Over the past weeks, the Panama Papers have been all over the news. These documents shed light on how billionaires and large corporations are able to hide assets and avoid taxes, but there’s another important point that many people tend to miss – they show exactly how important IT security is.
The information found in the Panama Papers is highly sensitive and was guarded closely by Mossack Fonseca, the law firm that owned it. However, their security wasn’t diligent enough to keep somebody outside the organization from obtaining and distributing it. While we don’t know exactly how the security breach occurred just yet, we do know that their security was lacking in several key areas.
As a small- or medium-sized business owner, this should terrify you. Reports estimate that over 11.5 million files consisting of about 2.6 terabytes of information were stolen without anybody noticing. Stealing the amount of information that your company stores would be trivial in comparison.
To alleviate your fears, we’re going to take the time below to discuss exactly how Mossak Fonseca failed to protect its valuable information, and what precautions you can make to avoid the same fate.
Client Portals
According to Wired UK, one of the biggest vulnerabilities of Mossak Fonseca was their client portal. It ran on an obsolete version of SSL, leaving it open to a variety of known attacks. Shockingly, the last time it was updated was back in 2013.
You need to take your customer’s privacy as seriously as possible. Any client-based portals must be updated regularly to protect from known and unknown threats. The longer it goes without an update, the more vulnerable it is.
Email Servers
Another important failure of Mossak Fonseca’s was an inability to secure their email servers. Their email servers were just as obsolete as their client portal, running a version of Outlook that hadn’t been updated since 2009. Worst of all, they failed to encrypt outgoing emails, which left every single email they sent vulnerable.
In order to make sure your email is safe, your email server needs to be professionally managed and updated the second patches come out. Outgoing mail must be properly encrypted and incoming mail needs to be scanned for threats.
Internal Employees
Due to the volume of information stolen, it’s unlikely that a single user was at fault. However, internal employees are still one of the biggest security risks at your company. If their passwords are easy to guess or left out in the open, a brute force attack is rudimentary, and any information they have is accessible to anybody who wants it.
To completely secure your organization, you need to make sure your employees are trained and capable of dealing with security issues. This means managing their passwords appropriately, being able to recognize phishing attempts, and handling sensitive information carefully.
If you want to avoid experiencing a disaster like the Panama Papers at your own business, you need to take the time to develop the right strategies and process. If you need help with that, your best bet is reaching out to your local Roswell experts here at Centerpoint IT. We have the experience necessary to help secure your website, client portals, emails, and employees.
To reach out to us today, all you need to do is email us at info@centerpointit.com or give us a quick call at (404) 781-0200.
Call our business managed IT services department directly at (404) 777-0147 or simply fill out this form and we will get in touch with you to set up a getting-to-know-you introductory phone call.
Fill in our quick form
We'll schedule an introductory phone call
We'll take the time to listen and plan the next steps
11285 Elkins Rd Suite E1, Roswell, GA 30076
© Copyright 2024 Centerpoint IT. All Rights Reserved. Website in partnership with Tech Pro Marketing. | Privacy Policy
Get Immediate Help For All Your Technology Issues (404) 777-0147
If you want our team at Centerpoint IT to help you with all or any part of your business IT, cybersecurity, or telephone services, just book a call.
Fill in your information below to get started today.
"*" indicates required fields
Fill in your information below to schedule now.
"*" indicates required fields
Before your organization commits to 1, 2, 3 or even longer managed IT services contract, understand what you’re getting. Centerpoint IT gives you the facts in our Managed IT Services Buyer’s Guide.
Enter your information below and we’ll send it over.
"*" indicates required fields
We are turning 15 and want to celebrate this milestone with you because without you this would not have been possible. Throughout this year look for special promotions on services and tools aimed at Making IT Simple for You so you can focus on your business.
We are turning 15 and want to celebrate this milestone with you because without you this would not have been possible. Throughout this year look for special promotions on services and tools aimed at Making IT Simple for You so you can focus on your business.
https://calendly.com/centerpoint-it/discovery-call