Entries tagged with “Security”.

Fraud can have disastrous consequences on a small business. Knowing how to identify your risk factors is a key element when it comes to preventing fraud within your enterprise. Because small businesses are more prone to spending less time and money on fraud prevention due to limited assets, the risk is vastly higher than those of huge corporations.

Due to technologies such as mobile devices that can span numerous operating systems, criminals now have even more ways to infiltrate in-house networks to steal your information.

Even though it may sound daunting, small businesses can administer safeguards and procedures that can maximize fraud detection. Consider the following low-cost strategies that can lessen the possibility of fraud for your small business.

-When hiring new employees, be thorough. Call all former employers and always conduct a background check. This can help you to single out potential candidates that may have a criminal background.
-Make sure to implement a standard code of conduct and share it with all of your employees. Make sure that they are aware of any repercussions for not following appropriate protocols.
-Keep close track of all of your bank statements. Be aware of how much is coming in and going out at all times. Being detail-oriented and watching out for inconsistencies is crucial when it comes to taking control of your finances.
-Use firewalls and anti-malware software. Protect your network by using unique passwords that have random upper and lower case letters and numbers.

Sadly, no business is free of the threat of fraudulent behavior. Being diligent when it comes to identifying your risk factors can greatly diminish the chance of being a victim. If you would like more information on fraud prevention, please contact us.

Cyber security breaches regarding financial data seem to be a recurring theme lately.  From large department stores to national banks, hardly a day goes by that you don’t hear about a cyber attack on one business or another.  Just recently news broke that another national brand, this time in the home and office industry, is investigating a possible data breach in the Northeast. In response to all of this, the fourth annual Cyber Security Summit opened Tuesday in Minneapolis.  All businesses, large or small should be aware of not only the possibility, but the probability of this happening to them.  They should be working on ways to beef up their own cyber security.

One of the ways to prevent cyber security breaches is to encrypt your data so that even if it is stolen, it won’t be able to be read. Another is to make sure your systems PCs, laptops, etc. are protected by firewalls and up-to-date anti-virus and anti-spyware programs. Work out a system for detecting breaches- monitoring traffic and creating a central log of security-related information to alert you to suspicious activity on your network would also be helpful.  Hackers may know your router’s default settings so always change the username and password for new routers immediately.  Did you know that pass phrases are more secure than traditional passwords?  Use long pass word phrases when securing sensitive data. An example of this is “Ilovepizzapie”.  Use proper capitalization in your pass phrase to increase its complexity and make it even more secure.

To find out more on how you can protect your business from potential cyber security threats, please contact us.

Cyber security breaches regarding financial data seem to have become increasingly common over the past year.  Our last example of this series gives the example of a large bank corporation that fell victim over the summer. It’s reported that this particular cyber-attack affected nearly 80 million households and small businesses combined.

The hackers reportedly accessed the applications and programs that run the banks computers.  One article described this access point as “a road map via which they could cross check with known vulnerabilities in each program and web application, in search of an entry point back into the bank’s systems.”

The hackers were able to obtain the names, addresses, phone numbers and e-mail addresses of account holders. While no fraud has been committed yet, the information obtained is a virtual goldmine for those potentially plotting an attack sometime down the road.

The sophistication of the attack has the bank and investigative agencies in shock. The hackers were able to obtain the highest level of administrative privilege, leading some to surmise that they were Russian computer experts, perhaps even backed by the Russian government.

Whatever their origin, the hackers have managed to shake the confidence of businesses and consumers nationwide. Up until this point, banks had been seen as some of the least vulnerable institutions to cyber-attacks due to the extensive security measures which they employ.

The bank is now planning to spend  millions of dollars on new security measures. Ironically, they might have been able to save at least part of this sum if they would have managed to retain more of their security staff. A great many of the individuals employed by them in this particular area had already left to work for other banks, and more are currently preparing to leave.

Having the right staff in place to adequately perform security measures might have saved them not only money, but a great deal of worry as well. For the right security measures to keep your firm’s financial data safe, contact us.

There have been a few famous cyber security breaches regarding financial data in the past year. Here is our next example of one that involved a financial security breach at a large department store.

Hackers broke into the credit card payment system of the department store early last year. The company’s security system apparently issued alerts sixty thousand times but even so, the hackers were able to move around inside the system for more than half a year, all while continually causing alerts every day they were there.

The problem, in this instance, was that the number of alerts that occurred in the system per day was so high that those that corresponded to the actual break-in were only a tiny percentage of the total according to employees at the company. According to some estimates, as many as three hundred and fifty thousand credit cards were exposed during the attack, and some nine thousand have been used by fraudsters since then.

According to some security experts, the main problem was that the point of sales network for the company had all of the registers connected to a central computer. Because of this centralized system, it was easy for hackers to continually add their software back onto registers every day.

The breach could have been prevented had the company more closely monitored the connections between the registers and the central computing system. Every section of the process has to be monitored and secured or a breach at any point could circumvent point of sale security, which is exactly what happened in this case.

For more information about keeping financial transactions secure against hackers, please contact us.

There have been a number of cyber breaches in the last year where financial data has been leaked to the public.  Some have been smaller companies but there have been a fair amount of larger corporations who have fallen victim also.  Here’s an example of a more recent cyber security breach that took place at a major retail store.

Last year a major retail store reported that up to 40 million credit card numbers had been stolen by hackers.  According to some, it was one of the biggest retail hacks in American history. The way the hackers gained access was by installing malware into the payment system the store was using. By doing this, it allowed hackers to gain credit card information for every single user from the over 1,500  stores where the information was stored. The way the hack worked is that the program would copy the credit card number of  consumers whenever they swiped their card to pay for their items.

The hackers were actually spotted by a few different security companies during this breach. This was a case where the security measures in place actually functioned, and the problem was the human element.

Apparently, the security program in place had the option to automatically delete malware being placed on the system, but the security team turned it off. According to some sources, the security team then failed to keep a firm enough grip on network security, which caused them to miss the multiple flags that went off.

The Symantec Endpoint Protection system that the company was using for antivirus even identified the threat well in advance.

The case with this retail store  just goes to show that a security system, no matter how advanced, is only as effective as the people using it.

For more information on cyber security, please contact us today.