Devonport - News

1300 28 28 78

Basic Cyber Security

Posted on: 09/21/2017 | by: arlou

Cyber security threats are continually evolving. Viruses, worms, trojan horses, spyware, phishing, adware and scareware have all been around for a long time. Lately, one particular form of malware known as ransomware has been creating havoc with businesses and organizations worldwide.

Ransomware when detonated works by locking up your files using encryption. You are then asked to pay a ransom to get the code that allows you to unlock your files. Lately, some cyber criminals don’t even add value to this “service” they offer. They just take your ransom and don’t give you the code.

Many customers we see during our daily work (and rescues) don’t even have the most basic cyber security measures in place. This article is intended for the non-technical amongst us to assist and educate about the need to protect computer users against these ever-evolving cyber threats.

Ransomware

In every case we have seen so far, the ransomware package has been physically detonated by a human using the endpoint. Ransomware mostly arrives in email as either an attachment or as a link to a malicious or compromised website. It can also be spread from software downloads, websites and advertising delivered over online ad networks.

What can you do?

Educating yourself and your employees are the #1 defense against cyber criminals.

  • Three years ago, in the olden days, we used to say don’t open an email or attachment from someone you don’t know. These days that rule still applies, however, we have seen cases of ransomware being “redistributed” to everybody in the victim’s email address book, so it’s not just people you don’t know that you can’t trust.
  • Think about that attachment or link you are about to open. Common sense applies. Were you really expecting an invoice from your mother? Were you really expecting that traffic ticket from the police? (Think – how did the Police ever get your email address?)
  • If in doubt about an email then phone the person up and ask if they just sent you that attachment. Better to be safe than sorry.

The most basic cyber security needed on your computers and network.

  • Every endpoint in your network (Cell-phones, Laptops, Desktops, Servers etc.) must have up to date and functional business grade Anti-Virus software.
  • Apply Operating System patches. Manufacturers like Apple, Microsoft and others regularly release patches and updates to fix vulnerabilities that have been discovered (mostly by cyber criminals) in their operating systems.
  • Apply application patches. Products like Office, Adobe, Chrome to name but a few, all have vulnerabilities and exploits. As these exploits get discovered patches are released by the manufacturers to remedy the situation.
  • Always use the latest version of the operating system available. Whilst Microsoft’s Windows 7 is still around and a good operating system, Windows 10 is inherently much more secure.
  • Restrict administrative privileges. Only log in as the administrator to perform administrative functions. Your regular login (and your employees) should only have standard user rights. Why? This makes it harder for malware to be installed, as installation usually requires administrative privileges.
  • Backup your data daily. This needs to be business grade and not to a shared drive on the network. Why? Most ransomware will spread to every “share” it can find – too bad if that is your backup. With regards to ransomware the phrase “Backup or Pay up” springs to mind.

Beyond basic – The next level of cyber security measures.

Once the basics are covered off, we can then talk topics like firewalls, VPS, cloud virus and spam pre-filtering of emails, changing settings in software, 2-factor authentication, and an application that detects and stops unauthorized encryption etc. These will give a much more comprehensive solution beyond basic, however “comprehensive” is probably beyond the scope of this document titled “Basic Cyber Security” and would make it rather long and too technical.

How can Computer Troubleshooters help?

  • Businesses without their own IT resource will often need assistance in implementing these basic cyber security measures. As an IT department for the small and medium-sized businesses, Computer Troubleshooters can be your IT resource.
  • We are able to deploy a management system to your computer(s) and network that keeps a track of your Anti-Virus, Patching, and Backups etc. This system reports to our service desk when things are going away.
  • We are able to assist with your staff training, with a presentation and booklets etc.

Technical Stuff/Further Reading

Australian Government – Australian Cyber Security Centre – Essential 8 Explained PDF Download

BackUp or Business Continuity

Posted on: 08/29/2017 | by: arlou

The facts according to the Boston Computing Network’s Data Loss Statistics, are that 60% of companies that lose their data, will shut down within 6 months of the disaster. This is something that every business wants to avoid.

The following article provides a high-level understanding of how, as a business owner the question for you is one of Business Continuity of which Backup is a key component.

What is Business Continuity?

Business continuity involves a mindset of being proactive and putting plans, processes and systems in place, so that when the unexpected occurs you can return to normal operations with minimal delay thereby reducing the level of disruption and cost to your business.

The aim is to ensure that all essential functions can be up and running or be returned to operational status quickly during various unexpected events such as a natural disaster (Flood, Fire), cyberattacks, theft, or major IT system failure.

What is involved?

The key aspect is to develop a plan that then is well communicated and understood by your staff so they know what to do when the disaster occurs. Like all plans, if it is not communicated and shared then it’s not worth the paper that it is written on.

The process of writing the plan involves identifying the key risks, identifying the ways you can prevent those risks occurring for instance:

  • risk is data loss
  • prevention is designing and implementing a multilevel backup solution.

