October is widely known in the IT realm as Cyber Security Awareness Month and the theme for 2024 is ‘Cyber Security is everyone’s business’. The Australian Government’s Home Affairs department, in conjunction with the Australian Cyber Security Centre and Australian Signals Directorate, recently launched their 2024 campaign in preparation for another month of keeping you and your business safe.
Cyber Security Awareness Month was established to combat the increasing threat of cybercrime and to encourage safer online practices. It aligns with similar initiatives globally, such as the National Cyber Security Awareness Month in the United States, which started back in 2004.
Australians and Australian business owners are operating in an environment where completing daily tasks like sending an invoice, browsing the internet or even shopping online can expose them to cyber threats. Now is the perfect time to enhance your cyber security knowledge and take these four proactive steps to protect yourself this month.
Enable Multi-factor Authentication
Secure your online presence by always enabling multi-factor authentication (MFA).
MFA requires two or more steps to verify your identity before you can access your account. This adds an extra layer of security, making it more difficult for unauthorized users to gain access. Activate MFA whenever possible, starting with your most critical accounts.
Learn how to enable multi-factor authentication HERE.
Install Software Updates whenever Available
Keeping your software updated is one of the best defences in your security arsenal.
Updates provide new, improved, or fixed versions of software or apps. By updating your devices and applications, you can resolve software issues, address emerging security threats, and enjoy new features. Ensure automatic updates are enabled and install updates promptly. Delaying updates increases your vulnerability to cyber attacks.
Learn how to update your devices HERE.
Use Strong and Unique Passphrases
Strengthen your security by using unique passphrases for each of your online accounts.
Passphrases are the most secure form of passwords, consisting of four or more random words. They are difficult to guess but easy to remember. Generate passphrases that are long, unique, and unpredictable. Use a different passphrase for each account to ensure that if one account is compromised, your other accounts remain protected.
A password manager, such as Bitwarden, can help you to create and store unique passphrases. Learn how to set up secure passphrases HERE.
Recognise and Report Phishing
Phishing is a tactic used by cyber criminals to deceive you into revealing personal information. They send fraudulent emails or text messages, often posing as reputable organizations you know or trust.
Their goal may be to steal your online banking credentials, credit card details, or passwords. Falling for phishing scams can result in the loss of information, money, or even identity theft.
You can report phishing at the Australian Cyber Security Centre. Learn what to look for and spot a phishing attack HERE.
Continue the Conversation
Of course, we shouldn’t be thinking about cyber security for just one month, right? It’s a topic that we should be aware of all year round as with each passing year a high number of people face consequences of cyberattacks. These attacks not only cost organisations billions, but they can also leave a devastating impact on individuals.
It’s all well and good to be aware of what’s going on online, but what about the physical security of your devices? Potential threats on the ground should be considered as well when thinking about cyber security. Are your server rooms locked down? Do you have controls in place to stop physical data being taken, such as printed items or photocopies showing names, addresses, contact information etc? Would your staff query someone they didn’t recognise walking around the office? There is so much to consider!
Just remember, a holistic approach that combines physical and digital security is crucial for comprehensive protection.
Keep it Fun!
It doesn’t have to be all serious business all the time either, that would be boring! And we don’t want this topic to become mind-numbing, so here are some activity ideas to start the conversation and keep it going long after the month of October is over.
- Host a cyber security lunch and learn – invite a guest speaker to share insights on cyber threats and prevention.
- Run a cyber security meme contest.
- Encourage your team to take to social media to share cyber security tips and resources.
- Incorporate cyber security into your onboarding process (or review it if it’s already there).
- Encourage people to take ‘security selfies’, where they showcase good practices, such as locking their screens when away from their desk.
- Share daily or weekly cyber security tips throughout the month.
- Chat to the team at Concord IT about our Security Awareness Training!
We offer a Cyber Security Training platform developed by an Australian company named Manage Protect. Their product known as MPaware, powered by Breach Secure Now, focuses on enhancing Cyber Security Training for employees. The training equips staff members with the knowledge and skills necessary to recognise and mitigate cyber threats effectively. It’s a crucial step in maintaining the security of both business operations and customer information. Regular awareness and training sessions ensure that everyone stays informed about evolving cyber risks.
Your Employee Secure Store (ESS) is determined by analysing various metrics and will change over time. A higher score indicates better security and reduces the likelihood of causing a breach. Some of our clients have even taken the opportunity to encourage friendly, in-house competition and reward staff for their diligent efforts. It’s a win-win situation that fosters both learning and motivation within the team!
Contact the team at Concord IT today to talk further about Cyber Security for your business. As always, we encourage you to be vigilant in the quest to be consistent when it comes to cyber security! You are most welcome to reach out to us for a free initial consultation to discuss your business needs and requirements. You can also call us on (03) 7036 2470 or email hello@concordit.com.au.