3 Inexpensive ideas to make your network more secure
Episode 9
IT Services
61%of targeted attacks by hackers
each year involve small to medium-sized businesses.
40%of small and medium-sized businesses that manage their own security will have their networks accessed by a hacker.
50%of them won’t even know they were attacked.
The Many Types of Security Threats
Antivirus, malware scanners, threat detection… there is no one solution to all these threats:
• Malware
• Spyware
• Adware
• Phishing
• Data Theft
• Ransonware
• Viruses
• Password Hacking
• Vulnerability Scanners
• Packet Sniffers
• Over 500,000 businesses* have been hit by ransomware
• Once hit, the only way to get rid of it is to pay the ransom
• Criminals are constantly developing new techniques to attack businesses
*BBC
CryptoWall + RansomwareThe Growing Enemy of Businesses
Two Pieces of Equal Importance
Viruses, malware and ransomware are only one piece of the risk to your business!
Losing your data can be just as harmful!
• 3 out of 4 companies had disaster recovery failures, resulting in:
• Loss of mission critical applications• Loss of critical files• Expected days of datacenter downtime
• 60% of companies didn’t have a full scale data recovery plan. 40% of companies said their data recovery solution didn’t work.
• 60% of companies that lose data will shut down within 6 months.
Sources: Disaster Preparedness Council, FEMA
Data Loss Statistics
• Fires
• Floods
• Earthquakes
• Hurricanes
• Tornadoes
• Data Corruption
• Hardware / System Malfunction
• Software Corruption
• Human Error
• Brownouts
• Theft
• Ransomware
• Malware
Types of Data Loss Threats
A few good ideas to strengthen security
1. Strong Passwords – how to create an easy to remember strong password
○ Password phrase■ Eat chocolate and ice cream 1 time a day!■ Ecaic1tad!
○ Slightly different passwords for each login■ Facebook = Ecaic1tad!FB■ Corp network = CEcaic1tad!
2. Enforce strong passwords on the network■ Reset every 90 days■ Can’t be the same as the previous 3 passwords■ Most business networks have this ability w/o any
additional technology
A few good ideas to strengthen security
3. Local user / Local Admin○ Daily use account - does not have permission to install
software on the local machine○ Local Admin user - has permission to install software
on the local machine
Don’t assume others know what to do
● Top 5 reasons for employee underperformance: 50% of the time it’s that they don’t know what to do. (include link to show)
● Train your team to think before they link or click.○ Awareness is a strong defense against social
engineering and phishing.
Businesses should have a plan that addresses these solutions. Plan should include:
• End User Support
• Messaging Protection
• Endpoint Security
• Patching
• Security Information Event Monitoring (SIEM)
Business plans must also address risk of data loss!
A comprehensive plan includes:
• Vulnerability Scanning
• Website Security
• Backup and Recovery
• Mobile Devices and BYOD
• Compliance Management
Want to go deeper?
● 4 Keys to Protecting Your Business● Down the free eBook at
www.jasonclause.com/security ● Reach out to me on LinkedIn or email me