小型企業基本網絡安全指南

文章撰寫者:Timothy Shim
  • 安全
  • 更新:Oct 09,2020

網絡安全事件可能會對業務造成毀滅性影響,2019年平均損失成本超過 每次事故$ 200,000。 However, the cost can extend well beyond finance and small businesses may not withstand the blow to their reputation.但是,成本可能會遠遠超出財務範圍,並且小型企業可能無法承受對其聲譽的打擊。

Despite cyber security as a whole being an extensive field, there are many areas where small businesses can take quick action.儘管整個網絡安全是一個廣泛的領域,但是在許多領域中,小型企業可以採取快速行動。 These proactive steps can even significantly prevent, or reduce the impact of most common incidents.這些主動步驟甚至可以顯著預防或減少最常見事件的影響。

隨著世界數字化的發展,由小企業主負責其網絡防禦的問題變得更加緊迫。

儘管您可能不想花時間來了解網絡安全的複雜性,但企業的未來可能完全取決於您這樣做。

網絡事件的平均成本($)
網絡事件的平均成本($)

This guide is meant for small business owners who have any form of digital assets (this can be anything connected, even a simple business email).本指南適用於擁有任何形式的數字資產(可以是連接的任何東西,甚至是簡單的企業電子郵件)的小型企業所有者。 Invest a little of your time so that花一點時間,以便 您的業務可以繼續發展,創新並為客戶創造價值


網絡安全威脅的類型

With so many types of attacks that hackers can carry out, business owners should at least take note of some key tangents.黑客可以進行多種類型的攻擊,因此企業主至少應注意一些關鍵要點。 Regardless of their main objective, any of these methods can cause harm to your business in ways that might take ages to unravel, if at all.無論其主要目標是什麼,這些方法中的任何一種都可能會破壞您的業務,甚至可能需要很長時間才能解決。

高級持久威脅(APT)

These long-term targeted attacks are mainly intended to steal, spy or disrupt.這些長期的針對性攻擊主要是為了竊取,監視或破壞。 Intrusion into networks may be carried out stealthily and in various stages.入侵網絡可能是在不同階段秘密進行的。 Once access is gained, attackers may not even do anything for extended periods of time – waiting for strategic moments to strike.一旦獲得訪問權限,攻擊者甚至可能長時間不執行任何操作–等待重要時刻來臨。

著名的APT攻擊: 鬼網, 泰坦雨

分佈式拒絕服務(DDoS)

DDoS攻擊旨在通過向其充斥請求和信息來破壞網絡或網站的運行。 When the server can no longer cope with the flood, services will start failing and eventually shut down.當服務器無法再應對洪災時,服務將開始出現故障並最終關閉。

著名的DDoS攻擊: Github上, Spamhaus的, 美國銀行

釣魚

Phishing is a very common cyber security threat.網絡釣魚是一種非常常見的網絡安全威脅。 It is the act of sending fraudulent emails that resemble legitimate ones in order to entice recipients to send back sensitive data.發送誘騙電子郵件的行為類似於合法電子郵件,以誘使收件人發送回敏感數據。 Phishing attacks normally aim to capture user credentials such as usernames and passwords, or even financial information.網絡釣魚攻擊通常旨在捕獲用戶憑據,例如用戶名和密碼,甚至財務信息。

著名的網絡釣魚案例: Facebook和谷歌, 克里蘭銀行

勒索

Over the past number of years, Ransomware has gained popularity and targets a wide range of victims.在過去的幾年中,勒索軟件已經普及並針對廣泛的受害者。 Unknowing victims may find their entire hard drives encrypted with a note asking them to pay a 'ransom' for a decryption key.不知情的受害者可能會發現自己的整個硬盤驅動器都已加密並帶有便條,要求他們為解密密鑰支付“贖金”。 Users who don't pay normally lose all their data.不付款的用戶通常會丟失所有數據。

著名的勒索軟件案例: WannaCry, 壞兔子, Locky

網絡保護您的業務

For small businesses aiming to ensure that their networks have a chance to be protected against common attacks, installing basic security software is essential.對於旨在確保其網絡有機會受到一般攻擊保護的小型企業,安裝基本的安全軟件至關重要。 However, software alone may not be sufficient.但是,僅軟件可能還不夠。

