Homepage

Your number neighbour could be your number nightmare

The latest case of “just because you can try something, doesn’t mean you should try something” has emerged with another social media trend. 

The “number neighbour challenge” is one of the sillier ones we’ve seen.  

It goes like this: you text a number that’s almost your own phone number, except it's one digit off. You introduce yourself as this new contact’s number neighbour, and get the ball rolling on what could — best-case scenario — turn into an interesting conversation to post on social media for the laughs and the likes.  

Latest fad fails

The worst-case scenarios are less lighthearted, and a few have already happened in the short time since the fad hit the internet.  

For example, what if your number neighbour is a child? We won’t get into all that can go wrong in this situation, but keep in mind that the person you’re imagining may not match the person you’re texting.  

What if the number you text belongs to someone who’s recently passed away? You could be causing even more distress to an already grieving family.  

What if you’re texting a tech-savvy stalker? Your innocent text could put you on the radar of some creep who now has your phone number, knows you’re out there, and could start attacking your phone.  

Neighbour turned nightmare

This is precisely what happened to an L.A. woman who texted her number neighbour and almost immediately started receiving death threats back. The stranger threatened to show up at her house and kill her; they sent videos of guns being loaded; they called her phone dozens of times and even when she blocked that number, more calls streamed in from a different number.

She eventually filed a police report, but we’re betting she wishes she had skipped the whole ordeal!

Think before you text or call

There’s nothing wrong with taking part in fun fads online, but make sure to think about what you’re signing up for. So many of these viral social media trends ask you to sacrifice your security for a few minutes of entertainment.   

Our best advice? Don’t do it! 

To get the right information at the right time, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245. 

4 ways to fix digital privacy in Canada

We see a lot of headlines every day about the growing impact of cybercrime.  

Our CEO, David, is often in the media providing explanation and context. While the news isn’t good, there is hope and a way for a more secure digital future for Canadians and people around the world.  

With stories of recent major data breaches like Desjardins and Capital One hurting Canadians’ trust, their wallets, and even their identities, it's time for the country to crack down on cybercrime.  

Sounds like an insurmountable task, but there are tangible steps we can take in the short- and long-term future that could majorly cut down criminal activity online.  

1) Require multi-factor authentication

Any organization that handles sensitive financial info should be required by law to use multi-factor authentication — meaning an additional layer of security beyond the username and password.  

There’s a simple reason Canadian companies including banks, telecommunications providers and more haven’t done this: they’re afraid of introducing it and making it a requirement, assuming it will cost them customers who would move to a competitor that doesn’t ask for this advanced security. 

But if every firm with sensitive personal or financial information were doing it, MFA would quickly become the norm and raise our overall standard for digital safety.  

The Canadian government could get the ball rolling by applying this to federally regulated industries which include telecommunications, banking, transportation — some of the most important parts of a modern society.  

2) Pass new privacy laws with real teeth

This is a medium-term goal. Europe is doing privacy right; with the General Data Protection Regulation implemented in 2018, the E.U. is putting power over personal data in the hands of individuals, and fining companies that fail to protect it. We could essentially copy and paste the GDPR legislation into a Canadian framework to start taking privacy seriously.  

If our laws had real teeth, Capital One could be fined $1.2 billion for the breach that impacted six million Canadians. Right now, though, we’re toothless. 

3) Replace the SIN

We’re talking long-term ambitions, here, but the social insurance number has run its course as the primary digital identifier of Canadians. This dated approach to our digital economy is inadequate in today’s world. Reinventing it is not unrealistic — if tiny countries like Estonia can figure it out, so can we.  

The Canadian Banking Association has been urging the government to do this for a while now, in order to finally stop ID fraud. 

A proper, secure Digital ID is the foundation on which we can build an identity-fraud safer world. 

4) Radically rethink the internet

A longshot ambition, perhaps, but thinking big is how societies advance. 

Picture your digital identity as your driver’s licence. Currently, companies copy and store your licence and in doing so, risk losing that info to others who can then impersonate you online.   

new model, proposed by Tim Berners-Lee, the creator of the World Wide Web, would be more like showing your licence when you need to, but otherwise keeping it in your possession. Instead of having our personal info collected and stored by thousands of companies at their discretion, each person would control one “master copy” of their personal data and have the tools to secure it themselves. No more corporations copying and keeping sensitive info without consent, in other words.  

Part of the problem is the view that digital privacy issues have spiralled beyond our control, but if we tackle it piecemeal, we can make cybercrime a thing of the past.  

