Building a Secure Foundation Is a Lot Like Gardening
Building strong cybersecurity doesn’t require fancy tools or a Hollywood-style war room. Often, it just takes the basics ‒ done really well. Think of it like gardening: healthy habits, applied consistently, create deep roots that protect your business when storms roll in.
Here are five essential practices that every organisation ‒ from small MSPs to midsize enterprises ‒ should plant today to ensure a secure tomorrow.
-
Multi-Factor Authentication (MFA): The Garden Gate Lock
Let’s be real: passwords alone just don’t cut it anymore. And with attackers using everything from phishing to credential stuffing to break in, MFA is your first line of defence ‒ an extra layer that ensures a leaked password isn’t the end of the road.
In fact, Microsoft has found that MFA can block over 99.9% of account compromise attacks ‒ making it one of the simplest, most impactful steps you can take. Apply it wherever you can: email accounts, admin consoles, VPNs, Cloud platforms. If it connects to the Internet, it’s MFA-worthy.
-
Patch Like a Pro (Before Hackers Patch You)
Every day your systems go unpatched is an open invitation to attackers. And they don’t wait around ‒ one report found that vulnerabilities are often exploited within 15 days of being publicly disclosed.
Just like regular watering helps plants grow strong, regular patching (especially of critical systems) helps close known holes before attackers can exploit them. Automated patch management tools can help ‒ and a good vulnerability scanning process makes sure nothing slips through the cracks.
-
Stop Reusing “Company123” — Enforce Strong Password Policies
Despite years of warnings, 81% of hacking-related breaches still involve weak or stolen passwords, according to the Verizon DBIR. That’s not just a user problem ‒ it’s a policy problem. Just like plants need consistent, specific care, password policies need focus and regular assessments.
Enforce password length and complexity, encourage unique credentials for every login, and support the use of password managers across your organisation. Bonus points if you sunset any legacy systems that still use default logins or local-only credentials (we see you, “admin/admin”).
-
Device Hygiene: Keep Endpoints Clean and Monitored
Endpoints are the gardening tools of your digital ecosystem ‒ vital, but often overlooked until something breaks. EDR (Endpoint Detection & Response) tools help detect strange behaviour and contain threats before they spread.
This matters more than ever. The average cost of a malware attack on a company is now over $2.6 million ‒ a number that rises dramatically when endpoints go unmanaged. Set policies for device hardening, deprovision devices quickly when employees leave, and make endpoint visibility a priority.
-
Least Privilege: Keep the Garden Shed Locked
Not everyone in your company needs the keys to the kingdom. By applying the principle of least privilege, you reduce the risk of internal mishaps and limit the impact if an account is compromised.
It’s not just a best practice ‒ it’s a risk reduction powerhouse. The 2023 Verizon DBIR found that 74% of breaches involve the human element, including privilege misuse. Tightening access rights is one of the simplest, most effective ways to reduce that exposure and improve security outcomes. It’s a quick win ‒ and a strong step toward a safer, leaner attack surface.
Cultivating a Secure Future
These foundational practices may not grab headlines, but they’re incredibly effective. In fact, most breaches today can be traced back to avoidable missteps ‒ missing patches, weak passwords, and excessive permissions. Think of these five actions as the seeds of a secure ecosystem. Tend to them regularly, and your cybersecurity programme will grow stronger, healthier, and more resilient with time.
In short: Want a safer tomorrow? Start planting the right cybersecurity seeds today. A stronger, more resilient security posture begins with the basics ‒ and the sooner you cultivate them, the sooner your organisation will thrive. Contact the Dolos team to find out more.
