Security Archives - Page 6 of 10

5 Ways to Secure Remote Workers & Keep Your Data Safe

by EstesCloud | Aug 26, 2020 | Cloud, Managed IT Services, Network Security, Security

Cybersecurity: On-site and Remote

Cyberattacks can’t stop us from developing new technology solutions. As a result of the pandemic, 2020 increased the demand for ways to secure remote workers, devices, and networks. The numbers aren’t in yet, but some reports are claiming that 1 in every 5 workers will continue on with remote access to corporate data, and others are saying nearly 100% of workers will now operate outside of business campuses in one capacity or another. Fortunately, there are emerging cyber security solutions, including new ways to secure remote workers, in the woods or in the halls.

Ways to Secure Remote Workers via BYOD

Ransomware isn’t a person you can meet on the street. Or a monster. Or a beast. The cyberthreats we face often feel nebulous, confusing, and perhaps a bit mythical to even the most uneventful personalities. The BYOD (bring-your-own-device) culture that’s boomed as a result of social distancing immediately increased the need for more sophisticated approaches to cyber warfare. The digital landscape is infected. New threats emerge daily as cybersecurity experts rush to cure compromised users before attacks infiltrate national and global networks.

Fortunately, there are many ways to secure remote workers via BYOD-based endpoint security solutions. When dealing with remote devices, our cyber security consultants like to view circulating threats as something other than human. If you see a computer virus as a weapon, then you realize how easily dark web tools can be exchanged. For instance, a malware program is bought and sold like a set of knives. Therefore, we hunt for the knives, rather than focusing on an elusive hacker.

Malware spreads in milliseconds, often without the direct influence of people, and can take months to detect. Likewise, cyber threats often become a hidden danger that eventually attacks your entire network. For instance, you might unwittingly share it with your supply chain because you don’t know it exists. Your malware isn’t a malcontent in a hoodie. It might begin with a human, but it jumps devices without direct guidance, as initially programmed to do, often causing more damage than the cybercriminal expected.

Security measures involve many layers of cyber defense, especially when addressing remote connections:

Power in the Layers: This includes keeping your hardware strong and your network patched. Look for renowned technology solutions. Duct tape and magnets? Raspberry Pi backups? Look for the latest cybersecurity tools and save old tricks for the treehouse.
Monitor the Monitor: A secret code is no longer enough. A username and a password was never enough, so we’ve developed advanced monitoring and management solutions for your business. Watching the watcher keeps your data on watch for on-guard and on-time productivity.
Party with Your Partners: Celebrate your digital serenity with the calm crew of a trusted technology firm. The right managed IT alliance complements your core team, toasting cyberthreats so you have time for a toast.
Click-a-Little-Talk-a-Little: Train your team to be careful with clicking tendencies and to communicate about potential harm to your data.
Question Everything: Question us, question your team, question every click and download. Fill your day with virtual pauses, staying alert to cyber risks. Continually learn new ways to protect remote workers.

Your online safety is dependent on secure interactions

Your financial data, your business strategy, your critical tasks and personal stats are all under attack. How can you keep everything secured when the digital landscape is always shapeshifting? As your business grows more complex, perhaps depending on a complicated software like an Epicor ERP system, how do you keep IT remotely safe? AI and automation create worlds of benefits for businesses, but these new technologies get in the hands of nefarious hackers, and suddenly your entire social chain, the very vitality of your company, is at risk. The new ways of protecting remote workers won’t help you unless you stay on top of emerging threats. Fortunately, our IT security experts can install the best SaaS (security-as-a-service) solutions for your business, including private cloud hosting protections for remote networks.

Are you looks for new ways to secure remote workers?

Take our quiz to find out if you’re keeping your friends and colleagues safe.

Learn about the security of private cloud

Social Engineering Techniques: How Hackers Come Home

by EstesCloud | Aug 5, 2020 | Managed IT Services, Network Security, Security

Time to Learn Social Engineering Techniques

WELCOME HOME, MALWARE

TIME TO MAKE YOURSELF AT HOME

Human manipulation fuels social engineering techniques, and basic security measures, like anti-virus software, often can’t prevent innocent behaviors, like trust, from compromising your data. Hackers frequently penetrate corporate networks because employees open the door. Necessary to break the trust-manipulation cycle, advanced security solutions can detect, and even predict, social actions that lead to system infiltration. Advanced attacks that use subtle social engineering techniques often come and go without a trace, so how do you prevent sophisticated attackers from making themselves at home in your business?

