Page 25 - Cyber Warnings
P. 25
8: Don't over-use your privileges
Administrative privileges give you permission to change configuration settings and install
software on your systems. If you have these privileges, you should only use them when you
actually need them, rather than logging in to an account that has your privileges activated
whenever you use your computer for every-day activities. If you're logged in to an account that
doesn't have administrative privileges, you'll be notified when a program is trying to install
software or change your settings, so you can give permission at this point in time if you're sure
that it's safe. Setting up tiered administration throughout your organization allows you to make
sure that your staff only have permission to carry out activities relevant to their rank and job
description.
9: Share files where possible
Sharing files using secure cloud storage services or file-sharing apps is by far the safest way to
send files to your staff. This is because you keep more control over the file than when you sent
it by email, and you can track as it gets modified. It also allows you to send a link to a file and
limit who can access it and how long it's available. Once you send a file by email, anything can
happen to it – it could be forwarded to someone who shouldn't see it, or stored in an insecure
location.
10: Use advanced authentication
These days, there are many emerging methods to keep your data safe that go beyond the use
of a password – and measures like fingerprint readers and iris scanners are becoming
increasingly affordable. If it's simply that important that your sensitive files and information don't
fall into the wrong hands, these could be worth investing in, because not only are passwords
hackable, they can often be easily guessed or given away by mistake by your staff.
Stay safe
If you want to find out where your main cyber security vulnerabilities lie, you may want to try
penetration testing. It can be a scary or unsettling experience to find out how unsafe your
systems are, but discovering where you can improve your security, and then implementing the
required measures to do so, could save you from a fate much worse. In the meantime, following
the tips above, along with a bit of common sense, is a good start.
About the Author
Asher de Metz has approximately 20 years of experience in the cyber security industry
consulting to some of the world’s largest companies in all of the top vertical markets. Starting in
London he has worked across Europe, the Middle East, and has spent the last 8 years in
America working for Sungard Availability Services where he runs the Technical Security
Practice.
25 Cyber Warnings E-Magazine – May 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
