Latest Post

Blog

Firewalls: hardware vs. software

Most people have a vague idea of what a network firewall does. But some business owners are easily fooled by promises of quick and easy solutions that can be installed and managed right from your desktop. In the software vs. hardware debate, there’s a clear winner when it comes to your security. Let’s take a look at what the differences are and why they matter.

Software firewalls

Calling a piece of software a “firewall” is a bit of an exaggeration. Installing it on a local hard drive is more like locks on a door than impenetrable walls. When data is scanned for threats by a software firewall, the information it contains has already been passed through your router, network switch, and finally your local hard drive.

Once the whole cycle has finished, software firewalls can prohibit risky activities based on blacklisted IP addresses, known malware definitions, and suspicious application requests.

Although these solutions do have value, they can’t guarantee that malware won’t spread to other systems before each packet of data can be scanned, unless they’re standing guard at your business’s gateway to the internet. And whenever the computer with the firewall is powered off, everything it protects is left unguarded.

Hardware firewalls

Because the drawbacks of a software-based firewall are centered around their inefficient network position, a hardware solution is the safer option. Hardware firewalls sit directly behind your router, so every single packet of data coming from the internet must pass through your gatekeeper before landing on any of your internal drives.

Most of these solutions include far more sophisticated controls than just web filtering and basic data scanning. Like most developments in the IT industry, newer hardware firewalls focus on “intelligent” functions that analyze huge datasets to recognize malware and cyberattacks based on irregular activities instead of relying solely on cataloged viruses and attack vectors.

Another benefit of hardware firewalls is that they’re always on. There’s no need to worry about whether the workstation hosting your solution will crash because these devices are built for 24/7 protection. The only downside to this type of solution is the level of monitoring and maintenance it requires. Hardware firewalls are extremely complex and managing them is no easy task.

“Cloud” firewalls

The most recent, and undoubtedly best, solution to network perimeter security are “cloud” firewalls. These are on-site pieces of hardware with software interfaces that can be managed remotely by certified security professionals.

This service model means that experts will monitor your network performance and security for anomalies while your team goes about its business as usual. No need for onsite tweaks and updates — all of it can be done remotely.

You may hear a lot of experts telling you that the age of on-site hardware has passed and everything can be done in the cloud. Remote administration may be the next wave in network services, but the need for hardware will never go away. If you need someone to manage your physical devices, contact us today.

Published with permission from TechAdvisory.org. Source.

Which Office 365 model is right for you?

From Word to SharePoint, Office 365 has a lot offer. But each business requires different features from Office 365. Some may prioritize business analytics, while others may be content with no more than the productivity suite and Outlook. If you’re planning to deploy Office 365, first consider your business needs, then use the information below to find out which license is right for you.

Business or Enterprise?
If you’re running a cloud-first business, you’ll have to decide between Office 365 Business and Enterprise. Both may have access to Office Online and OneDrive, but there are some notable differences between the plan.

For one, Office 365 Enterprise E3 and E5 plans have unlimited archive and mail storage space, while Business plans have a 50-GB storage limit and don’t provide archive access from the Outlook client.

When it comes to SharePoint, Business plans are short on enterprise search, Excel services, and Visio features. Additionally, unified communication solutions, Power BI, and Delve analytics are also missing from the Office 365 Business offering.

Although it may seem like Enterprise subscriptions are superior — and in some ways they are — Business plans are perfect for smaller companies running on a tight budget. Office 365 Business and Business Premium cost $10 and $15 per user per month respectively, while E5, the biggest Enterprise plan, costs $35 per user per month.

As a general rule, start looking for Enterprise plans when your employee headcount exceeds 50 people and users require more storage space and solutions.

E1, E3, or E5?
If you do opt for Office 365 Enterprise plans, you’ll have to examine the features and choose one of three plans (E1, E3, and E5) that suits your needs.

E1 offers basic enterprise solutions such as Outlook and Word, OneNote, PowerPoint, and Excel online for only $8 per user per month. Apart from this, users also get access to SharePoint Team sites, video conferencing, and Yammer for enterprise social media.

E3 provides all E1 features and adds data loss prevention, rights management, and encryption to ensure business security and compliance. While E5 is a full enterprise-grade solution with all the aforementioned features plus analytics tools, advanced threat protection, flexible Skype for Business conferencing, and unified communication solutions.

Small- and medium-sized enterprises will usually select either E1 or E3 subscriptions and decide to add third-party applications to meet cloud security and VoIP demands. But if you have the resources and prefer a fully-managed suite of Microsoft applications, E5 plans are the way to go.

