The cloud has revolutionized the way that businesses approach computing. Companies can implement solutions in a flexible and accessible model that makes it much easier to take advantage of technology solutions. Yet, you should know that not all clouds are the same, and you can’t treat them as such. Here are four questions that you need to ask your cloud provider about the services that you’ve been rendered.
Smartphones are the predominant mode of communication, as well as now being the devices most used to access the Internet. With so much depending on the modern smartphone, it has become one of the largest, and most competitive, markets of any consumer item. As a result, manufacturers are building devices with software that is able to encrypt the phone against unauthorized access.
A computer is made up of many parts, one of which is today’s Tech Term: the motherboard. We’ll discuss what the motherboard does for your computer and why it’s such an important part for its continued operation.
We are going to switch things up a bit and walk you through a retelling of a ransomware attack through the eyes of a business owner. Usually when we talk about these types of threats, we approach it from our perspective and talk about what you should do to prepare and what the threats are, but we wanted to try to show you what an event like this could feel like, for you, in your position, and in your own eyes. We hope that this will raise awareness of how crippling an event like this can be on your company, and we hope you let us know if this perspective helps you, your colleagues, and your staff get a more personal sense of what ransomware can do. Enjoy!
What a day it has been!
Typically, when I have a day like I just had, I wouldn’t sit here and write about it, but since our story is sure to help people, I thought that I should. Besides, my adrenaline is still pumping, and I don’t think I can sleep yet anyway.
The day I had was terrifying but started just like any other. I got through my morning routine and made my way to the office. I even stopped at the shoppe to get coffee. Once I entered the building I knew something was wrong. I had two employees beat me to the office. They were milling around almost aimlessly in the hallway. Before I even reached my desk, I was inundated with bad news.
“We are locked out!”
“What are we supposed to do?”
After getting past my employees into my office, I tried to ascertain what the problem was. It was evident very quickly that we had a major problem on our hands.
@!#?! It’s ransomware! I can’t believe it!
It could only be ransomware.
I wasn’t sure what allowed this to happen. Did one of my staff click on a bad link? Was our network vulnerable from the get go? Since the ransomware had spread onto the network, I could tell that the affected computer had to be used to manage other endpoints, pushing ransomware to all the endpoints the terminal had managed. This is why the computers that were on the network had the same message. This means that it ended up stealing usernames and passwords to open each endpoint and lock down the data on them.
It is during this period that the entity that unleashed this beast on us would look to take as much data as they could. It turned out that my company was using a global password configuration and the ransomware spread throughout our network like wildfire. So, when I was met with the message, I knew exactly what I was dealing with.
I never for a second thought that it would happen to us. Our business doesn’t deal with major financial institutions or medical records, so it would seem to keep us safe from these kinds of security breaches. I guess I’m just the latest person to ask, “why us?”
For those who don’t know, ransomware is any type of malicious application that “kidnaps” the data and holds it for ransom. It can shut down the files of a single computer, or in our experience, it can spread over the network to several endpoints; effectively shutting down operations for long stretches of time. I wanted to share my experience to help you know what to expect if you are one of the unfortunate business owners that have to have all the answers.
Don’t Panic
No matter how prepared you are for something like this, at first, you feel panic. Typically, you are immediately overwhelmed and are left kind of dumbfounded, glancing around the room, looking for answers that aren’t there. Regrettably, if you are doing that, the damage is done and there is nothing you can do about that. Scenarios race by in your head and the more they turn negative, the more the fear builds up in the base of your neck, in your throat, or in the pit of your stomach. You need to stay as calm as you can and begin troubleshooting immediately. The thing about ransomware is you can’t just wait it out. Once that wave of fear subsides, you have to make a measured response, because you likely have people that are on the clock, and an IT infrastructure that is locked down.
After the initial shock, I went to work.
