So often we’re told by clients that they are too small to be targeted, or that they do not retain data important enough for targeting. The truth is that there are only two types of small business owners: the ones who know they’ve been hacked and the ones that don’t know just yet. It’s true; hackers are not targeting individual small businesses—for the most part. But this is because they are targeting EVERYONE. Ransomware, malware, and viruses do not discriminate. Without the proper protections in place everyone is vulnerable.

2021 Cybersecurity Statistics for Small Companies

• In Canada, nearly a quarter of ALL small businesses have been hit by a cyberattack since the start of the pandemic
• Businesses have lost at least $114 billion annually from data breaches, with approximately 25 percent taking place due to negligence

Approximately 20 percent of SMBs (small businesses) have fallen victim to one or more types of ransomware attacks

Hacking Prevention is Worth A Pound of Cure

Benjamin Franklin’s axiom about an ounce of prevention being worth a pound of cure relates quite well to cyber security issues faced by Los Angeles businesses. It is particularly relevant post-pandemic, because remote work dramatically increased the number of security challenges faced by small business leaders. How to prevent hacking in the post-COVID-19 world, as Vikas Agrawal writes in Forbes, means that “SMBs cannot afford to apply traditional solutions to matters relating to cybersecurity, especially considering how much these businesses have become dependent on digital infrastructure to weather the storm.”

Your Los Angeles IT Security Checklist

Consider these a baseline for any industry, including architecture, financial and banking, entertainment, healthcare, law, and others.

Step 1: Analyze all information assets and systems in scope: This includes all computers, servers, networks, smartphones and tablets, IT systems, and applications. Those systems being utilized by remote workers apply.

Step 2: Confirm your current investment in cybersecurity: This task begins with appointing a focal person for IT security. If no such person exists it’s likely time to take on IT help. Define the percentage of your budget currently invested in cybersecurity measures and commit to progressive improvements.

Step 3: Develop an incident response plan. Assume that a cybersecurity event WILL take place and prepare for it. This plan should be written down and include contact information, comms for communicating with stakeholders and staff, and an insurance policy.

Step 4: Set up automatic patching for operating systems and applications. IT vendors release patches regularly to guard against looming security threats. Ensure your systems are adopting these patches automatically as they are released.

Step 5: Install security software. Anti-malware and anti-virus solutions are a must. They should be updating and scanning automatically.

Step 6: Review security settings on all devices. Smartphones and computers should not be set to default administrative passwords. Change the passwords, enable necessary security features, and turn off the ones that aren’t required for business objectives.

Step 7: Set up user authentication. Cybersecurity consultants advise all small businesses to utilize 2-factor authentication and develop clear guidelines for password development and implementation.

Step 8: Backup and encrypt data. You may not think you’ve got much data to protect, but even birthdates and social security numbers can easily be exploited by hackers. Create clear procedures on backing up and encrypting all business data.

Step 9: Move to the cloud. Cloud service providers are inherently more secure (and extremely budget-friendly.)

Step 10: Educate your staff. None of the measures instructed for implementation above will have any effect if your employees do not know how to safely utilize their IT equipment. Employee awareness training is a must and can be provided by top cybersecurity companies (like ClearFuze.)

Read more about how to implement these cybersecurity measures in our 2-part cybersafety blog series. To request your own complimentary ClearONE cybersecurity screening from ClearFuze, send us an email today. Let us help you with the big picture and keep you safe so that you can focus on your core business.

The post How to Avoid Being Hacked: A Cybersecurity Checklist appeared first on ClearFuze.

Call us old-fashioned, but we believe that you should be able to keep your business data and hard-earned revenue without a criminal taking advantage of it. Here are our top cybersecurity tips for Los Angeles businesses. Head to https://clearfuze.com to learn more.

Anatomy of a Cybersecurity Data Breach

Here is an inside look at the data from the 2020 Verizon Data Breach Investigations Report:

• 70% of data breaches were caused by outsiders.
• 86% of data breaches were financially motivated.
• 43% of breaches were attacks on web applications (this is double the number from 2019).
• 27% of malware incidents were attributable to ransomware.

In the Entertainment Industry: 

94% of attacks were financially motivated.

Data compromised included Personal (84%) Medical (31%), Other (26%), and Payment (25%).

In the Healthcare Industry: There was a substantial increase in breaches and incidents overall (798 incidents reported, 521 with confirmed data disclosure).

In the Finance and Insurance Industry:

This industry has a constant “target” on its back due to data typically collected from customers.

35% of threat actors were internal; meaning that employee mistakes were to blame for nearly ⅓ of breaches.

Your Cybersecurity Tip List

It is plain to see from the numbers listed above that cyber crimes are increasing, growing more complicated and clever, morphing to target various industries and resulting in an estimated loss of $10.5 trillion USD annually by 2025. There are things you can do to keep your Los Angeles company safe, which is why ClearFuze compiled the cybersecurity tip list below.

1. Do not wait for a crisis to happen
2. Perform a risk assessment with trusted IT support
3. Use endpoint encryption
4. Implement cloud authentication
5. Introduce a gateway intrusion detection system (IDS)
6. Apply a patch management solution
7. Run a domain name system (DNS) filtering service
8. Use a password manager
9. Update your software

Read more about how to implement these cybersecurity measures in our 2-part cybersafety blog series.

Still have questions about how to take the right cybersecurity actions? ClearONE Managed IT Services from ClearFuze provide comprehensive coverage for your entire team—even when you’re spread out across the globe and working remotely. Contact us today for a free assessment to get started.

The post Top Cybersecurity Tips For Los Angeles Businesses appeared first on ClearFuze.