Failure to install patch updates, relying too much on passwords, and failure to train employees are three sources of cyber security losses all too common among small business clients, a technology vendor suggests.
One of the most common cyber security errors among small businesses is failing to install patch updates that are available from an IT vendor, said Derek Manky, chief, security insights and global threat alliances at computer security vendor Fortinet Inc.’s Fortiguard Labs.
A lot of today’s cyber security breaches can be attributed to a failure on the part of the organization to install security patches, Manky said Thursday in an interview.
Canadian Underwriter asked Manky what major cyber security errors small businesses are making.
Failure to have good identity management is one of them, replied Manky.
One way risk managers can improve cyber security is to ensure their organizations have multi-factor authentication, suggests Manky. Simply requiring the user to type in a user name and password is not considered as secure as multi-factor authentication because cyber criminals can steal user’s passwords.
Multi-factor authentication combines something the…
