While the use of sophisticated software and instituting standard policies and procedures are necessary to ensure security in your firm, the most powerful tool may well be the use of common sense. Here’s a starting point: don’t click on links in e-mails. Just don’t do it. The most common way for cyber criminals to defeat your security technology is to fool you into opening the door for them. Without millions of people willing to click on tempting links in unsolicited e-mail, the Storm botnet could never have flourished to the extent that it did.