讓我們考慮一下數據可以用於許多業務的方式。

  • 機密通信可以通過電子郵件發送
  • 辦公室內外的設備可以無線傳輸數據
  • 各個設備可能直接連接到Internet
  • 遠程工作者可以登錄公司服務器
  • 同事可能會使用通訊應用進行交流
  • 等等。

As you can see, there are so many potential points of entry where a hacker can gain access to any part of your company's operations.如您所見,黑客有許多潛在的切入點,可以讓您訪問公司運營的任何部分。 Unfortunately, for small businesses to build solid networks behind strong firewalls may be a little costly.不幸的是,對於小型企業而言,在強大的防火牆之後建立可靠的網絡可能會有點昂貴。

要變通解決此問題,可以實現至少基本的設備級安全性以增強防禦能力。


1.啟用防火牆

Many businesses run computers on Microsoft Windows, which comes with a built in firewall utility.許多企業在Microsoft Windows上運行計算機,該計算機帶有內置的防火牆實用程序。 These software-based versions are less effective than hardware firewalls but at least offer some basic protection.這些基於軟件的版本不如硬件防火牆有效,但至少提供了一些基本保護。

Software-based firewalls are able to monitor data traffic in and out of devices, acting as a security guard to your device.基於軟件的防火牆能夠監視進出設備的數據流量,充當設備的安全防護。 If you're running Windows, make sure you如果您運行的是Windows,請確保 保持Windows防火牆處於打開狀態.

您還可以考慮:

網絡防御者

netdefender-免費的防火牆應用程序

網絡防御者 –這個免費的防火牆應用程序不僅可以監視您的數據,還可以讓您設置在網絡中可以移動或不能移動的規則。 For example, you can restrict the browsing that your employees do.例如,您可以限制員工進行的瀏覽。

ZoneAlarm的

區域警報-用於保護您的網站的多功能工具

ZoneAlarm的 –集成了防火牆和防病毒功能,ZoneAlarm是業務用戶的一個很好的多功能應用程序。 It safeguards against almost all types of threat from $39.95/year.每年XNUMX美元起,它可防禦幾乎所有類型的威脅。

科摩

Comodo個人防火牆-防火牆和防病毒工具

科摩多個人防火牆 – Comodo提供免費和商業版本,在安全業務方面也享有很高的聲譽。 It offers comprehensive coverage for multiple threat types for only $17.99/year.它提供多種威脅類型的全面覆蓋,每年僅需$ XNUMX。


2.使用虛擬專用網

Virtual Private Networks (VPNs) are very handy tools that let you secure all data being transmitted from your devices.虛擬專用網絡(VPN)是非常方便的工具,可讓您保護從設備傳輸的所有數據。 They make use of secure communication protocols and high levels of encryption to ensure that anything you send or receive is confidential.它們利用安全的通信協議和高級別的加密來確保您發送或接收的任何內容都是機密的。

ExpressVPN

expressvpn-一種vpn工具,可在傳輸時保護您的數據

ExpressVPN – VPN業務中最知名的名稱之一,包括 網絡鎖定開關,私有加密的DNS服務器,廣告攔截器等。

Using a VPN not just secures devices in the office, but on the moves as well.使用VPN不僅可以保護辦公室中的設備安全,還可以保護移動中的設備安全。 This means that so long as your employees and yourself are using a VPN you can safely work from any location around the world.這意味著,只要您的員工和您自己都在使用VPN,就可以在世界各地安全地工作。

您可以在我們的評論中了解有關ExpressVPN的更多信息.


