“Since late 2009 the FBI has been warning law firms about noticeable increases in cyber-attacks,” according to John Sroka, CIO of Duane, Morris LLP, an international legal firm based in Philadelphia, PA. Sroka points out that although companies’ needs and security requirements vary, there are some basic defenses that should be employed. You don’t have to be a law firm to see the value in his recommendations. Here they are:
- Use strong passwords. Passwords should be more than six characters, using a mix of case letters, numbers and symbols. Passwords should also be required on all mobile devices and changed regularly.
- Install firewalls and keep rules updated.
- Develop and enforce Internet and technology usage policies.
- Provide security awareness training.
- Keep your computer, browser antivirus and other critical software up to date.
- Do not open an email or attachment from an untrusted source.
- Pay attention to website URLs. Malicious websites may look identical to a legitimate one but the URL may use a variation in spelling or a different domain. Do not click on unknown links.
- Monitor security logs.
- Restrict access to sensitive data.
- Password-protect laptops and encrypt hard drives.
- Do not write down passwords.
- Do not install software from unknown sources or unknown websites.
- Do not use Drop-box or other Internet file-hosting services for client documents.
- Media such as USB drives should be encrypted.
- Servers should be in a locked room.
- Do not share your user ID or password.
- Use a screensaver password and always log out when away from your computer for a period of time.
One last recommendation is to offer your clients the protection they need from cyber, privacy and data breach by calling Pat Moore Insurance Services. Pat Moore simplifies the process, evaluates protection options and provides tailored solutions to protect your client’s first party insurance needs and third party liability.
We have partnered with highly rated carriers in this emerging field. Call Pat Moore’s Kaycie Berley at (800) 214-9294 x228 or send her an email at kjberley@patmooreins.com. Call her today!
P.S. Get a unique perspective on cyber risk and security in this short TED video where Mikko Hypponen talks through the 3 major types of online attacks and their implications on privacy and personal freedom.
Sourced from the ALA’s Ask The Experts