Over the past few years, small businesses have continued to be increasingly vulnerable to cybercrime. According to a study by Symantec, 43% of cyber-attacks in the world target small businesses and only 14% of these companies have highly effective measures of mitigating the vulnerabilities. The National Cybersecurity Alliance estimates that up to 60% of small businesses go out of business within just six months of a cyber attack.
The World Economic Forum has also listed cybercrime as a major global economic risk and warns that more sophisticated cyber-attacks are on the rise. The economic risk is confirmed by a report from a 2017 Cost of Data Study sponsored by IBM which shows that the average total cost of a data breaches is $3.62 million. Further, the study found out that one in every four companies experience a data breach.
Digital devices are increasingly playing a significant role in people’s lives these days, and this is one of the factors that are fueling cybercrime. A recent Norton Cyber Security Insights Report estimated that 35 percent of people across the globe have at least one unprotected digital device that leaves them vulnerable to cyber attacks. These devices are therefore a growing security concern for small business owners given the fact that a good number of them use small digital devices like their smartphones to run their operations.
Some of the major cyber threats small companies face include Hack attacks, Ransomware, CEO fraud, phishing, denial of services, among others.
So how can small businesses protect themselves against cybercrime?
Fortunately for business owners, there are preventative measures they can take to avoid falling victims to cybercrime. Here are some of them:
Use IBM Watson
Watson by IBM is an artificial intelligence of many talents. It works as A.I by day and a cyber crime fighter by night. It improves a security analyst's ability to keep up with sophisticated threats, by drawing from unstructured data (ex. blogs, websites, research papers) and correlating it with local security offenses.
Educate Your Employees
Small business owners need to train their staff on proper security measures. First of all, “employees should not use their work computer for personal business and vice versa”, says information technology expert Dirk Anderson. It is crucial that every employee in your business understands the inherent risk of digital communications. Run regular cyber attack training sessions and let everyone understand that it only takes a single click to compromise the entire system. They should not be quick to open attachments or click on any URLs even if they receive them from trusted friends.
Restrict Access to Important Data
You need to restrict access to your company’s critical data to only those staff members that have to work with it. Don’t forget to shut down accounts of your former employees as quickly as possible. An employee can access the data after leaving your company and use it to compromise your system. Also, it is extremely important to run background checks on potential employees before hiring them.
Be Aware of Unsecured Devices in Your Business
As noted earlier, breaches through mobile devices are on the rise, and this should be a huge matter of concern. You need to understand that any unsecured connected digital device in your business can be accessed easily by cyber-criminals. It is therefore vital to ensure that all the devices brought into your business are secured with very strong passwords which are regularly changed. Have up-to-date security software on all these devices.
Monitor Your Cloud Infrastructure Constantly
Your cloud provider can do this for you. Ensure that all your servers are secure all the time, monitor advanced threat management systems, web application firewalls, security patch management, data storage, among other things. Regularly scan for any vulnerabilities, and take appropriate measures if you find any. You also need to carry out a security assessment of your website regularly.
Install a Combination of Security Software
Use anti-spam, anti-virus, and anti-malware software and make sure you update them regularly. There are many security protection solutions including Symantec and Avast which have practical solutions for small businesses. Antivirus software experts at Qetes advise to always have a firewall software to fend off spyware, virus and phishing attacks.
Back Up Your Data Routinely and Have a Disaster Recovery Plan
Make sure you back up all your data on the cloud, external hard drives, and other locations. Carbonite offers automatic backup solutions for small businesses from as low as $5 per month.
Use Complex Passwords on All Your Computers And Devices
Use passwords with a minimum of 8 characters and make sure you change them regularly. This resilient password policy should also apply to your employees. Ensure they change their passwords often. There are free password management tools like LastPass that you can use to generate very strong passwords and keep track of all them safely.
To sum this up, at times it may be unfortunate that even after doing everything right, you still fall victim to a cyber attack. It is therefore wise to consider having a data breach insurance that will help you mitigate any costs as result of a data security breach including legal fees.