As a small business owner, the last thing you need is an online security breach. That’s why it’s well worth getting the right security measures in place and reviewing them on a regular basis, writes PAUL MACPHERSON, Head of Security, Xero.
Most of us couldn’t get through the day without using the internet. Whether it’s helping us get to work or schedule plans with our family, one things certain – this access to the internet has massively transformed our lives for the better.
The same goes for small businesses, giving them access to a connected, global world and the ability to transact and operate with far greater efficiency. However, as more small businesses take advantage of the exciting opportunities that the internet offers, it’s crucial that cybersecurity is the number one priority.
According to security software company Norton, globally 689.4 million (31%) people were affected by cybercrime in the past year. What’s more 63% of people also believed it’s become more difficult to stay safe and secure online over the past 5 years. Criminals are getting smarter online – and small businesses, with often limited resources at their disposal, can be particularly vulnerable.
In many security breaches, cyber-criminals simply exploit insecure remote-access software, employee activity and weak password security to gain access. Hacking methods such as phishing and social engineering, as well as sophisticated malware are popular methods used to breach seemingly secure systems.
As a small business owner, the last thing you need is the consequences of an online security breach. That’s why it’s well worth getting the right security measures in place and reviewing them on a regular basis. Here are four focus areas that should be deployed immediately to safeguard your business from attack:
- Choose the right security software, and don’t forget to update it
It pays to install reputable anti-malware software and regularly update it. Malware often tries to exploit known vulnerabilities in software and this could seriously compromise your systems. Anti-malware will detect and stop most malicious software including computer viruses, worms, Trojan horses, ransomware, spyware, adware and scareware from entering your systems.
As well as keeping your anti-malware software up to date, you need to keep your operating system and application up to date with the latest security patches. It might seem obvious, but you’d be surprised at the number of businesses who don’t do this. Look at the recent WannaCry and NotPetya ransomware instances in which a known Microsoft SMB vulnerability was exploited which organisations should have patched.
- Equip your employees with the right skills
Many scams and attacks rely on manipulating people to do something that gives hackers the information or access they’re after. Known as social engineering or phishing, these tactics include using personal information to earn trust from unsuspecting employees. All it takes is two seconds for you or one of your team to click on a link or attachment in an email, or enter a password on a fake login page, and you’ve let the criminal in.
No matter what industry your business operates in, you’ve got to educate every last member of staff – including yourself! There are easy-to-use online tutorials available that help train people in the dos and the don’ts when it comes to staying safe online.
- Use 2SA
The 2SA or Two-Step Authentication is like putting an extra deadbolt on your front door. It involves two layers of security. First, enter your existing password and then input the verification code generated by an app on your smart device. This significantly reduces the risk of account takeover – the cybercriminal may get hold of your password but that’s not enough for them to gain access.
2SA (or 2FA, MFA or 2SV) is also an important security measure to protect your email account. An insecure inbox is incredibly risky; once hackers get hold of it, they’ll be able to reset all your passwords. A compromised business email account is often used for invoice fraud, by intercepting and changing the payment bank account numbers on invoices attached to emails as PDFs.
- Enforce strict password protocol
The number of passwords most people have these days can be quite overwhelming. So it’s natural for you to pick something that is relatively easy to remember, but this can a dangerous move. A basic password is easy to hack – a dictionary attack can crack a basic code in a couple of seconds.
Make sure you reinforce just how important it is that everyone picks a robust password. Ask them to run it through a password checker to make sure they’re being as safe as possible. Rather than changing your passwords regularly (this can lead to bad password habits and predictable passwords), create a strong password from the get-go. This should include a mix of at least 12 characters of different types. Of course, if you suspect that your password has been compromised then change it immediately.
Using a different password for each login is also good practice. Having a unique password helps prevent a compromise of one login becoming a compromise of many. Consider installing a Password Manager to help generate strong, unique passwords for each site.
A small, agile business typically allows employees to access email or other business apps from their phones. If this is the case, ensure that your employees protect their phones with a password, PIN, or biometric (fingerprint) authentication. A mobile device manager (MDM) can enforce security policies and delete access to business data if the phone is lost or stolen.
Unfortunately, we are living in a world in which these online threats are only going to get more frequent and more sophisticated. Global research tells us that more than 50% of cyber attacks target small businesses. But, the measures you can take to combat these threats are also getting wiser. It might seem like a large commitment with not much ROI, but in the long run it could be the making or breaking of your company.
