• DD-Square-Logo_resized
  • ATTEND LAS VEGAS
    • Attendee
      • Registration & Pricing
      • Agenda At-A-Glance
      • Exhibitor List/Floor Plan
      • Sponsor List
      • Hotel & Travel
      • Hosted Dealer Program
      • FAQ
      • Mobile App
    • Exhibitor
      • Exhibit/Sponsor
      • Advertising Opportunities
      • Exhibitor Resources
      • Exhibitor Tips
    • Education
      • Overview
      • Show Schedule
  • ABOUT
    • Conference Overview
    • Best Of Awards
    • Become a Speaker
    • Press Inquiries
    • Partnership Programs
    • Health & Safety
    • Contact Us
    • Get Updates
  • RESOURCES
    • Webinars
    • Downloads
  • NEWS
    • Auto Retail News
    • Digital Editions
    • Press Releases
    • Submit Editorial
    • Subscribe
  • .
  • ATTEND LAS VEGAS
    • Attendee
      • Registration & Pricing
      • Agenda At-A-Glance
      • Exhibitor List/Floor Plan
      • Sponsor List
      • Hotel & Travel
      • Hosted Dealer Program
      • FAQ
      • Mobile App
    • Exhibitor
      • Exhibit/Sponsor
      • Advertising Opportunities
      • Exhibitor Resources
      • Exhibitor Tips
    • Education
      • Overview
      • Show Schedule
  • RESOURCES
    • Webinars
    • Downloads
  • ABOUT
    • Conference Overview
    • Best Of Awards
    • Become a Speaker
    • Press Inquiries
    • Partnership Programs
    • Health & Safety
    • Get Updates
  • NEWS
    • AUTO RETAIL NEWS
    • PRESS RELEASES
    • DIGITAL EDITIIONS
    • SUBMIT EDITORIAL
    • SUBSCRIBE

Las Vegas: Oct 17-19, 2023

REGISTER NOW EXHIBIT / INQUIRE
Q

NEWS:

Data & Analytics | Dealer Management | Dealer Ops & Leadership | Dealer/GM News | Leadership | Sales Management | Technology | Trending Industry News
September 11, 2019

How to Build a Human Firewall

Posts:
Data & Analytics | Dealer Management | Dealer Ops & Leadership | Dealer/GM News | Leadership | Sales Management | Technology | Trending Industry News
September 11, 2019

How to Build a Human Firewall

Cyberattacks are on the rise. In the first six months of 2019, the number of data breaches has increased by 54% compared to the same period last year. As of July, more than 4.1 billion customer records have been exposed in approximately 3,800 publicly disclosed data breaches.

If your dealership hasn’t already been targeted, chances are it will be. What can you do to prevent such attacks?

I’ve written previously about how a layered defense is the best approach. This includes:

  • Policies, procedures and awareness
  • Physical security: locks on server rooms
  • Perimeter security: networks
  • Host security: computers and servers
  • Application security
  • Data security
  • Cyber liability insurance
  • Human Firewall

In this blog, I’d like to talk about the last line of defense—the Human Firewall. Its importance cannot be underestimated. Your dealership can have an impenetrable technology defense, but your employees are the weak link and cybercriminals know it.

Most attacks these days don’t even target computer systems, they target employees. In fact, 91% of successful cyberattacks start with a phishing email. Of the 100+ billion spam emails sent out by cybercriminals every day, it’s estimated that one in 200 make it through spam filters and into email inboxes. That’s approximately 11,500,000 spam emails per day.

To ensure that your employees don’t click on these emails, or fall for other scams, you need to build a human firewall. Here are tips to include in your cybersecurity policy.

Provide Security Awareness Training

In states that have passed consumer privacy laws (such as California, New York and Ohio), this is now a legal requirement. Businesses subject to these laws must provide training to their employees.

In a security awareness training program, baseline testing is first used to assess the percentage of employees in your company that click on phishing links. Then, those employees are enrolled into an online training program. Once enrolled, employees are educated with videos, interactive games and training modules. Monthly phishing tests and benchmark reports allow you to gauge progress.

The training teaches employees how to spot suspicious emails, as well as best practices such as not downloading attachments or clicking links in emails, even if sent from a known source, without first verifying the email is legitimate.

The good news is, security awareness training programs are inexpensive and deliver a high ROI. Prior to security awareness training, in an average business 27% of employees open phishing emails. After 90 days of training, the risk drops to 13% and after one year of training, the risk drops to 2%.

Require Password Changes

Employees should create secure passwords for the applications they use and change them every 90 days. Never use the same password for more than one application, and never share or give login ID or password information to anyone. A password manager can help.