A hacker’s “Welcome Home” sign might be on an open Wi-Fi network, or it might be on your personal computer, or even your phone. A social engineering attack taps into your life in a way that can feel “like home” to you. Soon, the person you trust takes over your “house” of data, and this can be at both home-life and corporate-life levels, at the same moment, since you might integrate work and home through the use of your mobile phone, laptop, smart watch, tablet (maybe even through a Wi-Fi enabled coffeemaker).

If you leave your doors unlocked, people might crash in your digital living room even while your computer is sleeping. If you have dozens or hundreds of employees, each human presents at least one door to your data. Multiply this by the average number of devices employees utilize for work optimization (desktops, laptops, mobile phones, tablets, smart televisions), and you’ll see that your business has hundreds of thousands of access points.

Businesses naturally have an “open door” culture. You want new clients. You want good growth and reputation to result from your offerings, and this means you have to interact with strangers on a daily basis. Stranger danger? Not if that stranger has the potential to become a favorite customer. This is why it’s critical to understand the nuances of social engineering techniques (or partner with a managed IT team that does).

Because companies leave their virtual doors open, they attract attacks that utilize simple social engineering strategies (no hacking genius required). Detecting these nefarious online behaviors often takes advanced cyber analytics, and preventing data breaches begins with training based on what is known about these cyberattack strategies. Flexible managed IT plans help businesses outsource specialized tasks in their cybersecurity plan.

Here are 3 ways hackers let themselves in and make themselves at home in your network:

Phishing

32% of security breaches begin with phishing attacks. If someone knows your email address, then you can receive a phishing email. How do you prevent these attacks when you’re a business owner constantly giving your email address to strangers? If you do any of the following behaviors, you’re at increased risk of a phishing attack:

You exchange business cards at conferences, trade shows and other social gatherings.
You publish your contact information on your website or on online social networking pages.
You use email to communicate with your employees, partners, customers and potential clients.
You respond to emails quickly, often overlooking small details in the delivery structure.

Exchanging

Save money. Save time. Download free software. Fill in a form or upload your business card and get free information. The bliss of the internet is free exchange. You can hop from one website to another, learning for free and networking for free, all from the comfort of your sofa, saving time and travel expense. Sadly, the risk of “free” malware comes with every exchange that happens in our connected online world. If you do any of the following online activities, you’re at increased risk of a social engineering attack:

You skip the fine print and click the download button before reviewing terms, agreements and privacy policies.
You see a website you like with content you want, so you freely give your name, address, phone number, and maybe even your employment information, in exchange for a download.
You download free apps and sign up for free trials.

Spying

Hackers often look over your shoulder to get the information they need to access your data. You might be at a coffeeshop talking to a friend while your unlocked phone sits cup-side. Maybe your phone is also on open Wi-Fi, leaving multiple open doors into your private life. E-espionage often happens at the places you love — your favorite deli, your downtown square — tranquil places, where you don’t feel a sense of vigilance. You are at risk of becoming a social engineering attack victim if you do any of the following activities:

You leave your laptop, phone, or tablet on the table when you see your friend in line at the coffeehouse and get up to say hello.
You turn password access off on your phone so that you don’t have to unlock it later.
You use public Wi-Fi networks.
You have the same password for multiple accounts so that you’ll always remember your login credentials.

If you got through these lists without a hitch, then you’ve taken the right steps to prevent social engineering techniques from ruining your life with ransomware. Unfortunately, the hackers could still carry you over your own threshold. Why? Because as soon as you add coworkers or friends to your contact list, and as soon as you begin to communicate using your devices, you introduce new risks. Because of the likelihood of a cyber security breach, you should always check your backups for malware, and always have a solid disaster recovery solution in place.

Learn how to secure supplier portals and other links along the cyber chain against the latest & greatest social engineering techniques.

Request a free consultation on cybersecurity best practices for manufacturers. Please chat with us now and our team will get you a complimentary technology assessment with our security experts.

EternalBlue Hacks & Tales from the Unpatched (Video)

by EstesCloud | Jul 22, 2020 | Managed IT Services, Network Security, Security

EternalBlue, which is an ancient set of hacks — ancient: going back three years — is still applicable, especially in regard to some of the technology and vulnerabilities that we are seeing today. EternalBlue is a software that the NSA developed to hack Windows machines. The goal was to break into a computer (without telling the owner “someone’s there”) — and then run a software of choice. Windows contains more than two millions lines of code, so nobody, even at Microsoft, really knows what it’s all doing, and vulnerabilities are found every day. EternalBlue hacks targeted some of those vulnerabilities.

