Email security and cybercrime – Almost daily there is a story that covers this subject in the news, whether it’s a large global corporation or an elderly retired person. So many people are still unaware of the risks that can be faced with email security.
Here at MPR IT, we have sadly gained a considerable amount of experience in dealing with these threats. We would therefore like to remind our customers of some simple guidelines that you should ensure your staff follow for email security. These include recommendations from the Government Cyber Essentials Scheme. We also strongly advise if you or any employee is concerned they have an affected PC/Laptop – call us asap
- Email Attachments – Never open an email or attachment if you don’t know the sender. If you are not expecting an attachment from a known sender – call them and check they did send you something
- Check email addresses – criminals will set up accounts with very similar email addresses making it easy to trick you into thinking you know the sender firstname.lastname@example.org or email@example.com
- Malware Protection – do you have a robust malware in place? This will stop viruses and ransomware from getting through to your emails and employees
- Access Control – encourage your staff to choose passwords that would be hard to guess and not simply change the number on the end each time it needs to be Password or 123456 are not ever going to be good choices. Also ensure that admin passwords are only given out to members of staff that should have access to these.
- Firewalls – investing in a high end firewall can prevent hackers from gaining access to your systems and to make certain there are no leaks.
- Secure configuration – Is your system configured to ensure security for your organisation. Are all laptops, PC’s and phones password protected? Do files need to be password protected?
- Patch Management – the likes of Microsoft and other operating systems regularly release new updates to their software. Ensure you are fully up to date as these updates will often include patches to ensure your systems are more secure. As hackers become more clever the software providers work hard to identify areas to increase security.
We also recommend you view the following websites
- National Cybercrime Website
- Thames Valley Police – Little Book of Cyber Scams
- Thames Valley Police – Little Book of Big Scams
Whilst the majority of news stories cover ransomware and data being lost or damaged, we have known criminals to spend months watching systems, gathering information and general daily routines. Then with a simple email, that looks to have come from a sender you know they have managed to gain access to your bank accounts and emptied them before anyone has realised. Either way it is extremely costly to your business. Please ensure your staff are fully briefed on email security and the types of scams and crimes that can & have happened. If any doubt or you would like more information please contact us to discuss.
Office 2007 was launched a decade ago, and included the Microsoft products – Excel,Word, Outlook, Powerpoint, and One Note. Since its launch there have been significant advancements in connectivity and productivity for many companies. This means that the majority of companies have left Office 2007 behind, and moved to Office 2016 or more likely to Office 365, however there are a few companies still using Office 2007.
Most Microsoft packages are only supported for 10 years and therefore it is the turn of Office 2007, to receive the end of life treatment. Meaning by the end of October 2017 there will be no further:
- Technical support
- Bug fixes for issues identified
- Security fixes for vulnerabilities released
In addition to the end of life support coming to an end, it is important to note Outlook 2007, will no longer connect to Office 365 mailboxes. Therefore users of Outlook 2007 will not be able to receive or send emails.
Microsoft are now urging users of the 2007 version to consider upgrading to the latest offerings. There are a number of advantages to this, not least the fact that support will be ending in a few months time. During 2017, there has been a number of global cyber attacks. People using packages that are no longer supported by Microsoft are at greater risk.
Earlier this year, in an unusual step Microsoft were pressured into releasing a fix for the Wanna Cry virus on Windows 2000. Despite having stopped supporting the package in 2010, they still had a larger number of users, who were subsequently affected by the virus. It is highly unlikely that they will make this move again in the future and are already publicising the end of life for 2007 package, with recommendations to urgently update software. The most popular choice for businesses these days is Office 365. Please see our page on Office 365 for full details on this product.
MPR IT Solutions has a wealth of knowledge and expertise in supporting companies in making the change to Office 365. We have worked with a number of companies to ensure the transition is smooth, & there is minimum disruption to staff. Please do not hesitate to contact us to discuss your options to migrate to Office 365 – whether you are currently using 2007 or another version of the Office Suite.
Cyberscams affect people in many walks of life. We have all seen the stories in the news of large corporations that have been hacked such as the recent NHS attack or Talk Talk in recent years. Companies of all sizes are at risk to being hacked or cyberscams, SME’s are targeted just as often, we just dont see it reported as much. Even in your personal life you can be at risk for cyberscams, through social media or email. The cyber criminals are getting sharper and also now send text messages as well as emails to trick people. Everyone no matter their age can be at risk.
Cyberscams can be devastating, with criminals asking you to click on a link to confirm your details and taking you to a dummy site that looks very real. They can also access your systems and monitor your activity, create ghost accounts that make you think you are dealing with a supplier you deal with all the time when in fact they are scammers looking to steal your data and money.
