OREGON UPDATES
How to Protect Your Business from Cyber Security Threats by Scott Christopheron, Tekmanagement, Inc. I am sure many of you have heard about various Cyber Security threats currently in the news. 2)Replace systems that are no longer supported by manufactures’ security updates.
Computers and other technology used in your business that are connected to the internet are constantly probed for vulnerabilities. Even if you have a firewall with all the enhanced security services -- if you have PCs that are not kept updated, you could end up with issues. For instance, Microsoft just released a security update that prevents Windows 7 PCs from communicating properly with other key Servers. The update was implemented to block a known threat, but since Windows 7 is no longer supported by Microsoft, it was not updated. The takeaway: update your systems to stay current, stay operational and stay protected. 3)Talk to your insurance agent about Cyber Insurance coverage for your business. We highly recommend that our clients have a discussion with their insurance agent about Cyber Insurance coverage. If you have a cyber incident, the costs can be significant. There is a high likelihood of business failure after having to deal with a cyber incident, and those with Cyber Insurance have a much better chance of recovery. 4)Have a holistic Business Continuity Plan. We also recommend that our clients have a Business Continuity Plan (BCP) that fits their needs, as well as their pocketbook.
Recently, a Florida water treatment plant was hacked, and the water supply was adjusted to what could have been poisonous chemical levels. In another case, with what is believed to be the work of Russian hackers, a major corporate network was infected using a commercial network management tool from SolarWinds. Even here locally in the Rogue Valley, we have seen email Phishing attackers make off with hundreds of thousands of dollars from our local businesses. The question now is not, “Will I be a victim of an attack?” but instead, “When will I be the victim of an attack?” To prepare for a time where you will have to deal with this in your business, we would like to outline some specific actions that we’re recommending for our clients right now. 1)Educate your employees via an ongoing security awareness program. Employees are considered one of the biggest threat vectors for a business. A good program that we’ve set up includes monthly “test” phishing emails that can record if an employee clicks a link. That “Free Pizza” bait could really be a link to a virus that could infect an entire system. Employees then go through a web-based training course on how to look for the red flags, and other signs that an email might not be legitimate.
6
The Business Review | March 2021
Made with FlippingBook - professional solution for displaying marketing and sales documents online