CERT NZ have a set of guidelines to help keep businesses secure. See how many of the following guidelines your business follows.
Install Software Updates
Stop attackers getting access to your business network through known vulnerabilities by regularly installing the latest software. Software updates often contain security fixes.
Implement Two-factor authentication
Make sure anyone who logs in to your system has to provide something else on top of their username and password, to verify that they are who they say they are.
Back up your data
Regularly back up your business data. Set your backups to happen automatically and store them somewhere secure offline. You can then restore your data if it’s lost, leaked or stolen.
Set Up Logs
Logs record all the actions people take on your website or server. Set up alerts to notify you of an unusual event occurs. Make sure someone checks the logs when an alert comes in.
Create an incident RESPONSE plan
An incident response plan will help you get your business back up and running if your business is targeted by a cyber attack. Talk to your staff about the plan ahead of time. Haven’t got one? Sign up to Cyber Toa’s Incident Response Playbook Course.
Change default passwords
Check for default passwords on any new hardware or software. If you find any default credentials, change the passwords for them.
Choose the right cloud services
Select a cloud service provider who will provide the right service for your business. Check their data and security policies. Ask if they’ll do backups and if they offer two-factor authentication.
only collect the data you need
The more data you hold about your customers, the higher your security risk. This data is valuable to attackers so reduce your risk by only collecting what you need.
Service your devices
Enable security software like antivirus, to prevent malicious software being downloaded to any device that accesses your busines data or systems. Unsure of where your vulnerabilities are? Check out one of our many services to help you assess your business.
Secure your network
Configure network devices like firewalls and web proxies to secure and control connection in and out of your business network. Use a VPN that uses two-factor authentication if you need to remotely access systems on your network.
Check Financial Details Manually
If you need to pay a new supplier, or to change bank details, double check it manually- by phone or text- before you approve any payments. Do this for any unusual or unexpected requests too.