No system is too small to attract hackers. For example, an (unsuccessful) attempt was recently made to break in to JRVsystems' network.
Microsoft published 2 non-technical articles about security on their web site; excerpts follow. The original articles make excellent reading. You'll find them here:
The Ten Immutable Laws of Security
The Ten Immutable Laws of Security Administration
There really is someone out there trying to guess your passwords. Most people pick poor passwords, and never change them. Establish 
password requirements, and configure your system to enforce them. Make sure employees understand why it's a bad practice to write down passwords. You don't have to be a technical whiz to break in if you already know a password.
If you don't keep up with security fixes, your network won't be yours for long. Software contains bugs; some jeopardize security. Disreputable people are searching for ways to use them against you. JRVsystems can stay on top of security patches for you.
It doesn't do much good to install security fixes on a computer that was never secured to begin with. What good are security patches if you have a weak Administrator password? Or you've shared out your web server's hard drive to the world? Or the Guest account is enabled? The time to lock down a machine is before it's ever connected it to the network.
Nobody believes anything bad can happen to them. Until it does. Many users can't conceive why someone would bother sending them a malicious e-mail or cracking their password, but attackers need only one weak link to penetrate your network. Company management must mandate security.
JRVsystems can help you develop a security policy that spells out the value of information on your network, and how to protect it. Please call if we can help.
JRVsystems is pleased to announce another new client: the Houston architectural firm, Kirksey.
©2012 JRVsystems. All rights reserved.
Portions ©2001 Microsoft Corporation. All rights reserved.