To learn more about protecting your identity at home or at work, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245 and check out our blog on 7 Reasons to Start Using a Password Manager Today! 

5 questions journalists should be asking about the Capital One breach

Countless Capital One customers were left reeling this week upon learning that a huge data breach exposed their private information including credit scores, balances, and social insurance numbers. Just days ago the institution revealed that the personal data for more than 100 million credit applications and cards — including six million from Canada — were laid bare.   

Paige Thompson — who goes by the name “erratic” online — is alleged to have exploited a vulnerability in Capital One’s online credit card application, for apparently no reason other than to show that she could. Based on the evidence presented by the FBI in court documents, Thompson does not appear to be an experienced hacker, and even seemed to want to get caught, leaving her digital footprint and evidence everywhere. 

Reporters have come at this story from many angles, but here are a few questions the media haven’t yet addressed: 

1) How long has this vulnerability existed?

The focus of this breach has been on the hacker herself — who she is and how she operated — but we don’t know how long this security hole was open, and who else may have taken advantage of it, with what malicious intent. If a more sophisticated hacker had wanted to get their mitts on this data, they could easily have done so. Thompson is less the problem, and more a symptom.

2) Why are banks holding onto this decade-old data in the first place?

“Zombie data” — old data that’s considered dead to the company but that still lurks somewhere, waiting to be revived — is dangerous, and the data involved in this hack has been hanging around since possibly about 2005. There’s no good reason for a financial institution to hang onto years-old credit card applications after they’ve been approved or denied. Why was this info even there to be exploited?

3) Who knew what, and when?

The FBI documents say Capital One was notified July 17 of the breach, but the bank claims it only became aware of the breach on July 19. Why the discrepancy? Is it plausible that no one checked their email for a full two days? Beyond that, Capital One didn’t disclose the breach to customers until July 29 — well after their July 18 second-quarter meeting. What happened during that week and a half? Based on the FBI documents, this doesn’t seem like it took terribly long to figure out what went wrong and who did it.

4) What kind of fine are they facing in Canada?

When the notorious Equifax breach came to light, Canada gave them little more than a slap on the wrist, instead of imposing tough penalties that would force other institutions to take notice and action. According to our country’s new Digital Privacy Act, fines for this type of privacy breach can be up to $100,000. We still don’t know whether the fine will be applied or the government will dole out another freebie.

5) Why aren’t banks required to provide better security tools to their customers?

Multi-factor authentication, for example. The government should regulate banks’ safety tools to remove the option of choosing convenience for the customer over security. If every bank has the same privacy measures in place, our national cybersecurity will see real improvements, so why are governments not acting on this? Requiring banks to offer more advanced security — in a similar, standardized way with a defined date — will end the standoff that exists where the banks are too afraid of losing customers to another institution due to the perceived inconvenience of things such as MFA.

While these breaches are scary — and becoming more common all the time — if we push for legal change and aim to protect our personal data, we can stop hackers in their tracks.  

To learn more about protecting your identity at home or at work, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245. 

5 terms you need to know heading into election season

What do you get when you cross the internet and social media, with the decline of traditional media? You get a democracy vulnerable to election interference! 

On the internet, any group or person can present themselves as anyone else, and all information is accorded equal value. On social media, info — accurate or otherwise — is shared rapidly, and there is little regard for long-established media entities that are accountable to their audiences.  

This environment is ripe for manipulation of data and of minds. 

In October, Canada heads into a federal election. The best defense against election interference is an educated citizenry. To help you separate fact from fiction, we’re setting straight a few of the terms around data manipulation that are often used interchangeably or incorrectly.  

Hacking elections is rarely about messing with the vote count. It’s about messing with voters’ thoughts before they go to the ballot box. 

ELECTION INTERFERENCE OR MEDDLING

Meddling in elections takes many forms. For example, well before the American election of 2016, Russians created fake Christian websites and Facebook groups, built huge audiences over time, gained their trust, and as the election approached, the content pushed out from these sources became more and more political and began to sway the beliefs held by followers about parties and candidates. It’s social engineering — psychological manipulation of people into performing actions or divulging information — and it works!

DISINFORMATION

Disinformation is deceptively placed information. It has to do with intent to deceive. It’s a lie. 

Let’s say the Russians decided to meddle in Canada’s affairs, as with the U.S. They could pick on the Conservative Party, for instance, and create a series of fake emails, that when discovered would generate a massive media controversy.  