3.保留數據備份

All businesses should make regular backups of important data.所有企業都應定期備份重要數據。 Critical data such as customer details, invoices, financial information, and more are all vital to your business.客戶詳細信息,發票,財務信息等重要數據對您的業務至關重要。 If that data is lost, it would be a disaster.如果這些數據丟失,那將是一場災難。

Creating regular backups can ensure that all important data can be restored at any time.創建常規備份可以確保可以隨時還原所有重要數據。 Even better, backups can easily be automated so that manpower isn't wasted on doing routine things like this.更好的是,備份可以很容易地實現自動化,這樣就不會將人力浪費在執行此類日常工作上。

Today, there are many easy to use and inexpensive data backup applications or services suitable for small businesses.如今,有許多適合小型企業的易於使用且價格便宜的數據備份應用程序或服務。 Some you might like to try include;您可能想嘗試的一些包括;

的Acronis

Acronis-面向消費者和企業的備份解決方案

的Acronis True Image – Acronis是備份解決方案的流行提供商,為各種規模的消費者和企業提供屢獲殊榮的備份軟件和數據保護解決方案。 It is the fastest software we've tested so far for backing up full disks.這是迄今為止我們測試過的最快的軟件,用於備份完整磁盤。 Prices start from as low as $69/year.價格低至每年XNUMX美元起。

EASEUS

easeus-窗口備份軟件可保護您的數據

EaseUS ToDo備份主頁 – EasUS提供改進的界面和豐富的功能列表,支持Dropbox和其他基於雲的存儲解決方案,從而可以輕鬆集成到業務運營中。 Prices start from $29.99/year.價格從每年XNUMX美元起。

If you don't want to use a dedicated backup software, at the very least make use of Cloud storage and perform manual backups.如果您不想使用專用的備份軟件,則至少要利用雲存儲並執行手動備份。 Using Cloud storage means that your data is separate from your geographical location, reducing risk from physical damage.使用雲存儲意味著您的數據與地理位置是分開的,從而減少了物理損壞的風險。


4.保持軟件更新

黑客獲得系統訪問權限的最常見方式之一是通過軟件漏洞。所有軟件都有弱點,開發人員在彌補這些漏洞後通常會發布補丁和更新。

Failing to ensure that all the software you use is kept updated is only going to raise your risk profile.無法確保您使用的所有軟件都保持最新狀態只會增加風險。 Keeping so many devices up to date can be a chore, especially if you don't have an IT department to reply on.保持如此多的設備最新可能是一件繁瑣的事情,特別是如果您沒有IT部門可以回复的話。

Thankfully, many applications can be set to auto update, so make sure to check with the vendors of the software which you are using.值得慶幸的是,可以將許多應用程序設置為自動更新,因此請務必與正在使用的軟件的供應商聯繫。 There are also other ways you can keep software updated such as by using utilities like IObit Updater.您還可以通過其他方式來保持軟件更新,例如使用IObit Updater等實用程序。

IOBIT

iobit-軟件更新工具,可讓您的程序保持最新。

IObit更新器 – IObit更新器是一個精巧,輕巧的應用程序,專注於幫助您保持其餘已安裝內容的更新。 It monitors the programs and either reminds you when updates are available, or can update them automatically on its own.它監視程序,並在更新可用時提醒您,或者可以自動更新它們。

For all your IT devices, make sure that software is always up to date.對於您的所有IT設備,請確保軟件始終是最新的。 Regular updates are critical to ensure that security can be improved.定期更新對於確保安全性至關重要。 Operating systems, programmes, and softwares should all be set to automatic updates where possible.操作系統,程序和軟件都應盡可能設置為自動更新。


5.始終使用Internet安全應用程序

Antivirus software should be used on all devices, from PCs to laptops and mobiles.從PC到筆記本電腦和移動設備,所有設備均應使用防病毒軟件。 Most reputable Internet Security companies such as最知名的互聯網安全公司,例如 賽門鐵克 or 邁克菲 有針對小型企業所有者的特殊計劃,這將使他們可以使用一個許可證來保護所有設備。

You can also choose from different types of Internet Security applications.您還可以從不同類型的Internet Security應用程序中進行選擇。 Some basic ones may only offer anti-virus features, while more comprehensive versions will come fully loaded with multiple features.一些基本的版本可能僅提供防病毒功能,而更全面的版本將完全加載多個功能。


簡而言之,網絡安全

Cyber security is the defence of systems, networks, programs, and even data from digital attacks.網絡安全是防禦系統,網絡,程序乃至來自數字攻擊的數據的防禦。 Cyber threats on the other hand are the elements that cyber security guards against.另一方面,網絡威脅是網絡安全防範的要素。 These threats are designed to do some form of harm to the companies or individuals they target.這些威脅旨在對目標公司或個人造成某種形式的傷害。

