With bring-your-own-device initiatives developing in businesses in nearly every industry, today’s employees can’t be too careful when it comes to messaging security. Sending even a single unprotected email or message that contains sensitive company information could put the business’s entire operations at risk. For that reason, administrators must ensure that every staff member understands their responsibilities when it comes to messaging security, and what they can do to better safeguard their communications.
Smartphones, tablets and other mobile devices bring new challenges to the corporate environment, especially when it comes to messaging security. While the majority of staffers likely utilize email, there are some that leverage other messaging platforms via their mobile devices. However, the Electronic Frontier Foundation pointed out to PC Magazine that many of the mobile messaging systems available today are not as safe as they should be for use in a business environment.
“Most of the tools that are easy for the general public to use don’t rely on security best practices – including end-to-end encryption and open source code,” the EFF stated.
For this reason, there are several security measures enterprise users should check for before utilizing a mobile messaging platform. These can include:
- Documented encryption processes
- Perfect forward secrecy on the part of the service provider, where crypto-keys are ephemeral
- Code that is open-sourced and accessible for public review
- An independent security audit of the solution within the past year
In today’s corporate environment, email represents the go-to for communication. However, this platform can prove risky as well unless security best practices are adhered to. GFI contributor Doug Barney suggested:
- Utilizing robust password protection
- Leveraging a filtering and monitoring system to block spam and potentially harmful messages
- Installing anti-malware
- Ensuring that the email system used aligns with industry compliance rules
- Watching for and educating employees about phishing attacks
In addition, we here at Trend Micro recommend:
- Being watchful for strange or suspicious emails
- Not opening messages, links or attachments from unknown senders
- Being wary of emails that request financial or other sensitive business information, and never send financial data via email
- Reporting potentially harmful emails to company administrators and other proper authorities
Enterprise communications have provided a target for cybercriminals hoping to gain access to sensitive business information for fraudulent purposes. Moreover, these messages will continue to be in hackers’ cross hairs in the months and years to come. For this reason, it is in companies’ best interest to ensure proper protection to prevent attack and data leakage. Following these tips and best practices can help guarantee that messages remain secure.