Tips to Secure Your Small Business Network

Posted on January 11, 2023 by dayat

Just because your business is small, doesn’t mean that hackers won’t target you. The reality is that automated scanning techniques and botnets don’t care whether your company is big or small, they’re only looking for holes in your network security to exploit.

Maintaining a secure small business or home network isn’t easy, and even for an old hand in IT, it still takes time and energy to keep things locked down. Here are 10 of the most critical steps you can take to keep your data from ending up elsewhere, and none of them take much time or effort to accomplish.

Get a Firewall
The first step for any attacker is to find network vulnerabilities by scanning for open ports. Ports are the mechanisms by which your small business network opens up and connects to the wider world of the Internet. A hacker sees an open port to as an irresistible invitation for access and exploitation. A network firewall locks down ports that don’t need to be open.
A properly configured firewall acts as the first line of defense on any network. The network firewall sets the rules for which ports should be open and which ones should be closed. The only ports that should be open are ports for services that you need to run.

Typically, most small business routers include some kind of firewall functionality, so chances are if you have a router sitting behind your service provider or DSL/cable modem, you likely have a firewall already. To check to see if you already have firewall capabilities at the router level in your network, log into your router and see if there are any settings for Firewall or Security. If you don’t know how to log into your router on a Windows PC, find your Network Connection information. The item identified as Default Gateway is likely the IP address for your router.

There are many desktop firewall applications available today as well, but don’t mistake those for a substitute for firewall that sits at the primary entry point to your small business network. You should have a firewall sitting right behind where your network connectivity comes into your business to filter out bad traffic before it can reach any desktop or any other network assets.

Password Protect your Firewall
Great you’ve got a firewall, but it’s never enough to simply drop it into your network and turn it on. One of the most common mistakes in configuring network equipment is keeping the default password.
It’s a trivial matter in many cases for an attacker to identify the brand and model number of a device on a network. It’s equally trivial to simply use Google to obtain the user manual to find the default username and password.

Take the time to make this easy fix. Log into your router/firewall, and you’ll get the option to set a password; typically, you’ll find it under the Administration menu item.

Update Router Firmware
Outdated router or firewall firmware is another common issue. Small business network equipment, just like applications and operating systems, needs to be updated for security and bug fixes. The firmware that your small business router and/or firewall shipped with is likely out-of-date within a year, so it’s critical to make sure you update it.
Some router vendors have a simple dialogue box that lets you check for new firmware versions from within the router’s administration menu. For routers that don’t have automated firmware version checking, find the version number in your router admin screen, and then go to the vendor’s support site to see if you have the latest version.

Block Pings
Most router and firewalls include multiple settings that help to determine how visible your router and/or firewall will be to the outside world. One of the simplest methods that a hacker uses to find a network is by sending a ping request, which is just a network request to see if something will respond. The idea being if a network device responds, there is something there that the hacker can then explore further and potentially exploit. You can make it harder for attackers by simply setting your network router or firewall so that it won’t respond to network pings. Typically, the option to block network pings can be found on the administration menu for a firewall and/or router as a configuration option.
Scan Yourself
One of the best ways to see if you have open ports or visible network vulnerabilities is to do the same thing that an attacker would do – scan your network. By scanning your network with the same tools that security researchers (and attackers) use, you’ll see what they see. Among the most popular network scanning tools is the open source nmap tool). For Windows users, the Nmap download now includes a graphical user interface, so it’s now easier than ever to scan your network with industry standard tools, for free. Scan your network to see what ports are open (that shouldn’t be), and then go back to your firewall to make the necessary changes.
Lock Down IP Addresses
By default, most small business routers use something called DHCP, which automatically allocates IP addresses to computers that connect to the network. DHCP makes it easy for you to let users connect to you network, but if your network is exploited it also makes it easy for attackers to connect to your network. If your small business only has a set number of users, and you don’t routinely have guest users plugging into your network, you might want to consider locking down IP addresses.
The benefit of assigning an IP is that when you check your router logs, you’ll know which IP is associated with a specific PC and/or user. With DHCP, the same PC could potentially have different IPs over a period of time as machines are turned on or off. By knowing what’s on your network, you’ll know where problems are coming from when they do arise.

