During the COVID-19 pandemic, most of organizations increased their presence online, enlarging their surface of attacks. The surface of attack for SMEs was enlarged, many of them took business continuity measures, such as adopting cloud services, improving their internet services, upgrading their websites and enabling staff to work remotely.
ENISA published a guide to provide SMEs with practical 12 high-level recommendations on how to improve security of their infrastructure and their business.
Below the list of recommendations provided by the European Agency:
- DEVELOP GOOD CYBERSECURITY CULTURE;
- PROVIDE APPROPRIATE TRAINING;
- ENSURE EFFECTIVE THIRD PARTY MANAGEMENT;
- DEVELOP AN INCIDENT RESPONSE PLAN;
- SECURE ACCESS TO SYSTEMS;
- SECURE DEVICES;
- SECURE YOUR NETWORK;
- IMPROVE PHYSICAL SECURITY;
- SECURE BACKUPS;
- ENGAGE WITH THE CLOUD;
- SECURE ONLINE SITES;
- SEEK AND SHARE INFORMATION.
The report published by the ENISA is available here;
(SecurityAffairs – hacking, ENISA)
(SecurityAffairs – hacking, SME)