Cyber-attacks – how to defend against them and what to do if they already happened

iStock.com/tiero

Cyber-attacks – how to defend against them and what to do if they already happened

We hear about it all the time: cyber attacks, hacked systems, the theft of company or personal data.

Nobody is 100% safe from them, but how do they happen in the first place? Unfortunately, standard anti-virus programs and other means do not provide complete protection. There are many well-known ways to be hacked and simple things like weak passwords or a reply to a phishing email often lead to security loopholes in which data can be leaked.

Many people are probably aware of this but tend to ignore it for various reasons: outdated operating systems or a missing security update also make a company vulnerable. Here, supposed savings on updates can end up being very expensive.

Are you still using Windows Server 2012 or an older version, for example?  We strongly advise you to update it. In general, you should always be up to date with all software, as the developers not only fix annoying bugs in newer versions but also close possible security gaps. To protect your data, you can set up your systems in a distributed manner as a preventive measure to make it more difficult for attackers to access them from outside.

We at HÜNGSBERG recognise the advantages of a distributed installation and offer this with our DAXware solutions. The database and engDAX/ediDAX engine are installed in the LAN, while only the communication core is located in the DMZ.

This means that all data is routed securely from the external network first to the DMZ and then to the internal LAN, where your sensitive data remains internal and is safeguarded from external access.

The DMZ acts as an intermediate zone between the internal LAN and potential attackers from the external network to guarantee the internal network’s security.

Please contact us for advice on distributed installation or to find out how you can set up secure data exchange via EDI in your organisation. (Please send an e-mail to Sales@huengsberg.com)

What to do if something has already happened?

First of all: it is important to stay calm and not panic. But quick, level-headed action is definitely necessary to prevent the damage from becoming even worse:

  1. isolate the affected system from the network to prevent the attack from spreading
  2. notify your IT department of the incident so they can analyse and rectify the problem. The IT department can then inform relevant managers and departments about the incident so that they can take action
  3. document all relevant information about the incident
  4. the IT department can then contact external experts and request help if necessary
  5. malicious software must then be identified and removed, all systems must be thoroughly checked for and purged of malware
  6. change the passwords for all affected accounts and systems so that unauthorised access is no longer possible
  7. inform your employees responsible for data protection about the affected locations and the steps taken
  8. important note: such incidents may have to be reported to certain authorities, this is mandatory in some countries

Unfortunately: A cyberattack is always possible, companies can only take preventative action by keeping their infrastructure up-to-date and secure and by sensitising employees to the topics of data protection, phishing, and cybersecurity through training.

At HÜNGSBERG, the security of your data is a priority: we regularly train our staff on data protection and security as well as the dangers of cybercrime to ensure that hackers don’t stand a chance.

You must be logged in to post a comment.

Who is writing for you?