Protecting a Business against Ransomware and Scams

On: July, 30th 2017 | Under: Office 365


Every day, every month there is a new threat to being able to conduct business effectively and efficiently. How do you protect a business from the threat of disruption whether it is a scam, virus, ransomware or simple network or internet failure?

The Australian Competition and Consumer Commission’s (ACCC) eighth annual report on scam activity highlights the significant cost and growth in the disruption to business. The cost of hacking scams had a fourfold increase between 2015 and 2016. Reported at a cost to business of 2.9 million in 2016.  This highlights the significant risk of todays digital world to business.

Scams continue to become more sophisticated using modern technology to make fake emails, invoices, and websites appearing legitimate to even the most astute business person. These scams have devastating effects on businesses by eroding the investment they have made in their reputation, increasing operational costs and in certain cases crippling the business from operating.

 

 

This article looks at how a business can avoid becoming a victim of a scam by ensuring they have the right support and systems in place to minimise the risk of disruption.

Why does size matter?

Larger organisations have the resources, time and budgets to invest in ensuring they are not subject to an attack. As the headlines indicate even with this effort they are not always successful in defending themselves.  The reality is that as smaller organisations are hampered by the amount of money and resources they can spend on IT, means that these organisations are an easier target for the cyber criminals.  The cyber-criminal finds it easier to get in and often it takes longer to detect meaning more havoc created.

Smaller organisations are often a means to access and breach larger organisations. Why? Because the smaller organisation is often the weakest link (security wise) in a supply chain relationship thereby providing an entry point to the larger business partner.

What are the key elements to protect Business Continuity? 

One must ask if the IT environment something that can just be left alone or does it need to be looked after? The answer is obvious it needs to be managed and looked after, it needs somebody who is accountable and responsible for ensuring that the risk is minimised.

For smaller organisations this leads to either employing a resource or developing a relationship with an IT Service provider who is accountable. It makes sense to develop a relationship where the provider is on the front foot and is monitoring all key elements and maintaining an organisations systems in advance of something going wrong. This is commonsense as it is about protecting against a major disruption to a business.

The key components that need to be looked at are:

  • Data back-up/ Business continuity
  • Security of endpoints
  • Network configurations, performance and access
  • Email access and security
  • Software up to date
  • Patch management (ensuring your users are up to date on all updates to the operating system or the Anti-Virus software is the latest.)
  • Website performance and content filtering
  • Password management
  • Monitoring

 

The key element for a business owner is to understand how this approach shifts the nature of the relationship with your IT provider from being reactive to proactive. It means the IT provider is preventing breakdowns instead of reacting to a break down. This means a monthly fee for the maintenance rather than a call out figure. It means the provider is monitoring and using tools to remotely manage and perform maintenance activities.

 

What does this cost?

The key thing to remember this is an investment in ensuring a business is not disrupted. Some providers will charge per device; others will charge a monthly figure based on complexity of what they are managing; others will charge based on per user.

 

As a business owner understand what is included and what is not and what service agreement does the provider use. For instance, at Computer Troubleshooters we provide a 100% guarantee. To locate your local Computer Troubleshooter at www.computertroubleshooters.com.au

 

Final Thought

Change is hard to accept for anybody and in the case of IT management it is hard for people to see the monthly outlay as an investment in their future. But this is exactly what it is. It is a strategic investment that allows a business to minimize the risk of disruption and ensure it can continue to grow and develop.
Sources of information for this article:

Watchguard: The Cyber Crime Guide for small and midsize business

ACCC: targeting scams reporting of the ACCC scams activity 2016

Datto: WannaCry the ransomware Crisis explained

Stay Smart Online  Small business guide Protect your business in 5 minutes

Protecting a Business against Ransomware and Scams

On: July, 30th 2017 | Under: Office 365


Every day, every month there is a new threat to being able to conduct business effectively and efficiently. How do you protect a business from the threat of disruption whether it is a scam, virus, ransomware or simple network or internet failure?

