Protecting your business from online attacks is just as important as locking up when you leave each night. Here's what you can do.
Your plan should outline your defences against the six most common types of attacks on businesses:
Protect yourself from external threats by deciding how your team use your systems and devices. If you have an e-commerce platform or you collect customer data online, your cyber security plan may be a legal requirement.
Your policy helps your team understand the important role they play in protecting your company’s cyber security:
Install security software on all your team's devices and browsers. Often, this software can be administered remotely by you or your IT security team.
Choose a system that updates every few days. If a new mass-attack virus appears, check that your security software protects against it or issues an immediate update.
Hackers see your team's mobiles, laptops, servers and desktop computers as access points. Keep the operating systems up to date, use security features that let you track, lock and wipe devices and consider encrypting your disks.
If you're targeted, it's too late to start working out what to do. An incident management plan helps everyone in your business respond fast and efficiently.
Email scams - one of the most common methods of business attacks
Email is an easy tool for scammers to use. They try to trick you or your team into giving away information, logging in to malicious sites, or sending money. Some simple steps can help reduce the risk.
Your trusted people and ex-employees are one of your highest risk areas for business fraud. That doesn't mean you should be suspicious of everyone - but you should put controls in place to reduce the chance of something going wrong.
Identify your critical systems:
Your people need access to do their job, but not too much.
Don't give every user "admin-level" access, so they can create users or make changes to processes. Most people don't need that level of access.
Give your team the appropriate level of access to reduce the risk of mistakes and fraud. If an attack happens, it also makes it easier to work out how.
For help with all these steps, call the FastNet Business Help Desk on 0800 22 55 27.
Use a multi-user system with access control, like ASB FastNet Business. Set aside some time every quarter to check potential issues.
Whenever your people interact with the public they’re representing your business. That’s also true on social media.
Online security is a fast-moving environment. Diarise an hour every few months with an IT person to review your policies and plans. It's much better that you discover any weaknesses before the criminals do.
ASB's Cyber Security publication, Signals, aims to empower businesses with unique insights into the cyber threat environment and provide advice to ensure a robust defence.
If you are concerned that there has been a breach in your ASB account security, contact us immediately.