This is the third installment in this new series of Posts
Titled Simple Security Mistakes
People and Companies Make and how to Fix them! I will explain the several common simple
information security mistakes made by both organizations and individuals. I
will also explain the typical reasons why these mistakes are made, why they
pose a rather large risk and how simple it is to resolve them. Please note that
correcting these mistakes cost little or no money to correct. I will break down
each numbered mistake/task with a number followed by a (H) for home users and
an (O) for organizations. I hope this first installment proves both educational
and lends to your safe computing:
1.
(H)
PROBLEM – Are you running anti-Virus software on your computer? Is the
Anti-Virus software configured to update on a regular schedule (Preferably at
least once a day) and is there a regular schedule set up for scanning your
entire computer? If the answer is yes than you are ahead of most. There are
many reasons why computer owners install Anti-Virus software on their
computers, here are some of my favorites: I cannot afford the cost, I do not
used a Windows based PC, I have a Mac and Macs do not get infected, I run Linux
and it is secure. I love all of those reasons, they give the individuals a
since of “everything is ok” when in reality most people are in trouble and do
not even know it. SO WHO CARES
RIGHT? Well I do. Every compromised computer that is on the Internet
poses a risk to every other computer, not to mention your own personal privacy
and finances. GUESS WHAT the
reasons for not installing Anti-Virus software on your computer are pure MYTHS. There are several Anti-Virus
software packages that are free for personal use (just make sure to download it
from a reputable source). While it is true that Mac’s (Apple computers) have
had less infections than Microsoft based PCs that does not mean that your APPLE
computer is safe. THE ONLY REASON APPLE HAS NOT HAD AS MANY INFECTION INCIDENTS
IS BECAUSE FOR YEARS PCs HAVE OUT NUMBERED APPLE’S. Well that is not the case
any longer. Apple based computers are not any more secure from infections than
any other computer operating system. The same holds true for Linux based
computers. SOLUTION – To
protect your computer, its information, your privacy and your money install
Anti-Virus software on to your computer and configure it to update daily and
scan on a regular basis. Now this will not guarantee that you will not be
hacked it will however reduce your exposure significantly.
2.
(O)
PROBLEM - Look around your organization. How many of your Desktops and
servers do not have Anti-Virus software installed? How about installed but not
being updated or not reporting to a central console? Is your network infected?
How do you know if your Anti-Virus enterprise software system is not running
correctly? Even better, how many of your computers and or servers do not run
Anti-Virus software because some admin or developer says that the computer is
too slow or will not work correctly with Anti-Virus installed? Is it due to
lack of resources, belief that it is not a priority, believing the admins or
developers who lack the motivation to
create the necessary exceptions when Anti-Virus software interferes with some
of the computers functions, or just not
knowing any better? As mentioned above in the home user section the bad guys
(those who would steal harm or disrupt your business count on your lack of fully
functioning Anti-Virus software to compromise your computer and network systems
As such WHEN a breach occurs at your
organization and it is discovered that your organizations computer and
networking systems are not fully protected by Anti-Virus software and that the
bad guy used a known infected file type (a file that a AV signature already
exists to address
(remediate) the vulnerability your
organization will not only be subject to civil damages and fines but may also
be subject to Felony Criminal negligence charges as well. YEP! People from your
organization could do jail time, typically executives. SOLUTION – As a business manager(s)/owner(s) make excuses
for not mandating that all of their information systems Have up to date
Anti-Virus software installed and configured. Do
not expose your employees, customers and shareholders by ignoring this simple
task. Failure to do so will result in your organization being compromised and
may even land you in jail.