Running Windows makes you vulnerable by default. Linux, Mac, Android, iPhone — they’re all vulnerable because we’ve reached the state of complexity in the operating systems that we choose to run that it’s just a matter of time before new ways are found to break into these systems. Online trickery happens, and people download malware thinking they’re getting a good piece of software. For example, there was once a program called Whack-a-Mole. It was known to have a Trojan in it, so if hackers were able to convince you “hey, this is the coolest game in town,” then your machine would be infected. When hackers are trying to break into a machine, whether through a means like Whack-a-Mole or through an EternalBlue hack, they’re trying to do it surreptitiously, invisibly. They don’t want you to know because, if you knew, you might do something like reboot. This led the hackers to ratchet up what we call the “persistence” of malware, so that maybe it could survive a reboot.

If you’ve ever had a browser toolbar appear in Internet Explorer, or Chrome or Firefox or Edge, or any other browser, that toolbar probably has the rights to see wherever you’re surfing and modify the webpages that you get back, and can even interact with you. A toolbar is a very visual indicator that “you’ve been hacked.” Is that toolbar interested in stealing your passwords and learning your PayPal login and modifying what you visit and how you see it? Maybe, maybe not. But it’s an indication that you’re running untrusted software. Going out to the web and downloading a piece of software because it looks interesting is almost a guaranteed way to get hacked.

WannaCry

Malware programmers write apps, publish them and they get downloaded, and in the background there’s a malware stealing passwords, modifying webpages, looking at your identity — those are all activities I would consider hacks — and that’s what EternalBlue is. In short, it leverages a vulnerability that the NSA found in the Microsoft SMB protocol. They found that if they hurled a packet that was the right size in the right shape, it would shove a square peg into a round hole, and the round hole wouldn’t know what to do, and so it would execute a buffer overflow attack. Windows wasn’t expecting a square peg in a round hole, so it would trip, fall down, and execute code of the attacker’s choice. EternalBlue hacks took advantage of a “round” Server Message Block (SMB) hole, and as that SMB failed, it could run a Trojan, or blue screen a computer, or download a piece of malware.

Less than thirty days after EternalBlue got into the hands of cybercriminals, a nasty bug called WannaCry was released to the world. It made you want to cry because it was ransomware. It used EternalBlue as the delivery exploit, so as soon as WannaCry got a foothold inside a corporate network, it would jump from machine to machine to machine and ransom. By the next year, EternalBlue hacks had cost companies and industries billions of dollars, and 65 countries have fallen to EternalBlue’s vulnerability and have been ransomed or hacked in some fashion. Why? Because even after Microsoft released a patch, millions of computers were unprotected because people didn’t patch.

Patching… and more than patching

Cybercriminals are continually waiting for time, opportunity, and tools to be able to successfully hack into your system. To prevent it, we do a number of things. We patch our machines, we turn on our firewalls, and we don’t let people be local administrators. We make sure our antivirus is current. But we need more than antivirus because hackers now have toolkits to program custom malware. They don’t have to know about EternalBlue hacks if they have a malware toolkit. These toolkits change malware by a byte or two bytes, which changes the signature of the program. As a result, the antivirus software, which is looking for signatures, can’t detect the malware. This designer malware is specifically written for a particular company. The malware is one-of-a-kind and still does the same EternalBlue exploit. Because of this dark web exchange of malware toolkits and designer ransomware, more robust cybersecurity measures, like endpoint security, are needed to keep our businesses safe.

IF Only Tech Time

Fridays – Noon (MT)

Answers to all things about IT

IF you did miss IT… did you miss IT!? No worries!

Watch a tech talk here!

Dark Web Protection: Assessment, Awareness & Actualization

by Brad Feakes | Jul 1, 2020 | Managed IT Services, Network Security, Security

Business owners, especially those who have been through the challenges involved in a data breach, often hope the dark web goes completely dark — as in nonexistent. Wouldn’t it be nice if trending IT services, like advanced web scans and security audits, go out with the times? For now, the illegal realm of the dark web makes history every day, so companies must work nonstop to predict cyber threats and stay a step ahead of the hackers.

