Microsoft steps up to take part in the war against cyber crimes

January 25th, 2012

Cyber crimes happen everyday, and everyday IT security companies track and record details around these attacks. Microsoft is upping its game and launching a real-time threat feed so that its fellow partners can study existing threats it finds and learn the best steps to proactively take against them.

Microsoft presently has a process set up to take down dangerous botnets. Microsoft “swallows” the botnets and lets them infect accounts that are highly controlled by Microsoft’s team. Once the botnets infect the accounts, Microsoft learns the way they work and eliminates them as a threat.

Microsoft can now collect threat information and share it with ISPs, government agencies, private companies, and CERTs. The impact of such a move by Microsoft could be significant. Analysts point out that while a real-time threat feed won’t lower the amount of attacks, it will help information security specialists react to these threats faster. This might limit the amount of damage brought on by these attacks.

Another great result a real-time threat feed could have is an increase in overall information sharing between IT security companies. For too long IT companies have been hesitant to share threat information for the fear that it could fuel more attacks. Most experts say this an unsupported fear.  The cyber criminal “community” has already been sharing and gaining knowledge from each other.  It’s only logical therefore that IT security professional share as much information as possible to fight the seemingly endless barrage of new cyber threats.

Let’s hope that security professionals soon understand that sharing information is more valuable than secrecy. And let’s hope that Microsoft’s move is a first step in this change of attitude.

Tags:
Posted in Security, Uncategorized | No Comments »

Going Green: Energy Monitoring

January 25th, 2012

Becoming greener is on many people’s agendas these days.
Whether the intention is to save money or reduce the impact to the environment, this is true not just for individuals, but many high-tech companies as well. A necessity to understanding how to conserve energy is becoming aware of the aspects of your home or business that consume the most energy.

At the CEATEC conference this month in Japan, Toshiba and Intel announced a few of their upcoming plans to better allow companies to keep track of their energy usage. In this “Green Age,” it’s no surprise to see major players in the technology world coming forward with big developments that allow more regulation and monitoring of the amount of energy being used. Here are some of the ecologically-forward changes and additions these two companies announced they will be implementing in 2012.

Intel

PC users will be able to monitor the energy consumption of their PC with the application Intel has developed. With an easy to read dashboard where the data is organized and displayed in graphs, charts, and statistics, you will be able to much more easily see how your computer is using energy.

Toshiba

You may have read that Toshiba recently acquired Landish Gyr, a company that specializes in smart-meter tech, Toshiba is utilizing this as part of a “smart home” offering. This will allow individuals to more easily monitor the energy consumption throughout their homes. They are also developing cloud technology for a number of verticals, including city infrastructure and health companies.

Japanese technology companies are currently highly dedicated to monitoring energy consumption. That being said, it is interesting that many companies in the US are pulling away from this. Microsoft and Google are just two examples. Microsoft announced in June that they are discontinuing their energy-monitoring service called Hohm. While Google announced it is taking a break from the green game by shutting down Google
Powermeter.

Will the green technology world head in the direction of energy monitoring or something else entirely? If you have any speculation or ideas on the direction this may take; please share them with us.

 

Posted in Uncategorized | No Comments »

Is the Cloud Secure? Part 2

January 20th, 2012

The cloud can be a blessing for small business owners fighting through tough economic times. Rather than purchasing costly enterprise software, business owners can save their dollars by accessing powerful computing programs in the cloud, from high-end word processors and project-management tools to spreadsheets and Photoshop alternatives. But, the cloud isn’t perfect, particularly when it comes to security issues. Entrepreneurs must be aware that their documents, presentations, and marketing materials can be damaged when they’re stored in the cloud.

Password issues

One of the biggest security issues when dealing with the cloud is password protection. This is also one of the greatest security issues outside of the cloud.

You should always carefully select passwords to your projects stored in the cloud. The more complicated your passwords are the more difficult they are to guess. A great way to accomplish this is to use a combination of numbers and letters in your passwords. Also, you shouldn’t share these passwords with many people.

Hacker alert

Hackers, malware, and spyware remain serious issues for cloud environments, just like they are problems that business owners face when logging onto their personal computers everyday. The thing that makes this particularly scary is that individual business owners have little control over how secure cloud services are. The big names — companies like Microsoft and Google — must provide their own security for the data that business owners store in the cloud.

