Either from a vendor perspective or like myself, from a educational perspective, we all see the imminent possibility of system and personal failure.
An attack from the digital world can be devastating!
We can see that no one is listening because the attacks continue.
In 12 months we have seen 240 million reported records stolen.
This include information about money, personal identity information (PII) and trade secrets.
This information has been stolen from more than 1000 well known Organisations. If this happened in the real world there would be an absolute furor, but when it comes to the digital world all we hear are crickets.
These Organisations seem to have no understanding on how to protect their clients information.
Here are seven facts that should be common knowledge and easy to follow but their not:
Having a strong, complicated and unique password will protect you
We live in the digital world, from our smart devices to our smart homes.
Our passport to that world is our username and password.
Unlike our normal passport that most of us protect with our lives, our digital passport is treated like crap.
Every access to the digital world from website to cloud technology to accessing your phone should be unique.
New technology is no safer than old technology until you find out what you need to do to be secure
We all like to use the newest and greatest technology that is available. We assume that the newest will be faster, more capable and more convenient. We have seen it in a number of iterations of windows that this is not necessarily true.
To make your NEW system secure you have to know how to make it secure. The defaults, out of the box security, are only there so that they can say it is secure. It is not a measure of the actual security capability of the system. Find someone or learn yourself how to make it secure to your requirements.
The best made software can have errors in it.
There hasn’t been a piece of software written or software system created that has not had an error or 1000 in it.
Why is the first thing we think is going to happen, that out of the box, the new shiny software will be error proof.
Communications on the Internet should all be encrypted
If your are using un-encrypted communications on your device then you are exposing your data to anyone or anything that can listen to it.
We all know that you should always look for encrypted websites when using a payment gateway.
All communications, on a network, wireless, VPN or over the Internet should be encrypted to avoid being recorded.
The cloud is not safer than terrestrial systems – it creates more security issues
No amount of security is going to keep your cloud technology safe if you have not mastered your normal business security.
Passwords, patching and encryption.
Not having the right mindset when moving to the cloud will create bigger and more complex digital security issues.
Updates are critical to your security
If it has been created by a human then any application or operating system will have problems.
Missing code, overlooked features or basic mistakes are all there.
The software engineers realise this and now push out regular updates for the problems they find or are found for them.
These updates are critical to making the systems you use as secure as possible.
Hackers are not all criminals
Not all hackers are criminals.
There are a number of very good hackers who work from the criminal side, not to steal anything but to make sure that the real bad hackers cannot gain access to the software and operating systems that we all use.
These boys and girls think, act and attack like the bad guys. They are not in it for the money. In a number of cases have been criminally charged when the information, process or stratagy they used was deamed illegal. Bringing the problem to the notice of the owner does have its pitfall, but they still do it.
We often forget that the digital world is not like the real world.
There are no cops on the corner or the Lone Ranger coming to the rescue, so security and protection is up to us.
Want someone to talk to you about your digital security then contact us ASAP.
Roger Smith is the CEO of R & I ICT Consulting Services, Amazon #1 selling author on Cybercrime, author of the Digital Security Toolbox and author of the SME Digital Security Framework. Rapid Restart Appliance Creator. He is a Speaker, Author, Teacher and Educator on cybercrime and how to protect yourself from the digital world.