Migrating to an Office 365 platform is a big step, and if you’re still undecided about which plan to opt for, contact us today. We don’t just provide Office 365, we assess your business and find the best solution that meets your budget and objectives.

Published with permission from TechAdvisory.org. Source.

The list of Cortana commands you need

If you aren’t using Microsoft’s voice-activated personal assistant, Cortana, you’re missing out on some beneficial, hands-free functionality. Because Cortana is now fully integrated into Windows 10, she can help you launch applications, make dinner reservations, and more. Try the following commands to make the most out of your virtual assistant.

Hey, Cortana
Before asking her to do anything, we need to get Cortana’s attention by clicking or tapping the Cortana button on the taskbar. If you do not see Cortana on your taskbar, right-click the taskbar and go to Cortana > Show Cortana icon. To enable ‘Hey, Cortana’, simply say “Hey, Cortana,” followed by your question. If you’re using a Windows Phone, you can press and hold the search button to activate Cortana.

Basics tasks
If you’re looking to launch a program or open a website, simply use the word ‘Launch’ or ‘Open’ followed by the website’s name. Make notes by uttering the words ‘take a note’ or ‘note it down’. As for making drafts, start with ‘Write an’ followed by email or text and end with the contact name and the message itself. Lastly, ‘Show me emails from [contact]’ will display all the texts or emails sent from the specified contact.

Scheduling/Reminders
It’s important for small- and medium-sized business owners to stay on top of their schedules. Take a glance at your calendar events with commands such as ‘How’s my schedule looking?’ or ‘What do I have next week?’. Add or move appointments with ‘Add’ or ‘Move’ followed by the appointment and time. Reminders are easily scheduled by uttering the words ‘Remind me’ followed by whatever you need to be reminded about and when.

Search
If you can’t locate the file you need, don’t worry. By asking Cortana to ‘Find’ a document, video, or picture on your device from a specific time frame, she will sift through everything quickly to find what you need. You can easily initiate search queries with ‘Can you find’ followed by whatever you are looking for. You can even look at basic search results without having to open a browser window: Simply ask whatever question you have and enjoy combing through the results.

Window’s voice-activated personal assistant, Cortana, helps you accomplish daily tasks with ease and efficiency — but only if you use the right commands. If you have further questions or would like to know more Cortana commands, feel free to contact us. We’re ready to help!

Published with permission from TechAdvisory.org. Source.

Is fileless malware a threat to you?

There have been some truly horrifying cyber-security headlines popping up over the last month. If you’ve been reading about “fileless” malware attacking banks and other big-name institutions around the world, we’re here to set the record straight: Your business isn’t in direct danger. But even if you’re not, staying abreast of all the details is still worthwhile.

What is this new threat?

To oversimplify the matter, fileless malware is stored somewhere other than a hard drive. For example, with some incredibly talented programming, a piece of malware could be stored in your Random Access Memory (RAM).

RAM is a type of temporary memory used only by applications that are running, which means antivirus software never scans it on account of its temporary nature. This makes fileless malware incredibly hard to detect.

This isn’t the first time it’s been detected

Industry-leading cyber security firm Kaspersky Lab first discovered a type of fileless malware on its very own network almost two years ago. The final verdict was that it originated from the Stuxnet strain of state-sponsored cyber warfare. The high level of sophistication and government funding meant fileless malware was virtually nonexistent until the beginning of 2017.

Where is it now?

Apparently being infected by this strain of malware makes you an expert because Kaspersky Lab was the group that uncovered over 140 infections across 40 different countries. Almost every instance of the fileless malware was found in financial institutions and worked towards obtaining login credentials. In the worst cases, infections had already gleaned enough information to allow cyber attackers to withdraw undisclosed sums of cash from ATMs.

Am I at risk?

It is extremely unlikely your business would have been targeted in the earliest stages of this particular strain of malware. Whoever created this program is after cold hard cash. Not ransoms, not valuable data, and not destruction. Unless your network directly handles the transfer of cash assets, you’re fine.

If you want to be extra careful, employ solutions that analyze trends in behavior. When hackers acquire login information, they usually test it out at odd hours and any intrusion prevention system should be able to recognize the attempt as dubious.

Should I worry about the future?

The answer is a bit of a mixed bag. Cybersecurity requires constant attention and education, but it’s not something you can just jump into. What you should do is hire a managed services provider that promises 24/7 network monitoring and up-to-the-minute patches and software updates — like us. Call today to get started.

Published with permission from TechAdvisory.org. Source.

New Mac malware linked to DNC hacking group

Fancy Bear, also known as APT28, is the Russian cybercriminal group responsible for hacking the Democratic National Party last year. Since then, the group has developed a host of tools to exploit Linux, Android, and Windows vulnerabilities. Last month, they spread a new strain of malware that specifically targets Apple Macbooks. If you own a Mac or an iOS device, here are some crucial details about the new malware.

