Every connected business will have an internet security incident at some stage in its life, most likely many more than one. Sadly most businesses are unaware that they have been compromised until disaster strikes or they are notified by external parties.
The good news is that if you do a few very simple things you can avoid disaster and help the police to catch those responsible.
Internet Security: YOUR Responsibility
Lets address a line that businesses and IT managers use when talking about internet security:
“I don’t have anything of value on my network, I don’t need to be worried”
Even a small business with 3 PC’s, no server and 3 mobile phones is valuable to someone looking for spare CPU cycles and connectivity for their botnet. If your data is boring and useless to anyone but you, think about the value that the equipment and network your boring data is stored on could bring to someone else with 99,999 other boring networks like yours in their control.
The other side to that coin is responsibility. If your network is compromised, you may well be providing a gateway for other corporate networks with much more exciting data (like your bank or credit card provider), leaving you responsible for someone else’s pain and anguish.
Put simply, we are all responsible for security on the internet. Doing anything other than the right thing can leave you personally responsible for the outcomes, you DO need to be worried.
Internet Security: Be Prepared
Over the next 10 weeks I am going to be writing a series of 10 tips to help you prepare for & respond to internet security incidents.
Here are my top 10 tips for Internet Security Incident Readiness:
- Have a Plan
- Have Good Backups
- Always be Patching
- Backup Logs are Your Friend
- Network Monitoring
- Keep a Day Book
- If you notice something, don’t act
- Call for Help
- Protect Yourself
- Front Foot
I am a telco & internet entrepreneur, nerd wrangler and massive lover of bacon. I was involved in the investigation of and successful conviction of David Noel Cecil – “Evil, The NBN Hacker”.
This article is written from the experiences I had before, during and since the successful execution of Operation Damara. My experiences are from a telco perspective however they are just as applicable to corporate and government networks.
I currently work with several Australian Telco’s and IT businesses, developing Incident Response Plans and helping them ensure the ongoing continuity of their mission critical infrastructure.
If your organisation doesn’t have a strategy for dealing with internet security incidents, I would love to help you out!
Shoot me an email – firstname.lastname@example.org or grab me on Social Media for more information.