Fighting Ransomware
I learned quickly that there are two main types of ransomware:
The type we were unfortunate enough to encounter was WannaCry, a crypto ransomware that has infected millions of people worldwide by taking advantage of an unpatched Windows vulnerability. As a small business, our technology management was pieced together, but after this event, and all we’ve learned from it, we will definitely be sure to make our staff cognizant of how to avoid situations like this.
For us, we had three machines infected with a variant of WannaCry. The ransomware stated that if we pay $300 in Bitcoin for every machine that was locked, we could get our data back... and the clock was ticking, literally.
At that point, we had three options. We could abandon the machines and buy new ones, we could pay the hackers that had encrypted our data, or, we could attempt to restore our systems.
Part of me wanted nothing more than to just abandon the machines, bust our IT budget for the year and be done with it. We instead decided to try to restore the machines to a prior version, because paying the hackers was never a real option. First of all, any person that could inflict this kind of fresh hell on a small business was not to be trusted; and, I felt if I were to pay the ransom, there was no guarantee that we would a) get our files back; or, b) not get harassed again by the same people.
Since cost was a factor, we reached out the IT professionals at Telesys Voice and Data, and they walked us through the process of restoring our terminal and the two machines connected to it. Luckily for us, they had the knowledge and expertise to help us get through this horrible time. We will lose quite a bit of work, but, as of right now, it looks like we are going to come out of this whole thing much better than the majority of companies that have dealt with it.
I know we were lucky. I know we have to try harder. I know we aren’t out of the woods just yet, but I have to thank the people at Telesys Voice and Data. They really came through for us!
Ransomware attacks are rampant. If your small business isn’t proactive about its network security and if you don’t train your people on what to look for, you could be dealing with a problem that could potentially sink your business. For more information about ransomware, WannaCry, or other threats your organization faces today, call us today at (800) 588-4430.
Social media might make it easy to stay connected, but it comes with a lot of negative side-effects--particularly in regard to security for both personal and professional use. If social media isn’t used properly, it could spell trouble for your organization. How can you foster proper social media usage so that your organization doesn’t suffer from poor security practices? It all starts by spreading awareness.
When security and efficiency are some of the biggest benefits to updated information technology, it sounds that IT is something that a governing body should prioritize internally. However, many governments have trouble doing so, oftentimes to their own detriment. Why is that, and what can a business learn from this phenomenon?
Ransomware is a growing problem for businesses, being one of the most difficult threats to remove from an infrastructure. Not only is it easy to spread, but difficult to avoid as a whole. How can your organization prepare for this threat? It starts by being mindful of how ransomware is spread and how your employees react to it, both now and in the future.
Ransomware locks down files on your business’ infrastructure. Through ransomware, it’s easy to cripple a business by limiting access to important information or files located on an infrastructure. If the user fails to pay the ransom, they risk losing their data for good. Even if they do pay the ransom, there’s no guarantee that the hacker will give up the encryption key. The user is presented with a conundrum; pay up for a potential to get your data back or ignore the request and hope for the best.
Ransomware was primarily spread through the use of spam when it was first introduced to the online environment. Hackers would create ransomware campaigns to spread it to as many users as possible, hoping that any number of them would choose to pay up rather than lose access to their precious files. As time went on, however, ransomware became used in a more targeted fashion. Rather than claim as many targets as possible, hackers instead chose to go after only those who were most likely to pay up with spear phishing tactics designed to fool even the most stalwart and mindful user. In many cases, these targeted attempts were made against businesses, whom value data more than the average end user might.
These spear phishing attempts are incredibly difficult to identify for the untrained eye, and the amount of damage they could inflict on your company is untold. Your employees need to be able to identify potential ransomware threats. Even the cautious approach might not be enough, however, as the future of ransomware could potentially hold even more dangerous threats. Already, hackers are taking advantage of threats that can be purchased on the online black market, including ransomware threats, vulnerabilities, and even lists of targets. How can a small business protect themselves from such a prominent threat?
It all starts by remaining as mindful of security best practices as often as possible. By this, we mean trusting no suspicious message in your inbox without first double-checking any information found in it. If you receive an unsolicited message with an attachment claiming to be a resume, bank statement, shipping information, or anything else that seems out of place, think twice before downloading them. The same can be said for any links that cannot be verified as secured.
