The information provided on this website does not, and is not intended to, act as legal, financial or credit advice; instead, it is for general informational purposes only. Information on this website may not be current. This website may contain links to other third-party websites. Such links are only for the convenience of the reader, user or browser; we do not recommend or endorse the contents of any third-party sites. Readers of this website should contact their attorney, accountant or credit counselor to obtain advice with respect to their particular situation. No reader, user, or browser of this site should act or not act on the basis of information on this site. Always seek personal legal, financial or credit advice for your relevant jurisdiction. Only your individual attorney or advisor can provide assurances that the information contained herein – and your interpretation of it – is applicable or appropriate to your particular situation. Use of, and access to, this website or any of the links or resources contained within the site do not create an attorney-client or fiduciary relationship between the reader, user, or browser and website owner, authors, contributors, contributing firms, or their respective employers.
Credit.com receives compensation for the financial products and services advertised on this site if our users apply for and sign up for any of them. Compensation is not a factor in the substantive evaluation of any product.
There is a great deal of false information out there about data breaches, and yet it is imperative that a company knows as much as possible about this important liability.
Here are five common myths about data breaches that could put a business, and its customers’ data, at risk:
Small businesses are at risk for cyberattacks just like big companies. In fact, some cybercriminals prey on small businesses exclusively because their lack of caution and proper security measures make them easy targets. One out of every five small businesses becomes a victim to cybercrime, according to IDT911’s Knowledge Center. Of these small companies, 60% go out of business within six months.
Some people think that information security is just one aspect of the IT department. In fact, the two things are different. Information security teams focus on making sure that information is kept as securely as possible, given the resources of the company. Information technology works to make sure the business runs smoothly. Companies need to have both of these capabilities in the company, so that data not only is readily accessible but secure as well.
The reality is much of the risk behind data breaches is due to internal sources. Workers may leave their laptops unattended or use easy-to-guess passwords. This problem can be fixed with proper training. Preventing data breaches at a firm is not only the responsibility of the information security team, it is the responsibility of everyone within the company. Some businesses now begin training employees during orientation to be vigilant against cyberattacks. There are many ways to protect a company from internal risk.
Vendors are indeed a threat — companies as diverse as Adobe, LexisNexis, JPMorgan and others have all experienced data breaches. Businesses shouldn’t trust their vendors to do the appropriate due diligence for them.
Although firewalls are important for keeping your networks secure in the most basic way possible, they are only one part of a larger chain of defense that will keep your company safe. Ninety-six percent of data breaches happen to companies with minimally protective firewalls, according to the Verizon 2011 Data Breach Investigations Report.
Image: iStock
October 19, 2023
Identity Theft and Scams
May 17, 2022
Identity Theft and Scams
May 20, 2021
Identity Theft and Scams