Consider IT

Consider IT
Consider IT

February 13, 2023

5 threats
February 13, 2023

5 Threats to your Cyber Security you need to consider 

Cyber security measures are constantly evolving, and it is vital to remain ahead of new challenges and threats that continuously arise. In order to safeguard your organisation, a comprehensive and resilient IT security system is your first line of defence. 

The Ukraine War, energy crisis and economic uncertainty have led to a surge in cyber threats. By exploiting these fears, opportunistic cyber criminals entice people to unwittingly open a backdoor to access your IT systems. In doing so, they wreak havoc across your organisation as well as potentially any third parties you deal with. Thus, damaging your organisation and your organisation’s reputation.  

The best protection is awareness, education and IT support. That’s why our team has compiled a list of the five most common cyber security threats to be aware of and how to protect against cyber-attacks.  

Here are the top 5 threats to cyber security: 

1 Malware and ransomware 

What is malware and ransomware? 

Malware is a type of software that is designed to exploit vulnerabilities, damage and destroy computers and computer systems. Examples of common malware include viruses, worms, Trojan viruses, spyware, adware, and ransomware. 

Let’s talk about Ransomware in more detail. It is a type of malware that encrypts your data, holds it hostage and then demands a ransom to decrypt your own data. In some cases, ransomware will also threaten to delete your data if you don’t pay the ransom within a certain period. 

How does malware and ransomware work? 

Malware can be spread via dangerous links, downloads, or attachments that, when clicked, download malicious software into a computer or infect a website. 

Once malware has been installed on a computer, it can have a variety of devastating effects, including corrupting files, stealing personal information, and rendering the computer unusable. 

As stated earlier cyber threats are continually evolving and ransomware attacks are on the rise and show no signs of slowing down.  

How to protect against malware and ransomware? 

There are steps you can take to protect your organisation from malware and ransomware attacks including: 

  1. Keep your computer and software updated 
  2. Think twice before clicking links or downloading anything 
  3. Be careful about opening email attachments or images 
  4. Don’t trust pop-up windows that ask you to download software 
  5. Limit your file-sharing 
  6. Use reputable antivirus software 
  7. Back up data to allow access even if the data has been maliciously encrypted 

2 Phishing 

What is a phishing attack? 

A phishing attack is a type of electronic cyber-attack that targets a broad audience and is used to steal user data such as login credentials and credit card numbers. They can also be used to install malware on a victim’s device.  

How does phishing work? 

A phishing attack preys on human error. It occurs when an attacker, disguised as trusted entity such as your bank, energy supplier or government body, tricks a victim into sharing sensitive data by enticing them to open an email, instant message, or text message. 

How to protect against phishing? 

To protect your organisation from phishing attacks, it is important all employees are aware of the warning signs that an email or other forms of electronic messages may be malicious. Advise staff never to click on links or open attachments from unknown senders. If they suspect that someone in the organisation has been the victim of a phishing attack, then immediately contact IT support. 

3 Man in the middle attacks 

What are man-in-the-middle attacks? 

A ‘man in the middle attack’ is a cyber security threat in which a hacker secretly intercepts a communication between two parties. These types of cyber-attacks are becoming increasingly common as cyber criminals are rapidly evolving and finding new and clever ways to exploit vulnerabilities in networks. 

How does a man-in-the-middle attack work? 

Interrupting the connection, the hacker assumes the identity of one of the users and relays messages between the two parties who believe they are communicating with each other – this is known as ‘eavesdropping’.  By ‘eavesdropping’ a cyber-criminal can control the conversation enabling them to steal or alter the data being exchanged.  

How to protect against man-in-the-middle attacks? 

To protect against man-in-the-middle attacks, it is important to: 

  • strongly encrypt traffic between the network and devices using browsing software  
  • verify the identity of the parties involved in a communication 
  • always make sure sites accessed are secure 

4 SQL injections 

What are SQL injections? 

SQL injections are an extremely serious form of cyber-security threat in which malicious code is inserted into a server using SQL, the Server Query Language. The malicious code can force the server to reveal confidential data or take other action. 

How does a SQL injection work? 

The malicious code, from an untrusted source, can force the server to reveal confidential data or take other action. SQL injection attacks are most commonly the result of an attacker entering malicious code into an unprotected website comment or search box. This can allow an attacker to access data, modify and damage it or even destroy the website. 

How to protect against SQL injection? 

All companies maintaining websites should prevent attacks by ensuring that all user input is properly validated and that all SQL queries are executed with appropriate permissions. A good web developer should help protect from SQL injection by writing secure code that doesn’t allow for the injection of malicious code into an application to protect the site. 

