Skip to content

Common Types of Information Security Vulnerabilities


A business can’t survive if it gains a reputation for poor data security. Partners, customers, and even employees may shy away from an enterprise known for not protecting the sensitive data in its care. Unfortunately, even a company that works hard to preserve information could come up short and suffer the consequences. Avoid embarrassment, revenue losses, and even legal woes. Here are some points for managers to ponder.

Poor Passwords

No matter how many times people are warned not to use “PASSWORD” or “1234567” for their passwords, they do so anyway. They also like to use common ones such as “BASEBALL” and the like. Automated password-cracking programs can run through commonly used passwords at lightning speed and gain entry to supposedly secure sites.

Don’t rely on weak passwords. Invest in a program that produces original, complex passwords. Complicated custom passwords aren’t easy to breach.

Physical Security

Businesses can’t maintain safety and security when just anyone can walk into the building and move about without scrutiny. Invest in front desk security, camera systems, and door access codes for interior hallways.

Develop a program for protecting data by limiting access on a need-to-know basis. If someone doesn’t have a critical need to access material present on a particular hard drive, network or computer, they shouldn’t have the password.

Exploring the benefits of an access management service such as Azure Active Directory could be helpful. When using premises identity verification tools like AssureID or Azure Active, it is generally recommended that you limit the number of administrator identities so there are fewer points of failure.

Weak-Sauce Encryption Protocols

Transmitting poorly encrypted passwords over a wireless system creates a scenario where you open many doors to theft. Setting up an encryption system makes sense, but don’t use weak encryptions, or you can suffer serious consequences. MD5, for example, might not deliver the necessary protection. Perform research to discover what encryption platforms bring with them the most reliable level of security.

Does Your Business Require Armed Security?

Depending on the threats your business faces, armed security might be worth hiring. People may assume that armed guards are only necessary to protect high-end merchandise such as exquisite jewelry. In reality, many businesses rely on armed security for protection because dangerous criminals might target the enterprise.

For example, a company contracted with the federal government may have information on its hard drives that hostile entities could try to steal. A team of armed guards could serve as a viable deterrent. Let’s face facts. We live and work in an unsafe world, and threats can come from any quarter. However, if you take these sensible pieces of advice to heart, you can greatly minimize those threats and enhance your likelihood of trouble-free operation.