Dark Exposure

The dark web is an encrypted network of criminal intent. The deep web, conversely, provides a safe haven for your private information. By law, you need to keep most of your business data hidden from public view. You don’t want your financial information or your employees’ social security numbers exposed, and neither does the government. Whether you’re a manufacturing company in the heart of Denver, Colorado, or a distribution business with hubs across the country, you need hidden security — call it “dark web” protection — for massive amounts of corporate data. This means you’ll need to keep your real-time data and your backups in the deep web and out of the dark web.

The deep web is essential to privacy, compliance, safety and security. Like the illegal areas of the web, it’s built from non-indexed pages. Your company’s network is not revealed to random viewers because it’s kept hidden in the deep web — unless you suffer a data breach that exposes your information to malcontents.

To Breach Their Own

People feel vulnerable online and are somewhat aware that cyber danger is lurking. However, data breaches often originate in too much trust or in lack of communication surrounding network trust issues. Your users trust an email and get phished, or they trust “12345” as a solid password. Could the problem be that your users trust the company to protect them? Does your team assume that strong security solutions are already in place? Here are some of the common reasons, stemming from the trust factor, that your business could suffer cyber attacks:

spam email
weak passwords
unprotected mobile devices
delayed software updates

Mix these with user oblivion (or trust) and flimsy (or outdated) policies, and your company is at high risk for a cyber attack.

“A” for Security

Let’s now look at 3 “Easy A” ways you can create safe deep web data:

Assessment: A security audit is an excellent way to surface your network’s weak points. You can immediately see vulnerabilities and close openings that could bring in hacker traffic.
Awareness: Users often trust the system. Cybersecurity awareness training, such as a fire drill phishing attack, can educate users about current cyber risks and prepare them for real-time attacks.
Actualization: Enriching and enforcing security policies, updating hardware and software, advancing network protection measures — there are hundreds of ways to make advanced security a reality for your company.

When was the last time you had a security audit? Have you ever clicked on a suspicious link because of mental fatigue or, the opposite, heightened curiosity? When did you last test your backups? Install updates? Scan the dark web for your private data? Did you ever turn off multi-factor authentication because it was annoying? If you assess your system and close obvious gaps, train the users accessing your corporate network, and actualize things like security in the cloud and advanced endpoint security, you can leave the hacker chapter out of your company’s history books.

Are you ready to protect your business from the hackers?

Our team can help you with assessment, awareness and actualization.

Getting QWERTY with Password Management

by EstesCloud | Jun 22, 2020 | Cloud, Managed IT Services, Network Security, Security

Before the Time Runs Out!

Day(s)

Hour(s)

Minute(s)

Second(s)

Forget Your Password? Click Here!

Common Password Management Security Mistakes

qwerty, password, 12345, iloveyou, 111111, 54321

An average individual comes into daily contact with a variety of personal apps, websites, remote connections and enterprise applications. And this concoction of connections brings with it a variety of access and authentication requirements. Successfully navigating the gauntlet of our digital world, especially when going public, private, or hybrid cloud, without exposing yourself to significant security risks can be a challenge. In practice, the vulnerabilities are pronounced. A quick look at the most common passwords of 2018 is concerning: 123456, password, 123456789, 12345, 111111, 1234567, sunshine, qwerty, iloveyou.

Access management has become the norm

The challenges of managing one’s passwords are complicated by the differing requirements of different platforms—password conventions, expiration cycles and authentication methods make the task of organizing one’s suite of credentials daunting. One cans see how these challenges lead people to simplify their passwords, sacrificing security for simplicity.

iloveyou2

Password proliferation has become the norm. With every new app, website and device that we commandeer, there’s new access information created. Moreover, many of these systems require a periodic reset. Keeping track of all of these passcodes can be likened to taking a mnemonic census of an anthill.

Archimedes once said that if only he had a solid rock on which to stand, he would move the earth.

If you assume that your passwords are a firm footing, prepare to have your assumptions rocked. It is believed that up to 80% of common hacking activities are due to compromised credentials, mostly in the form of stolen usernames and passwords. Worse still, IT Managers report 73% of all passwords used are duplicated in multiple applications. When people use the same password for multiple systems, having one password exposed may compromise the whole network of applications. Luckily, password management doesn’t mean you have to buy a walk-in safe to store your password diaries. To keep it simple, here are a few tips to memorize as a starting point for improved password management:

Never use the same password twice
Never write down your passwords
Never share your passwords with anyone else
Never use real words or known information about yourself in your passwords
Avoid commonly used passwords

The last bullet is especially salient—50% of all attacks involve the top 25 most used passwords, proving there are risks involved in “getting qwerty” with your password management procedures.

