10 Ways to Stay Safe As We Return to Work

In the last week or so the national conversation has shifted from sheltering in place to returning to work. Slowly and carefully, but we are opening back up. Now is the time to remain vigilant to the constant threats to your business from ransomware and malicious attacks.

In a recent article, Google stated that since January it has seen a 350% increase in phishing attacks, and they saw more than 18 million daily malware and phishing emails related to COVID-19 scams just in the past week. That’s on top of the more than 240 million daily spam messages it sees related to the novel coronavirus.

And it is not just companies that are getting overwhelmed. According to their own report, the FBI fielded 2,047 ransomware complaints in the U.S. in 2019. In response the crushing load of root cause investigations, the FBI has turned to corporate leaders and cybersecurity insurance carriers to better understand how to stop ransomware attacks.

The best course of action, is to proactively protect your organization from being attacked successfully. Making certain of that is a complex problem that is specific to each company, but we have created some quick tips to help you remember how to keep cybercriminals out of your IT operation.

10 Tips to Keep Cybercriminals Out

  1. Get the Facts. Stay away from the rumor mill and use information from reliable sources to make business decisions in chaotic times.
  2. Think Twice before Clicking Links. Make sure staffers are on the lookout for suspicious links that can lead to ransomware.
  3. Be Suspicious of Unexpected Attachments. Ensure users only open attachments from proven, trusted sources no matter how “official” that attachment looks.
  4. Automate Compliance. Have one less thing to worry about by choosing a dynamic web portal system that keeps track of everything.
  5. Protect those Passwords. Encourage safe password practices like using a password manager and not writing them on sticky notes.
  6. Beware of Strange Networks. Make staffers aware of the dangers of logging in from insecure public and home WiFi networks andhow to use them safely.
  7. Use Two-factor Authentication. An extra layer of security keeps passwords and data safe.
  8. Keep an Eye on the Bad Guys. Monitor the Dark Web to watch for company data so a problem can be addressed before it becomes a crisis.
  9. Stay Current on Threats. Work with a responsive partner that’s on top of today’s challenges.
  10. Ask for Help. Consult a security expert to plan effective strategies and get innovative solutions.

10 Tips to Keep Cybercriminals Out

So, while we seek continued improvements in our collective situations both professional and personal, continue to keep your guard up against ransomware and malicious attacks on your IT operation.

If you would like to learn more about how Montra can help you with these or other security threats, please contact us at info@montra.io.

 

Do You Need Dark Web Monitoring?

Data and information security has been a top priority of businesses for years. Firewalls, password policies, and user right limitations help control information flow in and out of your company. Digital credentials such as user names and passwords enable you and your employees to access your business systems and data as well as online services in a way that protects the business from hackers. Passwords are definitely helpful but they are hardly a fool-proof security practice in the world of cyber security. According to Verizon’s 2017 Data Breach Investigations Report, 81% of hacking-related data breaches involve the use of a weak or stolen password. When using stolen credentials, cyber criminals essentially have a digital key to the front door of your network, making all of your other security precautions worthless. These credentials are often purchased on the Dark Web, and if you aren’t monitoring your company domain your data and your client’s data could be sold to the highest bidder long before you realize there has been a data breach. In this post we will take a deep dive into the Dark Web to discuss:

  • What is the Dark Web?
  • Why is Dark Web Monitoring Important to Your Business?

What is the Dark Web?

Beneath the surface of the visible information accessed and indexed in Search Engines lies the Deep Web. The Deep Web is a massive sublayer of the Internet that is not indexed (and therefore hidden) in search engines such as Google, Bing, or Yahoo. Within this hidden universe lives a nefarious community called the Dark Web.Dark Web Diag Many estimate that the Dark Web is 550 times larger than the Surface Web and growing. It’s actually difficult to know for sure how big the Dark Web is. The Dark Web operates differently than the Internet we see every day, or “Surface Web.” Users on the Dark Web use secure browsers, such as Tor, that render their identity and location untraceable. This is accomplished by routing web page requests through numerous proxy servers around the globe which makes IP addresses unidentifiable. The ability to operate anonymously makes the Dark Web an ideal marketplace for stolen data and illegal activity. Experts  estimate that as much as 50% of the data on the Dark Web is illegal or illicit material. In short, it is the last place you want to find your company’s sensitive data. Unfortunately, digital credentials are among the most valuable assets on the Dark Web. An article by CSO from IDG reports that login credentials to a $50,000 bank account could go for $500 while a Netflix premium account login can go for around $6. These risks are not all aimed at personal information and accounts. A 2019 study, Into the Web of Profit, by Dr. Michael McGuires at the University of Surrey shows that the number of dark web listings that could harm an enterprise has risen by 20% since 2016. This can be disastrous for your company.

Why is Dark Web Monitoring Important to Your Business?

Luckily, it is possible to scan the Dark Web and detect credential theft before cybercriminals have the opportunity to hack your system. Our monitoring solution combines human and Dark Web intelligence with search capability to identify, analyze, and proactively monitor your organization’s compromised or stolen data. We can search for stolen email addresses, passwords, and other confidential data in:

  • Private Sites
  • Botnets
  • Peer-to-Peer Networks
  • Internet Relay Chat (IRC) Channels
  • Black Market Websites
  • Social Media
  • Hidden Chatrooms

Montra’s Dark Web services monitor your data and notify you immediately when sensitive information is found on the Dark Web. Then, our team will remediate the situation before any identity theft, data breaches, or other crimes occur. In addition to Dark Web Monitoring, Montra provides employee training, phishing simulation, and Identity Theft protection. This insures your business’ sensitive data is secure. Interested in learning more about our Dark Web Security Services? Download our datasheet