9 Cybersecurity Tips for Small Businesses

Small businesses are becoming a bigger target for cybercriminals.

By Paul Enloe, Chief Executive Officer, BrevAll Technologies

Small businesses are becoming a bigger target for cybercriminals. According to the Ponemon Institute Research Report, 61 percent of small businesses were attacked from October 2016 to September 2017, and 54 percent experienced data breaches involving customer and employee information. Both numbers were up from the previous 12 months.

If you own one of America’s 28 million small businesses, here are nine minimally expensive steps you can take right now to strengthen your cybersecurity and protect your business.

1) Secure your Wi-Fi network: One of the easiest ways for cybercriminals to hack your network is via Wi-Fi. Defend against this by hiding your Wi-Fi network to all unauthorized personnel. To hide your Wi-Fi network, set up an encrypted wireless access point and disable outside network access.

2) Enable HTTPs: Used by financial institutions, “HTTPs” are more secure versions of traditional “HTTP” websites. HTTPs have an SSL/TLS Certificate installed onto their servers that encrypt all communications between your browser and website, ensuring that customer information, such as credit card numbers, cannot be intercepted.

3) Update your password: Frustrating? Yes. But demanding employees change their password frequently mitigates the damage in case their original code has been stolen. Strong passwords contain at least 10 characters and include numbers, symbols and upper and lowercase letters. Employees should never write down their passwords or use the same password for multiple company applications.

4) Minimize password attempts: Did you know there’s software that can guess your password in a matter of minutes? Guard against this by reducing the number of incorrect passwords an employee can enter. If that number is reached, temporarily freeze the employee’s access until you can verify there was no attempted breach of your network.

5) Multi-factor authentication: Another way to secure your network is by enabling multi-factor authentication, which requires more than one method of authentication to verify a user’s identity. Make sure vendors that handle your data also use multi-factor authentication.

6) Update software: Hackers can enter your network through outdated browsers and applications, so make sure your entire staff is using the most current software available. For the same reason, make sure employees who use mobile devices for work are diligent about downloading the most updated apps and operating systems.

7) Safeguard payment cards: Contact your credit card processors to make sure they’re employing the most stringent tools and anti-fraud services to protect your customers’ credit card and/or other financial data.

8) Limit access to network: Instruct employees to lock their machines when they’re not using them and establish security checkpoints to inhibit unauthorized personnel from gaining access to areas of the building in which they do not belong.

9) Limit access to data and software: For the same reason you wouldn’t give all of your friends a key to your house, you shouldn’t give employees access to data or software that isn’t germane to their jobs. This will help keep your security tight, as well as troubleshoot any security issues that may materialize.