Login | Register 
Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Tip of the Week: Your Cybersecurity To-Do List

Total Tech Care Blog Best Practices
0 Comments
Tip of the Week: Your Cybersecurity To-Do List

It is a well-established and widely-known fact that your employees are some of the biggest threats to your business via the technology that they use each and every day. If your employees aren’t aware of the practices and policies that they need to follow to prevent these threats, you could find yourself in an unpleasant position. Here, we’ll review four categories of cybersecurity basics that everyone in an organization should abide by, and some tips to support each.

Preventing Phishing

Phishing has been becoming more and more of a favorite tactic by hackers, meaning that you and your employees need to look at any messages that come in via your email (or other solutions) with a critical eye. Here are some practices to help you minimize the influence of phishing on your business:

  • Watch for “Urgent” messages (or, for that matter, “URGENT!!!!!!” ones). Many phishers will try to manufacture urgency to make sure you click without taking a moment to consider it may be an attack. Resist this knee-jerk response.
  • Review in detail. Many phishing messages show distinct warning signs, such as blatant spelling or grammar errors (but this may just be the person you’re talking to as well). You can find other, more reliable signs by giving any links or the email address of the sender the “hover” test. Without clicking on anything, hover your cursor over the links and a small pop-up box will appear. This box will show you the address that really sent the email, or the link that you would actually be redirected to. Check to make sure all the details are kosher. For these reasons, it’s recommended that you don’t click on any links in emails. Instead, retype the URL into your web browser.
  • Double-check with the sender. If you have access to another means of communication with the supposed sender of an email, reach out to them using that other means to confirm that they sent it. If they didn’t, it’s a pretty safe bet that the email is fraudulent.
  • When in doubt, assume the worst. If you just aren’t sure how legitimate a given email is, don’t click around in it. Assume that it is a phishing attempt, and report it to your IT provider.

Establishing Safe Browsing Habits

Unfortunately, there are plenty of threats that reside online, and it is only too easy for a user to unwittingly allow them in. Make sure your users abide by the following policies to minimize the threats you’ll potentially need to deal with.

  • Think before you click. Similarly to links found in emails, there are plenty of opportunities online to let in a threat. Consider what you’re clicking on before you do so. (The “hover” trick works well here too… check out the bottom of the window.)
  • Reserve business computers for business purposes. Non-work-related browsing can bring users to websites that can host threats without the user realizing. Discourage your users from surfing the web, downloading content, and doing other things online unless they are work-related.
  • Moderate access. Use firewalls and content filtering to keep unwanted content off of your network, and users from accessing unwanted content, respectively.
  • Trust your IT resource. If you are even the slightest bit unsure about something, whether it’s a program you’ve been prompted to install or making sure your settings are focused on maintaining security, reach out to IT for assistance.

Enforcing Strong Passwords

It seems that everything requires a password these days, which makes it all the more important that you and your users are aware of how to keep them safe - especially in the workplace.

  • Don’t recycle passwords. Once a password has been used and replaced, it is best to not use it again - this is why you’ll often find a “you have used this password too recently” message if you attempt to use it again within a certain timeframe. This is the same reason that passwords should not be used for more than one account - if that password is compromised, you’ve just lost control of multiple accounts.
  • Avoid easily-guessed passwords. As a way to try and come up with a password that is easy to remember, many people will resort to using common elements in their password - pet names, maiden names, birthdays or anniversaries - or use a simple phrase or a string of numbers. The entire point of a password is to make it so that others are unable to access one of your accounts, so making it something that can be guessed is counter-productive.
  • Consider leveraging passphrases instead. Passphrases are not only typically more secure than a password, they also have a tendency to be more memorable. Let me ask you this… which of these two would you find more memorable, “F4njUJ29S5” or “pearquiethigh?” You can also use basic substitution to make you passphrase more secure, turning our example into “pe@rqu!e+h!gh” instead.
  • Use a password manager. One of the main reasons that people reuse passwords so often and neglect to change them is the fact that they are scared of forgetting them. A password manager can help reduce this by securely saving all of your different passwords behind one master password. 

Protecting Your Business’ Data

Finally, there are many threats out there to your business’ data - including any you have on your clients or your employees. You have a responsibility to yourself, as well as these clients and employees, to make sure that this data is as secure as possible.

  • Make sure your business’ data is backed up. There are so, so, so many ways that your business could lose its data. While it may be attacked, it could just as (if not more) easily be lost due to equipment failure, user error, weather conditions… the list goes on and on. If your on-site data is lost, you will want to make sure you have an up-to-date copy squirreled away in the cloud to reference.
  • Protect your assets with access control. You need to be concerned about both the security of your digital files, and of your actual business location. If you’re using multi/two-factor authentication to secure your online resources, or requiring identity confirmation in order to enter certain areas of the business… you need to be doing both.
  • Maintain your security solutions. The thing about security software is that it isn’t something that you can just set up and count on indefinitely. Attackers are always examining these solutions to find vulnerabilities, so it is important that you regularly update and patch the ones you use to keep them safe. Every solution you have should actually be set up with security in mind. A glaring example is your company’s wireless. Not only should that be secured with a password, it should be hidden away from outside users.
  • Keep your payment options compliant. For your sake, and the sake of your clients, you should make sure your business is compliant to whatever regulatory standards that apply to it… including the Payment Card Industry Data Security Standard (PCI DSS).

Following these guidelines is a great start to ensuring your company’s security. Total Tech Care can help get you this far, and beyond. Reach out to us at 866-348-2602 to learn more about what we can do.

