There is a great deal of false information out there about data breaches, and yet it is imperative that a company knows as much as possible about this important liability.
Here are five common myths about data breaches that could put a business, and its customers’ data, at risk:
1. Small Businesses Aren’t in Danger
Small businesses are at risk for cyberattacks just like big companies. In fact, some cybercriminals prey on small businesses exclusively because their lack of caution and proper security measures make them easy targets. One out of every five small businesses becomes a victim to cybercrime, according to IDT911’s Knowledge Center. Of these small companies, 60% go out of business within six months.
2. Information Security = Information Technology
Some people think that information security is just one aspect of the IT department. In fact, the two things are different. Information security teams focus on making sure that information is kept as securely as possible, given the resources of the company. Information technology works to make sure the business runs smoothly. Companies need to have both of these capabilities in the company, so that data not only is readily accessible but secure as well.
3. Threats Are Coming From the Outside Only
The reality is much of the risk behind data breaches is due to internal sources. Workers may leave their laptops unattended or use easy-to-guess passwords. This problem can be fixed with proper training. Preventing data breaches at a firm is not only the responsibility of the information security team, it is the responsibility of everyone within the company. Some businesses now begin training employees during orientation to be vigilant against cyberattacks. There are many ways to protect a company from internal risk.
4. Vendors Are Not a Threat
Vendors are indeed a threat — companies as diverse as Adobe, LexisNexis, JPMorgan and others have all experienced data breaches. Businesses shouldn’t trust their vendors to do the appropriate due diligence for them.
5. Firewalls Are the Only Safety Net Companies Need
Although firewalls are important for keeping your networks secure in the most basic way possible, they are only one part of a larger chain of defense that will keep your company safe. Ninety-six percent of data breaches happen to companies with minimally protective firewalls, according to the Verizon 2011 Data Breach Investigations Report.
More on Identity Theft:
- Identity Theft: What You Need to Know
- 3 Dumb Things You Can Do With Email
- The Risks You Face From Identity Theft