“An ounce of prevention is worth more than a pound of cure.” -Benjamin Franklin
While we as a Managed Service provider do our best to prevent hacks and security threats, we recognize that, with the growing number of scams and other various security threats lingering on the web, we cannot always prevent human error. Unfortunately, there is not a technical security solution to keep you from opening a nefarious link that promises to take you to a cute kitten video. However, what we can do is make you aware of any lingering threats to help you protect your company through prevention.
What is a “Human Firewall”?
A Human Firewall is our solution for human curiosity and error. This is when a group of users practice strong common sense skills when using the internet. We want to believe that the emails that end up in our mailboxes, or the flashy ads that flash on the sites we use are safe, but that is not always the case. By having offices be fully and completely aware of the threats that exist on the world wide web, they too can actively participate and contribute to the security and safety of the office.
But I have an MSP, shouldn’t that be enough?
MSPs provide you with a strong base for security but the only way to prevent human error is through education. Phishing scams are on a rise and are becoming more creative. Even with the efforts of spam filters and web filters, a staff-member in your office may still fall victim to these types of scams. Building cyber security awareness in the office is essential. Employees must be equipped with the knowledge of how to avoid opening or responding to phishing emails. By educating your employees, you can stop cyber risks before they even happen.
Your goal is to create a community that is focused and adamant about minimizing security breaches. By providing an ongoing education and keeping staff up to date about any new security threat, or even cultivating open and honest conversations in the office about them, could be the key to avoiding cyberthreats. This can be as simple as forwarding them updates about security from your MSP or sending them articles on the newest trends of cybersecurity.
Additionally, you could put a cybersecurity discussion on the agenda in team meetings. This portion does not have to be long, or boring. A simple check in on staff will be sufficient, and it is a good way to start a conversation.
So what do cyber risks look like?
Now that you know the importance of cyber risk education, you need to know what to look for. Here are some typical approaches of phishers and scammers.
Phishing and scam texts and emails usually look like they are from a company you are familiar with. This could include banks, credit card companies, apps, stores, and social media sites. They usually have a narrative that revolves around lost information, a fake invoice, eligibility for refund, suspicious activity reports. Poor spelling or weird grammar is also a tell-tale sign of a spam message. They may use the greeting “dear customer,” “dear valued customer,” and typically won’t address you by your name. Remember, legitimate companies will not be requesting sensitive information.
If you receive a scam or phishing email or text that includes your personal information, do not respond. If you suspect they have other information, you can report them to identitytheft.gov.
Most importantly, when you come across a security risk
Do not open or respond to spam emails or texts. Do not open links from random senders. Start using multi-factor authentication if you aren’t already. Keep your computer and phone software up to date. Backup your data.
Finally, if there is ever any confusion about a cyber risk in the office, document the suspected security threat and ask you or your MSP to review it.
Encourage & Incentivize
If creating conversations and upholding education of cybersafety is not enough, providing incentives to those who report scams, hackers, and cybersecurity threats is a great way to motivate your employees to be aware of threats. Acknowledge efforts and encourage participation in the human firewall. You can encourage staff to recognize threats and boost office morale.
Comments