4 Simple Ways to Improve End-User Security
Data security isn't just the responsibility of IT pros. Secure networks can be taken down by an end user's honest mistake. Smart organizations pay attention to information security training for employees.
While you may not have the budget for security training classes, your users can benefit from some basic information that will keep them, and your company, from being hacked.
Here are some of the tips we recommend you provide to your end users.
What's at stake?
Data breaches cost money and productivity. The average data breach costs $12.7 million. The average company requires 45 days of recovery after a security breach. Hackers don't just go after corporate secrets. A hack could expose employees' personal data and communications.
What can you do?
Eighty percent of security incidents were facilitated by weak administrative passwords. Never give out login credentials — even to family or coworkers, even to someone who says they're from IT — and always use a different password for every website. If you can't remember passwords, try a passphrase, like "Ketchup is the worst relish" or a password service like LastPass.
Never send private information over public WiFi. Always scope links by rolling the mouse pointer over a link to see its actual destination, in the bottom left corner of your browser window. (In Outlook, it's displayed above the link.)
Never send sensitive information over email, even to yourself. Always be skeptical about attachments and requests, even if they appear to be from trusted sources. The most common guises for phishing scams are bank notifications, online purchases, photo attachments, shipping notices, and online dating services.
It's not just your computer that needs guarding, your phone is vulnerable as well! Fifty percent of mobile users don't take even basic security precautions with their devices. Never leave your device (laptop or phone) unattended in a public place. Always report loss or theft of any company devices immediately to IT. Always keep devices up-to-date, and install and use anti-virus and anti-malware software.