From 6de321fb23ea31d53bef819eadfc886cf0d183f6 Mon Sep 17 00:00:00 2001 From: Jet Hughes Date: Fri, 14 Oct 2022 15:52:41 +1300 Subject: [PATCH] vault backup: 2022-10-14 15:52:41 --- content/notes/ass03-security-flaws-essay.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/notes/ass03-security-flaws-essay.md b/content/notes/ass03-security-flaws-essay.md index f0d4a148a..12dd277cb 100644 --- a/content/notes/ass03-security-flaws-essay.md +++ b/content/notes/ass03-security-flaws-essay.md @@ -52,7 +52,7 @@ There are 6 main rules which I have decided on: SMEs should assume that they will be inevitably be compromised, and they should be ready to respond. They should have systems in place to detect attacks when they happen, and have a plan for how to respond, and prevent it from occuring again in the future. If they are unable to respond to attacks themselves, they should know who to contact. They should also purchase a cyber security insurance policy, and consider what legal obligations they have to their stakeholders. ### Strong User Authentication -This one of the most important rules. In addition to strong passwords SMEs should require two-factor authentication, preferrably with an authenticator not just by text. SMEs should also require users to create strong security questions, so that accounts can be recovered if a password is stolen, there should not be any secondary questions that a user can use to recover an account. +This one of the most important rules. In addition to strong passwords SMEs should require two-factor authentication, preferrably with an authenticator app and not just by text. SMEs should also require users to create strong security questions, so that accounts can be recovered if a password is stolen, there should not be any secondary questions or other information that a user can use to recover an account. ### Awareness Training For all employees including customer service and tech support. Employees should be made aware of the proper procedures and standards and adhere strictly to them.