The problem is that once a lie or propaganda is out there, it’s tough to get back — bad ideas and controversy spread quicker and with greater impact than the truth. 

MISINFORMATION

It sounds similar, but it’s quite different: misinformation is mistakenly placed information.  

Recall how often you’ve seen friends share a questionable article on social media believing it to be valid: it may be false, but if they have a wide enough social media “reach,” that wrong data snowballs, to be viewed by thousands of people.  

It’s dangerous because anyone can fall victim to it; even if they don’t mean to, innocent people can inadvertently harm the democratic process.  

SATIRE/PARODY

The prevalence of satirical news or parody sites has exploded in recent years, and because the stories tend to mimic “real” news — though in a humourous fashion — they dupe plenty of people who don’t read beyond headlines. These kinds of stories spread like wildfire as more and more people share them online, many believing them to be true.  

The intent of the story may be to mock authority, to skewer politicians, but if audiences aren’t careful, they can end up believing a narrative that’s way off base.  

FAKE NEWS

Finally, we have fake news, a term that’s been bandied about especially by U.S. President Donald Trump, who uses it to label and denounce practically any article or information he doesn’t like. 

It’s not the same as satire, because, again, of the intent — it’s news or data purposely doctored to appear other than it is. Think of “deepfake” videos intended to trick as many people as possible — or of news articles from unreliable sources made to seem legitimate.  

This boils down to checking your sources; when in doubt, find out where the information came from. If it’s political material, find out straight from candidates what their policies are and put more trust in established Canadian media. Above all, be careful about what you like, click and share online, because your social reputation has a huge impact on what your friends think about politics. 

To get the right information at the right time, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245. 

Don't click that strange Google Calendar invite — it may be a phish!

Even the most cyber-savvy among us may be persuaded to click a link in a phishing email if it looks like it’s from Google. Why? Because we trust Google. We use Google for email, for road trip directions, we use it to store files, to catch up on the news, to find a cool photo. It has become so much more than a search engine.  

Owing to that familiarity, the latest scam involving Google is insidious indeed. Malicious links are dropped into your Google Calendar — you don't even need to click anything in an email to fall victim. 

How the scam works

Kaspersky Lab, the multi-national cybersecurity firm, uncovered the con and have researched how it plays out. 

Basically, scammers consult a prepared email list to send meeting or event invites to multiple Google Calendar users. They use weaknesses in calendar settings — the default being to automatically add any event and a notification about it — to plunk their own events into your schedule.  

The event could be called something like “There’s a money transfer in your name”; even if you delete it initially, it’ll still remind you about it several times, upping the chances you’ll eventually click on it and be convinced to fill out a harmful form with your personal information.  

It’s profitable because of the sheer number of emails criminals can send out with fraudulent invites and events. The scam’s success rate is high — the notifications and calendar entries both appear to come from Google, which helps ease users’ suspicions.  

How to avoid it without scrapping your Google Calendar

Once you’re aware it exists, it’s easy to get on top of this scam. 

A couple of simple steps to take: 

  • Protect yourself through the app itself by going to Google Calendar’s settings on a desktop, and going to “Event Settings > Automatically Add Invitations.” From there, select “No, only show invitations to which I’ve responded.” 

  • Under “View Options,” uncheck “Show declined events.” That way phishy events won’t continue to pop up after you’ve already declined them. 

Cybercriminals are always on the lookout for new victims and innovative ways to scam them out of their money or data. But staying informed and alert can go a long way in mitigating risk.  

To figure out how your team/organization can reduce cyber risk, reach out to the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245. 

Cities: sitting ducks for cyberterrorists

What is ransomware, and why should I care?

Ransomware is a kind of malicious software (malware) that criminals use to deny access to data or computer systems until a ransom is paid.  

You should care because cities are a major target for ransomware attacks, and cities also happen to be the level of government people interact with most, and that impact our day-to-day lives. If cities suffer, so do individuals.  

Why are hackers targeting cities?

Municipalities are enticing for a few reasons: their IT departments are small to non-existent; their employees usually aren’t trained in avoiding phishing emails and other common avenues for attacks; they don’t have the resources that higher levels of government do to prevent and combat attacks; and because many of their systems are so specialized — such as parking and payroll — patching and keeping software up-to-date is seen as more hassle than it’s worth.

Is online extortion rare?

