Monthly Archives: December 2017

Phishing alert: scammers now use encryption

Security , , , ,

When you visit an encrypted website, the connection between the source of the web page and your browser is secure. Encryption ensures users’ browsing habits are safe from hackers’ prying eyes, but phishing scammers have found a way to adopt it for their own schemes.

How hackers use encryption to carry out phishing scams

According to recent research, 24% of phishing scams in 2017 use web encryption — an astounding increase from last year’s 3%. This means more HTTPS sites may not be truly safe.

Phishing scammers rely on their victims to do what they ask, which is why it’s so effective. And with this new trick, unsuspecting users are more likely to be deceived. What makes this encryption-aided scam even more effective — and dangerous — is that it makes hackers’ phishing email or text that much more authentic-looking.

For example, if you receive an email that purports to be from Amazon and includes a link to an encrypted site, there’s now a slightly higher chance you’d believe this email is the real deal. Clearly, if you’ve never purchased anything from Amazon, you’d know that this is a fake. But then again, there are millions of Amazon customers who could be misled into thinking that that email is legitimate.

Does encryption mean a safer internet?

With organizations like the Internet Security Research Group and Google promoting encryption, the world wide web should be a safer place, but that’s not necessarily the case. In fact, encrypting more legitimate websites could simply result in an increased number of encrypted phishing sites.

It may also be useful to know that not all phishing sites use encryption. Many phishing scams are still carried out using websites that may or may not be encrypted.

What you can do to ensure safety

This isn’t meant to cause panic, and despite this new phishing tactic, encryption is still an essential security tool that every business must implement.

Websites with HTTPS are still much safer than unencrypted ones. This is why it’s more important than ever to be vigilant when visiting suspicious sites and clicking on links. If you receive an email from PayPal asking you to verify your bank account details or password to a seemingly secure link, be wary. Some phishing scams are easy to detect, but some are not.

Practice extreme caution when responding to requests for sensitive data. Consider the source of the message, think before clicking, and don’t hesitate to seek the advice of an expert in case you have doubts. Phishers succeed only if you do what they ask you to do.

Phishing and other cyber scams are constantly getting upgrades, and no single solution can prevent hackers from attacking you. But your business could be much safer with the right cyber security protections in place. If this is exactly what you need, get in touch with our cyber security technicians.

Published with permission from TechAdvisory.org. Source.

HP laptop users beware: keylogger found

Hardware , , , , , , , ,

You might be entering credit card details on a website to purchase something online or filling in your personal information to subscribe to a service, thinking you’re safe behind the keyboard. And you probably are — if the computer you’re using doesn’t have a keylogger installed. But for HP laptop users, chances are they aren’t so lucky. Read on to see why.

What are keyloggers?

Keyloggers are hardware devices or software programs that record every key you press on your computer’s keyboard. Most keyloggers can also capture screenshots and send them to a remote computer where someone is waiting to see what you’re up to.

And why does this matter? Because hackers can steal your usernames and passwords, keep track of the messages you send via instant messaging apps or emails, and other personal information you disclose on online forms. Imagine what they can do with all that data.

A keylogger spotted on hundreds of HP laptops

In early December, a security researcher discovered a keylogger pre-installed on an HP laptop. This led to the revelation that more than 460 HP laptop models, including ProBook, Pavilion, EliteBook, and the Envy line include the Synaptics touchpad driver — which can be used as a keylogger.

Even though the keylogger on those HP laptops isn’t activated by default, an attacker who gains access to your laptop can enable it without much difficulty. HP themselves said the keylogger code had been added to the software by mistake and they’ve since released patches to fix the issue.

What should HP laptop users do?

If you own an HP laptop, check whether you’re affected by referring to this full list of affected models. If your laptop model is on the list, click on the link provided on the right side of the model name and download the security patch immediately to remove the keylogger from your computer.

How to protect yourself from keyloggers

The standard security measures — which you should be taking to heart and keeping up to date — can help protect you from keyloggers. You should avoid suspicious websites and never download files from them, and take extra care when opening attachments, text messages, or social media links from unknown senders since they can be embedded with a keylogger.

You should also have antivirus software installed and keep it up to date. Most antivirus software nowadays has already added keyloggers to their databases. It’s also good to be aware of the latest security patches from your hardware manufacturers and software developers since they’re made to fix current vulnerabilities.

And to make things even more secure, consider using one-time passwords and two-step verifications when you need to log in to important online services, such as those related to personal finance or services that require sensitive personal data.

Need more tips and tricks on how to protect yourself and your business from cyber espionage? Talk to our security experts today. They will be more than happy to explain IT security issues to you in plain English!

Published with permission from TechAdvisory.org. Source.

IAM benefits for your business

Business , , , , , ,

Your employees access applications and confidential business data every day. Hackers, on the other hand, are trying to do the exact same thing but for more malicious reasons. To make matters worse, even employees can go rogue and steal your data, which is why it’s crucial that you have an IAM solution in place.

