For a small business owner, the first step on the cybersecurity journey is to understand the types of cyber threats that their business is facing. This can often be bewildering given the plethora and evolving nature of attack techniques. The most prevalent types of cyber attacks that small businesses need to ready themselves for include attacks where adversaries encrypt data and demand a ransom, commonly known as ransomware. Although these types of attack have been around for a number of years, their impact on society became extremely evident with the well-publicised ‘WannaCry’ ransomware attack, which affected organisations in over 150 countries.
There is also nearly weekly coverage in the media of organisations that have experienced a data breach, which has led to sensitive information ending up in the public domain or being exploited by adversaries. Often data breaches are the result of successful phishing or watering hole attacks. Phishing attacks involve employees being duped into clicking on a malicious link within an email or opening an infected attachment while watering hole attacks entail frequently visited websites being compromised and malware being inadvertently downloaded.
Simple things matter
Getting simple things right can be applied to many aspects of life and cyber security is no different. There are simple practical steps that small business owners can implement to put themselves on a surer cyber footing and to ...