When it comes to security, it can be really easy to overlook aspects of your business that could be vulnerable, but also, on the same thread, your vulnerabilities could exist simply because you did not know they posed a threat. And with so many things to juggle on a day-to-day basis, there are areas that are often overlooked in relation to security, and if someone outside the company identifies them, they could pose a massive problem. Let’s take a look.
Poor Cyber Hygiene and Weak Passwords
Something that is all too common is weak passwords. Many businesses still allow employees to use weak, easy-to-guess passwords that are repeated across multiple platforms. This is a huge uncertainty and leaves you exposed should their passwords be guessed or hackers target your business.
You need to make sure employees are using strong passwords that contain upper and lower case letters, numbers, symbols, and are ideally over 14 characters long — this takes hackers much longer to crack. They also need to be unique and not used anywhere else. Enforcing 2FA is also a good idea, and password managers can help to keep things secure, too.
Unsecured WiFi Networks
WiFi networks are just as important as any other type of tool you use. And while on-site, you can lock things down. What happens when employees go off-site? What do they use?
Unsecured WiFi networks are hackers’ playgrounds. They can access any information sent — for example, free public internet access in cafes, etc., and they can easily gain sensitive details they will use against you before you even realize it’s appended.
Have your own safe networks for all employees, and for those who work remotely, make sure they, too, only use locked-down networks. Then have private guest networks for all visitors to use, so you’re not allowing them on the company WiFi.
Not Controlling Access
Not all security is digital, although it is important and a huge concern you need to be on top of. If you’re neglecting physical security, this too can be a problem. From idling cars sitting around your business premises to inefficient locks on doors or none at all, to not having restricted access within the building, you can be exposed in multiple ways.
You need to enforce security at multiple points for your business. Restricting access for customer visitors and even staff from certain areas. Using alpr technology to identify any vehicles arriving at your business, or using motion sensor lighting and CCTV at strategic locations, so that you can increase visibility and reduce the blind spots criminals will use to attack your business and gain access.
Insider Threats
Not all threats posed to business come from external sources. Sometimes there are people who work for you, or with you, you need to look out for. Password sharing, employee thefts, forgetting to log out of accounts, accidentally exposing sensitive information, or using shadow IT to finish work are all risky behaviours you don’t want people carrying out.
You need to implement strict protocols and effective training to help employees understand what is and isn’t acceptable, what the company tolerates, and what they are not allowed to do. The clearer they are and the more straightforward your policies on these topics, the easier it will be to spot potential issues before they escalate.