Then the last element of the plan is documenting the steps in responding and recovery if an incident occurs that does bring down your systems.

Businesses today are more reliant than ever on IT, one of the biggest threats these days being a cybersecurity breach. A fair portion of the plan will need to focus on recovery from an IT disaster.

The plan will need to be reviewed regularly as a business grows and circumstances change and the recovery processes should be thoroughly tested to ensure it will work.

What are your backup options?

There are many options available to businesses these days for backup. With today’s modern technologies and cloud storage services, a hybrid combination of traditional on-site backup plus off-site backup to the cloud, has become the popular choice amongst businesses wanting to ensure high levels of continuity.

The key questions in making a choice is determining the level of risk and the importance of the system and the data that is being backed up. Answering these questions will impact on the choice that you make. You can see I have not mentioned cost or price. One might ask Why? Well because you need to remember this is about having a solution that will minimise the cost of failure which will far outweigh the cost of the solution you choose.

If you are not certain about this statement ask somebody who has experienced the loss of data due to a failed system backup.

What are the traditional onsite backup options?

Onsite with machines all backing up either to tape or disc and then being stored onsite. Usually scheduled to occur daily, every couple of days, or weekly. The greatest weakness is that if something happens to the premises the backups can become corrupted and lost and an external service provider such as Kroll Ontrack may need to be used to try and recover the data.

To overcome the above weakness some business’s will transport the discs/ tapes to an offsite location where they are stored.

What is happening today?

The cost of online storage has reduced with the introduction of data centre services and the continued adoption of cloud storage services. Today most businesses will have a recovery strategy based around using cloud storage, with onsite backup devices that then replicate to a data centre.

The drivers behind this are many but one can put it down to speed of recovery, ability to quickly monitor and ensure backup has occurred, hence no unpleasant surprises if a data loss breach or cyberattack occurs.

 What next?      

The first step is to make sure you have a plan and an understanding of your options. This is where you should have a chat with your local computer troubleshooter to understand how they can help you to minimise the disruption to your business from a data loss/breach. Visit www.computertroubleshooters.com.au to locate your nearest provider.

Protecting a Business against Ransomware and Scams

Posted on: 07/31/2017 | by: arlou

Every day, every month there is a new threat to being able to conduct business effectively and efficiently. How do you protect a business from the threat of disruption whether it is a scam, virus, ransomware or simple network or internet failure?

The Australian Competition and Consumer Commission’s (ACCC) eighth annual report on scam activity highlights the significant cost and growth in the disruption to business. The cost of hacking scams had a fourfold increase between 2015 and 2016. Reported at a cost to business of 2.9 million in 2016.  This highlights the significant risk of todays digital world to business.

Scams continue to become more sophisticated using modern technology to make fake emails, invoices, and websites appearing legitimate to even the most astute business person. These scams have devastating effects on businesses by eroding the investment they have made in their reputation, increasing operational costs and in certain cases crippling the business from operating.

This article looks at how a business can avoid becoming a victim of a scam by ensuring they have the right support and systems in place to minimise the risk of disruption.

Why does size matter?

Larger organisations have the resources, time and budgets to invest in ensuring they are not subject to an attack. As the headlines indicate even with this effort they are not always successful in defending themselves.  The reality is that as smaller organisations are hampered by the amount of money and resources they can spend on IT, means that these organisations are an easier target for the cyber criminals.  The cyber-criminal finds it easier to get in and often it takes longer to detect meaning more havoc created.

Smaller organisations are often a means to access and breach larger organisations. Why? Because the smaller organisation is often the weakest link (security wise) in a supply chain relationship thereby providing an entry point to the larger business partner.

What are the key elements to protect Business Continuity? 

One must ask if the IT environment something that can just be left alone or does it need to be looked after? The answer is obvious it needs to be managed and looked after, it needs somebody who is accountable and responsible for ensuring that the risk is minimised.

For smaller organisations this leads to either employing a resource or developing a relationship with an IT Service provider who is accountable. It makes sense to develop a relationship where the provider is on the front foot and is monitoring all key elements and maintaining an organisations systems in advance of something going wrong. This is commonsense as it is about protecting against a major disruption to a business.

The key components that need to be looked at are:

  • Data back-up/ Business continuity
  • Security of endpoints
  • Network configurations, performance and access
  • Email access and security
  • Software up to date
  • Patch management (ensuring your users are up to date on all updates to the operating system or the Anti-Virus software is the latest.)
  • Website performance and content filtering
  • Password management
  • Monitoring

The key element for a business owner is to understand how this approach shifts the nature of the relationship with your IT provider from being reactive to proactive. It means the IT provider is preventing breakdowns instead of reacting to a break down. This means a monthly fee for the maintenance rather than a call out figure. It means the provider is monitoring and using tools to remotely manage and perform maintenance activities.

What does this cost?