Common sense protection

Protecting yourself from theft in the cloud can be as simple as applying some common sense practices.

First, owners should consider what sort of information they are storing in the cloud. The most sensitive data, data that could damage a company if it is lost or stolen, may not be suitable for cloud storage. Instead, this data may be better preserved on a business owner’s individual computing system and reliably backed up.

Secondly, before giving every employee free access to cloud-stored data, think carefully about which employees actually needs access to that information. People are often careful about protecting their laptops and desktop computers from prying eyes; this attitude should be applied to the cloud as well.

Tags:
Posted in Malware, Security, Uncategorized | No Comments »

Security in the Cloud: Part 1

January 18th, 2012

There are numerous benefits to cloud computing. Backing up important data makes it easily accessible to everyone in your company and frees up space on your servers. You almost certainly have several questions about cloud security and might be pondering if cloud security will protect your client’s data and adhere to HIPAA, PCI or Sarbanes-Oxley regulations.

It can be difficult to tell if your cloud storage solution follows these requirements, as many don’t specify in their privacy policies. To help you navigate these difficult waters, let’s consider this topic in depth below.

Compliance

Cloud security has become an important issue recently, as increasing numbers of companies turn to online storage solutions, looking for greater simplicity, scalability and affordability. However the cost in both money and reputation for improper handling of customer data can be extremely high indeed. If your organization should comply to key regulations associated with patient privacy (HIPAA), credit card security (PCI) or the finance-sector strictures of Sarbanes-Oxley, it can be hard to find out if a service complies with these important restrictions.

Who is responsible

Who’s shoulders does the responsibility fall on? There is no law requiring that cloud service providers disclose the level of security they maintain. While they probably do have a respectable amount of safety protocols set up, the safest option is to take their privacy policy at face value. In this case, if you wish to stay in compliance with HIPAA, PCI or Sarbanes-Oxley, cloud computing may not be for you. That said, if your industry doesn’t require tight regulations, then you could make use of the benefits cloud-computing offers. 

Currently there is no law in place that requires a company to divulge this information. Cloud computing services can save your business money while boosting efficiency, but they could also risk noncompliance with privacy laws. This leaves the risk on your shoulders and it is up to you to weigh the benefits and threats for yourself. The topic of cloud security will probably be one of much debate in coming years. At the moment, the right road to travel is the the one that best meets your company’s specific needs.

Tags:
Posted in Security, Uncategorized | No Comments »

Do Not Let a Disaster Take Your Company Down

January 13th, 2012

Disasters can happen to any organization and they come in many forms and severities. They can be everything from a natural disaster, to a well-meaning employee accidently downloading a destructive virus, to something essential getting mistakenly deleted. These what-ifs can keep you up at night, so for your own reassurance develop a disaster recovery plan.

Decide What’s Important

First off, figure out what data is the most essential to get your company back up and running. What information needs to be backed up and saved and what can you afford to lose? This will help you determine what you need to back up. Choosing an online provider or storing your data in the cloud can be the best way to ensure you can access your data quickly.

Make a Plan

The second step is deciding the steps that must be taken to get your company back on its feet as quickly as possible. Think about the worst possible scenario and how to recover from that. Which systems must be recovered first and what technology will be required to do this?

Know Your Workflows

I’m sure you have the big picture of your company processes, but how about all the day-to-day processes that you don’t have memorized? Ask your employees to document their workflows and the actual tasks they preform. By doing this, if something does happen, anyone can pick up where they left off and nothing gets looked over.

Decide Who is in Charge

Depending on the kind of disaster you go through, your employees could panic.  Before this happens, select one levelheaded person in the organization to be “in charge” of the disaster recovery plan. They should know the plan as well as you do and possibly have helped you create it. This is the person you turn to for execution of the plan, so that you can be the strong leader your employees need at a time such as this.

People often think disasters can’t happen to them, but we never know what could happen in the future! So it’s important to have a plan in place just in case. This will help put you and your employees at ease.

Posted in Uncategorized | No Comments »

Microsoft Delivers 7 Fixes in January Security Update

January 13th, 2012

Of the promised, and delivered, seven security updates only one has been deemed “critical,” and the rest were as “important.” The critical fix, bulletin MS12-004, addresses two issues in Windows Media Player that could allow an intruder to carry out a remote code execution attack if a specially designed media file were to be downloaded and opened.

