Athens, Gainesville and North Georgia since 2005, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

3 Security Lessons We Learned the Hard Way in 2017

3 Security Lessons We Learned the Hard Way in 2017

2017 was filled with security issues ranging from threats and small attacks to major security breaches. You can learn a lot from the misfortunes of other ill-prepared organizations about how to prepare for and handle cybersecurity issues. This week’s tip is dedicated to learning a bit from some of the security problems that may have flown over your radar last year.

Lesson One: Track Your Data
The Yahoo and Equifax data breaches led to countless individuals losing track of their data and how it’s used online. These breaches made it unbearably clear that even some of the largest organizations in the world aren’t immune to the dangers of the Internet, and even they could become victims if they didn’t pay particularly close attention to their security. In some cases, these breaches remained unannounced for months.

This observation led to the belief that small and medium-sized businesses must be much more careful with their data than they previously had been. If large companies can be toppled by security threats, then so too can small businesses (since they likely have smaller security budgets and less comprehensive solutions put in place). Therefore, a small business should also take as many measures as possible if it should hope to secure its future.

Lesson Two: Patches Are Extremely Important
Patches and security updates are one of the best ways to prevent data breaches. In the Equifax case previously mentioned, it would have been vital. Patches are implemented by developers with the express purpose of resolving holes in their solutions. Yet, 2017 has shown that some companies need to put a higher priority on patching, as many of the issues that 2017 saw could have been prevented with proactive patching.

Everything starts with the developers, though. If the developers don’t issue the patches and updates in the requisite timetable, the problems posed by the threats could have plenty of time to cause as much damage as possible. For example, the bug that allowed the EternalBlue exploit wasn’t patched until a month after the issue had become known. The exploit was then used alongside other threats, like WannaCry and NotPetya, to cause even more trouble for organizations and individuals, alike.

Therefore, we recommend that you apply patches as soon as possible after they are released. We also recommend that you maintain a consistent patching schedule, routinely deploying them as you can. After all, the longer you wait to deploy a patch, the longer you have to become infected by the very bugs that they are designed to fix. Plus, the longer the patch is available, the longer it is available to hackers. These nefarious actors could take it apart and discover what vulnerability is being addressed, affording them time to create code that would negate the effects of the designated patch.

Lesson Three: So Many Ways for Data Theft
Cisco has found that business email and account compromise attacks are five times more profitable than your typical ransomware attacks. In fact, the Federal Bureau of Investigation estimates that BEC attacks have lost businesses over $5 billion. Therefore, your organization needs to take a stand against common security threats. One way you can shore up defenses for your infrastructure is with traditional endpoint security. If you can keep threats from accessing your network in the first place, you’re setting yourself up for success. You can use access controls to ensure that a hacker can’t access your entire infrastructure from a single unsecured endpoint. We also recommend educating your employees through security training so that they are made more aware of their role in network security for your organization.

Don’t let your business fall victim to security threats in 2018. To learn more about network security, reach out to Velocity Technology Partners at (800) - 983 - 5765.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, 27 May 2018

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Credit Cards Office 365 Two-factor Authentication Screen Mirroring Commerce Workers Sync Operating System Shortcut Communications Legal Hardware App Managed IT Services Saving Money Audit Managed IT Applications Google Assistant Internet BYOD Proactive SaaS Employer-Employee Relationship Politics Innovation Mobile Devices Vendor Management WannaCry Antivirus Smart Tech WiFi Cloud Storage Adobe Word File Sharing Software Business Computing Mobile Security Streaming Media IT Solutions Wireless Charging Data Protection Twitter Cost Management Small Business Social Media Malware Thank You Tech Term Spam Hard Drive Artificial Intelligence Data Privacy Gifts Specifications Maintenance Big Data Computing Windows Ink Mobile Device Management HBO Vulnerability Websites Identities Disaster Recovery Licensing Congratulations IT Management Conferencing Security Monitoring Value Chromebook Networking Browser Evernote OneNote Ciminal Devices Best Practice Windows 10 Computer User Error Microsoft Office eWaste Data Loss Cybersecurity Data Management Outsourced IT Microsoft Excel Unsupported Software Tablets Automation Excel Business Tech Support Google Drive WIndows Server 2008 Tip of the Week Management Comparison Google Microsoft Word Identity Theft Gmail Connectivity Virus Outlook Google Maps Cortana IT Support Holiday Computer Forensics Cleaning Google Docs Fraud Hackers Wireless Internet Data Backup Alert Printing Money Smartphones Apple Lifestyle Telephone Update Sales IT budget Content Filtering Mobility Network Privacy Patch Management Productivity The Internet of Things Language Communication Network Security Redundancy MSP App store Wireless Technology Content Filter Device Security Chrome Smartphone Financial Technology Data Security Router Internet of Things Safety User Tips Cloud Computing Flexibility Telephone Systems Travel Updates Hosted Solution Data Storage Computers Apps Microsoft VoIp Analysis Emergency Sports Data Project Management Personal Information Ransomware Blockchain FAQ Server Charger Cast Law Enforcement Softphones Marketing Efficiency Proactive IT Managed Service Provider Collaboration Risk Management Business Management VPN iPhone Legislation Backup IT Services Best Practices Identity Data Theft intranet Business Continuity NFL Virtualization Cybercrime Retail Data Recovery Phishing PowerPoint BDR Encryption Android Edge Data Breach IT support Spyware Social Engineering Hosted Solutions Email History Work/Life Balance IoT Windows Gadgets Wi-Fi Software as a Service Government Technology Passwords