Login | Register 
Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

How an End User Might Accidentally Undermine Your Security: 10 Innocent Mistakes

Security
0 Comments

b2ap3_thumbnail_innocent_mistakes_400.jpgIf you’re like every other small business out there, you know that the more employees you hire, the more technology that you have to procure. However, when you have more end-users, you provide more avenues for threats to slip into your network infrastructure unnoticed. When all it takes is one simple mistake from a single end-user, how can you minimize the chances of falling victim to an untimely hacking attack?

We’ve put together ten honest mistakes that any end-user can make, and how they can be prevented.

  • Clicking on malicious links: With so much information on the Internet, it’s easy for an employee to search through countless pages without any regard to the sites and links that they’re clicking on. You need to emphasize the importance of safe browsing, including double-checking the destination of a link before clicking on it. You can do so by hovering over the link and looking in the bottom-left corner of your browser.
  • Using weak passwords: Employees frequently use passwords that aren’t strong enough to keep hackers out. Often times, they’ll simply use something of personal significance, like the name of their pet or a specific date. This isn’t the right way to approach password security. Instead, users should attempt to put together passwords that are private, randomized strings of numbers, letters, and symbols.
  • Ignoring mobile security: Even if your company has the latest and greatest security solutions installed on its desktops, you should also be thinking of your mobile devices, like smartphones and tablets. It’s arguably more important that your mobile devices have solid security solutions implemented on them, as they are often on the road, connecting to potentially dangerous hotspots. You need to make sure that security is a top priority in your Bring Your Own Device (BYOD) policy.
  • Accessing sensitive data through unsecured connections: If your employees are using the local café’s free wireless Internet to get some work done on their lunch break, it could be a dangerous gambit. Public Wi-Fi hotspots are notorious for being cesspools of online threats. Implementing a virtual private network (VPN) can be a handy investment that can encrypt data while it’s in transit, mitigating this risk somewhat.
  • Losing unencrypted devices: It’s not unheard of for an employee to use company devices in public places. If they accidentally leave their smartphone on the bus, or their tablet on a park bench, there’s always the risk that it can be stolen. Unless you practice proper encryption protocol, any information available on the device can be accessed by the person who finds it, be it a good samaritan or a tech-savvy thief.
  • Implementing unapproved solutions: Some employees simply prefer to use solutions that aren’t provided by the company to get their work done. The problem here is that the employee is moving forward without consulting IT about it, and that your data is being used in a solution that you can’t control. Plus, if the employee is using free or open-source software, these often come bundled with unwanted malware that can put your data in even greater peril.
  • Targeted business email scams: Phishing and spear-phishing attacks are growing more common. One example of this is an HR employee checking their inbox to find what looks like a job application or employment inquiry. All of the right information is there and nothing appears out of the ordinary; that is, until a malicious link contained within it starts to download malware or other nasty threats to your infrastructure. Other types of phishing attacks will ask end-users to confirm personally identifiable information or sensitive account credentials. Educating your team on how best to identify phony email messages is imperative to keeping your network secure.
  • Personal email use: It’s one thing to check your personal email account while at work, but another entirely to use your personal email account to perform work purposes. As the recent debacle with Hillary Clinton shows, people don’t take kindly to sensitive information being leaked via an unsecured email server that their organization has no control over. Add in the fact that personal email accounts are often not as secure as those in a professional productivity suite, and you have a recipe for disaster. You need to reinforce that your team should keep their work and personal email separate.
  • Leaving workstations unattended: Besides the fact that some tech-savvy employees are practical jokers, it’s a security risk to leave a workstation unlocked and unattended for long periods of time. Imagine if someone from outside of your organization walked into your office and accessed confidential files without authorization; that’s on the employee who got up and left the device unattended. Encourage your employees to always log off of their workstations, or at least lock them, before stepping away from their computer.
  • Using external storage devices: Your organization should only be using IT-provided USB devices and external storage. Otherwise, anyone with a random flash drive can connect it to your network, unleashing a horde of who-knows-what into your infrastructure.

User error is a primary cause for concern among businesses, but it can be mostly avoided by providing your staff with the training required to do their jobs properly. For more information about IT best practices, give us a call at 866-348-2602.

Tweet
Tags:
Security User Error Social Engineering
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 02 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Categories