Media players are a favored target of a process called fuzzing: the process of throwing the kitchen sink at an application to find where it breaks.”

Microsoft’s first important item of the month, bulletin MS12-001, is noteworthy for being classified as a “Security Features Bypass”, which represents a first for a Microsoft bulletin. This item blocks a reported problem in which an outsider could bypass the SafeSEH features in Microsoft C++ .NET. If exploited, the flaw could allow an attacker to bypass security protocols and load harmful code on a machine.

Many third-party security experts, including Joshua Talbot, a security intelligence manager at Symantec Security Response, believe that this important item should be put at the top of IT’s “to-do” list.

“Although only rated important, we actually picked the Assembly Execution Vulnerability as the most severe issue this month,” said Talbot. “The vulnerability is due to an oversight that allows an attacker to run malware as soon as a user opens a Word or PowerPoint file. E-mail attachments will probably be the most common attack method in which this vulnerability is exploited.”

Another notable bulletin this month includes a fix for a Secure Socket Layer (SSL) 3.0 and Transport Layer Security (TLS) 1.0. flaw (bulletin MS12-006) that could be exploited with a toolkit called BEAST, which was demonstrated last September. According to those demonstrating the flaw, an attacker could have malicious code uploaded and executed on a computer within 10 minutes.

Three of the four remaining important bulletins target two remote code execution vulnerabilities and one elevation of privilege flaw in Windows, while the final bulletin deals with an information disclosure issue in Microsoft’s Anti-Cross Site Scripting (AntiXSS) Library.

With the arrival of Patch Tuesday, it is also a good time to remind many who might have missed it over the holidays of the out-of-band patch released by Microsoft on Dec. 29. This bulletin addressed three issues with Microsoft’s framework for ASP.NET.

If you need help with any of these issued, give us a call at the number listed on this site.

Posted in Security | No Comments »

Segway Celebrates 10th Anniversary

January 11th, 2012

The name Segway is synonymous with tech failure. After all, inventor Dean Kamen once thought that his two-wheeled scooters would become an alternative to cars. He pictured a future in which people buzzed to the supermarket, library, or work on their Segway PT scooters.

That vision hasn’t quite come to fruition and it’s pretty rare that you see someone utilizing a Segway. They are still around and have recently celebrated their 10th anniversary. So while they may be termed a tech failure, they’re still alive and kicking.

How do they work though? Below we’ll examine the tech powering the Segway.

Powering the Segway

Each Segway PT is powered by electric motors which are, in turn, fueled by phosphate-based lithium-ion batteries. Segway owners can charge these batteries by plugging their Segways into common household electrical sockets. The device doesn’t fall over thanks to its two computers loaded with proprietary software, pair of tilt sensors, and five gyroscopic sensors.

Making the Segway Move

The sensors register when the user shifts their body weight to switch the direction and speed of movement. Put simply, when you want to go forward at a quicker pace, you would pull the handlebars closer to the body and lean forward slightly. The Segway’s present top speed is 12.5 mph and is ideal for areas with plenty of wide, flat sidewalk space.

Lowered Expectations

The hype was pretty big around the Segway when it was first announced, but it never quite lived up to it all.  Some even predicted that the Segway would become more popular than the Internet overall!

In the 10 years since its release, the Segway has not completely failed, but its strange overall look and goofy riding style has made it nearly impossible to reach its expected level of success.

Posted in Uncategorized | No Comments »

Manage Projects More Easily with These Online Tools

January 6th, 2012

As a small business, there is a good chance you have to manage projects and people that are not always located in one area.  So how do you maintain these projects and off location employees while still having the capacity to share updates, documents, and assign tasks?

Project management solutions

Conveniently enough, many project management tools can be found that make managing all of these things easier.  Using these tools will assist your small business in organizing projects and keeping employees and clients informed. Here are a few available options:

Basecamp

Basecamp remains one of the most popular online project management tools for entrepreneurs. There’s a simple reason for this: It offers an easily understood interface that lets you quickly manage any of your small business projects. You can access the system to communicate with project managers, delegate new tasks, give your okay to submitted documents and marketing materials, or schedule meetings. You can even enable your clients to access Basecamp to allow them to offer feedback on the work that you and your team have already carried out.