Is your business prepared to handle the next generation of ransomware? While we don’t know what the future holds, we know that you can confidently face it with security services from Telesys Voice and Data. To learn more, reach out to us at (800) 588-4430.
Data management is exceptionally important for any business, and companies that use the cloud in any sort of capacity need to be considerably more cautious in the way that it’s managed than a business that only hosts data on an internal server or network. The cloud makes things more complicated at times, but if managed correctly, it can lead to unprecedented efficiency for your organization.
There is no understating the importance of strong, reliable passwords to your organization’s network security, especially to protect its wireless connection. However, this can create some friction with your staff when they try to connect to Wi-Fi using their mobile device. To make accessing the Internet easier, scannable QR codes can be used to connect to the Internet.
This guide was created so that business owners, office managers, and IT departments can provide it as an educational resource to showcase some of the most basic IT security practices that can be implemented in your workplace. We recommend printing this out and handing it out to your staff for maximum results.
Every business needs technology support. This statement is more true today than it has ever been before. As your organization adds new technology to its infrastructure, it will naturally grow more complex and difficult to maintain. Thankfully, you don’t necessarily have to go about this alone. By working with an outsourced third party, your business can take advantage of all kinds of great solutions for a fraction of the cost.
Depending on the way you go about technology maintenance, you can either wind up investing in your business’s future or wasting vital capital. Traditional break-fix IT strategies take a responsive approach to IT maintenance. By this, we mean that you’re reacting to issues as they crop up rather than preventing them outright. This is not the ideal way to approach IT maintenance, as you will spend more time and resources addressing issues that could have been avoided in the first place. Instead of traditional break-fix, you should consider investing in a more preventative approach to technology maintenance.
If you want preventative solutions, your business is better off working with a managed IT service provider like Telesys Voice and Data. Managed IT takes advantage of solutions that are designed to detect issues before they become costly problems. This affords your business ample time to resolve them, which mitigates downtime and the costs of replacing technology. Here are a couple of ways that managed IT can help your business save time and money:
Does your business need managed IT support? Telesys Voice and Data can help your business take better care of its technology. To learn more, reach out to us at (800) 588-4430.
Spam is a tricky subject to talk about, as it seems everyone has a different definition for it. Yet, most have come to the conclusion that spam is a bad thing. For today’s Tech Term, we want to delve deep into the different kinds of spam out there, as well as theorize where the term even came from.
What one organization considers a disaster might be much different than what another business might see as disastrous. Perhaps one sees the loss of a few hours and a few files as something that can be recovered, while another sees every lost moment and each iota of data as a catastrophe. Whichever camp you find yourself in, you need to be able to do two things: first, gauge how serious a given data loss disaster is, and secondly, establish what must be done to get back in action following said disaster.
Data loss can have lasting effects upon your business, usually measured in lost productivity and capital. In other words, data loss is often measured by the cost required to retrieve, restore, and/or repair its effects. Of course, this is only the beginning of how data loss can impact your operations.
There are plenty of technical terms and solutions that, while heard of frequently enough, it may not be completely clear what they mean or refer to. A proxy server is an excellent example of such a solution. This week, we’ll examine this tech term and review how utilizing proxy servers can help your business.
Cloud computing is one of the best ways that your business can compete with larger enterprises. Today, you can adopt the cloud and take advantage of countless services, but are you doing so yet? If not, we’ll help walk you through some of the best ways that your organization can leverage the cloud.
Of course, the type of cloud you will need depends on several factors, including data control, maintenance responsibility, and the complexity of your operations as a whole. You will generally be choosing from a public, private, and hybrid cloud for your business’ needs. With each of these comes new benefits and challenges to overcome, however, so you’ll want to consider all options before going all-in on a solution.
