Small Businesses-All businesses, and consumers too, for that matter-face a miasma of threats every day.
There are direct attacks, such as drive-by downloads and application exploits, and indirect attacks, such as phishing-and while I’m mentioning one type of e-mail attack I’ll throw in spam for good measure, If you can defend against all that, then start thinking about internal threats: podslurping, users running unauthorized applications, and data theft. It’s no picnic out there for security admins.
What You can Do
Start by educating staff about high-risk behaviors. Explain the dangers of phishing and identity theft. Discourage downloads and installation of unsupported applications. Explain how dangerous various plug-ins and ActiveX components can be. Teach staff not to open unexpected attachment, and not to click on the links in spam.
USB memory keys and other writable media-notably iPods- are well-known threats, enabling extremely easy theft of data. Despite this, nearly 50 percent of IT staff surveyed take no preventive measures against iPod use in the office.
86% of IT workers surveyed cited USB flash drive as the device most often used to store and move data.
61% use an iPod.
67% believe that iPods are a security risk.
49% stated they would not use preventive measures.
Keep the following in mind when evaluating endpoint security solutions:
Courtesy PC Magazine May 08
Master End-User Security
06 20 08'