The key thing to remember this is an investment in ensuring a business is not disrupted. Some providers will charge per device; others will charge a monthly figure based on complexity of what they are managing; others will charge based on per user.

As a business owner understand what is included and what is not and what service agreement does the provider use. For instance, at Computer Troubleshooters we provide a 100% guarantee. To locate your local Computer Troubleshooter at www.computertroubleshooters.com.au

Final Thought

Change is hard to accept for anybody and in the case of IT management it is hard for people to see the monthly outlay as an investment in their future. But this is exactly what it is. It is a strategic investment that allows a business to minimize the risk of disruption and ensure it can continue to grow and develop.
Sources of information for this article:

Watchguard: The Cyber Crime Guide for small and midsize business

ACCC: targeting scams reporting of the ACCC scams activity 2016

Datto: WannaCry the ransomware Crisis explained

Stay Smart Online  Small business guide Protect your business in 5 minutes

Connectivity, Disruption, The Internet of Things, Small to Medium Business

Posted on: 06/28/2017 | by: arlou

The world is becoming more connected and the buzz word of the year is “The Internet of Things”. What does this really mean and will small to medium businesses be impacted? The short answer is YES, the harder question is How? Right now, there is no detailed answer but we do know the ‘Internet of Things” will change the way small to medium businesses do business as they use technology to innovate.

This article provides you with an overview of what is meant by the “Internet of Things’ and some of the challenges it creates and the impact on the relationship of the Small to Medium Business IT provider.

Internet of things defined?

The IT world is at its best with the use of jargon and having a language of its own that makes it hard for the ordinary person or the small to medium business owner. Let’s break down the mystique of the Internet of Things. (IoT)

Internet of things is defined as: the interconnection via the Internet of computing devices embedded in everyday objects, enabling them to send and receive data.

Consumers are experiencing the impact of this convergence in all technologies everyday e.g., Smart TV, Internet Fridges, Cameras, Motor vehicles, home security systems, Smart homes electricity, hearting etc. The continued adoption is driven by the benefits delivered to each consumer in the way it improves their daily life.

Is it any different for a small to medium business? The answer is no. Every single business will look at ways they can use the interconnection of computing devices to achieve improvements in their business.

What are the Business benefits for small to medium businesses?

Every business owner will look to 1) improve the top line by increasing revenue from existing customers or from finding new customers, 2) gain efficiencies and improvements in the way products/services are delivered. 3)Reduce costs by streamlining processes, and 4) being able to accelerate the time to market increased responsiveness.

This impacts the way the small to medium business owner thinks about IT and the relationship they have with their IT advisor/technician. No longer is it about a break/fix relationship but rather one that requires the advisor to understand what the game plan is for the business and then provide the strategic advice of how technology can be used and the final part is the buying of and the implementation of the actual technology solution.

A recent Telstra report “Digital transformation. Are you disrupted or disrupting” reported that “55% of all respondents are actively seeking to disrupt current or new market’s”

What are the challenges confronting us with the evolution of IoT?

Security: With an increase in the number of network connected devices serious security measures need to be taken to prevent data leakage. More devices increase the number of vulnerable points. This changes the face of security and requires a total management perspective to ensure you are minimising the risks of a security breach and loss of data. The other challenge that goes with this is simply the volume of data that is being collected. This raises the challenges of data recovery and Business disaster recovery strategies. Without the data, it becomes very difficult to do anything.

Connectivity: As more devices are connected this will impact the thinking around the underlying infrastructure requirements and will drive a move away from traditional centralised server/client paradigms to authenticate, authorize and connect different nodes in a network.

Extended Network Management: IoT creates a need to work with larger data capacity and manage more IP addresses this means more work for the IT support group and they need to be managing around the clock as a business cannot afford the network to be down. This changes the nature of IT from Break/fix to proactive monitoring.

Final Thought

IoT is an issue that the smart business owner is going to take notice of. Why? Because of the benefits it delivers in being able to run a successful business whether that’s moving to a new business model or disrupting an existing market, or using data more effectively to gain improvements and reduce costs.

Stay tuned as this evolves over the coming months and years.

Some interesting reading:

“Digital transformation Are you disrupted or disrupting” Telstra

“Asia Pacific Industrial IoT Cloud platforms 2016” Frost & Sullivan commissioned by Bosch

Making sense of Communication Solutions for Small business

Posted on: 05/24/2017 | by: arlou

In today’s connected business environment communication solutions are more critical than ever, yet deciding on what system, which technology, which provider is very difficult due to the variety and mix of solutions that are available. This article looks at assisting a business in navigating this very complex and difficult decision.

What is the starting point?

This is the easy part start with documenting what it is you require by analysing the business environment that you operate in. Sounds simple enough but it is often overlooked or not completed. This is where you will gain a clear picture of your requirement and your needs.

