All businesses make IT Security Mistakes. Learn what the most common ones are, and how to avoid them.
IT Managers are trained to avoid threats to the systems they manage, however some still miss out on the basics. And what if your company doesn’t have an IT department? Can you be sure that your network is threat-free? From password issues to not patching systems and educating users, these are the most common IT security mistakes made by all companies.
1. Using default passwords
The first rule of IT is to use secure, unique passwords. The second rule is to change them regularly. These rules go out the window in a lot of small to medium enterprises which can leave your network wide open to threats. We’ve seen it countless times and we cannot stress the risk enough. If you are using default passwords, you are allowing your devices and networks to be easily compromised.
2. Weak passwords
We worked with a company in recent months that experienced a complete security meltdown. We were rebuilding their network, and it was made immediately obvious to us why they experienced a security breach in the first place. The network security passphrase was the name of the company with the year of establishment at the end of it. Weak and obvious passwords like your favourite sports team, your home town, your business name and so on, make your network vulnerable. Keep your passwords as complicated as possible, mix capital and small letters, numbers and special characters for a unique password which is not easily guessed or cracked.
3. Opening email attachments and hyperlinks
Many users open email attachments without thinking. Do they even know the sender of the email? More worryingly the email may appear to come from someone they know – but is it unusual to be asked for your account details or to be offered a free holiday by filling in your details here? Some emails appear so legitimate that it’s easy to be fooled. But do we educate our users? Most companies do not and get caught out.
4. Not updating systems
Unfortunately security holes exist in all operating systems and some applications. Once the hackers find a vulnerability they exploit it within a very short time. So don’t be a victim; install security patches as soon as possible. Even better, automate PCs and Laptops to do it regularly and make sure servers are done in a controlled and managed basis.
5. Not updating anti-virus software
Anti-virus software is the most important software any business can have on their networked devices. Failing to update your software can leave your entire network open to all kinds of security threats that will see files deleted, emails skimmed, financial data stolen, the list goes on and on. Make sure that you are working with a reliable anti-virus software and that it’s managed and so updated regularly.
See anything familiar? Don’t leave your business open to online security threats. Contact Enclave to discuss how your business can be protected from potential threats.