We have highlighted before, the fact that when it comes to IT security, one of the weakest links in an organisation is its people.
When cyber criminals succeed in extorting data or money, it is often not due to sophisticated software or clever technological knowledge. In many instances it is due to the criminals managing to catch employees off guard, and those employees inadvertently allowing the breach to take place.
Recently, US company LastPass confirmed a large breach of its customer data, including names, email addresses, phone numbers and some billing information. LastPass provides password management software (not used by HJS Technology!) to customers across the globe.
LastPass has now revealed that they suffered a cyber attack which started with the home computer of an employee who had been targeted. That employee was one of a very small number of people with access to a master password, which the attackers were able to steal and then use in the main attack.
Whilst the company has not revealed the detail of exactly what happened, it demonstrates that attackers will go to great lengths to identify the individuals in an organisation who may be useful to them. This applies to small businesses as well as multi-nationals.
It is so important that your people receive regular training to keep them alert to the potential risks. Cost-effective online training courses are available which comprise of short weekly videos and tests. To find out more, give us a call or enter your contact details here.