Small businesses are not immune to cyber-attacks; in fact, they might be even more susceptible to cyberattacks due to lesser resources to defend against attackers. In 2021, 46% of security breaches impacted small and medium enterprises, with phishing and denial-of-service attacks being the most common types leveraged against small and medium businesses.[1] Small businesses can implement the following cybersecurity practices in order to protect their networks against cyber breaches:
- Cybersecurity awareness training
Conduct training for all employees on cybersecurity best practices and risk factors.[2] Small businesses can educate employees about the different ways cybercriminals can infiltrate the systems of the business. They should train employees on how to recognise signs of a data breach, as well as how to stay safe while using the computer network of the business.[3]
- Keep passwords strong and enable multi-factor authentication
The business should ensure that not only must its devices, networks, and platforms require a password. However, the password should be strong and made up of numbers, characters, and different cases. The business must update passwords every three months and create different passwords by device for optimal security. The Multi-factor authentication feature adds an extra layer of protection as it requires the user to use another device to access a temporary code to log in to their devices.[4]
- Backup
The business must back up all crucial files to an offline storage facility. The cloud and external hard drives can also be used for file backup.[5] A backup solution ensures that information that is compromised or lost during a breach can effortlessly be recovered from another location.[6]
- Internal Security Policies
The business can put in place security policies and ensure that all the employees are aware of such policies. Regular meetings and seminars on the best cybersecurity practices are necessary, as employees must be given time reminders to use strong passwords, identify and report suspicious emails, activate two-factor authentication, and not click on links or download suspicious attachments in emails.[7] The business can also have an incident response plan in place that clearly outlines how employees must handle a data breach if it happens. This plan will allow any attack to be identified quickly and attended to before significant damage is done.[8]
- Software Updates
Small businesses must ensure that their software, including security software, is updated on a regular basis, and this can be done by installing automatic security updates.[9] Hackers are constantly scanning for systems security weaknesses,[10] which is why it is of the essence to keep any software to its updated version.
- Secure internet connection
Businesses must ensure that they change the default network name and password of Wi-Fi or internet connection devices. It must be changed to a different network name and password, and the remote management function must be turned off.[11]
- Malicious websites
Businesses can Set up their computers and phones to automatically block access to known malicious websites.[12]
A lack of financial resources should not stop small businesses from taking cybersecurity seriously and implementing measures to prevent attackers from accessing their systems. These security practices are simple and can be implemented at no or little cost to the business.
To get the latest updates on various cyber-related events & other things, you can join our Whatsapp group / Telegram Channel.
Written By – Kelly Lekaise (Candidate Attorney at PPM Attorneys, South Africa)
Edited by Sabrina
[1] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html
[2] Buttle, R, Five Affordable Cyber Security Best Practices For Small Businesses 2022 https://www.forbes.com/sites/rhettbuttle/2022/04/29/five-affordable-cyber-security-best-practices-for-small-businesses/?sh=4151dd63c497.
[3] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html.
[4] Buttle, R, Five Affordable Cyber Security Best Practices For Small Businesses 2022 https://www.forbes.com/sites/rhettbuttle/2022/04/29/five-affordable-cyber-security-best-practices-for-small-businesses/?sh=4151dd63c497.
[5] Buttle, R, Five Affordable Cyber Security Best Practices For Small Businesses 2022 https://www.forbes.com/sites/rhettbuttle/2022/04/29/five-affordable-cyber-security-best-practices-for-small-businesses/?sh=4151dd63c497.
[6] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html.
[7] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html.
[8] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html.
[9] Buttle, R, Five Affordable Cyber Security Best Practices For Small Businesses 2022 https://www.forbes.com/sites/rhettbuttle/2022/04/29/five-affordable-cyber-security-best-practices-for-small-businesses/?sh=4151dd63c497.
[10] Martins, A, Cyberattacks and Your Small Business: A Primer for Cybersecurity 2022 https://www.businessnewsdaily.com/8231-small-business-cybersecurity-guide.html.
[11] Buttle, R, Five Affordable Cyber Security Best Practices For Small Businesses 2022 https://www.forbes.com/sites/rhettbuttle/2022/04/29/five-affordable-cyber-security-best-practices-for-small-businesses/?sh=4151dd63c497.
[12] Schroeder, M, Cybersecurity Best Practices: Secure Your Small Business Data on the Cheap 2020 https://www.salesforce.com/blog/cost-effective-cybersecurity-small-business/.