Business Security Information

Keyloggers monitor computer activity by capturing the keystrokes of the computer user.  The captured information is then sent to some individual(s) who should not have access to this information.  This should be a concern to all computer users who log into and access email accounts, online accounts, bank accounts, and other such information that should not be shared with others.  With a keylogger, someone else can capture this information and use it to gain access to any account or system that has been logged into.  Also, depending on the keylogger capabilities, all the information the user views can  be captured and sent to these individuals.  Keyloggers allow others to bypass security measures you have in place, and that is never a good thing.

While putting gas in our vehicle today, I saw a simple security issue that probably occurs at a lot of businesses as well as gas stations.  This gas station was the typical type you find outside a supermarket or department store–gas pumps with a small structure in the middle for the cashier to handle customer who don’t pay at the pump.  The small cashier structure was bullet-resistant with a portal for customers to pass cash and credit cards safely to the cashier.  The one door to the structure was metal with a regular lock as well as a deadbolt.  I am presuming it was set up this way to prevent thefts and robberies.  In my opinion, the physical security was adequate for the location.

A survey came out this year covering the crimes that occur most often at hospitality businesses such as resorts, hotels, clubs, conferences, and other similar types of businesses.  It is always interesting to see what type of crime or security issues occur in general as well as to specific types of businesses.  Having this type of general and specific crime information makes it possible to better protect your business .

The following crimes and their percentage of occurrences were reported by the hospitality industry :

1. Larceny or Theft – 94%
2. Aggravated Assault – 39%

A little over a week a go, Microsoft announced that Windows could be attacked using a shortcut vulnerability that would allow attackers to infect a Windows computer with the use of a drive-by download attack.  You can read details of it on the Microsoft’s Security Advisory webpage.

Basically, Windows contains a flaw in how it handles shortcut files.  If an attacker creates a malicious shortcut file, the attacker can automatically execute malware whenever a user views the contents of a folder that contains the malicious shortcut file.

This summer, I helped a friend install a DVR (digital video recorder) for his business security camera system.  I also helped him configure the DVR and his network to allow remote viewing of the security cameras for him and a few key employees.  While helping him with this project, I realized how much physical security systems have changed over the past few years.  More and more of them are being manufactured with network capabilities with many of them being installed on the business network.

Businesses just like yours spend time, money and energy every day trying to protect their assets from a variety of security issues.  How do you know if you are expending that time, money and energy covering the right security issues?

This month I came across a survey of security directors from a variety of companies that covered the major security issues they face and the cost of security incidents when they did occur.  I will highlight some of that information in this article so you can see the type and cost of a variety of security issues.  You can use this information to evaluate if you are addressing the right security issues in your own business.  Here is the list of security issues based on the highest annual dollar losses to the lowest dollar losses:

Since about 2002, most office copying machines have been equipped with hard drives. This is the digital revolution. The problem is that the office copier’s hard drives also store a copy of all documents that you copy. Also, since some office copiers also function as scanners, faxes and printers, copies of those documents are also kept by the copier. If a criminal steals the hard drive or copies a copier’s contents, a wealth of information related to your business, employees, and clients are at their finger tips, especially since most of the information is unencrypted.

Watch this short (less than a minute) video on how simple it is to gain access to a building through a garage door. While there are other methods of breaking into a home or business, this is one that is often overlooked or forgotten even by seasoned security professionals. It is also one that is low-tech and very easy to do.

Garage Door – I Am In!

If you are one of many types of businesses that sell or service vehicles, you should look at how you are storing keys for the vehicles you are servicing or selling.  Over the years, I have seen numerous dealerships and service centers that store keys like the company noted in the pictures.  As you can see from the pictures, the keys are just stored on a board-type key holder.  While I do not usually recommend the use of such a board because keys are easily accessible to anyone in the area, I want to focus on the more pressing security issue of the proximity of the keys to the entrance to the business.

On a recent trip, I stopped for gasoline and a snack at a convenience store along the highway.  When I entered the store, I noticed a bulletproof enclosure (also called bandit barriers) had been installed at the cashier’s counter.  It was different from other ones I had seen used in check-cashing businesses and banks in that it moved horizontally. The cashier could simply press a switch, and the bulletproof cashier window would open or close.  During the day when the risk of robbery may be less, the window could be left open.  In this way, interaction with customers could occur more easily, and it did not appear as intimidating to those visiting the convenience store.