What is IAM?

Identity and access management is a system that secures, stores, and manages user identities and access privileges. It ensures that users are who they say they are and will grant access to applications and resources only if they have the permission to use them.

Some of the most common IAM solutions include single sign-on (SSO), multi-factor authentication (MFA), and access management, all of which can be deployed on-premises or in the cloud.

Why is it so important?

Modern technology enables businesses to be more agile and efficient than ever before. For instance, the cloud lets your employees work from anywhere at anytime on any device. However, this means that your workforce has moved beyond the protections of on-premise security.

That’s why you need to embrace another security solution, one that focuses on identity rather than physical or network security, which is exactly what IAM was designed for. It makes sure that your employees, customers, and partners are who they say they are and are only able to access the resources they need, nothing more. And that’s just scratching the surface on how IAM can benefit your company.

Centralize access control

Too much access to certain systems are risky and too little can hamper productivity and frustrate users. IAM strikes the perfect balance by letting you set centralized policies for the right access privileges. For example, you can deny your design team access to the accounting system while granting it to your CFO.

Each user’s role and attribute can be used to determine which resources they’re allowed to access and to what extent. This not only offers better security but also more flexibility and ease of management.

Lower chances of data breaches

With SSO and MFA, your employees will no longer have to remember multiple passwords. Instead, they’ll be able to prove their identity using evidence-based authorization such as answering a personal question that only they would know. IAM also comes equipped with advanced encryption tools to protect sensitive data and so reduces the risk of compromised user credentials.

Improve user experience

Customers today interact with your company across multiple channels, whether in the cloud or via third-party applications. This is where IAM helps provide a better experience through SSO, self-service capabilities, and unified customer profiles that makes communication processes quick and easy.

Your employees, on the other hand, will be able to access the information they need securely and conveniently no matter where they are. This means productivity will no longer be confined to their office table.

Achieve regulatory compliance

Businesses today must meet the constantly changing regulatory requirements concerning data access governance and privacy management. IAM was designed with just that in mind and provides control over who can access data and how it can be used and shared.

Reduce IT costs

IAM automates and standardizes many aspects of identity, authentication, and authorization management. This means you’ll be able to minimize significant labor costs associated with keeping your business environment secure.

Identity and access management solution equips you with much-needed security without compromising on usability and convenience. To operate in today’s digital business environment, it’s not a matter of “if” but “when” you’ll adopt IAM within your company.

If you’re looking to enhance company-wide security, whether with IAM or other solutions, why not give us a call? We’re sure we can help.

Published with permission from TechAdvisory.org. Source.

Facebook Messenger: The Key to Growth

Social Media , , , , ,

With over 1.3 billion monthly active users, Facebook’s Messenger app is an unprecedented success. Facebook is now looking to fully utilize the potential of this monster user base and has therefore added a feature for improving connectivity between local businesses and consumers. Read on to learn how this feature could benefit you!

The How

By installing a plug-in called Customer Chat, retailers can integrate Facebook Messenger with their website, letting their customer support representatives carry on conversations with clients just like they would on Facebook.

Customer Chat also saves conversation histories, meaning a user can be talking to a customer representative on their website and then continue the conversation once they shift to Facebook — without having to start a new conversation. Customer Chat is now open to any business in the form of an ‘expanded public beta.’

Here’s Facebook’s guide detailing how to install Customer Chat.

Facebook’s Grand Plan

Like all new services, the success depends on the users. Customer Chat’s primary user base seems to be those who lack the time or confidence involved in sending a formal e-mail for a casual business inquiry.

Regardless, Facebook has long been developing its platform with an eye on chat’s broader benefits to tighten its grip on businesses. A recent stat indicates Facebook Messenger has surpassed 1.3 billion monthly active users.

So, What Next?

As Facebook seems to be monopolizing and clamping down on the communication realm — both private and business — with Facebook Messenger and Whatsapp, the plan is clear: They want to absorb even more of the communications that usually take place over phone calls and e-mail.

It is still an uncertainty if the new Messenger feature will have a large impact on Facebook’s grand plan, but it certainly won’t hurt if it ends up working. Customer Chat opens up new avenues of integration, such as sending money, making video calls or even convincing customer service reps to give you a refund. Thus making Facebook the go-to app for anything and everything.

Got any questions about Facebook? Let us help you understand the technicalities. Call us today!

Published with permission from TechAdvisory.org. Source.

VPNs: Why you need them

Security , , , , , , ,

Installing powerful antivirus software and setting strong passwords are no longer considered the bare minimum in cybersecurity. With hackers, government agencies, and ISPs constantly monitoring networks and your online habits, hopping onto a Virtual Private Network (VPN) is crucial for keeping your surfing habits private. Here’s why.

What is VPN?

