Laughing at Hackers: 5 Proactive Steps You Can Take to Secure Your Laptops from External Threats

Here’s a joke that’s not funny: your company’s data was just hacked.

Shock waves, unmitigated panic, and alibis are all fair play when you as the CIO, CISO or Head of IT, wakes up to the news that a hacker has infiltrated their systems. Fingers are pointing in every direction, questions are flying, and your reputation is on the line. What went wrong? It could stem from the fact that you only protected your perimeter with a firewall – your organization thought that it was enough to safeguard its network infrastructure and didn’t think much about user devices. However, laptops are a popular attack vector for an assailant to get into your inner sanctum.

According to a recent report by Verizon, 94% of malware was delivered via email, and user devices like laptops were the primary targets. Moreover, a study by Ponemon Institute found that the average cost of a data breach in 2020 was $3.86 million. It’s vitally important to adopt comprehensive security measures to protect not only your network infrastructure but also individual user devices.

So, what steps can you take to make your laptop more secure? Here are five strategies that you can use to combat external threats:

1. Utilize Strong Passwords

According to a report by Verizon, over 80% of data breaches are a result of weak or compromised passwords. To appreciate the importance of password strength, you must reconsider that hackers have computing power, time, and nerves on their side. But with the built-in technology of a password manager, you can utilize complex sign-in credentials for every account on your laptop, making them too difficult to crack in a reasonable amount of time.

A study by the University of Virginia illustrated that using a password manager can significantly increase the strength and variability of passwords, thereby amping up security. Once in place the password manager will automatically log you in without having to recall them all. It will also send you reminders to change passwords regularly, which is only advisable if you are using a password manager.

Furthermore, research by Pew Research Center indicates that only 12% of U.S. internet users utilize a password manager for remembering their password.

2. Enable Multi Factor Authentication

Fact. You need two factors to verify an identity. The FBI has reported that multifactor authentication (MFA) can block 99.9% of automated cyber-attacks. Moreover, according to Symantec, 80% of data breaches could be prevented with MFA. Therefore, multifactor authorization is the two-in-one (or more-in-one) approach that makes certain it’s you logging into the system.

The standard approach is to think of it as something you know, something you have, and something you are – a password, a smart card, and a fingerprint. Research by Google found that even the weakest forms of MFA, such as SMS-based verification codes, can block 100% of automated bots, 96% of bulk phishing attacks, and 76% of targeted attacks.

Despite the clear benefits, MFA is underutilized, with only 57% of people using it for their personal accounts and 30% at work, according to a report by Microsoft. If utilized MFA provides arguably the most effective line of defense in securing your laptop from external threats.

3. Install Updates and Patches

New software vulnerabilities are constantly found. A study by Flexera found that in 2019, 60% of breaches involved vulnerabilities for which a patch was available but not applied. The only way to avoid being exploited by this kind of attack is to install software patches and updates. They will help to fix any known security vulnerabilities in the software you use.

Further underscoring the importance of regular system updates, the Ponemon Institute’s 2019 State of Cybersecurity in Small and Medium-Sized Businesses report revealed that 63% of respondents experienced a data breach due to a known, unpatched vulnerability. Therefore, it’s a no-brainer – keep your software updated!

4. Use Antivirus and Anti-malware software

According to a report by AV-TEST, an independent cybersecurity institute, over 350,000 new malware and potentially unwanted applications (PUA) are registered every day. This alarming number illustrates the importance of antivirus and anti-malware software in protecting your laptop.

The state of the art in defending  against attack vectors and malicious threats keeps changing. Antivirus (AV) has given way to Next-gen Antivirus (NGAV), which has been upped by endpoint detect & response (EDR). You should look into whether NGAV or EDR is right for you, it really depends on the potential damage that a breach to the individual laptop can cause. Regardless of what type you use, installing a current antivirus and anti-malware software will assist in intercepting many external threats.

5. Use a VPN (Virtual Private Network)

A study by the Ponemon Institute revealed that 68% of organizations admit antivirus solutions are not sufficient. Increasing cyber threats and a rising remote workforce, necessitates the use of secure, encrypted connections. There is a growing need for VPNs as a tool for securing internet connections, particularly when accessing public Wi-Fi networks. VPNs create a private network between a company’s network and a remote user to secure the internet connection.