Public Cloud
If your business has a limited budget, the public cloud may be an ideal solution for you. The public cloud allows users to take advantage of the cloud without investing in on-site cloud infrastructure. You can use all of the great parts of the cloud, including storage, access to cloud-based applications or services, and communication solutions. The public cloud offers a great starting point for businesses that want to utilize the flexible cost the cloud offers, and don’t have the assets available to invest in anything more complicated. Some of the services provided through public cloud solutions include Google’s G Suite and Microsoft Office 365. Yet, it’s not all rainbows and sunshine for the public cloud, as the lack of customization and control may deter some organizations.
Private Cloud
Where the public cloud provides general catch-all solutions for businesses that don’t want to manage or maintain their own infrastructures, the private cloud offers hosted or on-site solutions that need to be maintained by an IT department of some kind. Basically, you need to have the infrastructure to manage a cloud system, as well as a team that can provide maintenance for it (unless you have arranged to outsource this--more on that later). Private clouds are in high demand because they allow businesses to easily customize their solutions to suit their needs--particularly in regard to network security and scope of services offered. Private clouds are best for businesses that want to maximize control over their data and know exactly what they want out of the cloud.
Hybrid Cloud
If neither the public nor private cloud are attractive to your organization, then perhaps a mixture of the two will provide the best results. A hybrid cloud takes all of the benefits of a private cloud and combines them with public cloud offerings thereby allowing for a customizable and flexible solution that is built specifically for your business’ needs.
The best part of this is that you can have an outsourced provider like Telesys Voice and Data host your cloud infrastructure so that you don’t have to. It’s the best way to take advantage of the best of both worlds. To learn more, reach out to us at (800) 588-4430.
Mobile devices are so common nowadays that you’ll likely encounter your employees bringing multiple devices to the office on a regular basis. Little do they know that everything they bring with them, from their Fitbit to their laptop, poses a security threat. Of course, the threat level from each individual device will depend on what it is exactly, but the point stands that the less you do about mobile device security now, the more danger your organization will be in down the road.
The unfortunate truth of increased technology use in the workplace is that there is a corresponding increase in the potential for cybercrime, more specifically identity theft, to strike the workplace. The question is, what can you do to help prevent it, and how should you react to it should it strike?
The sad truth about computers is that when they inevitably break, you have to get them fixed; or, you have to order a new one. When PCs started to be utilized for mass productivity, however, businesses had to find a better way. It’s been years since the first managed services provider hung out their shingle, and over that relatively short time the managed services industry has grown to be a $150 billion-a-year industry. The combination of IT becoming an important part of nearly every business resulted in the obvious demand for affordable IT support. This trend has seen many businesses cutting IT staff to make way for outsourced managed services, and all it provides. A problem that both businesses, and the MSPs that they hire, face is that computers eventually break.
For years now businesses have had to set aside capital to fix and replace their information systems; capital that could be better served invested elsewhere. Managed services tries to put a flat rate on every piece of IT you need managed and comes up with a consistent billable figure that not only allows a business to plan their operational IT budget more accurately, but allows them access to the expertise they may have lacked without a dedicated IT administrator. MSPs form of proactive maintenance can go a long way toward providing the kind of longevity that any organization would want from their hardware; but, while we can do a lot to protect your systems from failure, there’s no way to definitively know when a piece of hardware is going to fail.
When technology breaks, it leaves a hole in your functioning business that has a cost attached to it. If it's a switch or a router, or even a workstation that needs to be replaced, it’s cheap enough. The cost to replace an in-house enterprise server, however, is between $5,000 and $20,000 dollars. Couple that with the fact that hardware prices that had been dropping for a decade have begun to rise, it suggests that it won’t be getting cheaper to replace a physical server unit anytime soon. At Telesys Voice and Data, we like to think of ourselves as solution providers, and today there are more options than ever for the housing, management, and maintenance of an organization’s computing infrastructure, including storage and applications.
