Copy Notify!: Data Loss Prevention.PC Security Software for Small Business Users.

Data Loss Prevention

User Account & Passwords.a FREE weapon against a DATA Breach.

By Mr. Zarir. M. Karbhari - Founder & CEO of CopyNotify!

Corporate Data Theft, a Data Breach of customer data & Insider Threats are buzz words giving sleepless nights to so many small business owners. The realization that data leak prevention is a major concern has finally struck home and so has the panic installation of all the possible endpoint security software or data loss prevention suites become the order of the day.

Sure, you must have the required data security software loaded on your network to prevent insiders from copying your confidential data but many seem to be ignoring that fact that your already installed network infrastructure and policies need also to be tweaked in this battle against the dreaded leak of SMB data.

One of the most crucial foundations to good data theft prevention in a small business network is having a proper user account and password management policy of your computer users. This policy should be kept simple and based on common sense.

Below are a few simple tips as regards to User Accounts (Logon) and Password security procedures that could assist you in your quest of securing your network against data theft.

1. Do not have a common user name and password across all computers. It might be more convenient to mange but this will allow anyone from anywhere whether authorized or not, to log into any office computer and access data easily.

Also a majority of audit tools and logs use Logon name as a criteria to keep track of what an employee  does on the network and if the logon name is same across all the employees the you will have no idea who actually did what on the office network.

2. Stop giving all users administrative privileges just because it was easier to set up and install applications. The more privileges you give to a user, the more damage he can do to your data on that computer as well as data on the rest of the network.

3. When an employee resigns, his or her logon account should also be deactivated or deleted as a matter of procedure. This not only reduces the overhead of account management but also reduces the chances of data leakages due to access available via dormant accounts of ex-employees.

4. Passwords should be made to expire regularly hence forcing users to reset their passwords. This is a well known anti data theft strategy which makes it more difficult for an computer account to be compromised.

5. Blank Passwords is a big 'NO NO' for networking security. Do not allow users to have NO Password for their account logon. Having no password for an network account is like having no Logon itself.

6. Using Default Passwords is another habit that needs to be broken. For sake of convenience of installation and configuration default passwords are used for many OS deployments. Now these default passwords are common and are widely known and hence they need to be changed before that particular computer goes live on the network.

7. Simple Education to the employees regards to the creation of strong passwords, all the while convincing them that creating passwords which can be easily guessed such as their own name plus date of birth or wife's/husband's name or pet's name etc. is really not the best password to have. Of course many use "PASSWORD" as the password spelling even further disaster.

8. Set your Logon Authentication such that the account gets locked out if multiple tries have been made to log on with an incorrect password. Multiple logon attempts usually takes place when a hacker is trying to guess a password with each logon attempt.

9. Disallow Remote Logons unless requested and ensure remote logons are disabled once the activity is completed.

So in conclusion just use a common sense and consistent approach to your Account Management Security Policy and you will be  shutting a lot of security holes thru which data leaks could take place and best of all its FREE and already on your network !

CopyNotify! on Twitter