Prohibit Visiting Personal Websites at Work

Your corporate security policy should not allow employees to visit social media sites, online shopping or gaming sites at work. This isn’t about forcing employees to be more productive or spying on them; it’s about your network security and financial health. Many phishing scams include links to fake websites, and many social media posts will lead unsuspecting individuals to similar sites. Viruses and malware are often disguised in ‘free’ applications or products for download.

Don’t Allow Personal Devices

If your employees are using their personal laptops and/or cellphones at work, that’s trouble waiting to happen. Unprotected mobile apps and web applications are highly vulnerable to cyberattacks. When plugged into your network, these devices can easily spread viruses and malware.

Require Verbal Verification for All Wire Transfers

It’s OK to email wiring instructions, but every wire transfer should require verbal verification over the phone before the money is sent. It’s a common practice now for cybercriminals to pose as a dealer principal, GM, Controller, salesperson or other managers, and send emails to accounting staff with instructions to wire money into an account. I know of several dealerships that have lost a lot of money this way and once the money is wired, there is no way to get it back. In every scenario we’ve seen, a conversation would have immediately thwarted the attack.

Your employees are the last line of defense protecting your dealership from the increasing threat of cyberattacks. To keep your data, bank accounts and reputation safe, build a human firewall with employee training and new cybersecurity policies.

Data & Analytics•Dealer Management•Dealer Ops & Leadership•Dealer/GM News•Leadership•Sales Management•Technology•Trending Industry News

SHARE

Share on Email
Share on Linkedin
Share on Facebook
Share on Pinterest
Share on Twitter
← Previous Article Next Article →
Posts Industry Press Releases

One View Integrates with Autosoft to Enhance Document Digitization for Auto Dealerships

One View becomes certified partner of Autosoft’s Partner Program – providing seamless integration between both systems One View, an auto industry-specific data solution specialist, announced the integration of its document management system with
Posts Marketing & AdvertisingTrending Industry News

How Does Google Analytics 4 Impact Call Monitoring?

Google Analytics 4 (GA4) is here, and Universal Analytics (UA) is a thing of the past. So, what is the big difference between GA4 and UA, and what does it mean for dealerships and their automotive call monitoring solutions? Universal Analytics (UA) o
Posts Industry Press Releases

One View Integrates with Autosoft to Enhance Document Digitization for Auto Dealerships

One View becomes certified partner of Autosoft’s Partner Program – providing seamless integration between both systems One View, an auto industry-specific data solution specialist, announced the integration of its document management system with
Posts Dealer Ops & LeadershipTrending Industry News

Three Key Areas to Focus on for Fixed Ops Success

A well-managed BDC can significantly impact sales, raise service profits, and increase retention, but achieving success in this field requires three key ingredients: Focus, People, and Consistency. Without these elements working in tandem, even the m
Posts Dealer Ops & LeadershipTrending Industry News

Astroturfing: What it is and Why Your Dealership Should Avoid it

Astroturfing is organized activity that is intended to create a false impression of a widespread, spontaneously arising, grassroots movement in support of…something…that is in reality initiated and controlled by a concealed group…or corpora
Posts Uncategorized

Cracking the Code: Driving Team Action Post 1-on-1s

Ever left a meeting whether it’s with your team or a 1-on-1, on cloud nine, believing your team was all set to conquer the world, only to find their enthusiasm fizzling out days later? The challenge lies in converting intentions into actions amidst
Posts Sales & Variable OpsTrending Industry News

How End-Of-Year-Sales May Impact Auto Finance Digital Transformation Strategies

Following a challenging sales environment in 2022, a noticeable recovery in the automotive sector has stabilized in 2023. This year, even as supply chain problems subsided, new challenges emerged, such as the persistent risk of a potential recession,
Posts Industry Press Releases

Mopar and Petra Automotive Products Partner to Launch New Maintenance Products to Dealers Across North America

Petra Automotive Products, the fastest growing premium automotive products manufacturer in the world, is proud to announce 11 of their best-in-class products will be launched under the Mopar® brand for Chrysler, Dodge, Jeep®, Ram and FIAT® dealers

NEWSLETTER

SUBSCRIBE

DEALER MAGAZINE

Dealer Magazine March/April 2023 Issue Featuring an Interview with NADA 2023 Chairman
MAGAZINE
Digital Dealer Logo White
FOLLOW US ON
  • Follow
  • Follow
  • Follow
  • Follow
  • Follow
© 2023 Emerald X, LLC. All Rights Reserved.
ABOUT    CAREERS    AUTHORIZED SERVICE PROVIDERS   DO NOT SELL MY PERSONAL INFORMATION   TERMS OF USE   PRIVACY POLICY