Need a more sophisticated password management plan?

Let’s talk password management solutions and multi-factor authentication, two great ways to prevent getting hacked.

Password Manager: A password manager solution, such as SolarWinds’s PassPortal, allows you to store all of your passwords in one place. This makes managing and remembering all of them much easier. Make sure your password manager solution is itself password protected, preferably with multi-factor authentication.
Multi-factor authentication: Multi-factor authentication is the use of additional forms of authentication in conjunction with a traditional password. This most often takes the form of a shared key, sent to a separate device, or calculated through a common authentication application. This makes it difficult for a compromised password to compromise the application. Enable multi-factor authentication wherever possible, but make sure your secondary authentication source is equally secured with a strong password—failure to do so is like having a biplane write your shared key in the sky.

qwertyiloveyou2!

Random password generators can also help create passwords, but the results are often long random jumbles of characters and quite difficult to remember. Unless you can recite the longest word in the world from memory, you might want to use these password management tools in conjunction with a password management solution. If you’re a business owner trusting dozens or hundreds or thousands of employees with sensitive information, then a managed IT solution that includes password management will definitely be the safest way to interact with the millions of letters, numbers and characters that are involved in the multitude of passwords that access the data of your systems.

IT Services in a 1 + 1: 4 Signs You Need Managed IT

by EstesCloud | Jun 5, 2020 | Cloud, Hosting, Managed IT Services, Security

The word “outsourced” makes some business owners curious and others nervous when it comes to IT services. “MSP” is another term floating around, and you might also come across “IT-in-a-Box” when you go looking for help with your systems. Managed IT (our favorite code phrase) can mean a lot of things. If you’re a manufacturing or distribution company, then IT services might mean, among other things, industry-specific Cloud or Hosting platforms.

When Nobody Sees the IT Stop Signs

When it comes to your ERP and IT systems, you need effective stop signs that work both internally and externally. Your cybersecurity infrastructure can keep your team safe and productive while also keeping the bad guys out. Cybercrime is a 1 + 1 relationship. If you didn’t have a team to be hacked, then you wouldn’t ever need to worry about adding a hacker to your network.

Stop Sign 1: Your company’s IT services need to ensure that your employees are traveling through safe pathways and that they know when to stop before falling into the webs of ransomware or other destructive malware.
Stop Sign 2: Your team’s mobile devices, laptops and desktops all make friends on a daily basis. This is essential for business growth. Because of this, IT services ideally provide a clear STOP sign for potential trespassers—a bold indication that cyber tricksters will not be tolerated, even on the fringes, and will not be unknowingly welcomed in by your team.

A Wanted Man or a Wanted Spam?

But how do you know if your system has a “Most Wanted” sign that’s attracting criminals rather than telling them you already know they’re the lawbreakers? When it comes to business, you’re continually building relationships, and hopefully these become lifelong friendships. You trust your most valuable data to your IT talent. When it comes to managed IT services, business owners and other decision-makers might squint at the cyber lineup and not know whom or when to choose. Here are 4 signs your staff would benefit from a partnership with a managed IT and cybersecurity firm:

High-value IT projects, best done internally, are distracting your key players or forcing them to work long hours.
IT operations are unpredictable or unreliable, causing project or system failures, yet you don’t want to grow or change your employee pool.
IT costs are variable or steep, and you’d like a more predictable budget.
Security and compliance issues are overwhelming your team.

Every second of the day you rely on experts to protect you. The meteorologists warn you of bad weather. The firefighters alert you when it’s a fire risk to roast a s’more. The doctors warn you of heart attack predisposition. In regard to IT, the challenges you face include ransomware that could destroy the business you’ve worked so hard to build. This holds true whether you’re a DoD manufacturer, a medical clinic, an accounting firm, a lollipop distributor, a small-town bank… the list goes on. Because the hackers are always available to friend you, you’re always risking adding them to your inner circle, making your 1 + 1 relationship one of IT enemies, rather than friends. A 1 (your team) + 1 (EstesGroup Managed IT services team) relationship will keep your IT math simple, your budget profitable, and your company safe.

Are you looking to add a friendly IT expert to your network? Is your IT department working overtime to keep up with security, compliance, updates, backups or other system projects on your company table? Chat with us today!