to Reduce costs companies are trying, in particular, due to the fact that some employees continued to work on “udalenke”. Also businesses, especially small, often saves on cyber security in the mistaken belief that criminals only interested in large firms. Meanwhile, according to “Kaspersky Lab”, the average damage of small and average business from a successful cyber attack is more than 4 million rubles.
the survey showed ANCOR, a quarter of companies are planning to leave on the “distance” from 20 to 49 per cent. Internally the experience encouraged businessmen to consider “udalenka” as a resource, which will allow to optimize expenses.
Many employees on the “distance” appeared for the first time. Not all have digital skills that confirmed the may poll. High level of digital literacy was only a third of respondents. Being alone with the “udalenka”, the staff suddenly felt a serious lack of digital knowledge and an acute need for the constant presence and assistance of a technically-savvy person. This is not surprising, after all, the office people are used to that, if they are “something clicked, and everything disappeared”, the problem will solve IT specialist – installs and configures the necessary software, including antivirus, follow the updates, etc.
In smaller organizations, the problem is compounded by the fact that most employees work on personal devices, including mobile. Small companies usually can’t provide all staff with the necessary equipment, therefore the policy of Bring Your Own Device (“bring your own device”, BYOD) is usually best.
As shown by a fresh study of “Kaspersky Lab”, 85% of employees of Russian companies, whose staff does not exceed 50 persons, used to work remotely during a pandemic personal devices. While 19% of workers began to use their own devices in business after switching to remote mode.
However, avoiding the use of third-party devices business takes certain cyber risks, notes the company. If the employee’s device, connected to the corporate network, is protected well enough, then criminals will have easy access to company data. Besides, there is always the risk that the laptop or mobile device you can lose or be stolen along with the data of the company.
meanwhile since the beginning of the pandemic, the landscape of cyber threats has changed significantly. In the period of self-isolation, the attackers were more likely to conceal malware under the now super popular video conferencing services. Trying to download a desired program, users can upload a malicious file, warn of “Kaspersky Lab”. Also cyber criminals with the start of a pandemic have increased attacks with brute force infrastructure on theization, whose employees work from home.
And small companies are often less protected than large ones, because they have neither the budgets nor the human resources to create a secure perimeter infobezopasnosti. According to “Kaspersky Lab”, even before the pandemic year, a loss of data (customer lists, confidential documents, etc.) faced 27% of Russian companies, the number of employees not exceeding 50 people.
As noted in the “Kaspersky Lab”, about a third of small companies at the time of leakage data was not of suitable protective solutions. However, the problem is not just that. Almost 30% of companies reported that their IT professionals did not have sufficient qualifications.
“Small companies are often focused on the growth of its business, cybersecurity is not among their priorities. However, leakage of confidential data it may happen and damage to any size of company. However, for protection against malware and the risks associated with human factors, small businesses do not need a lot to invest or to hire expensive professionals, it is enough to choose the right security solution” – said the expert, “Kaspersky Lab’s” cybersecurity for small and medium business Andrey Dankevich.
to protect any use for work gadget and also all the business processes of small organizations, businesses need scalable and centrally managed solution. For example, Kaspersky Endpoint Security Cloud enables small companies to save human resources: do not need to hire an entire it Department, just a professional who works remotely. A good sysadmin, especially in the regions, uncommon. Usually in small companies there’s the so-called “comes” the system administrator, he simultaneously served by several organizations. For such cases, and created this program. With Kaspersky Endpoint Security Cloud, small companies have the opportunity to manage the corporate security system from anywhere with any device connected to the Internet.
One of the most pressing cyber threats when working remotely – the use of “shadow IT”. These include any non-company approved services, which nevertheless are used by employees for work. According to “Kaspersky Lab”, 59% of Russians use private mail to address operational issues and half of them are on the “distance” began to do it more often. While 55% of employees communicate and to work in the messengers, not approved by IT departments of companies.
Experts warn that all work communications are required to use only those services that have approved IT-service of the company, whether email, instant messaging, file storage, video, etc.
to Control this by using the function Cloud Discovery in Kaspersky Endpoint Security Cloud. There is also an extended version of the protection – Kaspersky Endpoint Security Cloud Plus – in case it is necessary not only to identify but also to limit the use of third-party services and unwanted apps. It will enable organizations to minimize the risks of compromising corporate data, and employees to work securely from anywhere.
“Coronarita” and the related transition to “udalenka” once again stressed that the main value of the business today is data. Any files that you work with contracts, letters, internal documents and orders – should be safe. They cannot be stored in services, and servers that can be protected is not enough. Today there are many security devices and operational processes for the familiar and for home office. Most importantly – do not neglect them and remember that a small mistake can be costly.
“RG” together with “Kaspersky Lab” identified the five most important rules, which experts advise to adhere to the business owners in order to withstand cyber threats.
1) are serious about passwords: it is best to come up with different for each system PC, CRM, email, etc. About the fact that the password on your work email should not be 1234password seem to know everything. But it should not be so and home Wi-Fi through which you are on the Internet. It is recommended to change the factory password of the router, do not store account passwords in the browser, on a piece of paper at the monitor in the programs or a separate file on the computer.
2) it is best to configure two-factor authentication – similar to that used for Internet banking. First you enter the password, and then code, which will come in SMS.
3) make sure that on all devices employees was established proven security software (including smartphones and tablets). SOFTWARE, applications and services should be updated regularly. For small and medium businesses can fit in Kaspersky Endpoint Security Cloud for small business developed by Kaspersky Small Office Security, which participates in a special program, “Kaspersky Lab” to support companies that found themselves in a difficult situation.
4) make regular backups – it will help in the case that attackers will encrypt the data on your computer and will demand a ransom for their decryption.
5) select your company course digital literacy of employees. No matter how you tried to ensure information security, all efforts may be unnecessary just because one employee clicked on a phishing link and gave credentials to attackers.