Some of the factors/questions that need to be looked at are: how does your business interact with customers? Do you have a dedicated team undertaking outbound activities, do you run a support centre? How big is the sales team? Is the sales team office based or mobile? How many calls will be active at any point in time? How many locations are employees located at? Do you have any compliance issues? What is the expected new numbers of employees next 12 months, 24 months? What level of integration is required across your systems and technologies? E.g. CRM System.

The above list is by no means exhaustive but it does start to provide a guideline for what is needed to consider in defining the requirement.

What are the key factors in evaluating a solution?

When evaluating a solution, the key criteria will cover Cost both initial investment and ongoing monthly recurring costs, Quality i.e. sound voice quality, including reliability of connection and speed, Ease of implementation i.e. level of training required, feature functionality, level of support provided and Adaptability being the ability to scale with expansion or contract if required.

Understanding your requirement by documenting it enables one to better identify the key criteria by which every solution can be rated and evaluated. This process enables an effective decision to be made.

Considerations

Cloud Based Phone System V Traditional Physical Phone systems

Cloud phone systems have been heralded as the future of business communications. A cloud based system is simply a service that delivers calls and PBX -style functionality over an internet connection (Voice over Internet protocol VOIP)

Traditional phone system is based around a copper landline that is serviced by a telephone company such as Telstra. Typical equipment required includes an on-premise PBX hardware that may need to be upgraded as your employee numbers grow past the capacity of the PBX hardware you have purchased.

Feature comparisons between Traditional and Cloud Based systems

Both traditional and Cloud based phone systems have extensive functionality that will meet many business needs. Some people consider that there is greater programming capability with a VOIP system and less capital investment is required with VOIP solutions.  My comment is that you need to ensure you have a solution that gives you the features you need now and in the next five years. You do not want to be changing phone solutions every 3 years. That is a very expensive exercise.

Speed of deployment/ Business Interruption

When assessing which system to purchase ensure that you have identified how much time is required to install and deploy the system as it is a key to minimizing the disruption to a business. Every minute a business is not available to conduct business the greater the impact on overall viability of the business.

Bandwidth/Internet Connection

A VOIP system requires a broadband connection and the more simultaneous users using the system means more bandwidth is required. Check to see if your Internet Service provider has a bandwidth cap in place and check the data usage regularly so you do not exceed the cap. Exceeding the cap is going to impact quality.

Final Thoughts

As a small to medium business you need to decide for your communication systems that is right for the business.  A Computer Troubleshooters Service provider can assist you at all stages of the process of implementing a phone communication system. This is from the initial selection to implementation and ongoing support.

While there are many positives in implementing a VOIP system remember no matter what solution you choose there is always positives and negatives the final decision should always be based around the objective criteria you have defined.

VOIP Phone Systems

Advantages                                                        Concerns

Sophisticated                                                       Provider response times

Easily set Up and configured                                   Extent of support

Cost                                                                    Dependence on provider

Easy to scale                                                        Educating staff in the system

Expansive Features                                              System Software upgrade disruptions

Comparable call quality to landlines                        Availability of Bandwidth

No investment in hardware PBX                             Reliability of provider network

Soft calls receiving calls via your desktop or laptop     Power outages

In conclusion, The Australian Communications and Media Authority (ACME) reported in 2014 (Australian SME’s in the Digital Economy 5-6) “that cloud services continue to gain acceptance and popularity with small and midsized businesses.”

The move to VOIP Unified Communications will continue and your local Computer Troubleshooter is there to help you make the right decision.

Increasing Business productivity: Leads to greater success?

Posted on: 04/25/2017 | by: arlou

For every business owner, no matter what size of business you are managing knows that a key to success is ensuring that your business is increasing staff productivity. Why? Because the more productive you are means that you are increasing the output of the business at a lower cost per unit of output which means an increase in profits. In simple terms getting more done with less.

What is the role of technology?

The answer to that is quite simple as technology permeates our daily working lives. Think about what life was like with no mobile phones, no email, no internet, no electronic calendars, no collaboration tools and technologies like Skype.  Technology today is so cost effective that all businesses can now afford to use these technologies to increase productivity.

Business productivity is the absolute focus of Microsoft Office 365. It is about ensuring that staff have access to: email 24/7 on any device that they use, remote access to data through the cloud and being able to work on that data via software such as Excel and Word etc.

One of the keys for every small to medium business is to ensure that technology is being managed and implemented across the business in a smooth and seamless manner so that their people are working at optimal levels to maximize the businesses productivity resulting in the best possible results.

How does technology impact on business productivity?

Overcoming the challenges of executing on a business strategy daily is where technology has the biggest impact for businesses. Using technology to create automation of tasks allows employees to communicate faster and effectively, give employees an ability to focus on the priorities that will deliver the results that the business is looking for.

When assessing business productivity tools such as MS Office 365, it is imperative that the business understands how it will help?

How?