Whilst as a company MPR IT, often given advice and have written a number of blogs on this subject, we have recently come across these two books written by Thames Valley and Metropolitan Police. We feel these are extremely useful and would strongly suggest that you take the time to read and digest. Obviously if you have any questions or require any additional support regarding this subject our team will be pleased to help.Read more
Disaster Management Plans
Over the weekend, the big story in the news was all about the IT system failure at British Airways. The CEO of BA has released a statement that the systems crashed due to a short power surge knocking out the main servers, unfortunately for the company the back-up systems then failed to take over. This resulted in over 75,000 customers being affected and flights grounded around the world.
When the story first broke, BA did not release much information to the public, no doubt as the Directors were scrambling to find out what had gone so badly wrong. However, this resulted in various speculation such as systems being hacked, no back up servers in place or that this was due to cost cutting by out sourcing IT Support. It would appear, that none of these were the case.
Many people in the IT industry are watching this story closely to understand how this situation happened. With many questions being asked, including:
- Why did the back-up servers not take over?
- Are the back-up systems in the same location as the main servers?
- Are the communication systems such as website and mobile app in the same location?
- What was the Disaster Management Plan?
Irrespective of your IT Support being in house or outsourced these questions should not be being asked. Here at MPR IT, we support a wide range of customers for IT, on both a daily basis and, also with larger projects such as server/network installations and server hosting. With all our customers, we hold the same approach, no matter the size of your company – you need to be prepared for any eventuality. Whilst we have not had to deal with an incident the size of BA’s problems at the weekend we have had to deal with various situations where a company server has gone off line. These include a flood in an office, or a system hack. Essentially the plan is the same – get the company back up and running in the shortest time possible and preferably without their customers ever knowing there was an issue and with the least cost involved. I think we can quite safely say this is going to be very expensive for BA.
Disaster Management Recovery plans are one of the most important things that your business can put in place. The aim of a DMR is to ensure that your business continues smoothly with little or no disruption, and your company needs will differ from that of any other company. The main points that you need to consider are:
- Is your data/server backed up daily?
- Is this back up stored in a secure separate location to the main server?
- Can your customers still contact you?
- Can your staff continue to carry out their duties?
- Can your operation continue and will your customers be affected?
We have written blogs in the past about important it is to have a Disaster Management Plan in place, however the events this weekend have shown that it is not just in the case of fire, flood or bad weather that your company needs to plan, in advance for. In the case of BA it was apparently due to a power surge, that the systems failed. Not as many speculated in the first few hours, that it was due to out sourced IT Support or being hacked with a virus. If you and your company would like to discuss your current Disaster Management Plans please do not hesitate to contact us.Read more
Wanna Cry Cyber Attack – Over the last couple of years, I have spent several hours if not days reading articles on cyber crime and hacking as part of my role here at MPR IT. If you follow us on social media you will also see how this is a hot topic for us and we quite often post news stories of hacks and how you can protect yourselves, I have also written a few blogs on the subject (all of which can be found on our website). So, the breaking news on Friday and all over the weekend of the hack affecting over 150 countries around the world, with some 200,000 machines affected this wasn’t entirely a shock for me. All too often I see stories of both large corporations and small one person business being hit by hacking or ransomware.
As a company that takes pride in providing the best support and advice to our customers, our priority is prevention rather than cure, although we do unfortunately have experience on the cure as well. Our key guidelines for protecting your systems are pretty simple:
- Ensure you Operating System is the most current and up to date – Microsoft release patches and updates regularly. This particularly virus is targeted towards out of date, older systems. Please ensure your system is fully up to date. If you have any concerns please contact us and we can check this for you.
- Many virus’s are spread through email attachments – NEVER open anything from someone you don’t know or aren’t expecting. If you are unsure about an email or attachment, call MPR IT or the company where the attachment has come from and enquire as to whether it is legitimate.
- Ensure you permanently delete any emails with attachments that you do not need, or where you don’t know the sender.
- Make sure that you have an up to date Anti Virus – MPR IT can check this for you if you are unsure how up to date this is or if you don’t have anti-virus we can provide anti virus software to your company.
- NEVER share passwords with anyone and make sure that passwords you do have are always different. PASSWORD1 is surprisingly still a popular choice – it’s not a good idea as very easy to guess.
- Back up your data daily and store a copy off site securely as well on site. The worst that can happen if data is backed up is that you lose one days’ work, and not everything.
The virus ‘Wanna Cry’ that hit the world on Friday, and spread over the weekend is mainly targeted at Government departments. Where systems are older and the networks are very large, this allows it to spread so quickly, we are therefore not expecting for this to affect many of our customers, however please be assured that our team are prepared and ready to deal with any issues that you may experience.