Simply put, a VPN is a group of servers you connect to via the internet. Once you’ve established a connection, your computer acts as if it’s on the same local connection as the VPN, making it seem like you moved to a different location.

When you surf the web through a VPN, all the data transmitted and received is also encrypted, preventing anyone — from hackers to government agencies — from monitoring your online activities.

Why should you have one?

Of course, security and privacy are major reasons why you would want a VPN. For example, if you’re connected to a public WiFi network — like the ones you typically see in local cafes and airports — using a VPN encrypts the information you’re sending or accessing online. This means things like credit card details, login credentials, private conversations, or other sensitive documents can’t be intercepted by a third party.

VPNs are also useful for accessing geo-restricted websites. If you’re traveling abroad and certain US websites are blocked in that region, you can simply connect to a VPN located in the US to access the sites you need.

Which VPN should you choose?

Given the increasing demand for secure online privacy, VPNs are surging in popularity. The following considerations can help you find the right one.

1. Cost
While free VPNs are available, we strongly suggest you avoid them. These keep logs of your internet activity, and in some cases sell them to the highest bidder. Maintaining a VPN service is also expensive, which means the free ones will likely plaster ads on your browser to make a quick buck.

Paid VPNs like SurfEasy and StrongVPN often come with more robust features and configurations that keep you secure. What’s more, they don’t keep a record of the sites you visit and hound you with pop-ups that lead to dangerous websites.

2. Location
The physical location of VPN servers is important if you want to access region-blocked websites. So if you’re planning on accessing a UK-based service, your VPN provider must at least have servers installed in London.

3. Capacity
Read through a VPN provider’s terms of service to determine how much data you’re allowed to use. If possible, find out how many servers a VPN provider has. If they have plenty of servers online, you can rest assured that they have the capacity to support your internet browsing.

4. Device compatibility
Another important factor to consider is whether the VPN can be used across multiple devices. Nowadays, employees work on laptops, tablets, and smartphones, so you’ll want a VPN that’s compatible with all these.

5. IP leaking
Finally, a great way to evaluate a VPN service is to sign up for their free trial service and visit https://ipleak.net/, which will allow you to check whether your real IP address is actually being leaked. If it manages to track your physical location, you need to opt for a more reliable VPN service.

VPNs are now a vital component of cybersecurity, and if you need help selecting the right one for your business, consult with our security experts today. We also offer comprehensive cybersecurity services so no hacker or third party can get their hands on your data.

Published with permission from TechAdvisory.org. Source.

Extend laptop battery life with these tips

Hardware , , ,

Finding a power socket is often the first thing you do when carrying a laptop to work in a cafe, a coworking space, or an airport, and not every time will you be lucky to find one available. You’ll be forced, then, to rely solely on your laptop battery — if it still has any juice left. Here are some tips to help your laptop battery last as long as it could.

Some truths about your laptop battery

Batteries in many devices nowadays are lithium-based — either lithium-ion or lithium-polymer — so users must take note of the following guidelines for their proper maintenance:

  • They can’t be overcharged, even though you leave your battery plugged in for a long period of time. When the battery hits 100%, it’ll stop charging.
  • Leaving your battery completely drained will damage it.
  • Batteries have limited lifespans. So no matter what you do, yours will age from the very first time you charge it. This is because as time passes, the ions will no longer be able to flow efficiently from the anode to the cathode, thereby reducing its capacity.

What else can degrade your battery

Besides its being naturally prone to deterioration, your battery can degrade due to higher-than-normal voltages, which happens when you keep your battery fully charged at all times. Even though a modern laptop battery cannot be overcharged, doing so will add a stress factor that’ll harm your battery.

Both extremely high temperatures (above 70°F) and low temperatures (between 32-41°F) can also reduce battery capacity and damage its components. The same goes for storing a battery for long periods of time, which can lead to the state of extreme discharge. Another factor is physical damage. Remember that batteries are made up of sensitive materials, and physical collision can damage them.

How to prolong your battery life

Now that you know some facts about your laptop battery, it’s time to learn how to delay its demise:

  • Never leave your battery completely drained.
  • Don’t expose your battery to extremely high or low temperatures.
  • If possible, charge your battery at a lower voltage.
  • If you need to use your laptop for a long period of time while plugged into a power source, it’s better to remove the battery. This is because a plugged-in laptop generates more heat which will damage your battery.
  • When you need to store your battery for a few weeks, you should recharge your battery to 40% and remove it from your laptop for storage.

These are just a few tips on extending the life of your hardware. There are many more ways you can maximize your hardware efficiency and extend its longevity. Call our experts today to find out more!

Published with permission from TechAdvisory.org. Source.

6749 S. Westnedge Ave

Suite K, #128

Portage, MI 49002-3556

Southwest Michigan: (269) 290-7137

St. Louis: (314) 558-0623

Toll Free: (877) 288-5527