Quickbase

Quickbase has a lot to recommend it, not least of all the fact that the maker of Intuit business software is behind this program. Quickbase performs the same general tasks as Basecamp. However, it offers a unique version of a simple interface and is equally useful for both large and modest small businesses.

Huddle

For the more creative projects, like marketing and advertising, Huddle is perfect. Certainly one of this tool’s perks is its live-conferencing tool. If you need to collect the team in a quick and easy fashion, this tool lets you, regardless of where your team members might be.

Deskaway

This is a good tool for updating team members on a projects progression. Easily generate blog posts, congratulatory messages, and quick updates.

Project management tools are consistently getting updates and new options are becoming available.  Each of these project management tools can give you ways to strengthen your business’ ability to maintain organization and create a great experience for your clients. Keep your eye out for the tool that will best suit your business’ needs.

Posted in Uncategorized | No Comments »

The Paperless Office: Fact or Fiction?

January 4th, 2012

The promise of a paperless office has existed for years. Unfortunately, most offices must still use paper regularly. Is the paperless office just a pipe dream that we will not attain?  In a nutshell, no. We’re constantly moving toward paperless offices, but it’s just taking us much longer than we had hoped.

The advantages of paper

As nice as it would be to have everything in digital format, paper remains useful. The main reason it’s still around is that paper is portable. You can easily scribble a note and slide it into your pocket. Even the most eco-friendly offices still find uses for paper. If you’re an editor, you probably know how hard it is to edit a digital copy. Many people would rather proofread important documents in hard-copy format. It is sometimes simpler to spot mistakes when the file is printed out.  

Less paper than ever

Paper has become less and less important.  Quite a few past paper processes are now able to be performed on a computer. Team communication is dealt with via email. Even instant messaging has taken the place of paper notes to coworkers. Smartphones and tablets have taken over the dependence on a physical calendar/schedule system. If you take a look back at how far business has come in the past decade, it’s pretty clear that paper, while not fully obsolete, is no longer king.

The future

It’s obvious that offices of the future will rely on less paper than even we do now, but will paper ever really go the way of the milkman? Maybe. Some people still prefer having their milk delivered from a local dairy but most are content to pick it up from the store when they need it.

Paper will most likely go the same route and it will be a personal preference as to how much paper is consumed in the office. As many of our business processes rely on digital solutions, there will always be a select few who prefer good old-fashioned pen and paper.

Posted in Uncategorized | No Comments »

How the Cloud Supports Creative Collaboration

January 3rd, 2012

The cloud has become advantageous for many businesses. Because of the massive amounts of information that can be stored in the cloud and the prevalence of tablets in our lives, creative businesses have greatly benefited. The cloud gives people in creative industries an edge they didn’t previously have. It may not be obvious how creative businesses have improved due to the cloud, so here are just a few ways they have changed.

Portfolios
You once had to transport heavy portfolios when meeting with clients.  Those portfolios were limited to the amount of work you could carry within. Portfolios, when stored in the cloud, are not limited to physical size. You can organize your past work into categories that fit the needs of different clients. By accessing your portfolio quickly on a tablet, you can share your work more easily and this can lead to more opportunities.

Creative Collaboration
Collaborating used to be limited to people around you. This meant that professional people across the globe did not have much possibility to collaborate on a project. If they were a part of the collaboration process, it meant sending large files back and forth, which produced duplicate copies and a slower working pace. When files are store in the cloud, you can work on them simultaneously and update only one copy. Tablets allow you to pull the project up anywhere and work on it, so creative inspiration is not stifled.

Brainstorming
Mind mapping is a great way to brainstorm and when done in conjunction with the cloud, the quantity of people that can give their input is not limited. You can access these files on tablets, work with local colleagues, and update the shared file for everyone. These elements break down the distance barrier that has limited idea brainstorming in the past. When the mobile capabilities of tablets are paired with the cloud, creativity can happen with anybody, anywhere at anytime. 

I’d love to hear about your experiences with collaboration via the Cloud.  Feel free to comment below.

Posted in Connectivity and Acess, Technology and How it's Used | No Comments »

« Older Entries