Short answer: No! Stratford, ON is just the latest in a string of small Canadian cities forced to pay hefty ransoms (we’re talking hundreds of thousands of dollars) to criminals who hold important public data hostage. On April 14, part of Stratford’s server system was hijacked, locking out some municipal employees. The police chief confirmed it was a ransomware attack, and the hackers wanted to be paid in bitcoin.  

Stratford Mayor Dan Mathieson said it’s a common occurrence, and that if mayors across the country don’t band together to deal with the ransomware problem, more communities could be hit.  

What will it take for cities to ramp up their security?

Cities who fall victim tend to point the finger at other levels of government or talk about their lack of resourcing without taking any real action. It makes sense that cities are overwhelmed — these attackers are international and organized, and police or RCMP often don’t have the time or resources to help.  

Unless there’s a disruption in essential services like sewage, water and power, it’s going to be tough for these towns to take the problem seriously.  

What can cities do about it?

Municipalities can be proactive about their cybersecurity by: 

1) Using standard security controls such as antivirus, firewalls and good digital identity controls such as two-factor authentication — but being aware that these can’t catch all sophisticated attacks. 
 
2) Teaching people what a cyberattack looks like and how to report it. Beauceron works with municipalities around the world, and security education has a dramatic impact. With proper training, we’ve seen the rate of clicking on links in phishing emails drop from as high as 34% to as low as 5%.  
 
3) Building resiliency — many organizations under-invest in IT and neglect cyberattack “fire drills,” leaving themselves wide open to hacking. Cities should be strengthening their IT teams and prepping for worst-case scenarios by practising cyber incident response plans.  

It’s open season on municipalities, but together we can protect ourselves against ransomware attacks! 

To figure out how your team/organization can reduce cyber risk, reach out to the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245.

3 quick and easy ways to declutter your digital life

Unless you're living under a rock, you’re probably aware of dozens of recent data breaches involving huge — and therefore implicitly trusted — companies (*cough* Facebook) where your sensitive information was mishandled and put at risk. 

Privacy is a major issue these days, and the best way to prevent your data from being exposed in a breach is to start small, at home. 

1) Let’s get physical

Clean the digital clutter from your space. We hope you don’t leave sensitive data lying around in your home or workplace, but data that could be compromised in a physical breach could include anything on your computer or phone — think old PDFs containing medical information saved to your desktop, photos on your phone of your driver’s licence or passport — that you'd be better off trashing or saving to a more secure cloud service.   
 
Put yourself in a criminal’s mindset: if you were looking to commit fraud and you stole someone’s laptop or smartphone, what would you look for first? That’s the kind of info you should be deleting or securing.  

2) Delete old, out-of-use email accounts

Why are you hanging onto that embarrassing email address from high school? Unless you believe cutieblond91@hotmail.com could serve you in adult life, it’s best to give it the boot, because email accounts — even dated ones — are a hacker’s goldmine. Through an email, someone could gain access to almost any other piece of info about you — everything from logins to other accounts, to passwords, financial data, the information of all your contacts, your mother’s maiden name and the make of your first car.  
 
Before deleting an email account, go through it and download any data you may want, and double-check to make sure there are no other services you use currently that are still connected with the old email, like Spotify, PC points, you credit card, Netflix, et cetera. Search out any subject lines associated with account creation, go into the security settings and check for any third-party apps with account access. 
 
If you don’t want to get rid of the email altogether, you should at the very least change its password to be long and strong.  

3) Get rid of app accounts you don’t need anymore

Remember when you downloaded Runkeeper last January and used it to track your one New Year’s resolution workout? Well, it really doesn’t need to be on your phone if it’s not in regular use. Apps like this track far more than calories burned — they also track your location (among many other prized informational nuggets), even when turned off.  
 
Companies store data they’re given long after you delete their apps, so going forward, don’t download apps or create accounts online for no reason. The more of your data that’s out there, the tougher it is to manage. 

Decluttering digitally is about being proactive with your privacy — it's about paring down the amount of your personal data available to only what you need and use, so it doesn’t fall into the wrong hands. 

To get the right information at the right time, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245. 

 

Verified.Me app makes proving your identity easy

Last week, banks in Canada announced the launch of Verified.Me, a free app that helps you prove your identity online.   

Because practically every online service requires a different username and password, it can be tough to prove who you are when you’re logging into your various accounts. Not only do you need to remember dozens of these credentials, but you often need to answer security questions, show physical identification — and it’s all getting too complicated.

