How to Compromise Your Company's Security in Three Small Steps

[Audrey McNeil <audrey () riskbasedsecurity com>]

http://java.dzone.com/articles/how-compromise-your-companys?mz=62447-cloud

How cautious are you at work concerning data and cyber security? Everyday
employees unknowingly bring thieves into the workplace. Hidden within
innocent looking actions lurk data breaches, identity thefts, money
siphoning, and many other technology related crimes. Worse, they could lead
to your departure from the company. However, these crimes can be prevented
by using security measures whenever possible to prevent information leaks.

How can you prevent cyber security breaches ? Below are three easy cyber
security mistakes employees make and how you can better protect yourself
and your company.

Mistake #1: Compromising your electronics

Never leave electronics alone, unlocked, or in an exposed place. Crimes
like these are, first and foremost, those of opportunity. An unguarded
laptop or smartphone can be quickly taken, and all the data breached if not
encrypted and saved to a server with a VPN. Even then, the thieves can
retrieve customer information such as addresses, account numbers, social
security numbers, and other sensitive data easily from a stolen item.

In addition, be careful with BYOD  (Bring Your Own Device) policies. This
is another easy way for hackers to get their hands on sensitive company
information. The growing trend may be more convenient for employees, but
security risks increase. Employers need to be proactive and instill
security protocols as well as meetings on keeping data safe. Awareness is
one of the most powerful tools of eliminating threats.

Mistake #2: Weak passwords

Make a strong password. This is not a time to use personal information. Try
to use a password that is not personally connected to you, contains
numbers, upper and lower case letters, and symbols if allowed. The longer,
the better.

This will give you the best protection against guesses and hacking
programs. It’s also a good idea to change your password every three months.
The longer you have it, the longer they have to guess what it is and the
potential for a breach goes up. Also, if possible, have different passwords
for different accounts. Though this can be more difficult, the chances of
data breaches decrease.

Mistake #3: Opening unsafe links

Especially with email, make sure there is a quality and well-rated
antivirus on your electronic device, and use it to scan all emails before
you open them, including from people you know. This is of utmost importance
to protect your computer from malware and other viruses. The sender may
have been infected and are passing on the virus unknowingly. This is
especially common when outsourcing IT management  to foreign countries. So
be careful.

Don't open emails from people you do not know. It’s not important—you
aren't getting free money from a Nigerian Prince, and those joke emails are
only funny until you're sitting in a disciplinary meeting about sensitive
information being released.

All and all, be smart when it comes to company electronics and the
sensitive data you deal with daily. By protecting your cyber self, you
protect your job and the company data overall. Be safe out there.

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus 
on the right security.  If you need security help or want to provide real risk reduction for your clients contact us!