Blog
home
  • Register

Data Net Blog

Data Net has been serving the California area since 1983, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Open sesame! Life is not a fairy tale…your passwords need to be stronger than that

Open-sesame-Life-is-not-a-fairy-taleyour-passwords-need-to-be-stronger-than-that

You will agree that having passwords to access your IT devices, networks and data is the first step to securing your business data. However, having passwords is not enough. The passwords have to be strong and difficult to detect or hack into. A lot of ‘smart’ devices today such as phones, tablets, and laptops come with facial recognition and fingerprint sensors that can be used in lieu of passwords. But what happens when you don’t have biometric security measures? You need to ensure that your passwords are strong and also maintain good password hygiene.

0 Comments
Continue reading

What is the Difference Between a Security Breach and a Data Breach?

What is the Difference Between a Security Breach and a Data Breach?

In our blog, we talk about security and data breaches all the time. We tell you how you can take efforts to avoid them and how to prepare your organization for the inevitability of being exposed to them. With all that security talk, we should briefly describe the difference between a security breach and a data breach, because they are two different things that get lumped together quite a bit.

0 Comments
Continue reading

Employee training & Cybersecurity

Employee training Cybersecurity

Employee training will form a big part of the cybersecurity initiative that you will take on as an organization. You need to train your employees to identify and respond correctly to cyberthreats. Here are some employee training best practices that you can make a part of your cybersecurity training program.

Create an IT policy handbook
Make sure you have a handbook of your IT policy that you share with every new employee, regardless of their position in the company. This IT policy handbook must be provided to everyone--right from the CEO to the newest intern in your organization. Also, ensure this handbook is consistently updated. IT is evolving at great speed and your handbook must keep up

Make cybersecurity training a part of your official training initiatives
Cybersecurity training should be a part of your corporate training initiatives for all new employees. You can also conduct refresher sessions once in a while to ensure your existing employees are up-to-date on the latest cyberthreats. At the end of the training session, conduct tests, mock drills, certification exams. Good training includes assessment. Provide follow up training for those who need it. This strong emphasis on training will ensure your employees take cybersecurity seriously.

Day zero alerts
As discussed, the cybercrime landscape is constantly evolving. Every day, cybercriminals are finding new vulnerabilities to exploit, and new methods to steal your data or to hack into your system. Day zero alerts are a great way to keep your employees updated. Has a new security threat been discovered or has an important plug-in released for the optimal functioning of a browser? Send an email to everyone spelling out clearly what the threat is and what they can do to mitigate it. Then, follow up to verify they took the necessary steps.


Transparency


Let your employees know who to contact in the event of any IT related challenges. This is important because someone troubleshooting on the internet for a solution to something as simple as a zipping up a file could end up downloading malware accidentally.

Considering the serious ramifications brought on by cybercrime attacks, it makes sense for organizations to strengthen their first line of defense against cybercriminals--their own employees.

0 Comments
Continue reading

Strengthening your cybersecurity policies

Strengthening your cybersecurity policies
Formulating strong IT policies and laying down the best practices for your staff to follow is one of the best ways to prevent your business from becoming a victim of cybercrime. In this blog, we explore the various areas your IT policy should ideally cover.


Passwords: Your IT policy should cover

  1. Rules regarding password setting
  2. Password best practices
  3. The implications of password sharing
  4. Corrective actions that will be taken in the event the password policy is not followed


Personal devices

  1. Rules regarding the usage of personal devices at work or for work purposes. Answer questions like

    a. Are all employees allowed to use personal devices for work or do you want to limit it to those handling lesser sensitive data, or to those at higher in the corporate hierarchy as you assume they will need to be available 24/7? Regardless, you should spell out the regulations that they must follow. For example, requiring a weekly or monthly check for malware and updates to anti-malware software, etc., If only certain kinds of devices, software, or operating systems may be approved as they are presumed to be more secure, then that should be addressed in the policy


  2. Discuss best practices and educate your employees on the risks related to connecting to open internet connections (Free WiFi) such as the ones offered at malls or airports.