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Network Security Business Google Internet Microsoft Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices IT Services Hardware Android VoIP Disaster Recovery communications Smartphones Communication IT Support Business Continuity Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Phishing Managed IT Services Windows Upgrade Outsourced IT Ransomware Data Backup Windows 10 Server Save Money Data Recovery Cloud Computing Office Passwords Windows 10 Gadgets Chrome Social Media Virtualization Tech Term Saving Money Holiday Microsoft Office Automation Managed Service Managed IT Services Operating System Artificial Intelligence Facebook Computers Cybercrime Wi-Fi Hacking Health BYOD Mobile Device Management Internet of Things Networking IT Support Alert Office 365 Managed Service Provider Telephone Systems Information Technology Information Remote Covid-19 Spam Social Engineering Mobility Employer-Employee Relationship Recovery Router BDR Bandwidth Big Data App Password History Money Encryption Mobile Computing Applications Human Resources Data Breach Application Law Enforcement Remote Monitoring How To Managed IT Office Tips Blockchain Training Paperless Office Apps Data Storage Patch Management VPN Remote Computing Government Mobile Office Private Cloud Bring Your Own Device Data Management Work/Life Balance Wireless Gmail Vulnerability Flexibility Marketing Windows 7 Word Settings WiFi Infrastructure Google Drive Voice over Internet Protocol IT solutions Entertainment Two-factor Authentication Website Servers Budget Avoiding Downtime Mouse HaaS Data Security Save Time Risk Management Hacker Cleaning Telephone System The Internet of Things Staff Software as a Service Lithium-ion battery Conferencing Machine Learning End of Support Connectivity Remote Work Scam Education Physical Security Safety Firewall HIPAA Sports Redundancy Vendor Keyboard Virtual Reality Vendor Management Managed Services Apple USB Display Social Data Protection User Error Employee/Employer Relationship Meetings RMM Retail Hard Drives CES Computing Instant Messaging Value Excel Data storage Robot Spam Blocking Business Technology Electronic Medical Records Content Management Automobile Biometrics Access Control Virtual Desktop Computing Infrastructure Digital Signage Virtual Assistant Hiring/Firing Going Green Authentication DDoS Virus SharePoint Unified Threat Management Battery Procurement Net Neutrality Shadow IT Computer Accessories Workplace Strategy Update Legal Business Intelligence Help Desk Customer Service Google Docs Printing Audit Internet Exlporer Environment Worker Identity Theft IT Management Fax Server Botnet PDF Printer Managed Services Provider IT Plan Bluetooth SaaS Database Proactive IT Augmented Reality Fraud Unsupported Software Best Practice Remote Workers Network Congestion YouTube Remote Worker Charger Processor eWaste Black Market IT Consultant Cryptocurrency Compliance OneNote Computer Care Humor Hard Drive Current Events Document Management Telephony Comparison Solid State Drive Wireless Technology Samsung How to Wearable Technology Downtime Files Smartwatch File Sharing Consultant Ergonomics Skype Specifications Development OLED Data loss Chromecast Camera Inventory Analytics Wire Troubleshooting Evernote PCI DSS Virtual Machine Running Cable Outlook Leadership Start Menu Colocation Employee Uninterrupted Power Supply Best Available Memory 2FA Travel Fiber Optics Millennials Messaging Cabling Screen Mirroring Printers WIndows 7 Loyalty Smart Office Books Wireless Charging Policy Hypervisor Frequently Asked Questions Monitor Mobile Windows 10s Dark mode Trend Micro Workforce SMS Default App Cast Virtual Private Network webinar Streaming Media Science Emergency Cables Procedure Saving Time Tip of the week Reputation Shopping Professional Services Google Search Public Cloud Tech Support Employer Employee Relationship dark theme Content PowerPoint Telecommuting Windows Media Player AI Techology IT Infrastructure Laptop Project Management User Assessment Nanotechnology Bing Customer Relationship Management Cortana FinTech Distributed Denial of Service Windows Server 2008 Customers Social Network Tools Analyitcs Digital Signature Audiobook Investment Touchpad Warranty Managing Stress Programming Television HVAC Google Apps Employees Employee/Employer Relationships Advertising ISP Analysis Cameras Windows 365 Politics Devices Video Conferencing ROI Antivirus Administrator Public Computer Shortcuts Notifications Enterprise Content Management Windows 8 Transportation Sales Bitcoin Regulations Personal Cryptomining IT service Computer Fan MSP Rootkit Accountants Point of Sale Thought Leadership Credit Cards Supply Chain Management Microchip Relocation Workers Password Management Tablet Benefits Password Manager Monitoring Batteries Multi-Factor Security Digitize Domains FENG Printer Server Windows 8.1 Twitter Video Games Windows Server 2008 R2 Search Engine IBM Maintenance NIST Smart Technology Business Mangement Customer relationships Worker Commute IaaS Flash Experience Trending IT Assessment Manufacturing Bloatware Smart Tech Email Best Practices Addiction Amazon Scalability Software Tips Supercomputer Security Cameras Emails Tablets Recycling Computer Tips Business Owner Managed IT Service Sync OneDrive Biometric Security NarrowBand Wiring Entrepreneur Practices Virtual CIO Cache Amazon Web Services Peripheral Search iPhone Shortcut Netflix Safe Mode Two Factor Authentication Criminal Digital Security Cameras Using Data Copiers 5G Root Cause Analysis GDPR Cost Management Hosted Computing Wireless Internet Music Online Shopping Quick Tip HBO Social Networking Knowledge

      Top Blog

      Taking a Vacation From Your Technology While On Vacation Can Actually Make Things Worse
      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      Read More
      QR-Code