Bad habits in cybersecurity
Sherav
Mehta, CEO of Secureframe, shares six bad habits that security teams have to deal with
Prevent costly and risky breaches, ransomware attacks, and attack prevention
Phishing-based endpoints should quit, it explains.
crimes
Cyber is on the rise and attacks are becoming faster, more subtle and more sophisticated.
Number of data breaches related to cyber attacks in 2021 with an upward trend
which shows no sign of abating, increased by 27%.
habits
Bad security, such as using the same password more than once is possible
It may seem harmless, but bad behavior or uncontrolled security habits can
expose your organization to a malicious breach.
Bad security habits
It costs businesses millions of dollars. Consider that
The average cost of a data breach is $4.24 million per incident in 2021
It was the highest amount in the last 17 years.
If a hacker servers
It can compromise you and steal confidential data
be the end of your company's life. This is a list of 6 of the most common
It covers bad security habits and how to fix them so you can avoid
Protect your data and prevent malicious attacks.
1. Inadequate password security
over
60% of all data breaches involve stolen or weak credentials
Is. Use the same password, share passwords, write
passwords on notepads and the like; As security leaders, we
We've seen the same terrible password practices of the past for years. But with this
Jobs, you make it easy for attackers!
Get rid of this habit
Let: Create a company-wide password policy, from Password Manager
Use and enable multi-factor authentication to avoid the risk of unauthorized access
Reduce the account. Your password policy should include instructions on
The case of creating strong passwords, the number of times passwords are updated, etc
Instructions on how to securely share passwords between employees
be
2. Complex processes and policies
from check
From login lists to privacy policies, these documents should
Show how your team does the work and during the daily work of
They are used, not limited to a draft and then in a folder
eat dust You should think about these policies regularly and based on
Implement improvements to identified challenges and risks.
this
Break the habit: Periodic review and adoption of policies and procedures for
Create your team. Proactively ask for feedback to ensure that policies and
Processes show how your team actually gets things done and
It acts to attract capital in the whole company.
3. Outdated software and insecure devices
Work
Remote has been on the rise for years, but only in the last two years
It has witnessed a seismic change in the place, time and way teams collaborate. Despite the
For all its benefits, the rise of working from home also poses significant security challenges
brings
More people are using unsecured Wi-Fi.
Combine work and personal devices, from regular backups
Skip data and software updates. If the weakest link
Be the one that finally brings your company to its knees, an enjoyable experience for
You will not be.
Break the habit: From the management solution
Use device for automatic software updates and patches, policy
Create a mobile device and encourage employees to use only from
Use company devices and secure VPN to access sensitive data.
4. Lack of internal audit program
Even
If you have established appropriate security policies and procedures, they should
Consider them as living documents. Continuous testing and internal audits
Regularly to understand how your security program is maturing (or not) and
Staying aware of emerging and increasing threats is essential.
this
Break the habit: Create an internal audit program at least annually
Review your security posture and identify opportunities for improvement. this
It also ensures that you are aware of any changes in the threat landscape
You have to take care of it, stay informed.
5. Untrained staff
Phishing
And malware is one of the most common sources of security incidents, including ransomware!
Train employees regularly on security best practices and
Make sure everyone knows that security is a company-wide priority.
this
Break the habit: Conduct security awareness training at least once a year
do. Test your employees and users randomly and periodically to
Make sure they are aware of best practices and follow them.
6. Satisfaction
many
of organizations believe that a breach or security incident is really for them
It doesn't happen and they think that they are free from any incident. Security and compliance
Not just a concern for the IT department. Everyone across the organization (from the team
executive and board of directors to the newest employee hired) should threats
Facing the business and their roles and responsibilities in maintaining data security
Understand the customer and the company.
Drop the habit: To create
Strive for a culture that prioritizes security and understands its importance.
Ensure that all employees understand their roles and responsibilities in relation to
Keep customer and business information secure and understand the benefits of compliance
Clearly state established policies and procedures.
More
Security threats and risks are systemically preventable and can be
Through common sense approaches, continuous compliance testing, assessments, audits, etc
The measurements paid them. The more you can get your employees in
Teach them about these practical approaches, and they'll be more likely to
Can successfully prevent a costly data breach or security incident.