8 ways to fight cybercrime

Hackers have exploited many vulnerabilities over the last year, targeting some of the world’s most popular applications, services, and products. 

Recent breaches in cyber security

• The Log4j vulnerability impacted many common software packages in the IT industry as hackers were able to take control of remote systems to steal credentials and data. 
• Hikvision IP cameras and NVR firmware experienced the highest level of cyber vulnerability in which attackers gained full control of devices without a username or password gain access to networks and steal data. 
• HID, the world’s largest provider of access control readers and credentials, has technology still used by many that is vulnerable to credential cloning using a piece of equipment that can be purchased for $30 online.
• In early 2021, more than 24,000 organizations were compromised as their 149,000 combined security cameras were breached by hackers using high-level log-in credentials to access the network of camera start-up, Verkada. 

The point? Cyber security is a MUST for businesses. Threats are always evolving and more creative than ever. And with more security equipment connected to the internet or internal networks, the potential for becoming a target is greater. No matter the size of your business, the impact of a breach could be huge. 

How cyber attacks can impact organizations

Financial 

• Face legal, regulatory, and technical costs to recover from a breach 
• Lose productivity when operations are interrupted because software isn’t working 
• Must pay to restore or remedy damaged devices or compromised information  

Reputation 

• Employee and client turnover 
• Loss of brand trust 
• Lack of new business development 

8 ways to implement cyber security in your organization 

1. Learn what social engineering tactics look like so you can easily detect, report, and avoid them. Examples include phishing, pretexting, baiting, and tail-gaiting.
2. Pay attention to emails, especially ones you are not expecting. Verify the “from” address in the message and hover over links to determine their validity. 
3. Be wary of anyone demanding immediate action or communicating with a heightened sense of urgency. Always check with the original source.  
4. Educate all team members on device usage so your entire organization is aware of best practices for protecting data. These might include securing devices, refraining from the use of unapproved third-party applications, and limiting unnecessary use of personal devices for work. 
5. Implement multi-factor authentication and password management policies. Include consistent rotation of strong passwords, and replacement of all default passwords.
6. Prioritize software and firmware updates on all devices. Or, choose systems with built-in defenses like data encryption and endpoint protection. 
7. Consider software solutions, like Predictive Video Health Monitoring, that proactively identify vulnerabilities on your network devices. 
8. Make cyber security training a part of onboarding new employees. Keep it an ongoing process for existing team members. 

At SecurAlarm, all team members are required to complete a short cyber security training module and quiz every month. Modules cover topics like malware, social engineering, mobile/wireless/remote security, safe web browsing, phishing, password security, and protecting personal data. Furthermore, the testing and tracking portion of this training service has proven them to be worthwhile. Our team has achieved a lower rate of successful phishing attempts and a higher rate of reported attempts to our IT Team. We’ve found that keeping threats top of mind and learning how to detect malicious content keeps us vigilant in protecting our organization, each other, and our clients.