By Ram Narayanan, Country Manager at Check Point Software Technologies Middle East
On the 33rd anniversary of Computer Security Day, Check Point Software Technologies Ltd. provides five important reminders for protecting IT systems in the home and office.
Since Computer Security Day started in 1988, the level of cyber threats has increased every year and the last 12 months have seen the highest level of cyber incidents ever. New and more sophisticated threats, more devices, more computing power and professional criminal gangs mean that anyone with a computer, smartphone or IoT device must now regularly think about cybersecurity but still, many don’t. Especially in today’s world with the increase in remote working, each of us carries a certain level of responsibility when it comes to security. For this reason, the following tips have been compiled to provide guidance and assistance in protecting both our personal devices and corporate IT systems:
Passwords are important: Passwords should be checked and strengthened regularly. However, experts argue about the length and composition as well as the frequency of renewal. It is important for users to handle their passwords carefully, not to store them unsecured in Excel spreadsheets or leave them written down for anyone to see or stick them on the back of the keyboard. “1234” or “password” are not secure passwords.
Protect against phishing: Users should be careful before clicking on links that look suspicious in any way, often associated with the sender. They should also only download content from reliable sources, as phishing, a popular form of social engineering, has become the main avenue of attack. Therefore, if users receive an email with an unusual request or a strange sender or subject, they should immediately start doubting.
Choose IT devices carefully: In connection with remote working, this point has become extremely important. The risk of a large-scale attack increases when employees use their personal devices, such as computers or cell phones, for work-related purposes. Security software should be installed on all devices and the connection to the company network should be protected.
Keep software fresh: Hackers often find entry points in applications, operating systems, and security solutions, as they generally monitor and exploit the appearance of vulnerabilities. One of the best protective measures is to always use the latest version of any software – simple, basic but effective.
Use multi-factor authentication: Multi-factor authentication is something many users are already familiar with from their online banking accounts, for example, when a TAN (single-use passcode) is requested via cell phone. In many cases, this login method is now being introduced for applications and accounts at online retailers to increase IT security. In this way, they have made it almost impossible for cybercriminals to gain access to the system despite knowing the password.
This advice already goes a long way toward protecting your own devices and your company against cyberattacks and malware. However, it should also be supplemented by a comprehensive IT security architecture that consolidates and centrally controls various security solutions against different types of attacks. This covers all areas of IT security and can even intercept the dreaded zero-day attacks. Finally, round off the strategy by training all employees up to management level, including the training of specialists via special training programs and learning platforms.