Cybersecurity measures

Document the cybersecurity measures that you have in place for your business. This should include your digital measures such as the software you have deployed to keep malware out--like anti-virus tools, firewalls, etc., and also the physical measures such as CCTV systems, biometric access controls, etc.,
Another example of a good practice is how you handle employee turnover. When someone quits your organization or has changed positions, how is the access issue addressed? Spell out the rules and regulations regarding the removal of a user from the network, changing passwords, limiting access, etc.

 

0 Comments
Continue reading

Why do you need a top-down approach to IT security?

Why do you need a top down approach to IT securityFor any organization, its employees are its biggest assets. But, what happens when your biggest assets turn out to be your greatest threats or liabilities? That is how cybercrime can change the game. In a recent study, it came to light that employee actions account for about 70% of the data breaches that happen. This blog focuses on the first step you need to take as an organization to better prepare your employees to identify and mitigate cyber threats--adopting a top-down approach to IT security.

Being a victim of cyber-attack can prove disastrous for your business as it has the following repercussions.


  • Affects your brand image negatively:  Business disruption due to downtime or having your important business data including customer and vendor details stolen reflects poorly on your brand.
  • It can cause you to lose customers:  Your customers may take their business elsewhere as they may not feel safe sharing their PII with you.

  • Can cost you quite a bit financially:  Data breach makes you liable to follow certain disclosure requirements mandated by the law. These most likely require you to make announcements on popular media, which can prove expensive. Plus, you will also have to invest in positive PR to boost your brand value.

  • It makes you vulnerable to lawsuits:  You could be sued by customers whose Personally Identifiable Information (PII) has been compromised or stolen.


The organizational mindset needs to change and acknowledge the fact that IT security is not ONLY your IT department, CTO or Managed Service Provider’s (MSP) responsibility. You need to truly believe that IT security is everyone’s business, and that includes everybody working in your company, from the C-level execs to the newly hired intern. Everybody needs to understand the gravity of a cyberattack and its impact. Only then will they take cybersecurity seriously.

0 Comments
Continue reading

The Threat Landscape and What You Can Do to Navigate It

The Threat Landscape and What You Can Do to Navigate It

Cybercrime is up, way up. This is problematic for businesses in general, but can be a really serious issue for those companies that don’t have security measures in place that can thwart potential attacks. Today, we’ll talk briefly about how big of a problem cybercrime is and some steps your business can take to keep from becoming a statistic. 

0 Comments
Continue reading

Security Issues You Can Run Into On Your Mobile Device

Security Issues You Can Run Into On Your Mobile Device

When it comes to mobile devices, you have a fine line to tread with security. On one hand, you want to make sure your devices are protected properly from all manners of threats. On the other, you need to balance this with productivity, and ensuring that your employees don’t feel overly restricted by your policies. To help you implement appropriate mobile device security practices, we’ve put together three of the top issues you should plan for and how you can address them.

0 Comments
Continue reading

How to Get Your Employees to Engage in Cybersecurity

How to Get Your Employees to Engage in Cybersecurity

Millions of people find themselves sitting in front of a computer moving files around and corresponding with people over the phone, through email, or updating info in the company’s line of business app. What many of them don’t know, however, is that, at any time, they are only a couple of clicks away from causing major problems for their company. Therefore, it is extremely important to train your staff on what to look for and how to address those situations when they do arise.

0 Comments
Continue reading

Cybercrime is Worse Than You Think

Cybercrime is Worse Than You Think

Cybercrime is often thought of as a loner’s game. There is this misconception that all hacks are carried out by hoodie-clad people in dark corners of a room. Nothing could be further from the truth. Today, we will take a brief look at organized cybercrime and why its growth is an ominous sign for businesses.

0 Comments
Continue reading

Can Zero-Day Threats Actually Make Chrome More Secure?

Can Zero-Day Threats Actually Make Chrome More Secure?

Google Chrome is a widely used and popular web browser, and because of its popularity, it is a common target for hackers. A recent study showcases how there are more zero-day threats being discovered for Google Chrome, but don’t despair; it might not be a bad thing for your favorite web browser. Instead, it could signify exactly the opposite.

0 Comments
Continue reading

Choosing to Enact a Zero-Trust IT Security Policy Can Significantly Reduce Problems

Choosing to Enact a Zero-Trust IT Security Policy Can Significantly Reduce Problems

It’s often difficult to figure out who and what you should trust with your business’ cybersecurity. How can you know for sure that each individual accessing your infrastructure is secured from threats? A zero-trust model can help by providing reassurance that everyone accessing your network is who they say they are.

