binq Logo
Don't let the Grinch steal your login

Don't let the Grinch steal your login

December can be great for trade, but it’s also when mistakes happen. You’re rushing orders, juggling staff, answering customers and trying to finish the year strong. That’s exactly why scammers crank things up now. They know you’re busy. They’re betting you’ll click first and think later.

You don’t need to know all the ins and outs of cyber crime to stay safe. You just need a few habits that close the main gaps that scammers target at this time of year. Here’s a quick Christmas-season security checklist for SMEs.

Use a password manager

If you’re reusing passwords or keeping them in a spreadsheet, you’re one leak away from a mess. A password manager saves strong, different passwords for every account, so nobody has to remember them. It takes ten minutes to set up and removes a big risk.

Turn on two-step sign in everywhere

This one seems annoying when you're fiddling about with setting it up but it's time well spent. Even if someone gets hold of a password, they still can’t log in without a second code.

Start with email, banking, accounting, payroll and anything linked to card payments. Then work through the rest when you get a moment.

Don’t ignore update nudges

Those annoying pop ups are usually security fixes. Leaving them till “after Christmas” is like leaving a window open because you’re busy decorating.

If an update appears, do it that day. Phones, laptops, tablets, apps, all of it.

Make sure backups are running

In December, losing files for even a day can mean lost sales and angry customers. Backups should happen automatically, without you thinking about them.

If you’re not certain you have a backup, assume you don’t. Set one up and test that you can actually restore something.

Keep access tight

Seasonal staff, temps or a rushed handover can lead to “just give them the login” decisions. That’s how accounts get left open.

Give everyone the access they need for their role, nothing more. When someone leaves, remove access the same day.

Slow down on urgent-looking emails

This is peak season for fake 'delivery problem' messages, invoice scams, and "can you pay this now please" notes that look like they’re from a supplier - or even from you.

Before clicking or paying, get your team to check:

  • is the sender’s email slightly off
  • does it push urgency or fear
  • are they being asked to open a file or link they weren’t expecting
  • does the request feel out of character

It’s fine to be cautious. One quick check can save weeks of fallout.

Have a tiny ‘if we get hit’ plan

You don’t need a long policy. Just a simple list for when people are stressed and busy.

Write this down somewhere easy to find:

  • Who to tell first
  • How to lock accounts fast
  • Where backups live
  • Who your IT help is
  • How you’d message customers if needed

The point

Christmas is not the time to overhaul your systems. It is the time to stop the easy mistakes. If you do the seven things above, you’ll be ahead of most businesses, and you’ll protect the hard work you’re putting in this month.

 

Eleanor de Bruin

Written by Eleanor de Bruin

Senior Financial Copywriter

Share

for all things
business

Follow us

binq is a trading style of binq Business Limited. Registered in England and Wales. We’re a broker – not a lender. White Collar Factory, 1 Old Street Yard, London EC1Y 2AS. Company Registration No. 16315024. binq is a trading style of binq Business Limited.

binq Logo