Consumers have been the target of most of the fraud prevention measures the Equifax breach highlighted. However, there are many things business owners should also put into place in highlight of this case.
Here are nine steps you can take to help protect your business. The first step is to act quickly and review your current security protocols and measures.
- For new clients that may be logging into portals and online systems, consider upping the account access information to include additional questions only the user would know the answer to.
- Using multi-factor authentication and/or pins on accounts with sensitive information, such as medical accounts, tax record accounts, business-related accounts, etc.
- Consider biometric authentication (such as thumbprint recognition) for sensitive accounts. Banks are beginning to adopt this technology for online apps.
- Verify client information in your system. If accounts have not been updated in a while, request that a profile review be conducted by each system member.
- Share information about data security, your measures to combat security breaches, and how you would communicate with employees and account members. This is often placed on a web page, such as Security Measures or Terms and Conditions.
- Update the company’s contact information and help desk support ticket system with a “data breach” button or drop-down menu item. That gives account holders a chance to notify you that a breach may have taken place and alert the technical team about it.
- Train staff on security measures, fraud warning signs, phishing schemes, and response protocol.
- Build a crisis communication and/or response plan that can be executed quickly. Digital Solutions offers a nice checklist to emulate.
- Monitor frequent ports of fraud entry, such as websites, online portals, apps, membership services, etc. for any frequent “attacks.” Google’s Webmaster tools are good on the website level, along with WordFence for WordPress sites. SSL and TLS Certificates are also good on the web hosting level. However, these tools are not fool-proof. Additional measure many be needed by your IT team.
A data breach, at any level, is a concern for both businesses and consumers. The time is now to check your systems, implement data security, and monitor online activity.
If you need assistance implementing these steps, upgrading your current system, or are in need of training, give us a call. We specialize in IT systems for businesses.