Network Security - Preventing vulnerabilities - OCR CraignDave

Disabling operating system updates

Using firewalls and anti-malware tools, along with regular software updates

Opening email attachments from unknown sources

Storing backup copies on the same drive as original files

Relying on multiple internet browsers

Training individuals to identify suspicious emails and websites

Only using mobile devices for online communication

Browsing the internet in private/incognito mode

Allowing unlimited login attempts for convenience

Implementing account lockout or timeout policies after repeated failed passwords

Disabling all password complexity requirements

Avoiding the use of CAPTCHAs on login forms

Installing multiple antivirus programs simultaneously

Regularly backing up files to secure, removable storage

Using only public Wi-Fi networks for sensitive data transfers

Ensuring all passwords are short but memorable

Ignoring the issue until traffic subsides

Using default network configurations provided by the operating system

Employing firewalls with packet filtering and monitoring incoming traffic

Turning off all website access during peak hours

Allowing direct database access for all employees

Using input validation and parameterized queries

Generating brute-force login attempts to test database performance

Providing default admin credentials to everyone

Relying on plain-text communication for simplicity

Avoiding the use of passwords altogether

Encrypting data so that only authorized parties can read it

Broadcasting all sensitive information publicly to ensure transparency

Storing computer servers in unlocked cabinets for quick access

Installing only software-based solutions to protect hardware

Using locks, cameras, and controlled entry points to prevent unauthorized access

Displaying all login credentials on a notice board

It forces employees to memorize complicated system protocols

It teaches employees to identify, avoid, and report suspicious activities

It replaces the need for antivirus software

It prevents operating system updates from installing automatically

Adding CAPTCHAs that require user interaction

Allowing repeated login attempts with no delays

Storing all passwords in plain text

Displaying a public list of all registered usernames