Is your company safe against cyber attacks?
Thirty one per cent of Indian organisations expect to be victims of a cyberattack in the future, according to a recent Sophos security survey
Commenting on the concerns of Indian organisations, Mohit Puri, director sales engineering at Sophos India & SAARC said: “It is important that organisations adopt a defense-in-depth cybersecurity strategy to better protect their environment.” Here are some practical tips to stay cyber safe:
PATCH EARLY, PATCH OFTEN
Brand new vulnerabilities and exploits hog the limelight of security news.because you couldn’t have patched ahead, they’re known scarily as “zero-days.” But if you’re worried about brand new attacks from cutting-edge crooks, you should also worry about automated attacks against old holes that are well-known and easy to exploit.
People often put off patching either to save time or because they’re scared something might break. The problem is that the longer you leave it, the more time it will take when you get around to it.
PICK PROPER PASSWORDS
It’s important to make all new passwords different and hard to guess. Criminals are now using tools that sniff out passwords reused on other sites to make their work easier and to make the stolen passwords and data more lucrative on the dark web.
TWO FACTOR AUTHENTI- CATION
Come up with a checklist that you use before giving someone remote access to your network. Remember that it’s not enough to trust the person: you also have to trust their computer, because a PC with malware on it that connects to your network is essentially letting cybercriminals in with it.
PATROL THE ENTRY POINTS
One weak point is all it takes to allow the hacker access to the system. Smaller organisations often forget to close down access points that are not being used and this is an open door for hackers to gain entry .
LOOK AT YOUR LOGS
Don’t collect logs just so you can look back after a breach. Use them proactively to watch out not only for attacks, but also for otherwise-innocent behaviour you want to improve anyway.
SPOT THE PHISH THREAT
It is important that organisations include a robust security awareness programme in their strategy. It is crucial to educate your end users to recognize phishing, through simulations, trainings, and actionable reporting metrics.