In order to protect your company against malicious code and hackers, proactive measures must be taken to fortify the safety of your network BEFORE intrusion problems occur. Like most business owners, you may feel immune to hackers and viruses because you have installed anti-virus software. You couldn’t be more wrong.
Although somewhat effective, anti-virus software scans for known viruses and is only aware of the newest viruses when you update it. Most anti-virus software provides updates free of charge for one year; after that, an annual subscription must be purchased.
Ensuring the safety of your network cannot be solved by software, but can be solved by constant observation of the occurrences within the network. The following are tips that will help you to secure your electronic assets:
1. Make sure your computers have the most recent operating system and web browser installed on them.
Each time a new version of an operating system is released, more security features are added. Also, new versions of Web browsers, such as Microsoft Internet Explorer (version 6), are increasingly more secure than previous versions.
2. Disconnect from the Internet When Not in Use
An active connection to the Internet means that you are at risk of intruders accessing your files via the open transmission channel. Unfortunately, the way to minimize the likelihood of an intrusion is to also disconnect the modem device, DSL router or ISDN terminal emulator each time you complete a session. Because it is impractical to disconnect the Internet transmission vehicle, the best solution is to disconnect from the Internet while continuously keeping an eye on your company’s Internet Security.
3. Build a Firewall
No matter how large or small, every company should have a firewall, which is hardware or software that protects your computer network from intruders. It is also recommended that home computers and standalones with high-speed Internet connections install a firewall.
4. Protect Your Identity During Login
Many Internet sites offer a “time saver” option that allows the user to save the user name and password and enter the site directly without having to enter it each time the site is visited. Saving your user name and password on the site allows intruders top view sites that should be reserved for only you, breaking down security barriers that presumably are there for a reason: to protect the information within the site.
5. If High Security is a Must, Disable Cookies
Cookies are bits of code sent from a web site to your browser and hard drive in order to track and identify visitors. Any type of information sharing is a potential security problem. To disable cookies on Internet Explorer 6, open the Internet Options dialog box (via Tools) and select the Privacy option, which allows you to choose from several levels of privacy – from “Accept All Cookies” to “Block All Cookies.” If you desire more control, select the Advanced option and click Override Automatic Cookie Handling. Here, you have the option of accepting, blocking, or prompting first-party (relatively safe) and third-party (relatively unsafe) cookies. Click OK to return to the Privacy option to further control which cookies you will accept by selecting Edit. On this page, you can customize from which sites you wish to receive (or not receive) cookies.
6. Prevent Embedded E-Mail Content from Launching
Many people believe it is impossible to get a virus from an email message unless it has an infected attachment that is clicked into. Embedded content, which consists of data files and applets that are fully integrated within the body of a message instead of being attached, allow a virus to be carried within the message itself and attack your computer as soon as the user opens the message. This can be avoided by configuring your e-mail application to disable embedded content. Configuring your system in the following manner can minimize the chances that your computer will get a virus by opening an infected e-mail message: Open the Control Panel, select Internet Options and click on the Security option. Then click Custom Level. The Security Settings dialog box will appear on the screen. This is where you can look through the contents and disable all ActiveX and Scripting options. Click OK to save changes.
7. Make Sure Security Settings are at the Proper Level for Your Security Needs
Internet Explorer contains built-in security options that can be tailored to meet the needs of your company. To ensure they are set properly, open the Tools menu in the browser; select Internet Options. Click on the Security tab and then the Custom Level option. On this tab, you will see four setting options: High, Medium, Medium-Low and Low. Select the level you want (most people user Medium) and click Reset button to save.
8. Create Unique Passwords
Not protecting your computer passwords can have disastrous results in today’s electronic world. Protect them as you would your bank account and credit card numbers, and create them to be as secure as possible. Passwords are best created using the following attributes: is at least seven characters in length, uses upper and lower case letters, contains symbols and numbers, as well as punctuation marks and has several different characters in the password. Also make sure to not use cliché passwords, such as names, common words, consecutive letters, etc.
9. Perform Regular Backups
Frequent backups are the best protection against hackers, as well as permanent loss of information due to accidental erasures, natural disasters, etc. Weekly or daily backups are recommended to protect all electronic business assets – the core assets of most companies today. It is always recommended that all backups be moved to off site to safeguard against catastrophic events.
10. Re-Evaluate Security Needs Every Six Months
Security measures are only effective as long as they are current and tailored to your company’s needs. It is possible that security requirements can change within six months. Set aside one day twice per year to revisit computer network, Internet, Intranet and virus security requirements and modify them as needed.
With the increasing likelihood that more powerful malicious codes and intruders will attack your network, it’s paramount to protect yourself from these devastating attacks. The Cebic Technologies Inc. (Hybinette’s sister company) remote intelligence center offers four separate services: Virus Monitoring, Hardware Monitoring, Security Monitoring and Network Monitoring.
If you have any questions or interest in remote intelligence options, please call 303-987-3771.