Security AND speed

The goal of the app is to speed up the process of authentication while maintaining security and privacy. Logging into accounts and juggling passwords and identities is a pain, and people tend to sacrifice security in favour of convenience. Verified.Me aims to provide both. 

sign-in partner.PNG

This kind of service is already used by federal agencies like Canada Revenue Agency where you can log into your personal or business tax account through your bank, also known as a “sign-in partner.”  

How does Verified.Me work?

Think of any online service that requires you to create a username and password; instead, you log into your bank account only, through the Verified.Me app. If the bank deems that particular service to be trustworthy, you can log in automatically.  

You’ve already proven your identity at the bank; it’s the most important — and most tedious — step when opening your account. There are strict regulations in place, you need to show government-issued I.D. and open a real account as the real you. Of all the online entities, banks truly know who you are as a person. 

One identity to rule them all

The idea of a “federated identity” — a way of linking your identity and attributes, stored across multiple identity management systems — is coming up more and more these days, as identity becomes increasingly complex.   

“Single sign-on" (SSO) lets users log in to one service with a single ID and password to gain access to several sites and accounts. SSO is a good idea that has been mismanaged in the past by Google and Facebook and others — companies that have shown they can’t be trusted to manage and secure our digital identities. 

Facebook’s SSO was hacked in 2018, when it was revealed that it had fallen victim to an attack that breached 50 million user accounts. Google’s SSO has issues, too — if someone breaches your Google account, for example, they then have access to your passport information in Expedia, private messages on Tinder, location data on Uber — literally any site or service you access through the Google single sign-on.   

Why trust the banks?

Banks spend more on cybersecurity than any other organization in the country. They’re dealing with huge amounts of money so it makes sense that they have a vested interest in verifying their customers' identity and protecting against fraud.  

Unlike Facebook or Google, their entire business relies on being secure. 

How to get started

Download the Verified.Me app on your phone, open it and choose your bank from the list of options (Scotiabank, RBC, CIBC, TD or Desjardins). You’ll then be redirected to your bank’s app or website, where you can log in using your username or card number and password. Once you’re in, you can add “Connections” to your personal list and use the app to log into all those services.   

You’re in control of how and when your personal information is used, and no personal info is stored in the app — it's a win from all angles!  

To learn more about protecting your identity at home or at work, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245.  

My McD’s app hack points to importance of securing accounts

It’s not the first “Hamburglar” hack and it probably won’t be the last, but a recent McDonald’s app attack has some lessons to teach us about securing our accounts in the age of digital loyalty programs. 

What happened

A tech writer in Toronto who used the McDonald’s app learned that a scammer had broken into his My McD’s account and purchased more than 100 meals — racking up around $2K in charges. The app was linked to his debit card, and he was oblivious to it all, receiving no notifications from McDonald’s or the bank. 

It’s safe to say that no one could eat that much McDonald’s and survive, so chances are the victim’s username had been reused or compromised, the hacker guessed it or otherwise accessed it, then traded it on the dark web to be exploited by multiple criminals.   

A PR nightmare for Mickey D’s

This looks bad on McDonald’s — especially since similar things have happened in other areas including Quebec and Nova Scotia involving the same app. It’s likely not a widespread issue for McDonald’s specifically, though, but an illustration of what will inevitably happen more and more as these loyalty and rewards programs become more common.

Rewards apps = easy targets

Loyalty programs and apps are attractive targets for cybercriminals: they’re easy to hack, highly profitable, and — let's face it — police don’t care about a $2K McDonald’s bill, so fraudsters can get away with it. We’re seeing many issues with rewards campaigns and users’ accounts being drained  

What should companies do?

Companies could allow users to load the app with a certain amount of money, and set limits, to remove the possibility of a thief racking up a steep bill.  

Corporations could also set up two-factor authentication on their apps, meaning any time someone logs in from a new device that wasn’t previously using the app, it would require them to prove they are who they say they are, and not allow transactions if they can’t validate their identity.   

2FA? We’re lovin’ it!

Two-factor authentication often isn’t built into apps – even though it would be easy enough for these corporations to do – because companies are not subject to any regulatory requirements around security, and because customers just aren’t asking for 2FA.  

The best way to get companies to change their behaviour in Canada is to voice your concerns.  

Supersize your password

If you’re using an app like this, make sure to secure your account by creating long, strong passwords, never reusing passwords, using a password manager, and using two-factor authentication where the app supports it.   