According to antivirus provider Bitdefender, the new malware — named Xagent — is a Mac OS backdoor that is usually delivered via spear phishing emails.

To deploy the malware, hackers attach a Trojan software downloader in the email. If users interact with it, the program immediately creates a backdoor and connects to the cybercriminal’s network.

The malware then avoids detection by checking for antivirus software; and if it determines that cybersecurity solutions are offline or unpatched, it will begin to send system information, locally-saved passwords, iPhone backups, and desktop screenshots back to hacker headquarters.

Although security updates for the new malware are still unavailable, there are some things you can do to minimize the possibility of infection.

Approach emails with caution
Since hackers use phishing scams to distribute the Xagent malware, train your staff to be critical of email links or attachments, even if from the CEO or a close friend. And under no circumstances should you interact with any email from an unknown sender.

Keep your OS up-to-date
Always remember to install the latest operating system and application updates to make sure that Mac vulnerabilities are covered immediately.

Don’t save passwords
While it may be easier to save your passwords on your local browser, it gives hackers easy access to your accounts. If you can’t remember all your passwords, consider password management software. And while we’re on the subject, make sure you set unique passwords with a good combination of letters, numbers, and symbols.

Encrypt backups
To add another layer of protection, encrypt your iOS backups. This ensures that unauthorized users won’t be able to read the contents of your iOS data even if they do manage to gain access to your computer.

Cybersecurity is a universal issue, even for Mac users. But adopting these basic security habits will keep any hacker, whether from Russia or the US, at bay. Fortify your defenses by giving us a call today.

Published with permission from TechAdvisory.org. Source.

Advice from a failed disaster recovery audit

We can write about disaster recovery planning (DRP) until our fingers bleed, but if we never discuss real-world scenarios it’s all just fumbling in the dark. Examining these successes and failures is the best way to improve your business continuity solutions, and the recent audit of a state government office is rich with valuable takeaways.

Hosting certain types of data, or managing a government network, legally binds you to maintain DRPs. After an audit of the Michigan Department of Technology and Budget, several failures lead to a trove of helpful tips for small- and medium-sized businesses attempting to create a bulletproof disaster recovery plan.

Update and test your plan frequently

One of the first and most obvious failures of the department’s DRP was that it didn’t include plans to restore an essential piece of their infrastructure. The plan didn’t include steps to restore the department’s intranet, which would leave employees unable to complete even the most basic of tasks.

The reason for the oversight? The last time the plan was updated was in 2011 — leaving out more than six years of IT advancements. If annual revisions sounds like too much work, just consider all of the IT upgrades and improvements you’ve made in this year alone. If they’re not accounted for in your plan, you’re destined to fail.

Keep your DRP in an easy-to-find location

It may seem a bit ironic that the best way to store your top-of-the-line business continuity solution is in a binder, but the Michigan Department of Technology and Budget learned the hard way that the alternatives don’t work. Auditors found the DRP stored on the same network it was meant to restore. Which means if something had happened to the network, the plan would be totally inaccessible.

Your company would do well to store electronic copies on more than one network in addition to physical copies around the office and off-site.

Always prepare for a doomsday scenario

The government office made suitable plans for restoring the local area network, but beyond that, there was no way for employees to get back to work within the 24-hour recovery time objective.

Your organization needs to be prepared for the possibility that there may not be a local area network to go back to. Cloud backups and software are the best way to keep everything up and running when your office is flooded or crushed beneath a pile of rubble.

DRPs are more than just an annoying legal requirement, they’re the insurance plan that will keep you in business when disaster strikes. Our professionals know the importance of combining both academic and real-world resources to make your plan airtight when either auditors or blizzards strike. Message us today about bringing that expertise to your business.

Published with permission from TechAdvisory.org. Source.

Are your printers safe?

This is not a question often asked by anyone who has ever used a printer. Given the increasing sophistication of hackers’ capabilities, the discovery that cyber thievery can, in fact, be performed through some popular printer brands hardly comes as a surprise. One study reveals that at least 20 printer models are vulnerable to Distributed Denial-of-Service and other types of attacks. Let’s take a look at this chilling development in cybersecurity.

Which printers are prone?

Based on the study made by Ruhr University Bochum researchers, printer brands such as Hewlett Packard (HP), Brother, Dell, Samsung, and several others are prone to different types of cyber attacks. Online printers from these brands could serve as cyber criminals’ path in which to steal credentials, corrupt a printer, or leak sensitive data from printed documents obtained through a printer’s memory.