  • Create an open and communicative environment.
  • Connect teams virtually within the company.
  • Motivate your employees using technology.
  • Monitor business productivity and employee progress on goals. Analyze performance
  • Create a flexible workforce no matter where they are they can access what they need
  • Stay secure and compliant.

How can Computer Troubleshooters help you with Office 365?

The team at Computer Troubleshooters can help you across all stages of your implementation, from assisting you to identify the plan you need, implementing the package including the setup and migration of your email to Microsoft Office 365, to the ongoing management of your solution under a monthly subscription plan. To locate your nearest Computer Troubleshooter Click here

 

What are the key benefits for Business Owners?

Some things to think about are:

  • Capital investment– do you prefer to invest to upgrade systems or use a pay as you go subscription model?
  • Space and operating requirements – do you need to run your own infrastructure?
  • Maintenance – would hosting dramatically reduce staff or outsource costs for your IT support?
  • Scalability – will you need to add or reduce users in the future?
  • Operating control – can you trust an external IT expert to remotely manage your systems?
  • Applications – can you use hosted applications or do you need to host locally?
  • Data usage and file sizes – are your business characteristics suitable to use hosted applications?
  • Broadband speed and capacity – can your internet bandwidth handle hosted usage?
  • Statutory data retention – does your business have a requirement to hold and protect data?

By implementing Office 365 will productivity increase?

Productivity does not increase simply by implementing Office 365 it is important that you educate your staff in how to use the technology effectively and to have identified a range of business processes and activities that can benefit from the technology and make certain you get the buy in of your staff to those changes. The lesson to remember is to have a plan of action for the change you are introducing to your business.

For Small to Medium Business: To Managed services or not?

Posted on: 03/28/2017 | by: arlou

Too many small to medium business owners increase the risk to their survival by being reactive rather than being proactive in managing their IT infrastructure, hardware, software, usage of cloud services, smartphones and the internet.

One must ask the question why? The answer has a variety of answers. Some of it is because that’s the way we have always done it, sometimes it’s a lack of understanding of how reliant small to medium businesses have become on IT, however the main reason is an attitude around perceived cost. Yes, they see managing IT proactively as, not delivering a return on investment but rather, a cost that reduces the bottom line.

The key considerations for small to medium business owners is to understand that being reactive is more expensive than taking a proactive prevention approach to the management of IT. Why? because every minute of downtime is costing a business, it is not only the direct cost of the technician and his time but also the time the businesses employees are being unproductive and the cost of not being able to respond to customers.  Poor response time and lack of availability of your technician combined with the unexpected cost of replacing equipment impact the viability of the reactive IT management model.

Can this be avoided?

The simple answer is yes, which raises the question of how? Again, the answer is an easy one for small to medium businesses by investigating the option of outsourcing the management of their IT under a managed services agreement to an IT service provider like Computer Troubleshooters.

The challenge for many small to medium business owners is to make sure they have a process that answers questions such as; having a defined selection criteria, clear articulation of their needs and what needs to be managed, clear understanding of the costs and what is covered and not covered by the agreement, ensuring there is clarity around the key deliverables for the small to medium business. This article aims to help you in developing that process.

What are the steps involved in selecting a provider?

Like any exercise a small to medium business owner needs to plan and have a structured process otherwise you increase the risk of making a bad decision.

Commence by understanding what you need in terms of services and the type of company that you are looking for.  As an example, do you need your applications (accounting software, Office 365) to be managed or is it just making sure that you are fully protected against cyber threats? Is it managing passwords and ensuring email is available 24/7, or does it include patch management, ensuring your data is being backed-up regularly and being notified when a back-up fails or does it include making sure the network is running at an optimum level?

Start by identifying what is critical to your business and set that as the original scope. At the end of the initial contract period review and expand the scope if you are satisfied with the service.

Develop a selection criteria that includes the concept of value for money when selecting a provider. Remember selecting the cheapest price option is not necessarily the best result for you. Talk to some of the provider’s customer to establish their capability to deliver on what they are promising.

A guiding principle should be ensuring that your provider has the right people with the right skills doing the right things using the right tools to deliver the service.

Factors to consider are: 

  • experience of the provider, customer base who they work for, industries, size of businesses
  • flexibility and capacity to adapt as your needs change
  • capacity to respond, hours of operation, do they have a NOC centre
  • their technology and the skill set of the provider and knowledge including emerging technologies such as cloud services
  • pricing, what is included and excluded from the plan, termination process of contract.

One last factor to consider is the way the provider manages the relationship and the way they interact with you and the frequency they are providing updates to you. Ensure you have a set of performance indicators by which you will judge the performance of the Managed Service Provider.

What does a managed service plan look like?

The first element to look at is how the provider charges for their services. There is a variety of models with the most common being charged per device and per server. All providers will have per hour or daily rates for services that fall outside of the defined services.

