Digital security for the new entrepreneur

Issue 6 2022 Information Security


Steve Flynn.

As South Africa’s entrepreneurial spirit blossoms, digital security is more important than ever, warns Steve Flynn, sales and marketing director at ESET Southern Africa.

The pandemic fundamentally changed the working world forever. Not only are more employees working remotely, but more people are starting their own businesses – often from home. There has been a significant increase in new entrepreneurial activity amongst working-age South Africans, up from 10,8% in 2019 to 17,5% in 2021, according to the Global Entrepreneurship Monitor (GEM) report 2021/2022 released by Stellenbosch Business School.

The digital work landscape also looks very different today. With affordable, high-bandwidth connectivity more readily available in South Africa, we are now more marketable than ever before to take on remote, higher-paying jobs for foreign entities. Covid-19 also necessitated more complex collaboration in the form of virtual meetings, ultimately improving our ability to work and communicate in isolation.

But, of course, all this digital growth has created a fertile breeding ground for new threats. ESET’s T2 2022 Threat Report, released in October, examines threats mostly impacting individual and home users. ESET phishing feeds showed a sixfold increase in shipping-themed phishing lures, with most presenting victims with fake DHL and USPS requests to verify shipping addresses. A web skimmer known as Magecart constituted three-fourths of all banking malware detections.

Furthermore, misconfigured remote access services continue to give bad actors an easy access path to company networks as Remote Desktop Protocol (RDP) attacks continue to grow. According to ESET’s threat report, for the first four months of 2022, over 100 billion such attacks were attempted, over half of which were traced back to Russian IP address blocks.

Start-up security mistakes

Small businesses or new entrepreneurs often make the mistake of thinking that they don’t need paid cybersecurity, that software from the world’s trusted vendors is secure, or that their small businesses won’t be an attractive target.

That, unfortunately, is a mistake as small businesses are easy targets. Threat actors are targeting smaller companies at scale, making it well worth their while. There are so many risk vectors today that everyone, from the sole proprietor selling wares online to large corporations, must adopt a sensible, pragmatic and responsible approach to security.

And though the scale, required expertise and products used will differ significantly depending on company size, the basics remain the same. By using strong passwords, reputable cybersecurity software, backing up and encrypting data, and being on the lookout for social engineering, you are already a long way towards an effective security posture.

When it comes to home-based employees and small entrepreneurs, there are some habitual mistakes that often open the door to threats. The most common is using very simple, easily cracked passwords. Some people even use the same password across all sites, therefore leaving every site open to being compromised by bad actors. Use a password manager and password best-practices, with multi-factor authentication wherever possible.

The same can be said for storing and saving data, from storing on unsecured physical devices through to cloud environments. Use reputable companies to store your data in the cloud and use encryption for all physical devices. Back up your data on a regular basis and upload to an offsite location, should a situation arise where your local storage and devices are compromised.

Lastly, even when home office environments have some form of security such as a router, antivirus, and secured Wi-Fi or a hardwired connection, many entrepreneurs and employees work from coffee shops or restaurants that have open, unsecured Wi-Fi, exposing their data to risk. Never use open Wi-Fi as it is not secure and leaves you and your device open to prying eyes and potential attacks.

How to choose security

Take your time researching options. You want to ensure your working environment is secured with best-of-breed cybersecurity software that can cover the entire infrastructure, requires little to no maintenance, and is easy to install and implement from the get-go.

ESET’s bundles provide protection across all devices, are easy to install and configure with best practices out of the box, making it easy for entrepreneurs to concentrate on their business and not on their security posture. It’s light on resources, operating with high efficiency and low impact on hardware. Depending on which solutions you choose, we offer world-leading cybersecurity software, banking and payment protection, device control, webcam protection, password manager, encryption, firewall and access to live grid.

You’ll also have access to local support, in local languages, from a very experienced team of engineers. When starting a new business, you should be spending your time building your business and not on security. Luckily, there are highly skilled companies out there offering secure environments, incredible security services and expert help. Recognise their importance and use them.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
What does Agentic AI mean for cybersecurity?
Information Security AI & Data Analytics
AI agents will change how we work by scheduling meetings on our behalf and even managing supply chain items. However, without adequate protection, they become soft targets for criminals.

Read more...
Phishing attacks through SVG image files
Kaspersky News & Events Information Security
Kaspersky has detected a new trend: attackers are distributing phishing emails to individual and corporate users with attachments in SVG (Scalable Vector Graphics) files, a format commonly used for storing images.

Read more...
Crypto in SA: between progress and precaution
Information Security
“As cryptocurrency gains momentum and legitimacy, it’s becoming increasingly important for people to pay attention to financial security”, says Richard Frost, head of technology and innovation at Armata Cyber Security.

Read more...
Cyber recovery requires a different approach to disaster recovery
Information Security
Disaster recovery is about getting operations back on track after unexpected disruptions; cyber recovery, however, is about calculated actions by bad actors aiming to disrupt your business, steal sensitive data, or hold your system hostage.

Read more...
MDR users claim 97,5% less
Sophos Information Security
The average cyber insurance claim following a significant cyberattack is just $75 000 for MDR users, compared with $3 million for endpoint-only users, according to a new independent study.

Read more...
The impact of GenAI on cybersecurity
Sophos News & Events Information Security
Sophos survey finds that 89% of IT leaders worry GenAI flaws could negatively impact their organisation’s cybersecurity strategies, with 87% of respondents stating they were concerned about a resulting lack of cybersecurity accountability.

Read more...
Efficient, future-proof estate security and management
Technews Publishing ElementC Solutions Duxbury Networking Fang Fences & Guards Secutel Technologies OneSpace Technologies DeepAlert SMART Security Solutions Editor's Choice Information Security Security Services & Risk Management Residential Estate (Industry) AI & Data Analytics IoT & Automation
In February this year, SMART Security Solutions travelled to Cape Town to experience the unbelievable experience of a city where potholes are fixed, and traffic lights work; and to host the Cape Town SMART Estate Security Conference 2025.

Read more...
Kaspersky KATA 7.0 for targeted attack protection
Information Security Products & Solutions
] Kaspersky has announced a major update to its Kaspersky Anti Targeted Attack (KATA) including enhanced network detection and response (NDR) capabilities with deeper network visibility, internal threats detection and other critical security features.

Read more...
The role of advanced technologies in ransomware recovery
Information Security
As businesses increasingly adopt cloud technologies, the complexities of maintaining resilience and ensuring rapid recovery from such incidents become even more pronounced. The integration of advanced technologies is essential to navigate these challenges effectively.

Read more...