What hosting companies are doing
What are hosting companies doing to protect the online presence of the tens of millions of small businesses while they unsuspectingly go about their business of making pizza, preparing legal briefs, or manufacturing widgets? Todd Redfoot, Chief Information Security Officer (CISO) at Go Daddy, says the hosting company watches the security of its own website, as well as the security of every hosting customer.
"We monitor what's going on out there in the world because we have to assume, from a security perspective, even if it's not happening here yet it's probably about to." When the security response team discovers that a client site is at risk they will proactively notify them, often before the customer is aware that they have suddenly become a target.
In addition, Go Daddy and other large hosting providers have teamed up to form the Hosting Security Forum with vendors sharing sightings. Members include Media Temple, Lunar Pages, Network Solutions, WordPress, Trend Micro, DreamHost, DemandMedia, Go Daddy, Blue Host and Parallels. The Forum increases the number of eyes-on-the-net, dramatically increasing the ability to identify cyber threats.
Redfoot also recommends that SMBs pay attention to password security. He recommends that passwords should be difficult to guess and not in the dictionary. Ideally a combination of upper and lower case letters, numbers, and special characters should be used. And, change your passwords regularly.
What if your SMB is attacked?
So, what do you do when your SMB is robbed through a cyberattack? Burch says to call your local police and ask for cybercrimes. "Law enforcement is becoming very sophisticated about cybercrime. They are organizing, they are investing in their own IT systems, and they are linking together local and national centers like DHS and FBI." To learn more about how small and midsized business can step up their security visit the Department of Homeland Security's Stop.Think.Connect website.
Sign up for CIO Asia eNewsletters.