Digital security for the new entrepreneur

Issue 6 2022 Cyber Security

Steve Flynn.

As South Africa’s entrepreneurial spirit blossoms, digital security is more important than ever, warns Steve Flynn, sales and marketing director at ESET Southern Africa.

The pandemic fundamentally changed the working world forever. Not only are more employees working remotely, but more people are starting their own businesses – often from home. There has been a significant increase in new entrepreneurial activity amongst working-age South Africans, up from 10,8% in 2019 to 17,5% in 2021, according to the Global Entrepreneurship Monitor (GEM) report 2021/2022 released by Stellenbosch Business School.

The digital work landscape also looks very different today. With affordable, high-bandwidth connectivity more readily available in South Africa, we are now more marketable than ever before to take on remote, higher-paying jobs for foreign entities. Covid-19 also necessitated more complex collaboration in the form of virtual meetings, ultimately improving our ability to work and communicate in isolation.

But, of course, all this digital growth has created a fertile breeding ground for new threats. ESET’s T2 2022 Threat Report, released in October, examines threats mostly impacting individual and home users. ESET phishing feeds showed a sixfold increase in shipping-themed phishing lures, with most presenting victims with fake DHL and USPS requests to verify shipping addresses. A web skimmer known as Magecart constituted three-fourths of all banking malware detections.

Furthermore, misconfigured remote access services continue to give bad actors an easy access path to company networks as Remote Desktop Protocol (RDP) attacks continue to grow. According to ESET’s threat report, for the first four months of 2022, over 100 billion such attacks were attempted, over half of which were traced back to Russian IP address blocks.

Start-up security mistakes

Small businesses or new entrepreneurs often make the mistake of thinking that they don’t need paid cybersecurity, that software from the world’s trusted vendors is secure, or that their small businesses won’t be an attractive target.

That, unfortunately, is a mistake as small businesses are easy targets. Threat actors are targeting smaller companies at scale, making it well worth their while. There are so many risk vectors today that everyone, from the sole proprietor selling wares online to large corporations, must adopt a sensible, pragmatic and responsible approach to security.

And though the scale, required expertise and products used will differ significantly depending on company size, the basics remain the same. By using strong passwords, reputable cybersecurity software, backing up and encrypting data, and being on the lookout for social engineering, you are already a long way towards an effective security posture.

When it comes to home-based employees and small entrepreneurs, there are some habitual mistakes that often open the door to threats. The most common is using very simple, easily cracked passwords. Some people even use the same password across all sites, therefore leaving every site open to being compromised by bad actors. Use a password manager and password best-practices, with multi-factor authentication wherever possible.

The same can be said for storing and saving data, from storing on unsecured physical devices through to cloud environments. Use reputable companies to store your data in the cloud and use encryption for all physical devices. Back up your data on a regular basis and upload to an offsite location, should a situation arise where your local storage and devices are compromised.

Lastly, even when home office environments have some form of security such as a router, antivirus, and secured Wi-Fi or a hardwired connection, many entrepreneurs and employees work from coffee shops or restaurants that have open, unsecured Wi-Fi, exposing their data to risk. Never use open Wi-Fi as it is not secure and leaves you and your device open to prying eyes and potential attacks.

How to choose security

Take your time researching options. You want to ensure your working environment is secured with best-of-breed cybersecurity software that can cover the entire infrastructure, requires little to no maintenance, and is easy to install and implement from the get-go.

ESET’s bundles provide protection across all devices, are easy to install and configure with best practices out of the box, making it easy for entrepreneurs to concentrate on their business and not on their security posture. It’s light on resources, operating with high efficiency and low impact on hardware. Depending on which solutions you choose, we offer world-leading cybersecurity software, banking and payment protection, device control, webcam protection, password manager, encryption, firewall and access to live grid.

You’ll also have access to local support, in local languages, from a very experienced team of engineers. When starting a new business, you should be spending your time building your business and not on security. Luckily, there are highly skilled companies out there offering secure environments, incredible security services and expert help. Recognise their importance and use them.

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Insights from the 2023 Cloud Security Report
News Cyber Security
Increased costs, compliance requirements, hybrid and multi-cloud complexities, reduced visibility, and a lack of skilled practitioners cause organisations to slow or adjust their cloud adoption strategies.

New algorithm for OT cybersecurity risk management
Industrial (Industry) Cyber Security News Commercial (Industry)
OTORIO’s new risk management model and attack graph analysis algorithm technology, calculates OT cybersecurity threats and provides risk mitigation actions, prioritised according to actual exposure and potential impact on operations.

Veeam finds 93% of cyberattacks target backup storage
Cyber Security
Veeam unveils the results of its 2023 Ransomware Trends Report, showing cyber insurance is becoming too expensive and 21% of organisations are unable to recover their data after paying the ransom.

Cybersecurity providers must first protect themselves
Cyber Security
In a joint advisory released by cybersecurity agencies across the United States, UK, Australia, Canada and New Zealand, managed security service providers (MSSPs) have been warned of a sharp increase in cyberattacks targeting their systems.

Cyber attackers used over 500 tools and tactics in 2022
Cyber Security News
The most common root causes of attacks were unpatched vulnerabilities and compromised credentials, while ransomware continues to be the most common ‘end game’ and attacker dwell time is shrinking – for better or worse.

Addressing the SCADA in the room
Industrial (Industry) Cyber Security
Few other sectors command the breadth of purpose-built and custom devices necessary to function, as the industrial and manufacturing industries. These unique devices create an uncommon risk that must be assessed and understood to fully protect against incoming attacks.

Recession or stress?
Cyber Security News
The economic landscape has seen many technology companies lay off vast numbers of employees, but for cybersecurity, the picture looks very different – a dynamic mixture of excitement, challenges and toxicity.

Vulnerabilities in industrial cellular routers’ cloud management platforms
Industrial (Industry) Cyber Security Security Services & Risk Management
Research from OTORIO, a provider of operational technology cyber and digital risk management solutions, unveils cyber risks in M2M protocols and asset registration that expose hundreds of thousands of devices and OT networks to attack

NEC XON appoints Armand Kruger as Head of Cybersecurity
News Cyber Security
NEC XON has announced the appointment of Armand Kruger as the Head of Cybersecurity. Kruger will oversee all cybersecurity offerings including cybersecurity strategy, programmes, and executive advisory.

Caesar Tonkin new head of cybersecurity business, Armata
News Cyber Security
Vivica Holdings has announced the appointment of cybersecurity expert Caesar Tonkin to head up its cybersecurity business Armata, which provides technology solutions and niche expertise needed to help businesses better protect themselves.