Do you know the early warning signs of a Data Breach?

According to a report release by released by the Identity Theft Resource Center (ITRC) and CyberScout, more than 1500 business were the victim of a Data Breach in 2017. The cost of these data breaches, according to a Cost of Data Breach Study administered by the Ponemon Institute, was $3.62 million. This amounts to more than a $5 Billion cost to the business community in 2017 alone. This is a risk that your business can protect by purchasing adequate Cyber Insurance, but there are additional steps that can protect your business from a data breach on a daily basis.  Here are six things every small business should do to prevent a Cyber Attack.

Data Breach Insurance is a must for all Small Businesses.

Hire people who know Cyber Security

If you are not technologically advanced, it is imperative that you hire someone who is and pay them well. The average price of a data breach is TKTKTK. Hiring a well-trained professional to protect your business is extremely important. Paying them a good salary is the best way to keep them from being poached by the competition.

To prevent a Data Breach, Watch for Unusual Behavior

If a computer program that you use daily starts acting up, investigate it for more than just a hardware or software malfunction. Any time there is an irregularity, check that system for any further compromises.

Investigate Suspicious Files

Any time malware is detected, or an employee reports opening a suspicious file, do not take any chances. In the American system of justice, defendants are innocent until proven guilty. Well in the realm of cyber security, it is always best to assume the system is infected until proven other wise.

Run Scans to prevent a Data Breach

Anti-virus and anti-malware programs need to be up-to-date. Someone within your business should run vulnerability programs to look for missing protections or other security risks.

Check Your Credit

Customer information is not the only confidential information on your businesses server. There is plenty of information about your your business and the employees.  If you are a small business owner you should keep a tight watch on both your business and personal credit history. A drastic change in either of these reports can show your business has been compromised.

Monitor Computer System Communication for signs of a Data Breach

Your or your IT representative should regularly monitor communication patterns on your network. If use see an employee’s computer transmitting large amounts of data, especially outside of the network, it could be a sign of a hack.

 

Eight CyberSecurity Tips for Small Businesses

Cyber Security

In-depth Training for Employees in Cyber Security Prevention

You and your information technology expert need to come up with basic security practices for your employees. There need to be clear and concise rules of behavior for your employees regarding passwords and customer information.

Protect all sensitive Information from Cyber Attacks

Starting with just keeping the computers clean and always running the latest security software on schedule.  Make sure you are install all of the proper malware, antivirus, and key software updates. If you and your IT Professional are constantly paying attention to cyber security, the employees will take more of an interest as well.

Make sure you purchase the proper Cyber Insurance Policies

Cyber Security Insurance comes in two forms that are usually packaged together. The first is commonly referred to as Data Breach Insurance and it covers your first party damages to you and your business. The other coverage is commonly referred to as Cyber Liability Insurance. This coverage protects your business from the third party liability your business may have to customers and other parties who may be damaged by a data breach that occurs within your business.

Get the best answers to Data Breach and Cyber Security Insurance questions at MyInsuranceQuestion.com

Do not forget about having a policy regarding Mobile Devices 

Mobile devices are such a common part of our lives now that many people forget to realize their phones are a prime target for criminals to access a business’s sensitive information. Many employees may want to have access to their company email on their phones, especially if they travel much for work.  Having a well thought out policy that you are comfortable with and adequate measures to check that your employees are following the procedures is essential.

Make backup copies of important business data and information

There should always be a way for you to retrieve customer’s sensitive information. Microsoft one drive is a great fairly new software program that allows you to store and share information internally.  If you can afford it, having a second server at a separate location may be necessary depending on how much information your business does store.

Cyber Security Insurance is needed for most small businesses.

Strictly control access to your computers and create user accounts for each employee

This can help dramatically if you have an internal problem. Knowing who was logged in at the time of the access can help determine where to go to find information about a hack. It may be as simple as an employee who opened a zip file in an email and they are scared to bring that to your attention fearing retribution or it may help you find the source of employee theft.

Secure your Wi-Fi networks

Properly securing your Wi-Fi network may seem like something obvious to prevent a hack. For small businesses owners without a lot of technology experience may not know how to do this or the need for this type of security. This should be the first and foremost thing a small business should do to prevent unauthorized access.  This is important to consider for businesses that are open to the public or may offer Wi-Fi access to their customers.

A Strong Password is essential to a good Cyber Security Program.

Passwords and authentication

Passwords protection is crucial to defending your business from a data breach.  It is important to give your employees hard examples of what is a good password and what is not.  What may seem secure to one employee may be something as simple as October which is not acceptable in the least bit.  Here are some examples of password you can use to demonstrate strong and weak passwords.

6f8Il,E6pg%j2

This would be an example of a password that is extremely secure.

BaSkeTBaLl_2741+3657

This would be an example of a password that is a little less secure, but easier to remember.

JoeSmith or password

These are examples of terrible passwords that should never be used.

You will find many employees like to use something similar to the middle password. This is because it has some resemblance to a word they can associate with to remember the password more easily.  I personally like this because, in the Fall I might use Football or Autumn, in the Winter I might use basketball or Thanksgiving. As long as you are keeping the other numbers and special characters random it is difficult for hackers to hack through these secure passwords.  The birthdays of yourself or a family member should never used. There should also be a time period for how frequently a password must be changed. Every 90 days is a good rule of thumb, but many businesses have different requirements based on the needs of their organizations.