Use VLANs
Not everyone in your small business necessarily needs access to the same network assets. While you can determine and set access with passwords and permissions on applications, you can also segment your network with VLAN or virtual LANs. VLANs are almost always part of any business class router and let you segment a network based on needs and risks as well as quality of service requirements. For example, with a VLAN setup you could have the finance department on one VLAN, while sales is on another. In another scenario, you could have a VLAN for your employees and then setup another one for contract or guest workers. Mitigating risk is all about providing access to network resources to the people who are authorized and restricting access to those who aren’t.
Get an IPS
A firewall isn’t always enough to protect a small business network. Today’s reality is that the bulk of all network traffic goes over Port 80 for HTTP or Web traffic. So if you leave that port open, you’re still at risk from attacks that target port 80. In addition to the firewall, Intrusion Prevention System (IPS) technology can play a key network security role. An IPS does more than simply monitor ports; it monitors the traffic flow for anomalies that could indicate malicious activity. IPS technology can sometimes be bundled in on a router as part of a Unified Threat Management (UTM) device. Depending on the size of your small business network, you might want to consider a separate physical box.
Another option is to leverage open source technologies running on your own servers (or as virtual instances if you are virtualized). On the IPS side, one of the leading open source technologies is called SNORT (which is backed by commercial vendor Sourcefire.

Get a WAF
A Web Application Firewall (WAF) is specifically tasked with helping to protect against attacks that are specifically targeted against applications. If you’re not hosting applications within your small business network, the risks that a WAF helps to mitigate are not as pronounced. If you are hosting applications, WAF in front of (or as part of) your Web server is a key technology that you need to look at. Multiple vendors including Barracuda have network WAF boxes. Another option is the open source ModSecurity project, which is backed by security vendor Trustwave.
Use VPN

Posted in Uncategorized | Tagged , | Comments Off

How To Get The Most Out Of Business Networking By Establishing Win-Win Relationships

Posted on November 11, 2022 by dayat

What is networking?

Networking for business is a marketing strategy that is about making friends and forming strong relationships that will help you grow your business. It is said that it is not what you know in business, but who you know.

However, most people have no idea how to network successfully. They think that they are there just to hand out business cards, make a quick sale, and then move on to the next networking club or event to repeat the process.

Why do we network?

Business to business networking is about much more than that. It is about forming strong lifetime relationships and knowing people whom you can strategically use or place either in an advisory capacity, or who can help you find a product or put you in touch with someone who can help you with a product, service or project. So whenever you need help, advice, a product or service, you can call on your network and someone will be able to help you, or know someone else who will. This means that you are no longer alone in your small business, but have immediate access to someone in your network thanks to the relationships you have formed.

Networking is therefore a vital part of your business and a strategy that maximises your exposure and puts you on a platform similar to big business.

So, how do we network effectively?

Use a CRM (Customer Relationship Management System) and make categories for your contacts.

1. Your Database: Everyone that you have ever had contact with.

2. Your Network: People you know from college/university, old colleagues, professionals you know, other business contacts, and people you have met at networking events.

3. Your Inner Circle: About 20 – 50 people who know you well and whom you trust. These people can give you honest feedback and constructive critique when necessary without fear of offending you.

4. Your Board of Advisors: These are 5-7 individuals who are your closest advisors.

5. Family and Friends: The people who know you intimately.

There are 8 Steps to Effective Networking

1. Get your mind ready

If you approach networking with the right frame of mind; that you need to make friends and get to know them so you can be of value to each other. And that you go into networking events with the attitude of “what I can do to help you” it will pave the way for networking success.

2. Develop a Great 60 second “elevator speech”

This needs to grab the attention of the person you are talking to, and be memorable so they remember you. An example: Don’t say “I sell ladies underwear” but say: “I help women look slimmer and taller.” Every woman wants that.

3. Identify the market you want to reach

It is no good saying “everybody” because not everyone will be interested in your product or service. For example don’t say: “I am looking to speak to everyone who wants to retire wealthy” but say “I am looking for men in their forties who want to be wealthy and live the good life in the next ten years.”

4. Decide where to Network

As you can’t be everywhere, there will be times and places that will work better for you. Find networking groups that correspond with that.

5. Develop your strategy

If you are prepared beforehand there is nothing to fear. Write out and practice what you are going to say, and plan where and when to network, and what you want to accomplish. Also be clear on what you need so that your network can help you with that.

6. Remember to Ask Questions

People love talking about themselves. Ask the right questions, and get them to talk about themselves and their business. If you listen well, there may be an opportunity for you which you will miss if you are intent on speaking about yourself and your business instead.

7. Don’t Sell your product or service

Be clear on why you are there: You are not there to sell but to make friends and build strong relationships. If you insist on selling, you will just annoy others and they will avoid you.

8. Follow-up

This is the most overlooked part of networking. You need to follow up with the people you meet and see them one on one. Keep the business cards in a business card holder and add them to your database. Then phone them within 48 hours to make an appointment.

If you have seen them before, keep in touch with a card, a note an email or a phone call. Make sure they don’t forget you.

If you follow all these steps you will have greater success at networking. You will form great relationships with people who will purchase your product or service when they have need for it. Networking is a long term goal, not a short term fix. And above all, be relaxed, have fun and enjoy yourself.

Posted in Uncategorized | Tagged , | Comments Off