Simple steps to counter cyber threats

As the digital landscape expands, so does the threat of cybercrime.  Small and Medium- sized Enterprises (SME) in construction and trade are not immune. Digital Inc vice president AsiaPacific Mark Gorrie sets out 10 simple steps to help Kiwi construction and trade enhance cyber security.

In an era where cyber threats are rampant, the construction and trade industry in New Zealand must prioritise cyber-security to safeguard their businesses and customers.

Recent statistics reveal a concerning trend — nearly a quarter of SME in New Zealand have fallen victim to cyberattacks, and 40 percent of business owners worry they might be the next target.

Perhaps most alarming is the fact that only 14 percent of small business owners are adequately prepared for a cyberattack. 

This lack of preparedness is a costly mistake for many, as businesses that experience a catastrophic cyber event often find themselves on the brink of bankruptcy or even closure.

Despite the prevailing notion that cybersecurity is complex, obscure, and costly, the construction and trade industry must realise that effective cybersecurity solutions need not be intimidating or expensive. 

There are tailored cybersecurity options available that can offer the right level of protection based on the specific stage of growth, digital maturity, and industry of each business.

Top tips for New Zealand SME

By adopting these top tips, businesses can significantly reduce their exposure to cyber risks. Investing in robust cybersecurity measures not only protects the business from potential financial ruin but also strengthens customer trust and confidence.

1. Back up your data: The impact of ransomware attacks can be devastating, with 60 percent of SME hit by such attacks going out of business within six months. Ensuring that mission-critical data is regularly backed up is vital to mitigate the potential losses from cyber incidents.
2. Use strong passwords: Shockingly, 19 percent of businesses still use easily guessed passwords or share passwords across accounts, providing cybercriminals with a straightforward path to infiltrate systems. Implementing strong passwords and avoiding password reuse is a fundamental step in safeguarding sensitive business data and systems.
3. Train and educate employees on cyber safety: Phishing emails continue to be a major threat, with 30 percent of  SME falling prey to such scams during Covid lockdowns. By educating staff on how to recognise and handle suspicious online activity, businesses can significantly reduce their vulnerability to cyber threats.
4. Patch your systems: Poor patch management is responsible for 57 percent of data breaches. By regularly applying security patches and updates, businesses can prevent cybercriminals from exploiting known vulnerabilities and causing disruptions.                                                   
5. Strengthen access control: Effective access control mechanisms allow organisations to manage and restrict access to critical data and resources, preventing unauthorised access and data breaches.
6. Have a breach response plan: Despite best efforts, breaches can still occur. Having a well-thought-out disaster recovery plan in place enables businesses to respond swiftly and effectively to mitigate the impact of a breach.
7. Install a reputable, paid-for security suite: Installing and updating security software is a basic yet crucial step in protecting against malware, viruses, ransomware, and other cyber threats.
8. Secure your networks: Wi-Fi networks should be appropriately secured to prevent unauthorised access. Additionally, providing remote workers with virtual private network (VPN) ensures secure access to the company’s network.
9. Install a BYOD policy: As BYOD practices become prevalent, having a documented Bring Your Own Device policy focused on security precautions is essential to safeguard sensitive business data accessed through personal devices.
10. Use multi-factor authentication (MFA): MFA adds an extra layer of security beyond traditional usernames and passwords, significantly reducing the risk of unauthorised access and account breaches.

Gen Digital Inc. is a global cyber safety and digital security company which provides cybersecurity, online privacy, and identity protection services. The company offers its solutions under well-known brands like Norton, Avast Business, LifeLock, and CCleaner to more than 500 million users in more than 150 countries.