Managed service plans generally work under a monthly subscription model and the monthly fees billed directly to a credit card. One area to investigate in any plan is to understand the required termination time-period and the process for moving to another provider.  Make certain you are not beholden to the provider.

What are the services I should look for that are provided by a Managed Service provider?

Service providers package services in different ways. This means a potential customer needs to know their requirements. Examples of services are:

  • Monitoring this is where a provider is using a tool to that creates visibility of what is happening in your network. This capability allows a Managed Service Provider to be proactive in ensuring that a IT system’s uptime is maximised. Establish what is included in the monitoring package from your provider.
  • Remote remediation of incidents this again is work completed by the provider to ensure your network is operating at its greatest productivity. An example would be to automatically clear a device of all temporary internet files.
  • IT security ensuring all devices are protected and have the latest security updates and company policies are applied across all devices being managed
  • Business continuity services covering back up and business disaster recovery plans
  • Email and communications management of users, policies and ensuring you can communicate on any device at any location
  • Application management of cloud services and software such as Office 365
  • IT planning and growth ensuring your business can take advantage of the latest technology trends
  • Capacity and capability management e.g. infrastructure management

What are the deliverables for a small to medium business?

  • increased productivity as the uptime of the IT infrastructure has significantly increased
  • being more strategic in their IT investments leading to greater returns
  • a predictable monthly spend on IT that is now an operating cost rather than a capital cost
  • up to date IT infrastructure

In closing speak with your local Computer troubleshooter provider about how they can help you make the shift to managed services. www.computertroubleshooters.com.au or phone 1300 28 28 78

 

 

Counting the True Cost – Cyber Security Breach

Posted on: 02/22/2017 | by: arlou

Protecting yourself against cyber security is in the news every single day of the week. Yet every day I hear another story about a small business that has had a breach. When talking to the owners, the anger, frustration and disbelief is evident to see. The shock is expressed in the following words; this is costing me so much, it’s the inconvenience, it’s the damage to my reputation and worst of all I am losing customers and I know they will not come back.

What is the cost for small to medium business?

  • The statistics on the cost to small business are hard to establish but one can only suspect that if big business is $142 per compromised record (Ponemon Institute Research report 2016) that is something similar for small to medium business.
  • From my personal experience, I know a podiatrist whose business incurred a breach of their booking system that took three months before their business was back to normal. Even after this time they continued to lose customers. The Ponemon Institute Research Report 2016 clearly indicates that the loss of business customers is the largest financial consequence for an organisation that experiences a data breach.
  • A breach becomes more costly to resolve the longer the breach remains undetected.

Is a small to medium business subject to fines?

All businesses no matter what size are subject to privacy laws. Currently our NZ Privacy Act which went into effect in 1993 contains breach-related penalties from $2,000 to $10,000. New Zealand’s privacy commissioner is now recommending new civil penalties against companies of up to NZ $1,000,000 for a “serious” data breach to keep NZ up with sterner penalties adopted by Australia and the European Union. Ultimately there is significant accountability on businesses to keep customers’ private information secure or face potentially large fines as well as bad publicity and damage to their reputation.

Why is small to medium business a target?

This may be obvious but every cyber- criminal is looking for a soft target, in effect every small to medium business has more information (data) to target than an individual consumer and, because of resource restrictions and lack of knowledge they have a less secure environment than a larger organisation. This is not only in terms of software but also in having security policies that are effectively implemented. For example; user training, passwords, network access, usage of personal devices and external storage devices such as USB sticks.

Too often small business owners are not proactive because they do not believe they have anything worth stealing.  This is not the case as every small to medium business holds customer credit card information, customer personal details such as bank details and emails.  Every bit of information is useful to a cyber-criminal who can make money, for instance, by selling an email address.

Are the hackers and cyber criminals becoming more sophisticated?

The short answer to this question is YES. In the 12 months to June 2016 the NZ National Cyber Security Centre reported a 78% increase in cyber security incidents over the previous year. Our Australian neighbours (Australian Cyber Security Centre Threat Report 2015) identified that the number of cyber criminals with capability will increase, that the sophistication of the current cyber adversaries will increase making detection and response more difficult, ransomware will continue to be prominent and there will be an increase in electronic graffiti such as web defacements and social media hijacking. All this is occurring because every day no matter what size business you are there is a greater reliance on technology to run and conduct a business. The cyber-criminal is aware of this.

How to minimise and protect your small to medium business against cyber – attack?