5 Spear Fishing 

What is Spear Fishing? 

Spear phishing is a highly sophisticated form of phishing. Fraudulent emails are tailored to specific individuals and organisations to gain access to confidential data over a prolonged period.  

How does Spear fishing work? 

By impersonating a trusted sender, the ‘spear fisher’ can trick an individual into opening an infected link allowing the hacker to bypass security measures – like email filters and antivirus. Consequently, the cybercriminal gains access to an organisation’s network and data. This can kick off a chain of events that enable cyber criminals to break through small businesses weak security and open a gateway to hack into larger organisations.  

How to protect against spearfishing? 

Implementing training programs that educate employees about spear phishing and how to spot red flags such as misspellings or poor grammar will help prevent these types of attacks. Organisations should also implement advanced cyber security controls to detect and block spear fishing such as email filtering and virus scanning. 

Get in touch 

Find out how to protect your business from cyber security threats by contacting a member of our team today by emailing [email protected] or call 0131 510 0110.

February 13, 2023
0
mfa security upgrade
February 13, 2023

Did you know Microsoft is turning on the new number-matching feature this month? 

Microsoft is rolling out a significant security upgrade: the new ‘Number Matching’ authentication process.  

You are probably thinking you’re just getting the hang of 2 Factor Authentication and now the process is changing – again!  

Never fear CIT promises to make it simple to understand and easy to implement. First of all, let’s tell you a bit about Number Matching and why it matters.  

About Number Matching 

Number matching is almost the opposite of what you know as multi-factor authentication. With this new authentification process, a user will see a number when they sign in. The user will then confirm this number on their MFA device.  

Don’t worry, there is help for end users who cannot meet sign-in criteria with a ‘Temporary Access Pass’ feature.  

Why is number matching coming? 

The number one reason is to stay one step ahead of cyber criminals. Sophisticated cyber criminals have devised techniques to bypass Multifactor Authentication, register and authenticate their own device enabling them to override approvals.  

Do I need to do anything? 

As long as you have the Microsoft Authenticator installed on your device, you shouldn’t need to make any changes. 

How do I check Microsoft Authenticator is installed? 

You can check Microsoft Authenticator (traditional second factor) is turned on for some users or groups. You can do this by editing the Authentication methods policy. If your organization uses AD FS adapter or NPS extensions.  Make sure you have the latest versions before you start. 

How do I enable number matching in the Azure AD portal? 

Here is Microsoft’s steps to take in the Azure AD portal. Complete steps: 

  1. In the Azure AD portal, click Security > Authentication methods > Microsoft Authenticator
  2. On the Enable and Target tab, click Yes and All users to enable the policy for everyone or add selected users and groups. Set the Authentication mode for these users/groups to Any or Push

Note: Only users who can use Microsoft Authenticator can be a part of this policy or not be a part of it. Users who cannot use Microsoft Authenticator cannot see this feature. 

  • On the Configure tab, for Require number matching for push notifications, change Status to Enabled, choose who to include or exclude from number matching, and click Save

You can read full Microsoft instructions on how to MFA number match at ‘How to MFA number match.

When is Number Matching available? 

  • When someone is trying to log in with more than one factor 
  • When someone is resetting their password themselves 
  • When someone is registering for an Authenticator app and they’re using more than one factor 
  • When someone is using AD FS adapter (Active Directory Federation Services is a Single Sign-On solution) 
  • When someone is using NPS extension (Network Policy Server extension for Azure Multi-Factor-Authentication 

A final note for Apple Watch Users. 

It’s important to be aware Number Matching isn’t available when people are getting Apple Watch notifications. If number matching is turned on, people will need to use their phone to approve notifications from their Apple Watch. 

In case you missed it here is the link again for detailed ‘How to MFA number match‘ 

Get in touch for expert IT Support 

Find out more about our Managed IT services so you can focus on managing everything else in your business.

February 13, 2023
0
CONSIDER IT FACEBOOK CONSIDER IT Twitter CONSIDER IT Linkedin

Contact Us

0131 510 0110
[email protected]
Find Us

Customer Service

Contact Us
Our Locations
Case Studies

Information

About Consider IT
Domains
Privacy Policy
Terms & Conditions
Press Enquiries

© 2024 Consider IT Limited – All Rights Reserved
Registered office: Waterview House, 37 Shore, Edinburgh, EH6 6QU. Company Number: SC320341 | VAT number: GB 930 1862 42
Consider IT is a trading name of Consider IT Limited