The Australian Competition and Consumer Commission’s (ACCC) eighth annual report on scam activity highlights the significant cost and growth in the disruption to business. The cost of hacking scams had a fourfold increase between 2015 and 2016. Reported at a cost to business of 2.9 million in 2016.  This highlights the significant risk of todays digital world to business.

Scams continue to become more sophisticated using modern technology to make fake emails, invoices, and websites appearing legitimate to even the most astute business person. These scams have devastating effects on businesses by eroding the investment they have made in their reputation, increasing operational costs and in certain cases crippling the business from operating.

 

 

This article looks at how a business can avoid becoming a victim of a scam by ensuring they have the right support and systems in place to minimise the risk of disruption.

Why does size matter?

Larger organisations have the resources, time and budgets to invest in ensuring they are not subject to an attack. As the headlines indicate even with this effort they are not always successful in defending themselves.  The reality is that as smaller organisations are hampered by the amount of money and resources they can spend on IT, means that these organisations are an easier target for the cyber criminals.  The cyber-criminal finds it easier to get in and often it takes longer to detect meaning more havoc created.

Smaller organisations are often a means to access and breach larger organisations. Why? Because the smaller organisation is often the weakest link (security wise) in a supply chain relationship thereby providing an entry point to the larger business partner.

What are the key elements to protect Business Continuity? 

One must ask if the IT environment something that can just be left alone or does it need to be looked after? The answer is obvious it needs to be managed and looked after, it needs somebody who is accountable and responsible for ensuring that the risk is minimised.

For smaller organisations this leads to either employing a resource or developing a relationship with an IT Service provider who is accountable. It makes sense to develop a relationship where the provider is on the front foot and is monitoring all key elements and maintaining an organisations systems in advance of something going wrong. This is commonsense as it is about protecting against a major disruption to a business.

The key components that need to be looked at are:

  • Data back-up/ Business continuity
  • Security of endpoints
  • Network configurations, performance and access
  • Email access and security
  • Software up to date
  • Patch management (ensuring your users are up to date on all updates to the operating system or the Anti-Virus software is the latest.)
  • Website performance and content filtering
  • Password management
  • Monitoring

 

The key element for a business owner is to understand how this approach shifts the nature of the relationship with your IT provider from being reactive to proactive. It means the IT provider is preventing breakdowns instead of reacting to a break down. This means a monthly fee for the maintenance rather than a call out figure. It means the provider is monitoring and using tools to remotely manage and perform maintenance activities.

 

What does this cost?

The key thing to remember this is an investment in ensuring a business is not disrupted. Some providers will charge per device; others will charge a monthly figure based on complexity of what they are managing; others will charge based on per user.

 

As a business owner understand what is included and what is not and what service agreement does the provider use. For instance, at Computer Troubleshooters we provide a 100% guarantee. To locate your local Computer Troubleshooter at www.computertroubleshooters.com.au

 

Final Thought

Change is hard to accept for anybody and in the case of IT management it is hard for people to see the monthly outlay as an investment in their future. But this is exactly what it is. It is a strategic investment that allows a business to minimize the risk of disruption and ensure it can continue to grow and develop.
Sources of information for this article:

Watchguard: The Cyber Crime Guide for small and midsize business

ACCC: targeting scams reporting of the ACCC scams activity 2016

Datto: WannaCry the ransomware Crisis explained

Stay Smart Online  Small business guide Protect your business in 5 minutes

Connectivity, Disruption, The Internet of Things, Small to Medium Business

On: June, 28th 2017 | Under: Office 365


The world is becoming more connected and the buzz word of the year is “The Internet of Things”. What does this really mean and will small to medium businesses be impacted? The short answer is YES, the harder question is How? Right now, there is no detailed answer but we do know the ‘Internet of Things” will change the way small to medium businesses do business as they use technology to innovate.

This article provides you with an overview of what is meant by the “Internet of Things’ and some of the challenges it creates and the impact on the relationship of the Small to Medium Business IT provider.

 

Internet of things defined?

