It’s a common misconception that only large-scale corporations with sensitive company or customer information are susceptible to cyber breaches. The findings of a recent Manta survey showed that 87 percent of small business owners don't feel that they're at risk of a cybersecurity attack, and one in three small businesses don't have the tools in place to protect themselves.
However, any small business that uses web-based technology and tools to streamline its processes is vulnerable to a cyber infiltration that can put its customer data and proprietary information at stake. In fact, small businesses that don’t have the resources for their own IT teams can be especially defenseless against phishing attacks. To protect themselves against cyberattacks that can derail their operations for up to a week or more, small businesses should take the following five proactive measures.
Secure your network and limit the use of external devices: Wi-Fi is the standard at most small businesses today, but an unsecured network can give anyone access to emails, files and other confidential information. To prevent this from happening, disable the service set identifier (SSID) broadcasting function on your wireless router. This will help hide your network from hackers and make it accessible only to users who have the exact network name.
Check your router settings and select the highest-level encryption security available to you. Most routers now come with the default encryption protocol WPA (WiFi Protected Access), but if your router is older and does not have this security, you may want to consider upgrading or looking for a firmware update. You should also set up a guest Wi-Fi for visitors and customers to limit who is using your business’ primary network.
If you or your employees work remotely, you might want to set up a virtual private network (VPN). A VPN creates a secure encrypted connection to your business’ private network. An employee must enter a username and password to authenticate their identity and then they can safely browse work files as if they were in the office.
- Install reliable antivirus software: These programs are the final defense against cyber breaches that infiltrate your network, and therefore are a must-have. Investing in high-quality security software can protect your data and all employee devices from intruders. There are a lot of software options out there, and choosing which is right for your business can be a little overwhelming.
These programs are the final defense against cyber breaches that infiltrate your network, and therefore are a must-have. Investing in high-quality security software can protect your data and all employee devices from intruders. There are a lot of software options out there, and choosing which is right for your business can be a little overwhelming. For help, check out this article from Comparitech that reviews the best antivirus providers and may help you decide which option fits your needs.
- Use strong passwords and rotate them: According to the 2016 state of SMB cybersecurity report, 65% of small businesses that have a password policy do not strictly enforce it. Employee passwords must include a combination of uppercase and lowercase letters, symbols, numbers and ideally should be changed every month on all devices. Make sure you have a process in place to change all sensitive passwords when an employee leaves your business.
- Limit access to sensitive data and back it up: Access to critical company data should only be given to management and a handful of trusted staff members. Business data should be backed up daily in multiple secure locations such as the cloud and an external hard drive. This will enable you to have uninterrupted access to this information in the event your system is compromised.
- Educate your staff and keep them updated: Employees can unintentionally be one of the biggest risks to a business' cybersecurity plan. It’s imperative that you have a process in place to educate your workforce on how to safely use the Internet, ways your system can be breached, how to recognize the signs of an attack, and what to do if they spot a red flag. Make cybersecurity part of your onboarding process and hold regular, focused sessions with employees about the different types of cyberattacks and measures your company is taking.
You can find more tips to help protect your small business from cyber threats here on our Simply Speaking blog. To reach our Customer Service Team with any questions, please call 866-224-1379.
