Endpoint Security a Concern for Small Businesses
Nearly a quarter of executives said they believe lock down--when functionality of the system is restricted--is not secure.Businesses overwhelmingly fear that standard security precautions create a false sense of security for laptop and mobile users, according to an Alertsec survey of 1,255 executives at small to mid-size businesses. More than two-thirds of executives (68 percent) believe auto-saved passwords are not secure and nearly half (48 percent) of executives believe never logging out of user profiles decreases security. Third on their list of top security is the need to have four to six digital passcodes (45 percent). "As more and more information is stored in the cloud, the endpoint is now the weakest point in the security chain. Small items, such as phones, get lost easier than tablets or laptops," Ebba Blitz, president of Alertsec, told eWEEK. "So, it’s important to educate co-workers on good IT security hygiene. This means to use password locks on all devices. This is not a default setting for phones or tablets, it has to be turned on." Blitz noted that most work is done from portable laptops, and said a user is extremely vulnerable if someone has physical access to a lost or stolen laptop, unless the device is encrypted.
"A typical user stores usernames and passwords in the browser, which means that if their laptop is hacked, a perpetrator could have full access to all data stored in the cloud," he explained. "A hack is performed with the hard drive either booted to another device or a password generator in the USB port gives the perpetrator the correct entry password. According to the Ponemon Institute, 86,000 laptops are lost each year only in Manhattan."