So many of us are working hybrid or fully remote, which has its benefits (hello, flexibility) but also its challenges. Cybersecurity is one of them. How can we be sure we’re taking the right measures to protect our devices and data from cyberattacks while we’re working anywhere and everywhere?

Kochie’s Business Builders spoke with a Microsoft expert who shared some golden rules for small and medium businesses looking to get their cybersecurity hygiene in order.

1. Genuine software is a genuinely good idea

Buying unlicensed software to cut corners can not only cost you way more in the long run, it can ruin your business.

Using inauthentic versions of Windows and other Microsoft apps, for example, opens the door (literally) to malware, allowing viruses, spyware and other harmful code to sneak into your computer systems and wreak havoc.

Cybercriminals use malware to breach your data and get hold of sensitive information such as passwords. They may even install ransomware where they lock down your files and only release them for a fee. Scary, right?

This is why it’s important to always use genuine, licensed software, such as Windows 11 Pro. The latest version has the most enhanced security protections to date.

But it’s not only software that cybercriminals can breach. Nowadays they’re also targeting hardware which is why it’s essential to upgrade to modern devices powered by Intel vPro to get optimal protection for your hardware and software.

If you’re unsure about what devices to buy, don’t shy away from contacting an authorised Microsoft reseller.

“We have several partners that offer consultancy and will help small business owners get set up with the right devices for their organisation,” says Andy Malakooti, Microsoft Australia and New Zealand’s Commercial Category Lead, Device Partner Sales.

“Whether it’s one device or several devices you need, seek out the experts. It doesn’t necessarily cost more because they have special pricing arrangements that are often more competitive than buying retail.”

2. Manage your passwords securely (or go passwordless)

Windows Hello lets you sign in with facial recognition, fingerprint or a physical security key. Image: Supplied.

It may be cute to enter your cat’s name as your password, but you need much more sophisticated password management to protect against cyberattacks.

Microsoft’s browser Edge has a built-in password generator, manager and monitor. It will generate a strong password unique to a specific website you visit, save the password and monitor it. If the password does leak online, Edge will notify you and urge you to change it.

An even better solution is to go passwordless. More websites are now supporting FIDO (Fast Identity Online). With a site that supports FIDO, you can use Windows Hello, which is built into the Windows 11 Pro operating system to sign in using facial recognition, your fingerprint, or a physical security key.

“This makes it easy and quick to sign in, but it’s also so much stronger than relying on a password that somebody could stand over your shoulder and watch you type in,” Andy tells Kochie’s Business Builders.

3. Activate your browser’s security features to guard against phishing attacks

Phishing is responsible for almost 70 per cent of data breaches. In a phishing attack, you’re duped into clicking on a link in an email to a bogus website and entering sensitive or confidential information, including passwords.

“Some phishing sites are so convincing and because the emails look like they’re coming from a legitimate source like your boss or co-worker, it’s easy to let your guard down,” says Andy.

To combat phishing attacks, Microsoft has created SmartScreen, a list of more than a billion suspicious URLs that the tech giant has compiled. It’s constantly updated and works alongside Edge to alert users if they’ve landed on an unsafe site or a site known for phishing and warn them to change their password.

4. Protect your devices when you’re out and about

When you’re using your device in public, make sure you lock it whenever you’re not using it. Even those few seconds that you walk away from it to collect a coffee is enough for a thief to swipe it.

Andy also recommends turning on BitLocker, a Windows technology that encrypts the drive inside your device. So if you lose it or it’s stolen, the contents are inaccessible to anyone else.

5. Turn on automatic security updates

Privacy and security settings in Windows 11. Image: Supplied.

To ensure that you’re protected from the most recent cybersecurity threats, it’s important to keep Windows 11 Pro updated.

The good news is that Windows 11 Pro updates are typically smaller and take far less time to install than previous versions of Windows. There are fewer restarts required and you even get an estimate of how long an update will take.

“We’re removing the excuse of not being able to do updates due to downtime in your business,” says Andy.

6. Get your staff trained on security measures

As we’ve seen, even the most enhanced technological security features also require people to develop cybersmart habits to keep their devices and data safe.

COSBOA, the Council of Small Business Organisations Australia, has developed a free education initiative to train employees to become Cyber Wardens. Similar to a workplace safety officer, these staff will be trained to protect businesses from digital threats.

According to the Australian Cyber Security Centre’s Cyber Threat Report 2020/21, a single email attack costs businesses an average of $50,000. A trained Cyber Warden could help to prevent this and more.

Find out more about cybersecurity and Windows 11 Pro on modern devices powered by the Intel vPro platform here.

This article is brought to you by Kochie’s Business Builders in partnership with Microsoft.

Feature image: AdobeStock