Data Security: Today’s Essential Business Requirements

by | Dec 8, 2017 | Latest News


Review the precautions below to minimize your risk of being breached and, just as importantly, minimize the damage in the unlikely event that you are.

Famous Data Breaches

In 2008, Heartland Payment Systems suffered what was, up to that time, the biggest data breach in U.S. history. Astoundingly, intruders had been roaming around behind Heartland’s firewall for weeks before the breach was detected. Millions of customers’ credit card numbers were accessed, and Heartland, the nation’s fifth largest payments processor, was almost destroyed. While one would have expected this to serve as a lesson for all companies that stored customer information, about five years later, the Target Corporation suffered an even bigger breach. The post-mortem done by both Heartland and Target revealed negligence and carelessness at the systems administration level, which was subsequently corrected. End of story? Nope. Just this past spring and summer, another high-profile breach occurred. This time, the victim was Equifax, the credit monitoring and reporting agency. And the damage was much more serious, as hackers accessed the entire credit files of millions of Equifax customers. The full extent of the damage done most likely won’t be known for years, if ever.

Ransomware Rises

As if breaches and data theft weren’t enough, the latest trend in systems chicanery, ransomware, is happening at an increasing pace. Unlike the massive breaches at Heartland, Target and Equifax, ransomware can be targeted at the individual computer user. And it has targeted individuals, sometimes demanding hundreds of dollars from the victims. The most notorious recent ransomware viruses, however, WannaCry and Petya, were aimed at commercial entities. That’s where the money is, after all.

Someone’s Knockin’ at the Door

Ultimately, breach prevention boils down to both systems and personnel. While nothing is foolproof, here are some steps that organizations and individuals should take to keep their data secure. Here’s a short, though certainly not exhaustive, list:

  1. Internal controls are essential. Know who has access to the data and closely monitor their usage patterns. Also, analyze your log monitors to detect suspicious activity. There is software that can make this less resource intensive.
  2. Always make sure any software patches are installed immediately. This is what sunk Equifax. A patch to Windows was ignored and the vulnerability exploited.
  3. Keep your firewall up to date.
  4. Encrypt your data. This may be the best advice of all.
  5. Backup your data. You don’t have to build a server farm. The cloud offers several affordable and secure options.
  6. Install malware prevention tools and keep up with version releases and updates.
  7. Turn off your computer when you are done working. If your computer isn’t on, no one can crack into it. It’s a pain, but a good way to minimize the chance of intrusion.
  8. Train all users on things to avoid. For example, make sure they know not to open email attachments from unknown third parties and that they are on the alert for things like bogus login pages.

The Best Cure Is Prevention, But…

In order to be truly proactive, every endpoint must be protected against every type of attack at every stage of the threat lifecycle. Traditional anti-virus software programs have represented only a partial solution. As Heartland contends, there is simply no way to make a system completely breach-proof, so quick detection of problems and fast remediation of them are essential. Next Gen from SentinelOne is uniquely suited to maximize prevention and increase the speed of detection and remediation.

Conclusion: It’s Not Going Away

The threats are going to continue and they are going to become increasingly sophisticated. Most of the remedies will be reactive, i.e. they will come after a breach has occurred. But by deploying a Next Gen solution like SentinelOne and taking the precautions above, you can minimize your risk of being breached, and, just as importantly, minimize the damage in the unlikely event that you are.

Want to see how SentinelOne can help improve the effectiveness and efficiency of your security efforts?

Request a Demo Now

View the original post by SentinelOne.

Privacy Statement
Marketing Preferences

    Preferred Contact Method
    EmailPhone

    I consent to Net-Ctrl collecting and storing my data from this form and contacting me as listed in this form.

    Wireless Site Survey

    Predictive, Pre-Deployment, Post Installation and Health Check Wireless Surveys carried out by certified wireless engineers.

    Wi-Fi Fact File - Wi-Fi 6, 6E and 7

    We look at Wi-Fi fundamentals, explore the benefits of and technology behind Wi-Fi 6, Wi-Fi 6E and what the future holds for Wi-Fi 7

    Cabling Installations

    Net-Ctrl provide network and structured cabling solutions as either a stand-alone installation, or to compliment products and solutions that we offer.

    Connect the Classroom

    Connect-the-Classroom scheme  is allowing schools to upgrade their infrastructure to a solution that should last 10 years

    IT Support Solutions

    Net-Ctrl provides two excellent support packages in addition to any equipment purchased. Find out about our Silver or Gold support package

    Mobotix Site Survey

    IP-CCTV site survey to assess camera locations and requirement and existing Mobotix solution health checks.

    Net-Ctrl Cloud WLAN

    Net-Ctrl offers our Cloud WLAN. Delivering market-leading patented technology managed by the Net-Ctrl engineering team.

    Cybersecurity Awareness Training
    We provide an automated Cybersecurity awareness training solution covering both simulated phishing and training courses.
    Wireless Network Solutions

    Net-Ctrl offers a range of wireless network solutions. We explore some common questions related to these solutions.

    Finance & Leasing Solutions

    Offering end-to-end, affordable and competitive financing solutions to help you achieve your business goals.