The IT world is at its best with the use of jargon and having a language of its own that makes it hard for the ordinary person or the small to medium business owner. Let’s break down the mystique of the Internet of Things. (IoT)

Internet of things is defined as: the interconnection via the Internet of computing devices embedded in everyday objects, enabling them to send and receive data.

Consumers are experiencing the impact of this convergence in all technologies everyday e.g., Smart TV, Internet Fridges, Cameras, Motor vehicles, home security systems, Smart homes electricity, hearting etc. The continued adoption is driven by the benefits delivered to each consumer in the way it improves their daily life.

Is it any different for a small to medium business? The answer is no. Every single business will look at ways they can use the interconnection of computing devices to achieve improvements in their business.

 

What are the Business benefits for small to medium businesses?

Every business owner will look to 1) improve the top line by increasing revenue from existing customers or from finding new customers, 2) gain efficiencies and improvements in the way products/services are delivered. 3)Reduce costs by streamlining processes, and 4) being able to accelerate the time to market increased responsiveness.

This impacts the way the small to medium business owner thinks about IT and the relationship they have with their IT advisor/technician. No longer is it about a break/fix relationship but rather one that requires the advisor to understand what the game plan is for the business and then provide the strategic advice of how technology can be used and the final part is the buying of and the implementation of the actual technology solution.

A recent Telstra report “Digital transformation. Are you disrupted or disrupting” reported that “55% of all respondents are actively seeking to disrupt current or new market’s”

 

What are the challenges confronting us with the evolution of IoT?

Security: With an increase in the number of network connected devices serious security measures need to be taken to prevent data leakage. More devices increase the number of vulnerable points. This changes the face of security and requires a total management perspective to ensure you are minimising the risks of a security breach and loss of data. The other challenge that goes with this is simply the volume of data that is being collected. This raises the challenges of data recovery and Business disaster recovery strategies. Without the data, it becomes very difficult to do anything.

Connectivity: As more devices are connected this will impact the thinking around the underlying infrastructure requirements and will drive a move away from traditional centralised server/client paradigms to authenticate, authorize and connect different nodes in a network.

Extended Network Management: IoT creates a need to work with larger data capacity and manage more IP addresses this means more work for the IT support group and they need to be managing around the clock as a business cannot afford the network to be down. This changes the nature of IT from Break/fix to proactive monitoring.

Final Thought

IoT is an issue that the smart business owner is going to take notice of. Why? Because of the benefits it delivers in being able to run a successful business whether that’s moving to a new business model or disrupting an existing market, or using data more effectively to gain improvements and reduce costs.

Stay tuned as this evolves over the coming months and years.

 

Some interesting reading:

“Digital transformation Are you disrupted or disrupting” Telstra

“Asia Pacific Industrial IoT Cloud platforms 2016” Frost & Sullivan commissioned by Bosch

 

Making sense of Communication Solutions for Small business

On: May, 24th 2017 | Under: Office 365


In today’s connected business environment communication solutions are more critical than ever, yet deciding on what system, which technology, which provider is very difficult due to the variety and mix of solutions that are available. This article looks at assisting a business in navigating this very complex and difficult decision.

What is the starting point?

This is the easy part start with documenting what it is you require by analysing the business environment that you operate in. Sounds simple enough but it is often overlooked or not completed. This is where you will gain a clear picture of your requirement and your needs.

Some of the factors/questions that need to be looked at are: how does your business interact with customers? Do you have a dedicated team undertaking outbound activities, do you run a support centre? How big is the sales team? Is the sales team office based or mobile? How many calls will be active at any point in time? How many locations are employees located at? Do you have any compliance issues? What is the expected new numbers of employees next 12 months, 24 months? What level of integration is required across your systems and technologies? E.g. CRM System.

The above list is by no means exhaustive but it does start to provide a guideline for what is needed to consider in defining the requirement.

What are the key factors in evaluating a solution?

When evaluating a solution, the key criteria will cover Cost both initial investment and ongoing monthly recurring costs, Quality i.e. sound voice quality, including reliability of connection and speed, Ease of implementation i.e. level of training required, feature functionality, level of support provided and Adaptability being the ability to scale with expansion or contract if required.