When your server is about to fail, and you need a new one, buying a new one has to be a no-brainer. So how do you go about it? How do you get the data from the old hardware to the new hardware? What about networking? With so many factors to consider, relying on the experts is a must. If you have in-house technology professionals, they probably have this process worked out as to not cause the business a lot of additional problems. After all, a failed server carries with it enough anxiety without the additional fear that goes with not being able to do the work that is required to sustain profitability. But, if you don’t have dedicated IT personnel on staff, the process might get a little overwhelming.
Let’s assume that (for this example) your organization’s file server is about to fail and you don’t have any contingency in place. What variables do you need to consider?
Are You Backed Up?
Has your organization put in place a backup function? Before we start in on a new server, every business should be utilizing a comprehensive backup and recovery system. Not only do you protect your data (one of the most lucrative assets your business has), but it also gives you failover options that many organizations might not have. Our Backup and Disaster Recovery system features incremental backups and the ability to use the device as a failover server, so your business isn’t dealing with sustained downtime while you replace or repair your server.
Do You Have Failover?
A failover system is a system in place that allows you to protect your organization from system failure. By having a system to continue to access critical data, you can keep business moving while you replace or repair vital hardware. As stated above, our BDR gives temporary failover server capabilities to ensure the smoothest transition you can expect.
In-House or Cloud?
The big decision many businesses have to make nowadays is where to host your server. There are pros and cons to moving your infrastructure to the cloud, as today a well-designed-and-implemented cloud server is often more beneficial depending on the needs of your organization. The average business has multiple servers, so when one is on the verge of failure (or fails outright) and you are forced to use your failover platform as a temporary server, considering a move that will allow you to manage to get the server up and running again efficiently has to be a consideration. There are many cloud-hosted options to consider. Performing the cloud vs in-house determination. When your hardware gets old (or your software is), you have to start to consider your options. Let’s look at some variables you should be cognizant of when deciding whether or not to move your computing infrastructure offsite.
In-House Computing - The traditional method of computing, some would argue, is tried and true. You purchase the hardware outright, you license the software you need, you equip it with the storage you need, and you manage and maintain it in house. The server unit itself is a big expense, but most small to medium-sized businesses could justify the purchase if it was between losing data and continuing efficient production. You have to ascertain what the costs are and see if a new onsite server is cost effective for you.
Cloud Computing - If your computing infrastructure needs to be replenished, there are several great cloud-hosted computing options your business could consider. From affordable public cloud solutions to resource and capital intensive private cloud solutions, the cloud has options for any business that needs to upgrade their computing infrastructure. The cloud also helps organizations that want to put an emphasis on remote work and collaboration.
Migration Plan: RTO & RPO
When migrating data onto a new server from backup, you need to understand the costs of doing so. That’s why disaster recovery experts have defined the necessary metrics you need to understand when recovering data after a server failure (or any major data loss incident). They are Recovery Time Objective (RTO) and Recovery Point Objective. (RPO). In the context of data recovery, the RTO is a measurement of the amount of time your business can go without storage or applications while they are restored, while the RPO is a measure of how far back data recovery needs to go to get your organization up and running efficiently. Typically the two values work against each other, so determining how much data you need and how fast you’ll need it by to keep your company functional becomes extremely important.
New and Old, Side-By-Side
Once you have your new computers up and running with all the software and appliances configured, make sure to leave your old system up (if possible), even if a hardware failure is imminent. This will allow you the time to ensure that your new server is working optimally when it matters most. After you’ve ironed out all the kinks, you then can shut down and recycle your old server.
There are many more tips and tricks we can give you to ensure that in replacing your old technology, you are getting powerful, effective, and reliable upgrades. For more information about proactive managed services that can tell you if it’s time to refresh your hardware, call the IT professionals at Telesys Voice and Data today at (800) 588-4430.
Email is a solution that needs to be protected, lest you expose important information to any onlookers while messages are in transit. Encryption is one of the key ways you can make sure that your messages are safe, but email hasn’t always used this method to secure messages. In fact, it wasn’t until relatively recently that encryption became a staple of the major email providers.
Mobile? Grab this Article!
Tag Cloud