MERIT Solutions Blog

MERIT Solutions has been serving the Chesapeake area since 1982, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Maybe You Can’t Fix Stupid, but You Can Fix Your Security

Maybe You Can’t Fix Stupid, but You Can Fix Your Security

It’s easy to dismiss network security if you run a small business that seemingly isn’t a target of malicious attacks. Unfortunately, this dismissive attitude can put your organization at risk, as even a simple security issue could be enough to expose your company to dangerous entities. In fact, we would call it foolish not to secure your organization; and one of the most infamous security failings in history stems from this.

The Equifax Problem
During the months of May and July of 2017, a credit-reporting firm called Equifax fell victim to a data breach that exposed a whopping 148.1 million records containing personally identifiable information. To put this in perspective, the Equifax data breach exposed almost half of the population of the United States of America.

In the wake of this breach, the former Equifax CEO Richard Smith was cross-examined by Congress. Smith’s defense argued that “human and technology errors” were at the heart of the issue. Ultimately, the Chairman of the House Energy and Commerce Committee, Greg Walden, came to the following conclusion: “I don’t think that we can pass a law that fixes stupid.”

How to Fix Your Data Security
While it’s true that there is no guarantee legislation would resolve the issue, you still need to make sure that your organization is doing the best that it can to keep threats from infiltrating its network. You can begin by implementing specific standards on a company-wide level or a case-by-case level.

Here are some ideas that you can start with:

  • Start with compliance: Compliance regulations don’t always have data security in mind. That being said, it’s still an important part of managing your data security, as you could potentially be subject to fines and other troubling regulations.
  • Resolve vulnerabilities: 99 percent of exploits rely on vulnerabilities remaining unresolved in network infrastructures. These exploits also often exploit vulnerabilities that are at least a half a year old. You should make patching these vulnerabilities a priority so that you can best protect your data.
  • Centralize your data security: There needs to be someone at the helm of your data security endeavors. If there isn’t, you make protecting your data much more difficult. This person should be responsible for implementing access control and making sure that nobody can access data that they wouldn’t need for their ordinary workday.

Encouraging Employee Security
Employees hold more sway over your business’ security than they may realize. This makes it difficult to protect important assets, because if you’re overly cautious, you could be compromising your business’ ability to operate as intended. For your benefit, here are a couple of ways that your organization can help employees remain cognizant of their responsibilities.

  • Lazy credential habits: Password problems have persisted in business for a long time. Employees should never reuse passwords or usernames for every account that they have. Each password should be a complex, containing letters, numbers, and symbols to maximize security. You can use a password management system if this gets to be a bit too much for your employees.
  • Oversharing information: You should help your employees work toward limiting just how much information they share about themselves on social media so that passwords are not as easily predicted. Avoid using personal anecdotes whenever possible, and restrict who can see what information to minimize the chances of this happening. You also don’t want information to spread outside of the office, as an invoice or receipt with a customer number could be all a hacker needs to cause trouble.
  • Using the wrong Wi-Fi: Public Wi-Fi is dangerous and therefore, not the ideal way to access secure data. You should work together with your employees to make sure that they have secure access to company documents whenever they need them. A virtual private network is a great way to do this, as it encrypts information sent and retrieved by your devices.

Does your business need to augment security? MERIT Solutions can help. To learn more, reach out to us at (757) 420-5150.