Suggested guidelines for protecting your business are:

  • Complete a risk assessment so you are aware of the areas you are most vulnerable. The suggestion would be to complete this with an IT expert, or use the NZ Government sponsored Connect Smart for Business SME toolkit as a starting point.
  • Educate your staff about the various types of scams such as ransomware. Ransomware is a piece of malware that is often sent via email and when executed it kidnaps your machine via encryption that blocks the user from accessing their machine. The kidnapper then demands payment for the decryption key. Ransomware is often referenced as Cryptolocker, Cryptovirus or Cryptotrojan. Examples include NZ Police notifications, Courier and Post deliveries, Inland Revenue Office, Microsoft support etc.
  • Ensure you have policies that are enforced around passwords.
  • Use up to date security systems such as anti-virus software, ensuring firewalls are in place, proper controls around network access.
  • Ensure you are backing up your data and protecting sensitive data in accordance with the privacy laws of New Zealand.
  • If you have limited IT capability and resources, consider the proactive approach of engaging an IT service provider on a managed services contract.
  • Have a remediation and recovery plan for a cyber security breach.
  • Take insurance against a security breach.

From a technology viewpoint aim for the following:

  • End user security – workstations, laptops and mobile devices all have anti-virus malware protection, scheduled back up and regular preventative maintenance.
  • Centralised user control and back up – critical company information and local files need to be protected and still require regular back up, preferably with offsite duplication to the cloud.
  • Unified threat management and content filtering – can offer maximum external threat protection and enhanced business productivity to your internal network.
  • Disaster recovery and data restoration – business continuity can only be guaranteed with adequate backup and recovery procedures in place

The four key elements in thinking about preventing cyber security breaches are to know your environment, to secure your environment, effectively control your environment and proactively monitor your environment.

The best approach is to make sure that the challenge of cyber security is at the forefront of the business owner’s mind and that of employees.

References:

Bank Info Security

National Cyber Security Centre

The Privacy Commissioner’s Office

Australian Cybercrime Online Reporting Network

Ponemon Institute; IBM sponsored 2016 Cost of Data Breach Study Australia

How to protect your family from cyber threats?

Posted on: 01/31/2017 | by: arlou

Do you have young children who risk being exposed to pornographic or inappropriate websites?

Do you feel you should control the type of applications your children use and the amount of time they spend on the internet on websites such as social media?
Are you worried your children are using gaming, gambling, or in-app purchasing applications?

If you answered “yes” to any of these questions you are part of a growing movement of concerned family’s’ who are struggling to control their childrens’ exposure to the internet.

Why is access to internet content so hard to control?

There are 3 main reasons why internet consumption by children is hard to control:

  1. Multiple Access – The internet can now be accessed in a variety of different ways. Traditionally the home network was the only access method for most families.Now we have access by mobile data access via 3G & 4G networks, plus the increased availability of free Wi-Fi public access networks, then the additional opportunity of roaming as guests on other private Wi-Fi Networks. Internet access is now available everywhere so managing access through gatekeeping devices such as routers is increasingly ineffective.
  2. Multiple Devices – With internet access everywhere comes the proliferation of multi device access with many children now using a range of smartphones, tablets, laptops, and workstations. Internet access is now available almost anywhere on any device, so managing access of devices is increasingly difficult.
  3. Knowledge – Our children are developing skills and shared methodologies that can circumvent traditional control network mechanisms (such as routers) and device profile user management (such as Windows Parental Control).

With anywhere anytime internet access from multiple devices, is it still possible to regulate internet access to our children?

Thankfully development of cloud technologies has enabled user management to be lifted above the physical network layer and enables user profile management to be delivered across multiple access networks and devices. Effectively the cloud allows an additional layer of control above the traditional approach to user management and content control.

Here is what a cloud based portal can enable:

  1. Block porn andadult content
  2. Restrict access to social media
  3. Restrict access to YouTube and gaming content
  4. Limit access to mobile games and apps
  5. Limit app downloads and in-app purchases
  6. Disable device features including cameras
  7. Set restricted access periods and sleep times across devices
  8. Cover devices in and out of home.
  9. Managed from a single cloud based portal

Given all this is possible, how it is achievable?

As a business who has been help protect Australian families for over 20 years we have watched the evolution of different internet security software and hardware struggle to keep up with these changes. In our view, if families wish to take control of how internet is consumed they must consider using a cloud based portal to provide comprehensive protection.

To the best of our knowledge the most comprehensive and accessible product for family internet management is called Family Zone. Family Zone is a new generation cloud based product that allows for all these changes in technology from anywhere access from multiple devices.

Family Zone

Family Zone brings together the best Cyber Experts, organisations and technologies into one easy-to-use system. They developed it, tested it and now we want to share it so that everyone can enjoy the same peace of mind that their customers do. Family Zone was built on the belief that only through working together, as a community, can we build a cyber safe generation of kids.

What is unique about Family Zone?

  • Cloud based user & content management portal
  • Specific age profile restriction based management
  • Multi Network management
  • Remote device management (through VPN and MDM)
  • Individually configurable to each family member

If you are looking for the most comprehensive family content management system to protect your family we recommend you investigate Family Zone further.

2 months Free Trial Offer

We’ve have recently partnered with Family Zone to provide a full a cyber safety solution to keep the whole family safe while online; both at home and when they are out and about on their phones. While the service can be configured by parents, Computer Troubleshooters can help set up Family Zone at your house so that you’re confident when the kids are online their cyber safety is sorted.

