back to all posts

Engineers, Architects and Contractors Susceptible to Cyber Breaches


Recently, cyber-attacks have been all over the news, leaving several major businesses vulnerable to corruption. But did you know that engineering and contracting firms are also at risk? Many of these firms use programs like Building Information Modeling (BIM) and Computer Aided Design (CAD). Both are internet solutions that can be remotely accessed.

Unfortunately, that translates into an increased risk of a cyber-attack. These kinds of businesses are often attractive to hackers because it could grant them access to your client’s valuable information, including intellectual properties, corporate finances, account numbers and other confidential details.

In fact, Turner Construction employees became a victim to a similar scam in 2016. It happened when one of their employees received an email that used the spear phishing technique. Spear phishing scams a person or business by “spoofing” an email. This makes it appear to be sent from a trusted source, like your employer or a bank, for example. The scammed Turner employee ending up sending names, social security numbers, login credentials and tax information of other employees in the company. All of the company’s employees were ultimately affected.

Something like this happening to a company is not only bad for the victims involved, it’s horrible for the business’s reputation. While there are no guarantees that you will never experience a cyber-attack, preparing for one will certainly make it more difficult for crooks to scam you or your company. So here are a few steps you can take to ramp up your cyber protection.

Shore Up Your Servers

If your company doesn’t have security software in place already, it’s important to get that for your business servers. Security software can offer real-time protection and update regularly to recognize the newest malware threats. You will also have to make sure your firewalls are enabled.

Keep Employees Informed

All employees working on your projects should be aware of security policies. You should also make it mandatory that passwords be changed often, like every three months for example. If any workers are using smartphones to login to the company network, data encryption, passwords, and PIN locks will further protect the company.

Protect the Wifi Network

The wireless signal for the company should be encrypted also, at the work site and the office. Secure the router and filter MAC addresses so only authorized personnel (employees, etc.) can access the network. It’s also a good idea to backup company data at an offsite location or a professional cloud storage provider.

Secure your company’s Wifi network, both at the office and at the job site, by encrypting your wireless signal, securing your router with a password, and properly filter MAC addresses of devices so only employees and authorized personnel can access your network.

One final layer of protection that may be worthwhile is investing in cyber insurance coverage. Hopefully, you never have to be exposed to a cyber-attack, but with hackers growing in number by the day, it’s better to be protected and to use precaution when you’re safe than have regrets because the company didn’t do anything when there was the chance.