WAYS TO PROTECT YOUR COMPANY FROM AN EXPENSIVE AND EMBARRASSING CYBERATTACK
                     WAYS TO PROTECT YOUR COMPANY FROM AN 
EXPENSIVE AND EMBARRASSING CYBERATTACK
INTRODUCTION
Cyber-attacks have moved to the front page of the 
news. The attack on Colonial Pipeline and JBS Foods 
went to the heart of the US energy and food supply 
systems. Hospitals and health organizations were hit 
in 2020 impacting over 18 million patient records 
and costing $ 21 Billion. No one is immune as 43% 
of attacks are against small businesses. So being 
big or small does not escape the attack. The 
criminals behind these attacks are building more 
sophisticated profit-oriented organizations, even 
investing in AI (Artificial Intelligence) and talent to 
keep a few steps ahead of the defense.
WAYS TO PROTECT YOUR COMPANY 
FROM CYBERATTACK 
SECURITY AWARENESS TRAINING EMAIL GATEWAY SECURITY OPERATING SYSTEM PATCHING VULNERABILITY MANAGEMENT
SECURITY AWARENESS TRAINING
Security Awareness doesn’t remove the element 
of human judgment, but it does help make human 
judgment better thereby giving you better odds 
against the bad guys. Security Awareness Training 
providers provide training materials, online 
training programs, baseline testing, simulated 
phishing attacks, and reporting results. A leader 
in this area, KnowBe4, has reduced the phishing-
prone percentage from a baseline of 37% to 4.7 % 
over 12 months. Costs range from $ 4 to $ 30 per 
user for the year based on the program details 
and the total number of users involved.
EMAIL GATEWAY SECURITY
Email gateways servers act as a gateway through which every 
incoming and outgoing email passes. The purpose is to monitor all 
emails and only let the good ones go in our out. Incoming emails are 
monitored for spam, phishing attacks, malware, or fraudulent 
content. Outgoing email can be monitored to ensure sensitive data is 
not leaving the organization or that it is encrypted. Email gateway 
security providers are needed for both on-premises and cloud email 
solutions. Office 365 email on its own does not provide this. It needs 
to be combined with Microsoft Defender for Office 365 or a third-
party product like Darktrace Mimecast or Proofpoint
OPERATING SYSTEM PATCHING
Statistics show known vulnerabilities that have not been patched 
can be the source of more than 60 % of security breaches. Some are 
vulnerabilities that have had patches available for years. 
Vulnerabilities in total will be discussed further down but one part of 
vulnerability patching and one that is quite common is Operating 
System Patching for Microsoft, Linux, and other OS. We are used to 
doing this on the personal side as many of us have our laptop or PC 
set to automatically download and apply patches as they become 
available. These patches add features, fix software bugs, and 
eliminate security vulnerabilities with 
Vulnerability Management Services.
VULNERABILITY MANAGEMENT
Almost 18,000 new software vulnerabilities were reported in 2020 
which set a record. Everything is becoming software so beating this 
record will be the norm going forward. As stated earlier, unpatched 
vulnerabilities play a significant role in allowing cyber attackers 
easier access to entry. Software providers work hard to develop 
patches for these vulnerabilities but for customers patching in such 
large numbers is challenging. It requires a solution like Qualys, 
Tenable, or Nexpose that smaller businesses may not feel is justified. 
These tools automatically inventory assets, determine current patch 
level, unpatched vulnerabilities, and provide the solution to eliminate 
the vulnerability. The solutions may include patching, configuration, 
or upgrading versions.
CONTACT US NOW!
EMAIL WEBSITE PHONE
[email protected] www.allari.com +1 8669372224