0 Comments
Continue reading

3 Cybersecurity Strategies Every Modern Business Must Think About

3 Cybersecurity Strategies Every Modern Business Must Think About

If your business struggles with network security, you’re not alone. It’s one of the most challenging parts of running a business, and even if you do invest a ton of time, effort, and money into your security systems, chances are you could still be doing at least something better. Today, we want to talk about three ways you can improve your company’s security without completely draining your bank account.

0 Comments
Continue reading

You Actually Might Be Shocked at How Much a Ransomware Attack Costs the Average Business

You Actually Might Be Shocked at How Much a Ransomware Attack Costs the Average Business

Despite most security professionals advocating against making ransomware payments, according to a study by Mimecast titled “The State of Ransomware Readiness,” the United States has the highest average payment for ransomware out of the entire world at more than $6 million per victim. This number is shockingly high, as is the amount of people who are still paying the ransom.

0 Comments
Continue reading

You Can’t Take Your Network’s Security for Granted

You Can’t Take Your Network’s Security for Granted

It’s easy to see the headlines and think that a major data breach cannot happen to your business, but this is a dangerous mindset to hold. If you aren’t taking cybersecurity seriously these days, then you’re making a huge mistake. You need to implement security measures now before it’s too late.

0 Comments
Continue reading

What Threat is a Small Business Really Under?

What Threat is a Small Business Really Under?

Small businesses face a lot of risks, one obvious one being the threat of potential cybercrime and how its influence can impact their businesses. Let’s consider how these influences have taken shape, and the challenges that small and medium-sized businesses must now face as a result.

0 Comments
Continue reading

Credential Stuffing and How It Can Lead to a Data Breach

Credential Stuffing and How It Can Lead to a Data Breach

Right now, a lot of people have had a lot more time on their hands than they typically would, so many of them are spending a lot of time on the assorted streaming services to entertain themselves. Unfortunately, cybercriminals have taken note. In light of all this, it seems like an apt time to discuss a particular threat known as credential stuffing.

0 Comments
Continue reading

Ransomware is a Nasty Thing to Get

Ransomware is a Nasty Thing to Get

Chances are, you’ve heard the term “ransomware” before. If you’re familiar with this particularly nasty bit of malware, the rest of this blog will be a familiar review. If you’re new to the term, let’s introduce you to the mean-spirited cyberattack known as ransomware.

0 Comments
Continue reading

What Can Be Learned from the Most Recent DBIR

What Can Be Learned from the Most Recent DBIR

Since 2008, Verizon has released an annual report that details the cybersecurity incident trends from the beginning of the year. As usual, this year’s edition provided some insights into the patterns witnessed in 2019, hopefully giving us a greater appreciation for how cybercriminals are shaping their attacks. Let’s go over some of the trends that the Verizon Business 2020 Data Breach Investigations Report (DBIR) revealed to us.

0 Comments
Continue reading

DHS Worried About Lack of Cybersecurity Talent

DHS Worried About Lack of Cybersecurity Talent

We spend a lot of time on this blog discussing cybersecurity. Understanding the effects of full-scale cybersecurity attacks is useful, but will only motivate a person or business to do things that will work to keep their network secure. The problem is that when it comes to public computing resources, there isn’t enough being done. 

0 Comments
Continue reading

A Short History of Cybersecurity

A Short History of Cybersecurity

The way a business handles its network security typically defines what kind of problems come from their use of information systems. As a result, cybersecurity has become a major part of any forward-thinking organization’s IT strategy and has become a multi-hundred-billion dollar a year industry. Of course, it wasn’t always such a huge problem. The history of cybersecurity doesn’t go back very far, but since it has such a major impact, we thought it would be interesting to go back a couple decades and look at the brief history of the practice. 

0 Comments
Continue reading

Latest News & Events

SAN DIEGO — Veteran-owned and operated IT service provider Data Net Solutions Group is moving its base of operations to a new location in Banker’s Hill in order to facilitate more interactive events and activities.

Contact Us

Learn more about what Data Net can do for your business.

Call Us Today
Call us today
(760) 466-1200

2445 5th Avenue
Suite 200

San Diego, California 92101