Firewall

But I’m Too Small?

It is hard to believe, but there is a myth still shared by many small businesses and individuals.  The myth is “I’m too small for anyone to attack my business.”  This myth is far from reality.  A review of the target distribution data provided by hackmageddon.com shows that for 2019, the number one group being attacked is the individual (27%) and the number two group is multiple industries (14.3%), which is the small business group.

31% of all the cyber-attacks are designed for the individual and small business.  There is a logical reason for this.  Big business is taking cybersecurity seriously.  They have made it difficult for the criminals to break into their systems.  Criminals typically don’t want to work hard.  They have developed easily deployable tools to find those organizations that believe they are too small to be attacked (I call them “the low hanging fruit”).  At minimum, even if you don’t think you have anything worth stealing, your data has value to you.  Imagine not being able to access the data on your computer system.  That is the goal of ransomware, which continues to be one of the greatest threats to most organizations.  The reason for the steady increase in ransomware attacks is because it is an extremely successful tool to exploit money from their victims.

Implementing the best security tools won’t guarantee you will not experience some type of a cyber-event, but ignoring the facts and doing nothing, guarantees you are more likely to experience a bad day.

There is a minimum number of things that every business should implement that will minimize the threat of a cyber-attack such as ransomware.  The cost of these security tools has continued to drop and is now affordable for most small and medium sized businesses.  Quanexus has developed our Q-Stack which is a layered security approach to protect against cyber-threats.

Request your free network assessment today. There is no hassle, or obligation.

If you would like more information, contact us here or call 937.885.7272.

Follow us on FacebookTwitter and LinkedIn and stay up to date on by subscribing to our email list.

Posted by Jack Gerbs in Cybersecurity, Information Security, Physical Security, Recent Posts, Small Business, Wireless

Layered Security with Q-Stack

Our CEO, Jack walks through the layered security steps Quanexus uses to protect your data.

 

Posted by Jack Gerbs in Cybersecurity, Information Security, Physical Security, Recent Posts, Small Business, Wireless

Have You Been Hacked? Indicators of Compromise (IOC)

How do you know if you have been hacked?  Organizations often find out they have been hacked 3 to 6 months after the initial incident.  Typically, they learn of the hack from an outside source.

There are many items that should be monitored in a network to determine if there is a potential incident.  Below is a list of a few key items for monitoring Active Directory (AD) and your firewall.

In AD monitor these key items:

  • Any network login from a user with privileged (administrative) access. Privileged accounts should only be used to manage the network.  Users with administrative accounts should have a regular user account to perform normal business functions.  The use of privileged accounts must be justified.
  • The creation and deletion of user accounts.
  • The modification of user access rights – escalation or de-escalation.
  • Failed logins. Many failed logins can indicate the account is at risk.

On your firewall monitor these key items:

  • Top users by bandwidth and sessions. These metrics should be used to create a baseline to detect anomalies.
  • Outbound firewall traffic that is being blocked. This indicates that a user or their computer is trying to reach unauthorized sites.

The items suggested above are the minimum key indicators that can be monitored to help you if you have a potential incident.

Posted by Jack Gerbs in Cybersecurity, Information Security, Recent Posts, Small Business, Wireless

Security Awareness and Training

If you work in any regulated industry, medical, finance, energy, transportation, government, etc. your company is required to  provide ongoing security awareness and training (SAT).  Often this is misidentified as security awareness training without the “and”.   Security awareness is typically provided through on-going emails, newsletters and posters that address different aspects of security.  The training part is more formal, it often includes a lecture and a basic test required to prove that employees understand security topics that apply to their organization.  For many years, we have been recommending the SANS.org OUCH! Newsletter, to fulfill part of the awareness function.

The OUCH! Newsletter is free.  As an additional control, we recommend that one person be responsible to distribute the newsletter to all employees.  Employees are then required respond back via email that they have read the newsletter.  The replies are then logged.  It is important to log the acknowledgments as proof that your organization is in compliance with its policies.

For more information and to sign  up for the newsletter, follow this link
https://www.sans.org/security-awareness-training/ouch-newsletter

 

Posted by Jack Gerbs in Cybersecurity, Recent Posts, Small Business