Understanding your requirement by documenting it enables one to better identify the key criteria by which every solution can be rated and evaluated. This process enables an effective decision to be made.

Considerations

Cloud Based Phone System V Traditional Physical Phone systems

Cloud phone systems have been heralded as the future of business communications. A cloud based system is simply a service that delivers calls and PBX -style functionality over an internet connection (Voice over Internet protocol VOIP)

Traditional phone system is based around a copper landline that is serviced by a telephone company such as Telstra. Typical equipment required includes an on-premise PBX hardware that may need to be upgraded as your employee numbers grow past the capacity of the PBX hardware you have purchased.

Feature comparisons between Traditional and Cloud Based systems

Both traditional and Cloud based phone systems have extensive functionality that will meet many business needs. Some people consider that there is greater programming capability with a VOIP system and less capital investment is required with VOIP solutions.  My comment is that you need to ensure you have a solution that gives you the features you need now and in the next five years. You do not want to be changing phone solutions every 3 years. That is a very expensive exercise.

Speed of deployment/ Business Interruption

When assessing which system to purchase ensure that you have identified how much time is required to install and deploy the system as it is a key to minimizing the disruption to a business. Every minute a business is not available to conduct business the greater the impact on overall viability of the business.

Bandwidth/Internet Connection

A VOIP system requires a broadband connection and the more simultaneous users using the system means more bandwidth is required. Check to see if your Internet Service provider has a bandwidth cap in place and check the data usage regularly so you do not exceed the cap. Exceeding the cap is going to impact quality.

Final Thoughts

As a small to medium business you need to decide for your communication systems that is right for the business.  A Computer Troubleshooters Service provider can assist you at all stages of the process of implementing a phone communication system. This is from the initial selection to implementation and ongoing support.

While there are many positives in implementing a VOIP system remember no matter what solution you choose there is always positives and negatives the final decision should always be based around the objective criteria you have defined.

VOIP Phone Systems

Advantages                                                        Concerns

Sophisticated                                                       Provider response times

Easily set Up and configured                                   Extent of support

Cost                                                                    Dependence on provider

Easy to scale                                                        Educating staff in the system

Expansive Features                                              System Software upgrade disruptions

Comparable call quality to landlines                        Availability of Bandwidth

No investment in hardware PBX                             Reliability of provider network

Soft calls receiving calls via your desktop or laptop     Power outages

 

In conclusion, The Australian Communications and Media Authority (ACME) reported in 2014 (Australian SME’s in the Digital Economy 5-6) “that cloud services continue to gain acceptance and popularity with small and midsized businesses.”

The move to VOIP Unified Communications will continue and your local Computer Troubleshooter is there to help you make the right decision.

Increasing Business productivity: Leads to greater success?

On: April, 25th 2017 | Under: Office 365


For every business owner, no matter what size of business you are managing knows that a key to success is ensuring that your business is increasing staff productivity. Why? Because the more productive you are means that you are increasing the output of the business at a lower cost per unit of output which means an increase in profits. In simple terms getting more done with less.

What is the role of technology?

The answer to that is quite simple as technology permeates our daily working lives. Think about what life was like with no mobile phones, no email, no internet, no electronic calendars, no collaboration tools and technologies like Skype.  Technology today is so cost effective that all businesses can now afford to use these technologies to increase productivity.

Business productivity is the absolute focus of Microsoft Office 365. It is about ensuring that staff have access to: email 24/7 on any device that they use, remote access to data through the cloud and being able to work on that data via software such as Excel and Word etc.

One of the keys for every small to medium business is to ensure that technology is being managed and implemented across the business in a smooth and seamless manner so that their people are working at optimal levels to maximize the businesses productivity resulting in the best possible results.

How does technology impact on business productivity?

Overcoming the challenges of executing on a business strategy daily is where technology has the biggest impact for businesses. Using technology to create automation of tasks allows employees to communicate faster and effectively, give employees an ability to focus on the priorities that will deliver the results that the business is looking for.