Welcome to world of 2099
The world of 2099 will be unrecognisable from the world of today, but it can be predicted, says one visionary. ARTHUR GOLDSTUCK met him in Singapore.
Futuristic structures tower over the landscape. Giant, alien-looking trees light up with dazzling colours amid the hundreds of plant species that grow up their trunks. Cosmetic stores sell their wares via public touch-screens, with products delivered instantly in drawers below the screens.
This is not a vision of the future. It is a sample of Singapore today. But it is also an inkling of the world we may all experience in the future.
Singapore was the venue, last week, of the World Cities Summit, where engineers, politicians, investors and visionaries rubbed shoulders as they talked about the strategies and policies that would enhance urban living in the future.
As part of the Summit, global payment technologies leader Mastercard hosted a small media briefing by one of Singapore’s leading thinkers about the future, Dr Damian Tan, managing director of Vickers Venture Partners. The company’s slogan “We invest in the extraordinary,” offers a small clue to Tan’s perspective.
“We look as far forward as 2099 because, as a venture capital firm, we invest in the long term,” he tells a group of journalists from Africa and the Middle East. “Companies explode in growth because there is value in the future. If there is no growth, they won’t explode.”
The big question that the Smart Cities Summit and Mastercard are trying to help answer is, what will cities look like in the year 2099? Tan can’t give an exact answer, but he offers a framework that helps one approach the question.
“If you want to look at 81 years into the future, and understand the change that will come, you need to double that amount and look into the past. That takes us to 1856. The difference between then and now is the difference you can expect between now and 2099.”
Click here or on the page link below to read on: Page 2: Soldiers and Health in 2099.
- Arthur Goldstuck is founder of World Wide Worx and editor-in-chief of Gadget.co.za. Follow him on Twitter on @art2gee and on YouTube
Street art goes electric
Kaspersky Lab and British street artist D*Face have unveiled the first-ever “art helmet” design at the Formula E finale for electric cars in New York.
The ‘Save The World’ helmets will be raced by DS Virgin Racing’s drivers, Sam Bird and Alex Lynn, as they traverse the New York street circuit during the final races of the Formula E season.
The announcement signals the first art helmet by a Formula E team, continuing the heritage of art in motorsport and the cybersecurity brand’s commitment to contemporary art, creativity and innovation. D*Face took inspiration from Kaspersky Lab’s tagline, “A Company To Save The World”, and hopes that his colourful work will inspire people to take positive action.
D*Face will announce his first-ever art car design with a custom-made livery for the DS Virgin Racing Team. Its design will be released at the “Art Goes Green” event after Saturday’s race. The helmets and art car are the latest installations in the “Save the World” collection, following a major permanent public mural that was installed in Brooklyn, New York, in May.
D*Face, whose real name is Dean Stockton, said: “It is exciting to work with Kaspersky Lab on this project and create art with a real message of hope for a better future. After all, this is our world and we need to look after it. It will take every one of us to make a real lasting, impactful change. I love the mentality of the DS Virgin Racing Team and that of Formula E by showcasing sport in a way that doesn’t harm the environment, but is still just as exhilarating and fun.
“It is time for us all to stand together and make a change… be that stopping data steals, climate change, plastic waste or using damaging fuels. I want everyone to make a pledge to do one thing that will help make a change.”
As a sponsor of DS Virgin Racing Team, Kaspersky Lab is responsible for protecting the team’s devices against cyber threats. The company sees the technical environment in the global sport of Formula E as the next frontier in furthering its research and development of new technologies to keep vehicles secure in the digital world.
Sylvain Filippi, Managing Director at DS Virgin Racing, said: “The whole team fully supports this great initiative and our thanks got to Kaspersky and D*Face for their collaboration. It’s an honour to have such an innovative artist bring his talents to bear in our team ahead of the season-finale; the car, drivers’ crash helmets and mural all look amazing.”
Aldo Fucelli Pessot del Bo, Head of Global Partnerships and Sponsorships at Kaspersky Lab added: “There is a need for innovation on a global scale, both in contemporary art and in the fast-growing sport of Formula E. Now, for the first time ever, Kaspersky Lab is proudly bringing together the two sectors in an effort to Save the World and unleash creativity, encourage freedom of expression and further innovation.”