Essay, Pages 3 (721 words)
Cyber threats have been steadily increasing over the last couple of years. Many businesses are finding themselves held at ransom and recently not being able to conduct their daily activities because they have been locked out of their systems. The threat has grown more sophisticated over the years. With hundreds of millions of banking, email systems, private dating site information and other online portal information being exposed or sold on the dark web.
There is no doubt that a great majority of start-ups and small businesses located in the United States are exposed to the threat of computer hacking.
A research conducted by CNBC confirmed this frightening reality. It stated that their 2000 participants agreed that they were not directing sufficient resources to mitigate any cyber threats.
The good news is that there is a positive move towards addressing this deficiency. Staff training is now being customized to include cyber security protocols as well. Why? That is easy. It has long been established that employees are largely at fault for a vast majority of these cyber intrusions.
Below we will explore several areas where employees are directly liable.
Too long have end to end internet or business users been led to idly believe they are in no way responsible for safeguarding their companies online information. It is erroneous for any company to leave their workers thinking that they should not have a more hands-on approach to prevent hacking. Oftentimes, companies leave the sole responsibility on the IT department; however, by that the time they respond, the culprits have confiscated large amounts of sensitive information.
This is further agitated we the recent threats of ransomware.
Vulnerable Email Accounts
More than likely, your employees are not using two-step verification for their email accounts; both professional and personal. This is an ideal scenario for hackers to access accounts using stolen information. Oftentimes people will use the same passwords for different accounts, thereby your company email accounts are a prime target. If they gain access, then you can rest assured that they will be exploring the system for bio data, credit card information and other confidential information shared between your staff and clients.
It is important to note that email intrusion is the most common type of hacking. Billions of email accounts are readily sold on the dark web, every day. Over the years we have heard reports of companies like Uber, Equifax and Yahoo having to implement two-step verification into their systems because they succumbed to these attacks.
This is one of the more popular verification processes because the user is required to input a code into the login screen before being permitted into their accounts. This code is usually set to your phone or another account depending on what you previously specified. Some systems have settings which allow a notification to be set every time someone logs into their account. The idea is to transform your mobile device into a physical key.
Clicking Phishing Emails
More than ninety percent of cyber attacks start out in this way; this is supported by PhishMe, which is a cyber security company. Phishing deceives the receipt into thinking that the email address included in the message is real or represents another account. For example, you have a PayPal account and you are sent an email, supposedly from PayPal asking you to verify your payment. However, when you click the mail, a similar page opens up requesting that you enter your login details or personal banking details. Many people fall prey to this trick because the web pages often look very authentic.
It is shocking to note that people are still using number sequence, such as 1234567 for their passwords. Hackers have a field day cracking many accounts where users employ their birth date, name or these number sequences. To make matters worse, they not only use these accounts on public machines, but they share personal login details with family members and friends.
Forgetting To Backup
Any experienced computer user will tell you, it is better to be safe than sorry. Always backup your information. Many companies make the mistake of not implementing their own backup systems, regardless of their employees’ practice. Do not be one of them. Encourage your employees to do as well, but implement systems to conduct an automatic daily back up.