Printers serve the basic purpose of turning computer documents into paper and have never been a typical entry-point of hackers’ attacks. Government and corporate offices, business establishments, non-profit organizations, and homes own one, and when you think about the fact that most printers are linked to computer owners’ internal networks, this expansion of cyber theft to printers begin to make even more sense.

How can attacks be made?

Researchers identified security vulnerabilities that would enable hackers to corrupt common printer languages such as PostScript and PJL, which they could then use to launch Distributed Denial-of-Service attacks or reset the corrupted printer to its factory defaults, also termed as ‘protection bypass.’ Other ways in which hackers could exploit their access are through print job manipulations, which could lead to minor cases of printing corruptions or persistent printing distortions, and information disclosure, the leaking of sensitive information.

What safety measures are being developed?

The researchers who discovered the vulnerabilities developed the PRinter Exploitation Toolkit (PRET), a program designed to determine if a printing device is a likely target. This toolkit ‘connects to a device via network or USB and exploits the features of a given printer language, and is complemented by a wiki page that documents attacks made. It’s worth noting that more printer models and brands haven’t been tested due to the team’s lack of resources. But with this open-source toolkit, vulnerabilities of many brands and models may soon be identified.

Stealing information online is far from being a novelty in cyber security. But to do so through printers requires a special set of skills. It’s too soon to tell whether this form of cyber thievery is going to pose serious threats in the future, but regardless of how further studies progress, failing to implement security protocols for your network can cost you dearly. Get ready for any security threat by contacting our security experts now.

Published with permission from TechAdvisory.org. Source.

Why you should be an Office Insider

To deliver unparalleled service, Microsoft tests products and features months before they’re released to the public. One of the ways they do this is with the Office Insider program, a voluntary Office 365 subscription that gives participants a sneak peek into future Microsoft developments. It also provides several benefits to business owners willing to take a risk.

Early access
Similar to the Windows 10 Insider program, the Office Insider program grants users early access to new features, security updates, and bug fixes months before they are available for the general public. Office Insider is available on two levels: the fast ring, where updates are rolled out more frequently but tend to have more issues, and the slow ring, where features are released slower but have little to no software bugs.

The features you have to look forward to include:

  • Calendar.help – When you sign up for the Office Insider Program you are immediately eligible to beta test Calendar.help, a machine learning feature that uses Cortana to schedule important calls, meetings, and events. When you need to set up an appointment over email, you can simply list your contact, add Cortana to the Cc: line, and state your meeting preferences.
  • Outlook – In January 30, Microsoft has increased Outlook 2016’s collaboration options. Insider subscribers can upload locally saved email attachments to OneDrive and collaborate with other employees.
  • Surface Pen – Surface device users in the Insider program can resize, rotate, and move objects in Word, Excel, and PowerPoint with the Surface Pen.

Competitive advantage
Because you’re getting early access to new applications, you’ll have more experience with the features compared to companies who wait for the general availability update. For example, you can test updates like PowerApps — a feature that allows businesses to create software without knowing how to code — and decide whether it’s right for your company months before other general users have worked with the product.

In other words, when your business can access and take advantage of Office 365 Insider features early, you’re essentially setting your company ahead of the competition since ‘late’ adopters will need to spend time getting acquainted with the new patch.

Feedback
The final benefit of the Office Insider program is that you get to voice your opinion on the upcoming features, raise awareness to certain software issues, and provide ideas on how Microsoft can make things better.

Overall, enrolling in the Office Insider program can open up your company to a wide variety of productivity-boosting features. The only question you have to ask yourself now is: Do I want to be at the bleeding edge of tech innovations?

Contact us today to find out how you can get on the inside and know the latest in Office updates.

Published with permission from TechAdvisory.org. Source.

Microsoft’s Windows 10 upgrade for SMBs

Microsoft has announced that it will bring back free Windows 10 upgrades, but on one condition: Only small- and medium-sized businesses that have previously passed on the offer are eligible. So if you or someone you know has declined Microsoft’s previous proposition, here are some reasons you might want to reconsider.

They’re extending the free upgrade to this segment of customers to help them get to Windows 10,” said Wes Miller, an analyst at Direction on Microsoft, specializing in complex licensing rules and practices. Much like the 12-month upgrade deal that ended last August, this offer applies to personal computers running on Windows 7 or Windows 8.1. The only difference is, the offer is exclusive for businesses that have subscribed to one of the Windows Enterprise plans.

According to Nic Fillingham, a small business product manager: “Customers subscribed to Windows 10 Enterprise E3 and E5 as well as Secure Productive Enterprise E3 and E5, can now upgrade their Windows 7 and Windows 8.1 PCs and devices to Windows 10 without the need to purchase separate upgrade licenses.

