Marilah kita bermuhasabah atau menilai dan menghitung kembali tentang amalan harian kita. Kadang-kadang kita akan dapati amalan kita adalah terbalik atau bertentangan dari apa yang patut dilakukan dan dituntut oleh Islam. Mungkin kita tidak sedar atau telah dilalaikan atau terikut-ikut dengan budaya hidup orang lain. Perhatikan apa yang dipaparkan dibawah sebagai contoh amalan yang terbalik.

Comments (2) | Add as favourites (0) | Quote this article on your site | Views: 778

Every organization should consider implementing desktop security measures to prevent unauthorized access to employee's computers or devices, company documents and information. Employee must know how to protect company data against loss and destruction. Such loss can result from user intervention (e.g., files can be modified). Other forms of data loss include outright theft of computer equipment and copying of data from various storage mediums. Methods of stealing company data can take in the form of copying data from employee's cubicle even for a few minutes using a diskette or thumb drive.

The followings are steps can be taken to enhance physical security:

1. Educate employees to guard their belongings such as, locking their laptops and cabinets even when they are around.

2. Limiting access to authorized employees through measures such as unique security systems, smart locks, employees' access cards, or biometrics.

3. Train staff to never leave their computers unattended; use screen saver passwords to lock computer screen.

4. Keep all confidential files and printed documents in a locked cabinet.

5. Place CCTV or other security system which can provide local or remote surveillance capability.

* Source from CyberSafe Malaysia and MOSTI.

Be first to comment this article | Add as favourites (0) | Quote this article on your site | Views: 2053

For organizations and staff, most business communication takes place over email systems for messages and exchanging of documents (attachments). Therefore, it is crucial that every employee is aware of the threats faced on email systems and they know how to handle emails, especially from sources that are not trusted. Spam emails are received by many everyday and information in handling them is important for all staff.

The following are some safety tips to protect your organization from email frauds:

1. Delete spam e-mail messages without opening them. Sometimes even opening spam can alert spammers.

2. Don't reply to spam unless you're certain that the message comes from a legitimate source. This includes not responding to such messages that offer an option to "Remove me from your list."

3. Don't give personal information in an e-mail or instant message. It could be a trick. Most legitimate companies won't ask for personal information by e-mail.

4. Think twice before opening attachments or clicking links in e-mail or instant messages, even if you know the sender. If you cannot confirm with the sender that an attachment or link is safe, delete the message.

5. Don't forward chain e-mail messages. Not only do you lose control over who sees your e-mail address, but you also may be furthering a hoax or aiding in the delivery of a virus.

6. If you receive abusive, harassing, or threatening e-mail messages or have been the target of a phishing e-mail scam, report it to MyCERT.

7. Report phishing scams and other fraudulent e-mail to the company that has been misrepresented and also to MyCERT. Contact the organization directly and not through the e-mail you received.

* Source from CyberSafe Malaysia and MOSTI.

Be first to comment this article | Add as favourites (0) | Quote this article on your site | Views: 1537

Information and data is vital for the function of any business, e.g. customer records, transaction record, employee data. Therefore the safeguarding and protection is crucial for organizations. Backup provides alternative for company to recover valuable files and documents after a data loss event such as when a hacker attacks or a disaster (e.g. fire, flood) that can harm your business environment or cripple the conduct of business. Organization must always be prepared to continue their business effectively even if an intruder corrupted the computer systems or destroyed software programs, or deleted files and folders on servers.

The following are the tips for performing effective backup for your data:

1. Establish backup schedule on daily, weekly and monthly basis to backup all documents. Whenever there is a modification to original content, backups should be created instantly.

2. Maintain backups for a period of time to allow for recovery process or fixing issue that is not revealed instantaneously.

3. Use automation backups, as creating copies manually can be time consuming and tedious.

4. Run a set of tests on the backup process by periodically restoring the contents and verifying its accuracy.

5. Setup extra computers to constantly duplicate data in original computer for immediate recovery.

6. Make sure the backup process creates a date and time log so the contents of the backup can be validated.

7. Create backups on various types of medium (portable disk copy and CDs copy) to offer flexibility in recovery process.

8. Backup copies should be located in secure place, preferably not on office's premise to avoid same disaster that destroys the original.

* Source from CyberSecurity Malaysia and MOSTI.

Be first to comment this article | Add as favourites (0) | Quote this article on your site | Views: 1786