This post is part of our Cyber Threat Series.
Hostile network probes and scans check your network devices and systems for security holes. Hackers and bots scan specific IP address for open and unsecured ports. While most scans come from the outside, hackers use malware to infect systems and probe networks from the inside. Once they find a security hole, hackers access information, install malware, or gain control systems. Some probes look for specific vulnerabilities, others use brute force.
What to Do:
Close as many Internet-facing ports as possible across firewalls, routers, and other Internet-facing devices. Close ports on network devices that are not needed for internal communications. If a port isn’t open, it cannot be hacked.
Avoid consumer-grade and low-end firewalls to protect your physical network. Low-end devices lack features needed to protect your business. With advanced protection features and tools, “Next Gen” firewalls offer better protection from modern threats. With models designed for SMBs, you fill find these new solutions affordable.
Scan your network for vulnerabilities on a regular schedule. Finding problems before an attack is worth the effort and relatively low cost.
Configure alerts, when able, to notify you of potential risks. While you and most SMBs cannot afford and do not need a network and security management system, you can configure many devices to send basic alerts by email. These alerts give you an early warning you can evaluate and manage.
Move to cloud solutions and hosting service providers and increase your cyber security profile. Google, Microsoft, and Amazon depend on the security of their environment to earn and maintain the trust of customers like you. They staff security teams with thousands of experts, follow best practices, and deploy the most advanced threat protection technologies. Your risk of a network scan or probe attack when using Google Cloud Platform, Microsoft Azure, or Amazon AWS is orders of magnitude less than running systems in-house.
Contact us to discuss your cyber threat protections. The Cloud Advisory session is complimentary and without obligation.