There are a lot of myths surrounding cybersecurity. Here are 7 every organization should be aware of:
- I can always trust websites using an SSL certificate – We have been taught that’s it’s only okay to enter payment or sensitive information on websites that are protected with an SSL certificate. However, according to a report by the Anti-Phishing Working Group earlier this year, “58% of phishing sites were using SSL certificates.” Just because you are directed to a site beginning with HTTPS and a lock icon doesn’t necessarily mean that it’s safe.
- My IT Support Team protects me 100% – While your organization may be protected by many layers of security – from firewalls, web filtering, anti-virus and antimalware software, security patches and updates, etc. – there is still one factor that can poses the biggest risk; the human factor. Employees are the biggest threat to organizations when it comes to cybersecurity. That is why it is so important for all employees to be vigilant and educated enough to spot cyber threats.
- If I get hit by ransomware, I only lose the money I pay for the decryption key – While 83% of companies that paid a ransom in 2018 received the decryption key to recover their files, the total costs of an attack far exceed the actual ransom. Businesses reported losing an average of $64,000 in downtime costs.
- My organization is too small to be hit with ransomware – You may think that cybercriminals only target mainly target larger organizations, but the fact is small and mid-sized organizations often don’t have the IT resources to protect them from a breach so they are actually targeted just as much. Nearly half of all cyber-attacks are committed against smaller organizations.
- It’s okay to use the same password for multiple websites as long as it’s a strong password – Complex passwords are hard to remember, so most people use the same password across multiple logins -but this is very dangerous. If just one of those sites experiences a breach, hackers can steal your credentials and try to use them to log into other websites or sell them on the Dark Web!
- Connecting my mobile device won’t affect my organization’s network – If your cell phone or other smart device is infected with a virus and you use it to access work-related documents or connect to the organization’s wifi, it can infect the entire network. That is why it is very important that you keep your device’s apps and operating system (OS) up-to-date!
- The only threats I need to worry about are external – Although there are many outside threats we need to be aware of, there are also inside ones. Negligent employees remain the biggest risk to your organization’s security, but damage caused by malicious employees is on the rise.
It’s imperative that you to stay cyber safe in order reduce your organization’s IT security risks.
source: Texas Systems Group © 2019
To access your AWP EAP services, call 1-800-343-3822. Your EAP is here to help with family, work, health and legal issues. EAP Services are provided at no cost and are 100% confidential.
Alliance Work Partners is a professional service of Workers Assistance Program, Inc.
Copyright © 2020 Workers Assistance Program, Inc.