The Windows 10 Enterprise E3 and E5 subscriptions are priced at $7 per user per month and $14 per user per month, or $84 and $168 per user annually. Unlike Microsoft’s historical licensing — which permanently licensed the operating system on a per-device basis — the E3 and E5 subscriptions are per-user licenses, and payments must be maintained to run the OS. This was introduced to target customers that didn’t want to sign a long-term volume licensing agreement.

In order to qualify for a Windows 10 Enterprise E3 or E5 subscription — which are delivered through a CSP (cloud service provider) — devices must already be running on Windows 10 Pro. SMBs could upgrade their devices for free last year if those devices ran older Windows 10 versions, and SMBs can upgrade the devices they newly acquire this year if those devices are already equipped with Windows 10 Pro.

When the CSP originated, the only qualifying OS was [Windows] 10 Pro Anniversary Update,” said Miller. “You had to be on 10 Pro. So, if you missed the consumer upgrade window, you would have to buy the underlying 10 Pro license.” It’s this license that Microsoft is giving away to customers subscribing to Windows 10 Enterprise E3 or E5. The acquired license is “perpetual” and will be tied to the specific device. “This means the license will not expire or be revoked if the customer chooses to end their Windows cloud subscription in the CSP program,” added Fillingham.

Since the upgrade is considered a subscriber benefit, a PC upgrade might be needed — from Windows 10 Pro to Windows 10 Enterprise — and if the user isn’t already covered by an E3 or E5 subscription, an additional $7 or $14 monthly is needed to run the system. Miller stated that the likeliest reason Microsoft brought back the free upgrade was to get more people onto the User Subscription License (SL). Providing upgrades from older editions makes more of a customer’s PCs eligible for use under the SL model of E3 and E5 (which is licensed per user, not per device). Another motivation could be to promote a partner-centric CSP.

Microsoft has officially confirmed the Windows 7/8.1-to-Windows 10 Pro upgrade offer is a permanent addition to the benefits for subscribers to Windows 10 Enterprise E3 and E5, and not a time-limited pitch. If you’re still hesitating or would like to ask some more questions, feel free to give us a call anytime!

Published with permission from TechAdvisory.org. Source.

What exactly is preventive cyber-security?

There has been a movement among technology providers to promise “proactive” cyber security consulting. Small- and medium-sized businesses love the idea of preventing cyber-attacks and data breaches before they happen, and service providers would much rather brainstorm safeguards than troubleshoot time-sensitive downtime events. But it’s not always clear what proactive cyber-security means, so let’s take a minute to go over it.

Understand the threats you’re facing

Before any small- or medium-sized business can work toward preventing cyber-attacks, everyone involved needs to know exactly what they’re fighting against. Whether you’re working with in-house IT staff or an outsourced provider, you should review what types of attack vectors are most common in your industry. Ideally, your team would do this a few times a year.

Reevaluate what it is you’re protecting

Now that you have a list of the biggest threats to your organization, you need to take stock of how each one threatens the various cogs of your network. Map out every device that connects to the internet, what services are currently protecting those devices, and what type of data they have access to (regulated, mission-critical, low-importance, etc.).

Create a baseline of protection

By reviewing current trends in the cyber-security field, alongside an audit of your current technology framework, you can begin to get a clearer picture of how you want to prioritize your preventative measure versus your reactive measures.

Before you can start improving your cyber-security approach, you need to know where the baseline is. Create a handful of real-life scenarios and simulate them on your network. Network penetration testing from trustworthy IT professionals will help pinpoint strengths and weaknesses in your current framework.

Finalize a plan

All these pieces will complete the puzzle of what your new strategies need to be. With an experienced technology consultant onboard for the entire process, you can easily parse the results of your simulation into a multi-pronged approach to becoming more proactive:

  • Security awareness seminars that coach everyone — from receptionists to CEOs — about password management and mobile device usage.
  • “Front-line” defenses like intrusion prevention systems and hardware firewalls that scrutinize everything trying to sneak its way in through the front door or your network.
  • Routine checkups for software updates, licenses, and patches to minimize the chance of leaving a backdoor to your network open.
  • Web-filtering services that blacklist dangerous and inappropriate sites for anyone on your network.
  • Antivirus software that specializes in the threats most common to your industry.

As soon as you focus on preventing downtime events instead of reacting to them, your technology will begin to increase your productivity and efficiency to levels you’ve never dreamed of. Start enhancing your cyber-security by giving us a call for a demonstration.

Published with permission from TechAdvisory.org. Source.