Photo credit: Canva
Cybersecurity must be a top priority when it comes to remote work. Cybercriminals are using logos from trusted sources, like the Centers for Disease Control and Prevention (CDC), in phishing emails and hiding malware in COVID-19 online trackers. Your clients and employees, especially your remote workforce, are at risk.
The best defense is prevention. To prevent a cyberattack, your organization must provide appropriate policies, tools and education.
A strong password is a critical first step when it comes to cybersecurity.
Password best practices:
- Change passwords every 90-120 days
- Do not reuse old passwords
- Complexity requirements:
- Don't use any part of your first, middle or last name/initials
- Use at least one uppercase letter, lowercase letter, number AND symbol
- Use at least 10 characters
Multi-factor Authentication (MFA)
Multi-factor authentication is a security mechanism that requires you to provide two or more credentials to authenticate your identity. Any account that houses sensitive information should have MFA enabled.
We recommend Duo Security to our clients. Our 20+ employees also use Duo.
Duo offers several plans, including a free option. For more information, go to https://duo.com/.
Every organization deals with security threats on a daily basis. The best way to combat these threats is through education.
Training employees is a critical step in improving security.
KnowBe4 is the world’s most popular integrated platform for security awareness training combined with simulated phishing attacks.
The 3-step process of Train, Phish, Review helps employees better detect attacks.
AM Data Service can facilitate this program on your behalf to ensure you get the most appropriate program for your organization.
For more information, go to https://www.knowbe4.com/.
ESET Cybersecurity Awareness Training offers a free version for basic employee awareness training.
This program is designed to help introduce employees to the basic concepts of a cyber threat.
For more information or to register for their free materials, go to https://www.eset.com/us/cybertraining/register/.