To learn more about protecting your identity at home or at work, contact the Beauceron Security Team @ info@beauceronsecurity.com or 1-877-516-9245 and check out our blog on 7 Reasons to start using a password manager today

Five ways your organization can reduce burnout across your IT team

Beauceron Security ‘s mission is to empower people.

When we do that well, people help their organizations proactively reduce their cyber risk while also improving their ability to respond and recover from cyber incidents.  

Part of that mission involves helping people manage ever-increasing workloads and corresponding stress.

Competing priorities, constant change and financial constraints can create stress in the workplace. When left unaddressed, burnout — long-term, unsolvable job stress — can take over, and that’s bad news for your people and your bottom line.  

Information technology (IT) professionals are no strangers to workplace stress. Small teams of experts are facing increased security risks. In that context, it’s easy to see why so many organizations around the world struggle to build and maintain traditional security awareness programs - they just take too much time in an already too-busy workday.

That’s why we’ve designed a platform that leverages the best aspects of technology to do what computers do best - automate routine tasks and calculate data into meaningful metrics - while letting people focus on what they do best - connecting with other people.

When an organization becomes human-centric, it focuses on connecting and empowering its people and becomes more proactive, reducing the number of incidents and reactive issues teams have to deal with.

That results in less stress for leaders and employees.

Here are some of our tips on how to move to a human-centric approach.

1. Recognize it’s an issue

You can’t solve a problem until you acknowledge it. A  2019 study  that delved into Chief Information Security Officer (CISO) stress levels found that, across 408 CISOs in the United Kingdom and United States, 91 per cent reported to suffer from moderate or high levels of stress. In Canada, the inability to unplug after work hours is reaching pandemic proportions.   

Putting in place the right plan, maximizing the effectiveness of your human and technology resources and prioritizing risk areas are all ways to manage security stress.

When we designed the Beauceron platform, we looked for ways to help security leaders do all of those things through our powerful dashboards, metrics and through engaging every one in an organization to play a greater role in security.

2. Educate and empower your entire team

An educated team throughout your organization will stop security threats before they escalate to your IT department. Beauceron’s library of multilingual courses teaches employees about the important role they play in protecting their organizations.

Employees learn how to identify and report potential attacks, such as phishing e-mails. They also learn steps they can take to protect themselves including account hygiene practices such as using multi-factor authentication and password managers.

If a would-be threat never has the chance to materialize, the potential stressors on already overworked IT professionals can be minimized.  

3. Determine where your risks are

Many CISOs struggle to keep up with ever-changing risks. This can make it tough to pinpoint and address problems.

Beauceron identifies the risky people in your organization and helps them overcome weak points in knowledge and training to better the company’s overall risk score. Assessments are visual and easy-to-understand, helping high-risk employees change their behaviour quickly.  

Beauceron's pioneering approach goes far beyond employee training.

It’s unique scoring system and risk advisor feature helps identify risks not just in people, but in culture, process and technology, providing the world’s most comprehensive human-centric approach to managing cyber risk.

4. Rewarding and recognizing employees

The Beauceron platform comes with built-in rewards and a gamification system designed to get everyone engaged in managing their cyber risk. When education is gamified, people are more motivated to learn, their risk scores are lowered — and your stress is reduced!

Of course, a technology can only do so much. When you’re not spending time doing routine, repetitive tasks, you have time to think about additional proactive ways to help your team.

At Beauceron, we leverage our own technology and others that enable automation so that we can focus on additional ways to reward and recognize our team. That includes professional development opportunities and implementing improved benefits programs such as employee assistance programs (EAPs) that provide counselling and advice on legal, financial and mental health matters.

5. Promote flexibility and fun

 Recognize that individuals within your company have distinct personalities and need different tools in order to succeed.

Some may do their best work remotely, while others need more face-time and collaboration with co-workers.

Some may feel recharged after playing with a furry friend, (did we mention we’re supporting a “Canine Comfort Zone” run by St. John Ambulance?) Therapy dogs are on-site at Atlantic Security Conference in Halifax this month! Show your employees that their uniqueness is valued, and they’ll work harder for you.  

Stress is contagious.

If employees have their needs met, they’ll be more productive and won’t be passing stress along to the higher-ups whose jobs are demanding enough as is.   

Let Beauceron help you educate and empower your team — and reduce stress and burnout!  

Visit our booth at Atlantic Security Conference on April 24 and 25 or reach out to our team to learn more: info@beauceronsecurity.com or 1-877-516-9245.