No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Friday, June 22 2018

Captcha Image

Tag Cloud

Security Tip of the Week Technology Best Practices Cloud Privacy Business Computing Network Security Hackers Malware Software Productivity Internet Hosted Solutions Business Management Backup google Computer Managed IT Services Outsourced IT Microsoft Mobile Devices Disaster Recovery Business Continuity communications Business VoIP Windows 10 IT Support Email User Tips Hardware Cybersecurity Innovation IT Services Data Backup Efficiency Cybercrime Apps Server Ransomware Tech Term Saving Money Mobile Device Management Windows Data Recovery Managed IT Mobility Small Business Data Smartphone Productivity Law Enforcement Internet of Things Operating System browser Virtualization Office 365 BDR Save Money Telephone Systems Android Money Data Security Smartphones Cloud Computing Passwords Hosted Solution Quick Tips Phishing Automation Managed Service Provider Chrome Communication Information Technology VPN Recovery Microsoft Office Password Holiday BYOD Alert Health Miscellaneous Data Breach upgrade Computers Social Two-factor Authentication Wireless App Best Practice Social Media Risk Management Unsupported Software Budget Collaboration IT Support Facebook Data Management Government Network Work/Life Balance Update Cost Management Wi-Fi Gadgets Vulnerability Google Drive Hacking Application Avoiding Downtime Current Events Audit Telephony Managed IT Services Social Engineering Compliance Personal Information Streaming Media Office tips Applications Private Cloud History Politics Remote Computing search Proactive IT Cleaning USB Save Time The Internet of Things Data Protection User Error Employer-Employee Relationship Identity Theft Artificial Intelligence Flexibility Gmail Shortcut Tech Support Wireless Technology Firewall Workplace Tips Spam Antivirus Content Filtering Wireless Charging iPhone Excel Mobile Security Battery Devices HaaS Television Data Storage Mobile Computing Transportation OneNote Apple Google Assistant Robot Automobile Fraud Value WiFi End of Support Data Loss Going Green Saving Time Bandwidth Marketing Google Docs eWaste Office Phone System Computer Care Humor Disaster Project Management Legal Users Encryption Redundancy Commerce Sports Big Data Cortana Windows 10 Hacker Patch Management Solid State Drive Internet Exlporer Education Router IT solutions Vendor Management Management Blockchain SaaS DDoS Samsung iOS Exchange Identities Unified Threat Management PDF Windows Ink Distributed Denial of Service altivista Comparison Training Printing Entertainment Computer Fan Electronic Medical Records SBS IoT Evernote Regulation Upgrades Text Messaging Google Maps compaq Identity Point of Sale Spyware Specifications Screen Mirroring Company Culture HIPAA Wearable Technology Dark Web Safety Language Black Market Networking Sync Consultant Software as a Service Meetings Smart Technology hp Data Privacy Avoid Downtime Sales Cast Computer Forensics Emails domain Shadow IT Workers Adobe Laptop Settings Uninterrupted Power Supply Hard Drive Document Management Edge Retail PowerPoint Experience Licensing WannaCry remote Virus Updates Touchpad Yahoo Chromebook Wireless Internet Webinar Ciminal Video Games Conferencing Reputation HBO Mobile Running Cable Server 2008 Proactive Virtual Reality Microsoft Word Advertising Microsoft Excel Remote Monitoring Scam Ali Rowghani Smart Tech Gamification IT solutions Music Gifts Trending Professional Services Data storage Websites File Sharing Employer Employee Relationship Connectivity Memory Windows 10s Analytics MSP Administration IT Management Chromecast Travel Nanotechnology Keyboard server installation dvd "cannot install required files" Data Theft Instant Messaging Storage Computer Accessories stock Content Filter Worker Commute Students Hard Disk Drive intranet Credit Cards Colocation WIndows Server 2008 Mobile Device Hard Drives Tablets Root Cause Analysis Computing Managing Stress tweet Files Monitoring Administrator Unified Communications Books Lithium-ion battery IT budget Scalability FAQ NFL Augmented Reality Hiring/Firing calculator Analysis Maintenance Lifestyle Business Intelligence Twitter Touchscreen Access Financial control How To Charger Relocation Outlook Word Benefits App store Device Security Legislation Managed IT Service WSJ Financial Technology CrashOverride Emergency Cache Monitors Worker Thank You Congratulations

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

Anna Jackson 5 SEO Tools To Get a Google-Eye View of Your Website
15 September 2017
Hello Randall! I was doing very important work but due to your subject I felt better to stay at you...
David Miller Not all project-management tools are right for all businesses
25 August 2017
All the points depicted by you in this blog is v.apt. I love the title of this blog because it says ...