In a nutshell, a VPN is vital for remote workers as it provides a secure, encrypted connection when utilizing a home connection or public Wi-Fi. In the age of remote work and digital nomads, using a VPN has gone from an optional extra to a necessary security measure.

To Summarize

Is gaining peace of mind that your end-user laptops are secure a burden for you? If the answer is yes, then these tips should aid your computing device protection game. You can’t go wrong with utilizing strong passwords, enabling multi factor authentication, installing updates and patches, using antivirus and anti-malware software, and using a VPN.

Take your laptop’s security one step further than your office firewall; take preemptive measures to make hackers regret even trying! Remember, security should always be your top priority as data breaches can have severe consequences for your organization.

If you have questions about getting your laptops secured or need a partner to secure and manage your laptops for you, reach out to us at info@montra.io or +1-404-665-9675.

Tis the Season for Cyberthreats: 3 Ways to Keep Your Device Secure Over Turkey

It’s that time of year for travel, visiting family, eating too much, and rushing around for last-minute errands and gifts. It is a hectic and wonderful time but if you are like me, it is also when you are trying to fit work into different locations, times, and levels of sobriety.  

It is easy to be distracted in this season. Cyber attackers know this and you should be rightfully concerned. 

Here are a few ways to keep you and your devices safe as you find yourself in new workplaces during the holidays. 

1. Watch Where and How You Connect 

Whether you are connecting on your parents’ wifi or from the closest Panera, you will be connecting differently and probably less securely than your normal home office. If your mom’s wifi doesn’t have “one of those silly passwords”, then you need to protect your presence on that connection: 

 

  • If your company has a VPN, you should use it. Or consider a paid VPN service. 
  • Keep your laptop firewall always running. Windows and Mac both have this built-in. 
  • Set yourself in stealth mode if you can. 
  • Make sure you have updated antivirus (AV) or endpoint detect and respond (EDR) software installed 
  • On your mobile device, use a security app like what AT&T and Verizon provide for free. 
  • If you want to be the safest, skip the wifi and tether your laptop to your phone with security app running.  

If you follow these basic steps, you should be safe at your closest coffee shop to “get some work done” while enjoying some peace and quiet.  

2. Think About How You Are Mixing Your Work and Personal Tasks 

You are going to be doing a lot more personal tasks on your laptop than you normally do. This could lead to exposure on shopping sites, gaming sites, or elsewhere, which opens you to new threats. Be mindful of where that search for “adult sized Elf costume” or “Thanksgiving movies on Netflix” is taking you. Also keep in mind that if you are connected to your company VPN, you are traversing company property and are subject to their acceptable use policy. Tread carefully. 

To help keep your focus, you might consider using one browser for your personal stuff and one for your work. Or if your browser supports tab groups, you can group your personal and work tabs separately. If you keep your screen organized, you are less likely to be confused by a popup or email request that is really a phishing attempt. 

3. Be Aware of Who is Using Your Device 

It’s easy to leave your laptop open on the table after you’ve found that recipe for leftover turkey melts. While you are searching your mom’s fridge for gruyere, your weird Uncle Steve might ask to “check his fantasy team.” You and your uncle might have a different idea of what a fantasy team is, and you could get the leftover spyware and bloatware that his surfing has put on your laptop. 

A few items to help you with your potentially “over-shared” device: 

  • Make certain your device quickly locks when not in use. This is easy on phones, but on laptops you may want to set it to the minimum setting for the holidays. 
  • Close your devices and put them away if you won’t be using them for a while. Not that anyone is going to do anything to them, but gravy in the keyboard is just as problematic as privacy loss. 
  • If your device is running the Jackbox game or your phone someone got volunteered to play Heads Up!. Just make certain that you get it back at the end of the game. It is easy after a few glasses of wine to forget that your work laptop with all your year-end data is still sitting by the fire when midnight rolls around. 

 So while your uncle or cousin may not be trying to hack your device themselves, they are not going to be as concerned as you about what sites they visit and what fun new games they download. It is the season of giving, but I think you should be a bit selfish with your devices. 

Stay safe and stay private this holiday season!