When assessing business productivity tools such as MS Office 365, it is imperative that the business understands how it will help?

How?

  • Create an open and communicative environment.
  • Connect teams virtually within the company.
  • Motivate your employees using technology.
  • Monitor business productivity and employee progress on goals. Analyze performance
  • Create a flexible workforce no matter where they are they can access what they need
  • Stay secure and compliant.

How can Computer Troubleshooters help you with Office 365?

The team at Computer Troubleshooters can help you across all stages of your implementation, from assisting you to identify the plan you need, implementing the package including the setup and migration of your email to Microsoft Office 365, to the ongoing management of your solution under a monthly subscription plan. To locate your nearest Computer Troubleshooter Click here

 

What are the key benefits for Business Owners?

Some things to think about are:

  • Capital investment– do you prefer to invest to upgrade systems or use a pay as you go subscription model?
  • Space and operating requirements – do you need to run your own infrastructure?
  • Maintenance – would hosting dramatically reduce staff or outsource costs for your IT support?
  • Scalability – will you need to add or reduce users in the future?
  • Operating control – can you trust an external IT expert to remotely manage your systems?
  • Applications – can you use hosted applications or do you need to host locally?
  • Data usage and file sizes – are your business characteristics suitable to use hosted applications?
  • Broadband speed and capacity – can your internet bandwidth handle hosted usage?
  • Statutory data retention – does your business have a requirement to hold and protect data?

By implementing Office 365 will productivity increase?

Productivity does not increase simply by implementing Office 365 it is important that you educate your staff in how to use the technology effectively and to have identified a range of business processes and activities that can benefit from the technology and make certain you get the buy in of your staff to those changes. The lesson to remember is to have a plan of action for the change you are introducing to your business.

Scam emails:- What to look for?

On: April, 8th 2017 | Under: Office 365


Source of information: Australian Signals Directorate

Web link: https://asd.gov.au/publications/protect/socially_engineered_email.htm

HOW CAN SOCIALLY-ENGINEERED EMAILS BE IDENTIFIED?

While socially-engineered emails can be highly sophisticated, there are ways to differentiate them from legitimate emails. Consider the following questions when you next read your emails:

  1. Do you reallyknow who is sending you the email?
    1. Do you recognise the sender and their email address?
    2. Is the tone consistent with what you would expect from the sender?
    3. Is the sender asking you to open an attachment or access a website?
  2. Are you expecting an email from them?Socially-engineered emails can be crafted to appear to come from a relevant and trustworthy source, including from within your organisation. Many use content relating to current events in order to deceptively gain your trust.
  3. Is the content of the email relevant to your work?Malicious cyber actors may use fraudulent emails which relate to your area of interest.
  4. Does the email ask you to access a website or open an attachment?This technique is commonly used to run malicious code on a victim’s computer, which could compromise agency data. You should always type the web address into your browser instead of clicking a link, and avoid clicking on any link that has been shortened, as you have no way of verifying the actual address. Exercise judgment and be cautious when opening attachments or accessing websites.
  5. Is the web address relevant to the content of the email?Always place your mouse over the link and check that the web address is consistent with the link. For example, an email purportedly from a financial institution that contains a link to a pharmaceutical website may be malicious, as the two are unrelated enterprises. Clicking the link could redirect you to a malicious website.
  6. Is the email from a personal email address?If it seems unusual to receive an email from a work colleague or superior from a personal email address, the email could be malicious. Call the sender to verify the legitimacy of the email before opening any attachments or clicking on any links.
  7. Is the email suspiciously written?Incorrect spelling and capitalisation, abnormal tone and language, or the absence of a specific addressee can indicate that an email is not legitimate.
  8. Have you received the same email twice?This could be a sign that malicious cyber actors are seeking to increase the likelihood that you will open their email and action their request.

Call 1300 28 28 78 and enter your postcode to find the nearest Computer Troubleshooter to you.