On average, about two-thirds of people give up on their new year’s resolutions by February. It is easy to give up on goals we have for 2020 like eat less sugar, work out, or read more books with little to no consequence. However, when it comes to making cybersecurity resolutions, MSPs do not have this luxury.
With the recent implications of hackers targeting MSP networks, it is now more imperative than ever to ensure your business and your clients are set up for cybersecurity success in 2020. Here are three mistakes you definitely do not want to make this year.
1) Assume You are Not the Target
While you may preach cybersecurity readiness to your clients, many MSPs tend do not consider themselves as viable targets for hackers and other malicious actors. This statement could not be further from the truth. Many MSPs have unparalleled access to SMB and enterprise networks which in turn makes any services provider the Costco of network access for cybercriminals. They can easily ‘buy in bulk’ and get twice the haul that they would normally find with targeting just one business. Every MSP and client network could be vulnerable if the proper steps to secure said networks are not taken.
2) Rely Solely on Endpoint Security for Protection
Many have heard the term ‘Layered Security’ and know how this approach to building out a cybersecurity defense strategy can be effective in curbing hackers’ attempts. Layered security is about creating multiple levels of protection for which hackers need to bypass. Much of layered security is ensuring that not only the targeted machines and networks are protected, but also the potential attack vectors that malicious actors may utilize to deliver a payload are neutralized.
The most common attack vector among MSPs and their clients has been and remains email. While you are still protecting your endpoints from viruses and other malware using a top-notch endpoint security solution, hackers can utilize the aspect of human error to ensure their payloads are delivered by sending well-crafted messages to click-happy end-users. One way to begin implementing a layered security approach is to utilize an email security product that works in cooperation with your endpoint security solution. Most email security solutions will prevent malicious emails from even reaching their recipient, stopping any phishing or email-based attack dead in its tracks.
3) Ignoring the Human Aspect of Cybersecurity
The security of a network is only as good as the users on it. As cybercrime becomes more rampant and malicious actors become more sophisticated in their attempts to penetrate user networks and steal personal information, it becomes essential for network admins and/or MSPs to train their end-users on proper protocols and what to be wary of in terms of cyberattacks. While this is extra effort and requires additional time commitment, many clients and business leaders will appreciate the thoroughness of network protection you are seeking. Additionally, for MSPs, cybersecurity training can also mean a bonus service offering for your clients that enables you to maximize revenue.
While we may never know what cybersecurity challenges await us in each year, we know we must be prepared as the threat landscape evolves daily. VIPRE Security understands that cybersecurity professionals of all shapes and sizes must implement a layered security approach that utilizes not only effective endpoint security but neutralizes attack vectors such as email. Here is to a successful and secure 2020!