Common types of cyber threats include viruses, malware, ransomware, phishing attacks, and more.常見的網絡威脅類型包括病毒,惡意軟件,勒索軟件,網絡釣魚攻擊等。 The complexities of guarding against many cyber threats vary widely depending on how persistent attackers are.防範多種網絡威脅的複雜性因攻擊者的持久性而異。

在網絡安全方面,我們使用諸如防病毒程序,防火牆,惡意軟件檢測器,腳本阻止程序之類的工具以及旨在抵禦上述威脅的其他工具。

為何黑客針對小型企業

由於對公司的針對性網絡攻擊而導致的信息丟失成本在5.9年平均累積2018萬美元。
由於針對公司的針對性網絡攻擊而導致的信息丟失成本在5.9年平均累積2018萬美元(來源).

Hackers don't always target small businesses, but the percentage has been shown to be relatively high.黑客並不總是以小型企業為目標,但事實證明,這一比例相對較高。 To understand why small businesses are involved, you need to have a general understanding of cybersecurity incidents.要了解為什麼涉及小型企業,您需要對網絡安全事件有一個一般的了解。

As business owners, the majority of us are primarily concerned about our finances.作為企業主,我們大多數人主要關心我們的財務狀況。 However, hackers can have many more intentions than simply trying to steal money.但是,黑客可能有更多意圖,而不僅僅是嘗試偷錢。 For example, they may try to shut down your digital operations temporarily, damage your business reputation, or simply be having fun.例如,他們可能試圖暫時關閉您的數字業務,破壞您的商業聲譽或只是開心。 While that may sound offensive, the point is that there are multiple possible reasons why.儘管這聽起來令人反感,但關鍵是有多種可能的原因。

Next we come to the average small business owner, who like me, wants to focus on providing an excellent product or service to the customer.接下來,我們來到像我這樣的普通小企業主,他們希望專注於為客戶提供優質的產品或服務。 This focus often acts as a blinder to us, leading us to forget other important areas such as cyber security.這種關注常常使我們視而不見,使我們忘記了其他重要領域,例如網絡安全。

We also often don't have the resources larger companies do, so it's a matter of economics of scale.我們通常也沒有大型公司擁有的資源,因此這是規模經濟的問題。 The lower the defences a business has, the less effort a hacker needs to put into the attack for it to succeed.企業的防禦能力越低,黑客投入攻擊以使其成功所付出的努力就越少。

To compound things, implementing effective cyber security measures is particularly challenging today.更複雜的是,實施有效的網絡安全措施在今天尤其具有挑戰性。 Urbanized areas have more devices than people and attackers are adopting increasingly creative methods of attack.城鎮化地區的設備數量超過了人們,攻擊者正在採用越來越有創意的攻擊方法。

最後。。。

As you can plainly see, the Internet today can be a very dangerous place, especially so if your business relies on it.您可以清楚地看到,當今的Internet可能是一個非常危險的地方,尤其是如果您的企業依賴它的話。 Since so many of us are connected digitally, the threat carries over even into our personal lives.由於我們中的許多人都進行了數字連接,因此威脅甚至延續到我們的個人生活中。

As a business owner, you need to be able to safeguard not just your own devices, but all devices used by your employees.作為企業主,您不僅需要保護自己的設備,而且還要保護員工使用的所有設備。 Since everything is connected, you are only as strong as your weakest link.由於所有內容都已連接,因此您的實力與最薄弱的環節一樣強。

Finally, I hope that I've given you some ideas on how you can implement some rudimentary security measures without breaking the bank.最後,希望我給了您一些想法,使您可以在不破壞資金的情況下實施一些基本的安全措施。 Take your security as seriously as you can – your business depends on it.盡可能認真地對待安全性-您的業務取決於它。

另請閱讀

關於Timothy Shim

Timothy Shim是一位作家,編輯和技術愛好者。 從信息技術領域開始他的職業生涯,他迅速進入印刷領域,並與國際,地區和國內媒體合作,包括ComputerWorld,PC.com,Business Today和The Asian Banker。 他的專長在於消費者和企業的技術領域。