singtel logo
Personal
Business
Products & Services
SMB
Enterprise
Insights
Support
Why Us
About Us

5 basic SMB cybersecurity tips that still work today

Owing to their smaller sizes and lack of resources compared to larger enterprises, SMBs can become easier targets for cyber criminals. By following these tried-and-tested cybersecurity best practices, they can reduce the odds of cyber incidents today.

FacebookTwitterLinkedIn
5 basic SMB cybersecurity tips that still work today

Key takeaways

  • Two in five SMBs in Singapore suffered a cyber incident in 2020
  • SMBs should follow some basic cybersecurity practices such as 2FA, cloud backups and training employees to detect and foil phishing attempts
  • Some comprehensive cybersecurity solutions comprise different aspects of protection into one plan for SMBs, on a monthly subscription model

5 basic SMB cybersecurity tips that still work today

SMB, Digitalisation, Cloud, Cybersecurity | 5 min read

Finding customers, generating sales, hiring and retaining talent and implementing essential tech tools for your team – these are the things that small business owners have to prioritise in their early stages. Cybersecurity is often relegated to lower priority or considered as an afterthought.

But cyberthreats are not to be taken lightly. Small businesses are not spared by malicious actors. Two in five SMBs in Singapore suffered a cyber incident in 2020 according to a Cisco study. And 56% of these incidents involved loss of customer data.

This indicates that small businesses can and should do more to protect themselves from cyberattacks. The solutions need not be complex and expensive either – here are 5 basic cybersecurity practices that SMBs can adopt in 2022.

1. Avoid Public WiFi

With businesses implementing hybrid work arrangements, some employees could be working from public places such as cafes or coworking spaces, where there may not be private wifi networks.

As cybercriminals can intercept data transferred across the public network, if your employees are logging in to internal databases or applications, or even sharing confidential business documents using public wifi, it could lead to loss of sensitive data, financial damages and more.

Pro tip: If any of your team members have to connect to public WiFi, encourage them to use a VPN. This acts as a "private tunnel" by encrypting all the data sent or received through the network.

2. Enforce strong passwords and Two-factor authentication (2FA)

It should be common knowledge by now that weak passwords, such as those that only contain letters, can be easily hacked. As a bare minimum, you should mandate your employees to use passwords comprising more than 20 characters and a combination of numbers, letters and symbols.

Pro tip: Go one step further and encourage your employees to use multi-factor authentication (MFA) for their devices and apps. This will require an additional input such as a randomly generated passcode or fingerprint along with the password before access can be granted. Google Authenticator and Microsoft Authenticator are two commonly used solutions that can be installed on mobile phones. 

3. Back up data to the cloud regularly

No matter how small your business is, there will be critical data that you cannot afford to lose. For example, your sales team may maintain an ongoing spreadsheet of clients and their status, updated every day, or your finance team may have a document listing unpaid vendors. Even your marketing team members may be working on projects involving complex artwork.

If these files are not backed up regularly, your business can take a heavy toll in the event of a cyber attack that damages their devices. Make it a standard practice to back up data at regular intervals so that critical data can be recovered first in the event of a cyberattack.

Pro tip: Look into cloud solutions such as Singtel Cloud Backup and Recovery which give you peace of mind by automating and consolidating backups. This solution also has the added feature of encryption to protect against cyberthreats. 

4. Detect and thwart phishing attempts

Phishing has been an effective method for attackers to breach business networks. It is usually executed by sending an email or message to an unsuspecting employee and tricking them into sharing data such as passwords or company bank account logins.

The email may look authentic to an untrained eye and appear to be sent from a coworker or friend. It will have a fake hyperlink that redirects the recipient to a form to enter their data. Sometimes attackers may also make scam calls or even combine phone, email and messaging together.

The best defence against such phishing attacks are the employees themselves. Advise them to refrain from clicking suspicious links in emails or sharing sensitive business data without approval from management. 

Pro tip: Look out for some tell-tale signs of phishing such as inauthentic email IDs, fake logos and urgent prompts such as or "click here immediately”. In the case of scam calls, if you hear automated voice recordings from unfamiliar numbers that start with "+65" in Singapore, you should hang up immediately.

5. Adopt a comprehensive cybersecurity solution

It can be daunting for small business owners to implement a robust cybersecurity infrastructure on top of managing the day-to-day needs of growing a business. Yet, this is essential to protect your business from financial losses and reputation damage that may be caused by cyberattacks and data leaks.

Singtel Cybersecurity Solutions can help by detecting, protecting and responding to sophisticated cyberattacks. Its comprehensive framework includes endpoint security, data protection, network security, asset and data security, all in a monthly subscription model. 

Other articles you may like

How the Productivity Solutions Grant helps SMBs stay competitiveShare
Nov 2024 | Business Connect
smb, digitalisation
How the PSG helps SMBs stay competitive
Innovation and technology need not be out-of-reach and expensive. For SMBs willing to take the jump, the Productivity Solutions Grant (PSG) helps to support companies keen on adopting IT solutions.
Read More
5 things to consider when choosing your business broadbandShare
Nov 2024 | Business Connect
smb, digitalisation, connectivity
5 things to consider when choosing your business broadband
Whether you are a new business setting up broadband for your office, or you're looking to switch to another plan, keep in mind these five questions before you make the decision.
Read More
A primer to cyber security training for SMBs Share
Apr 2024 | Business Connect
smb, digitalisation, Business Launch & Operations
A primer to cyber security training for SMBs
Empower your SMB team with effective cybersecurity training with this started guide and protect your business together as a team.
Read More
Load more

Ready to get more out of digitalising your business?

© Singtel (CRN: 199201624D) All Rights Reserved.