Tweet
Tags:
Security Users Tip of the Week
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, 28 February 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Categories

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Network Security Business Google Microsoft Internet Email Malware Workplace Tips Backup Innovation Data User Tips Computer Mobile Devices IT Services Hardware Disaster Recovery Android VoIP communications IT Support Smartphones Communication Business Continuity Miscellaneous Smartphone Mobile Device Network Browser Small Business Collaboration Productivity Quick Tips Cybersecurity Users Business Management Upgrade Phishing Windows Managed IT Services Outsourced IT Ransomware Data Backup Windows 10 Office Server Save Money Cloud Computing Data Recovery Passwords Windows 10 Saving Money Holiday Tech Term Gadgets Chrome Virtualization Social Media Managed IT Services Microsoft Office Automation Managed Service Cybercrime Operating System Artificial Intelligence Computers Facebook Mobile Device Management Networking Health IT Support Internet of Things Hacking Wi-Fi BYOD Managed Service Provider Remote Spam Alert Office 365 Telephone Systems Covid-19 Information Information Technology Bandwidth Recovery Employer-Employee Relationship Router BDR Social Engineering Mobility Human Resources Law Enforcement Big Data Remote Monitoring Password Data Breach Money App History Mobile Computing Encryption Application Applications How To Government Remote Computing Private Cloud Mobile Office Data Storage Patch Management Managed IT Blockchain Apps Office Tips Paperless Office Training VPN Data Security Infrastructure Settings Voice over Internet Protocol Avoiding Downtime Two-factor Authentication Mouse HaaS Vulnerability Windows 7 Bring Your Own Device Data Management Word Flexibility Work/Life Balance Marketing Servers WiFi Wireless IT solutions Entertainment Website Budget Gmail Google Drive HIPAA Sports Redundancy Keyboard Firewall Virtual Reality Apple Social Data Protection User Error Save Time Conferencing Meetings Scam Vendor Cleaning Managed Services Risk Management Display Hacker Telephone System Staff Software as a Service Vendor Management End of Support Machine Learning The Internet of Things Physical Security Lithium-ion battery Education Remote Work Employee/Employer Relationship Connectivity USB Safety RMM Identity Theft Computing Current Events PDF Customer Service Environment Telephony IT Consultant Samsung Proactive IT Fax Server Humor Augmented Reality Best Practice Value Fraud Digital Signage SaaS YouTube Spam Blocking Electronic Medical Records Black Market Remote Worker Cryptocurrency Hiring/Firing Network Congestion eWaste Procurement Document Management Net Neutrality Solid State Drive Wireless Technology Workplace Strategy How to Downtime Help Desk Comparison Printing CES Data storage Wearable Technology Virus Business Intelligence Automobile Retail Hard Drives Business Technology Instant Messaging Unified Threat Management Content Management Audit Managed Services Provider Worker Computing Infrastructure Robot Computer Accessories Access Control Excel IT Management Database Going Green Virtual Assistant Biometrics Botnet Virtual Desktop Authentication IT Plan Remote Workers Processor Battery DDoS Shadow IT Printer Unsupported Software Legal Bluetooth SharePoint Update Hard Drive Charger Internet Exlporer Compliance OneNote Google Docs Computer Care Smartwatch Administrator Devices Ergonomics Enterprise Content Management Development Netflix OLED Two Factor Authentication Relocation Antivirus MSP Accountants PCI DSS Root Cause Analysis Virtual Machine Credit Cards Fiber Optics Knowledge Employee Music Microchip Thought Leadership 2FA Windows 8 HBO Password Management Skype Password Manager Messaging Cabling Video Games IT service Policy Data loss Multi-Factor Security Hypervisor Worker Commute Trend Micro Experience Leadership Troubleshooting Search Engine Twitter Dark mode Tablet Outlook NIST Start Menu Business Mangement SMS Default App Scalability Domains Consultant Smart Tech Procedure Screen Mirroring Trending Saving Time Business Owner Loyalty Amazon Shopping Google Search IaaS Books NarrowBand Maintenance Analytics Addiction dark theme Frequently Asked Questions Bloatware Mobile Recycling AI Windows 10s IT Infrastructure Search Bing iPhone Best Available Wiring Practices FinTech Cast Amazon Web Services Social Network webinar Emergency WIndows 7 Cache Tablets Tip of the week Safe Mode Entrepreneur Professional Services Criminal Public Cloud Investment Employer Employee Relationship Files GDPR Hosted Computing Employees Employee/Employer Relationships Assessment Windows Server 2008 Online Shopping ISP Chromecast Shortcut Wireless Internet Windows 365 File Sharing Cost Management Tools Video Conferencing ROI Television Shortcuts Colocation Camera Uninterrupted Power Supply Social Networking Inventory Sales Specifications Bitcoin Windows Media Player Evernote Personal Cryptomining User PowerPoint Wire Point of Sale Supply Chain Management Travel Monitor Public Computer Running Cable Printers Monitoring Millennials Batteries Regulations Wireless Charging Digitize Transportation Managing Stress Smart Office Windows 8.1 Memory Streaming Media Computer Fan Windows Server 2008 R2 Rootkit Reputation Content Virtual Private Network Tech Support Cameras Customer relationships Workforce Cables IT Assessment Workers Manufacturing Techology Benefits Laptop Email Best Practices Customers FENG Audiobook IBM Security Cameras Project Management Nanotechnology Computer Tips Science Telecommuting Managed IT Service Virtual CIO Flash Cortana OneDrive Biometric Security Smart Technology Touchpad Digital Signature Peripheral Using Data Politics Supercomputer Advertising Distributed Denial of Service Warranty Customer Relationship Management Printer Server Digital Security Cameras Software Tips HVAC Analyitcs Sync Google Apps Copiers Emails 5G Notifications Programming Analysis Quick Tip

      Top Blog

      Taking a Vacation From Your Technology While On Vacation Can Actually Make Things Worse
      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      Read More
      QR-Code