Computer Troubleshooters on behalf of our clients have negotiated a 2 month free trial of Family Zone, plus we can offer a fixed installation of $139 should you require our help.

To find out more go to  http://www.computertroubleshooters.com.au/family-zone/

Give your local Computer Troubleshooters office a call and will be happy to discuss your particular situation and see if Family Zone is the right solution for you.

Upgrade to a new Computer or get a Tune Up service?

Posted on: 12/31/2016 | by: arlou

Does your computer seem unresponsive, sluggish, and unreliable?

Do you feel you spend time waiting for things to happen on your computer?
Is your productivity slowing down as a result of a slow computer?

One of the most common questions we get in our business is “Should I repair or replace my computer?” While it is an individual decision there are several key factors that should help determine your course of action. Obviously, the price difference can be huge and the disruption painful, but what are the key determinants of your choice;

3 key determinants to upgrade your computer?

We suggest you use a 3-step process to determine the correct course of action

  1. Computer Age; If you existing computer is over 3 years old the risk of catastrophic failure due to hard drive or part failure is much higher,and the overall expected life of a PC that is constant use is rarely over 5 years. Life expectancy is generally lower for laptops that are moved & carried around regularly. Doing maintenance on an old machine might not be the best answer, especially if you are critically dependent on it working correct & if it fails you will end up in an emergency.

 

  1. Computer Specifications: Check the specifications of your current computer; with the evolution of new software & applications, especially video applications such as Facebook and news services, means your current computer just may not be able to process fast enough to give you performance that is satisfactory.Most new computers now offer significantly more processor speeds & RAM than what was available a few years ago.If you are looking to run the latest versions of Windows 10, Internet browsers (like Google Chrome), Office 365 or Microsoft Office 2016 then it is difficult to get the maximum benefits without modern specifications. If your old computer has low specification components a Computer Tune Up may not resolve all your speed issues.

 

  1. Computer Maintenance:Assuming you have agreed the first 2 steps are not a problem; then if you are experiencing slow startups, slow application opening, application time outs or regular restarting requests this can generally mean your computer needs a Tune Up. A computer Tune Up is where we do a deep clean to remove unwanted programs and files then the operating systems cleaned of unnecessary bloat. Often just normal use on the web can accumulate,without your knowledge, thousands of small unwanted programs, cookies, and tracking code that ultimately accumulates slowing everything down. The final area of a Tune Up is defragging your hard disk, where the storage space can be reallocated and made more efficient, giving improved performance.

 

Just like servicing a car we suggest that even the best computer will need tuning at least every 12 months or more frequently if you’re a business user, this can be done using a maintenance plan with automated routines and processes that can be run remotely by your local Computer Troubleshooters.

 

Repair or Replace?

Given the 3 critical factors above and your individual circumstance you should have formulated your own view of whether you should repair or replace your computer. So what are the options?

Repair – You can simply call in an expert like Computer Troubleshooters to do a computer Tune Up to get your machine back to optimal performance. They will do a series of deep scans and maintenance processes that should remove the bloat. We also would recommend joining a maintenance plan that regularly does this process to keep you at the optimal performance level. Part of this is also reviewing your backup regime to ensure that you will not experience data catastrophe should a failure occur in the future.

Replace – Once you decide to replace your machine there are few options you can consider;

  • Upgrade – Simply replacing the hard drive on an existing computer with SSD (solid state drive) can significantly improve processing speeds and memory without the need to replace the full system. This also significantly reduces a key point of failure risk from an old system.
  • New Packaged– a new system ultimately will give you a new experience in performance, you just need to ensure the specifications will deliver on your expectations. Lower prices can often mean lower performance, you generally get what you pay for. We generally suggest a minimum of 4GB of RAM and an i5 or better CPU. Just bear in mind you may need to repurchase software that was on your existing machine.
  • New Custom – if you have a specific need or application we can help put together a custom-built system option that can take into account your specific user requirements. We can spec, order & install a system specifically for your needs. Ask us for a quote.

You can transfer all your data and settings on to your new computer so that your new machine is setup is the same as previously, this can be done relatively easily by your local Computer Troubleshooters. Just bear in mind that Windows10 is now the standard operating system for PC’s, so you may need to adapt to the new Windows environment.

At the same time we also recommend reviewing your backup regime to ensure your critical data is protected.

Optimal Computer Performance

Regardless of your situation whether it is repair or replace we can help you optimize your computer experience to help you get the best performance. You don’t have to put up with a slow computer. Give your local Computer Troubleshooters office a call and one of their technology professionals will be happy to evaluate the status of your current computer and help you choose the correct course of action.

 

 

Newsletter Sign-Up

  • Get our exclusive offers, tips and news delivered right to your inbox

  • This field is for validation purposes and should be left unchanged.