Of course, this means you need to prepare against any attack with even more focus.
What can you do?
There is a lot you can do to combat your company’s resistance to social engineering. However, as you guessed, these efforts are only as good as your least vigilant employee.
It doesn’t seem like a real threat until it happens, and then you will regret not having done something sooner. Here’s a couple of tips to hold off hackers and strengthen your workforce at the same time.
Change passwords often – Make sure you enforce a password-changing calendar that requires both frequent changing and complex construction, say every three months.
Encrypt! – So many SMEs neglect to encrypt their sensitive information, even when sending it outside of their network, when it is a vital part of effective company security.
Antisocial media – Lock down all social media privacy settings if used at work. Do the same with your broswers to anonymise data.
Patch like mad – It is the constant updates on all software that leaves windows for ransomware and other evils to get into your network. Update your systems rigorously and you will minimise this likelihood.
Unknown? Delete! – We’ve all opened an unknown link or file while in a rush but enforce a zero-tolerance policy on this poor practice and breaches will be far less likely.
Approval needed – Enable your network so that only company-approved devices can initiate access. This will not only protect your sensitive info but ensure existing viruses on company devices do not spread further.
A Little Common Sense – At the end of the day, this is what it really takes to prevent a majority of social engineering attacks. Don’t recognise the sender? Already sent those details? Saw the CFO just an hour ago? Trust your gut and check before you act!
As Mitnick says: “You can’t download a Windows update for gullibility!”
Prevention through Awareness
Teaching your team about the dangers of social engineering is what will make the biggest difference. They must be prepared for anything from an iffy customer service call to full-blown CEO impersonation. With simple training your employees can become security-savvy and clued up on social engineering, able to spot signs of a potential threat and respond accordingly.
Work closely with your IT leaders to run cyber-security workshops and sit in on them, too! By educating your employees and yourself, filtering your emails and enforcing data management, you best-equip yourself against any attack.
Start thinking about Security in your Organisation Now
Do you have a policy regarding employees’ use of social media, and what information about themselves and your company they share on there?
Perhaps you should.
We’ve created a template you can use to start developing your security policy – get it by clicking the button below:
What We Offer
As well as providing industry-leading technology solutions to protect your company, Netstar offers the vital training to bring your entire staff up to speed on the latest cyber-security precautions.
Our antivirus solutions are cloud-based so they do not slow down machines or require individual updating, removing downtime windows for potential ransomware attacks.
Our DNS monitoring also sits between the open web and your network to add a substantial level of protection against Malware, Botnets and phishing trap sites.
If you would like to learn more about protecting your company, subscribe to our email newsletter for frequent and exclusive tips and updates. They feature exclusive videos, guides, reports and more on the world of cyber-security so that you too can become an expert.