This is Part 2 of 4 in our awareness series on Microsoft 365 and cybersecurity for small to medium-sized businesses in South Africa. Read Part 1.
Defending your Microsoft 365 infrastructure from cybercriminals begins with up-to-date software.
For a single user, that’s relatively easy to achieve.
But businesses must manage a large and growing number of devices – which are often spread across offices and remote employees.
While tools exist to help upgrade, update, and patch systems at scale, too often IT admins are overburdened by urgent issues and forget maintenance tasks. In the real world, our cybersecurity team at iSite Computers see out-of-date and unpatched software far more than necessary.
Review the following items to reduce your business risk:
Operating System
Microsoft lists Windows 8.1 as the oldest desktop operating system suggested for Microsoft 365.
Remember that Microsoft first released Windows 8.1 in 2013, and that Mainstream Support for it ended in 2018. Extended Support is ending soon, in January 2023.
Thus, the first step is simple:
Update your systems to Windows 10 or Windows 11 to reduce cybersecurity risk.
If devices in your company are still on Windows 7, then understand that the risk of a cyberattack is severe. Outdated versions of Windows are some of the prime targets for ransomware attacks (as with WannaCry) which exploit unpatched OS security holes and vulnerabilities.
Related:
Ransomware Attacks in South Africa: What You Need to Know
Web Browser
Microsoft 365 is built to work with a variety of modern browsers, including Chrome, Firefox, Edge, and Safari.
Related:
Edge Gives Microsoft 365 Users The Perfect Reason to Abandon Chrome
Make sure these stay current. Google updates Chrome about every six weeks, while Mozilla releases a new version of Firefox roughly every six to eight weeks. Safari is updated about five times a year and Edge is updated on an approximate 4-week cycle. In short, a once or twice-a-year browser deployment leaves your business needlessly vulnerable to known and patched problems.
Require that employees use a specified web browser to ease patch management and security tasks for internal or outsourced IT teams. Along with security, a side benefit of up-to-date browsers is increased compatibility and performance with Microsoft 365.
Patches
Ransomware and malware pursue multiple paths around defences – so it’s not enough to just update your OS and browser.
For example, a till point in your business with unpatched Point of Sale software that connects to Microsoft 365 / OneDrive today, may deliver malicious code to encrypt every file it can find across your company tomorrow.
It’s not enough to patch promptly.
Ensure patches are truly comprehensive and cover every single device, software, application, browser and tool in your business ICT infrastructure. Imperatively, don’t forget remote and BYOD employees. When devices are shared and/or used for personal use, the risk of suspicious and unpatched software (such as those from torrent sites) skyrocket.
Need Patch Management Help to Protect Microsoft 365 and Your Business?
iSite Computers is here to help.
We are an official Microsoft Partner and a managed IT services provider.
We help small to medium-sized businesses in South Africa with everything from setting up and migrating to Microsoft 365, management and maintenance, cybersecurity, backup, and recovery, as well as employee training.
We offer free, no-obligation consultations on Microsoft 365 and more. Book your consult online and we’ll call you back soon – or contact us directly to get started.
0 Comments