To our customers with a contract that includes workstation monitoring, we have already rolled out emergency patches to any potentially affected machines. If you do not have a contract that includes workstation monitoring please contact us and we can look to update any patches or we can review your contract to include workstation monitoring should you wish.
Please take this simple advice and pass to your colleagues and get the message out on how to avoid potential cybecrime hacks and viruses. Hopefully one day soon I won’t be spending so much of my time reading articles on cybercrime.Read more
Emergencies can happen in any office, as one of our clients found out one weekend.
One of our long standing clients, Russell Laboratories, has been receiving support from MPR IT for a number of years now. The package we provide includes our fully inclusive Server Support package, as well as a number of larger projects including server replacements, network cabling and CCTV. MPR IT and Russell Laboratories have a close working relationship and as with all our customers we meet regularly to discuss the support we provide, and help to identify any areas that require attention.
Russell Laboratories are a leading provider of advanced plating and finishing services to the electronics, aerospace and allied industries. Based locally in Ashford the company has been in operation for 40 years. The decision to outsource IT support was made to allow the existing staff, at Russell Laboratories to concentrate on their own main roles within the business. As well as having the knowledge of a fixed price contract for ongoing daily support and security that any additional work required would be carried out by experienced engineers who fully understand the network.
As part of the inclusive server support, our systems monitor the servers on site 24 hours a day, 365 days a year, alerting our team to any issues with the systems. This means that even at weekends or over holiday periods, Russell Laboratories are safe in the knowledge that should emergencies happen they have no costly invoices for out of hour’s support.
One Saturday morning, our out of hour’s team were alerted to an issue with the server at Russell Laboratories. Our on call engineer contacted them to discuss this and it was then discovered that a water leak had occurred and the server had been damaged by water. With the knowledge and expertise of our engineer, within a short period of time we were able to transfer email access to Office 365 enabling the flow of email to continue uninterrupted. After a quick site visit to identify the equipment affected, new hardware was ordered to arrive the next working day ready for installation. As part of the support package we provide, Servers are backed up daily by MPR IT and with the data from the Friday night incident it meant that no data had been lost. The team at Russell Laboratories lost no data and they were able to continue working, with access to their emails and the total downtime from the first notification of the incident was 48 hours over the weekend.Read more
Canterbury Archaeological Trust, one of the UK most famous Archaeology firms based in Kent, turned to MPR IT over 5 years ago looking for an outsourced IT company. They required a reliable company to provide day to day support, Office 365, Anti-virus and also support on any larger projects that may require IT services.
Included in the support that we offer to the Trust is an all-inclusive server support and AVG anti-virus software. Ensuring the charity is safe in the knowledge that the systems are monitored and support available 365 days a year, all for a set cost per month. No unexpected bills for when something goes awry on a weekend or holiday period.
This support became invaluable one weekend when something went wrong on the network. As 24 hours support was in place, an out of hour’s call was made to MPR IT. With the ability to remotely look at the network our engineer quickly identified that malware had in fact infiltrated the system, and he quickly made the decision to make his way to the site.
Within an hour of the initial call out the network on site had been shut down and all machines physically unplugged to avoid any further damage occurring. This is key with any malware attack, the sooner the network is detached from the outside world the quicker it will stop from spreading. Over the next few hours, the infected file was identified and removed whilst the remaining files were scanned. The network is backed up on a regular basis,which is something we recommend to all our clients. This meant that when restoring the network it was easy to revert to the most recent back up and limited data lost, especially as this occurred out of hours meaning that there had been limited access since the back up the previous evening.
What Canterbury Archaeological Trust have to say about MPR IT
Just a quick note to thank you and the team – and especially David and Mitch – for the fantastic response to the weekend viral attack on our computer systems, and for your sound advice in the first place which resulted in building such a resilient set-up. From your first response on Monday, which limited the damage, to the speedy and efficient disaster recovery, we could not have asked for more. Several of our staff have commented on their amazement at the speed with which you got us back up and running. Brilliant job, well done!
Personally, I can’t help contrasting it with what happened a few years back when the Raid Array blew, that really was a disaster. We’ve come a very long way since then, thanks to MPR-IT.
Commercial Operations Director
Canterbury Archaeological Trust
For more information on how we can support your business please do not hesitate to contact us and discuss your requirements.Read more
Government pledge to improve rural broadband
The government has made a pledge that by the end of 2020 every home and business in the UK will have the right to demand a minimum of 10mgb broadband. It has also promised that by the end of this year (2017) 90% of the UK will have a mobile signal. Some rural parts are still cut off from the internet and mobile signal in 2017. I was shocked when I discovered that 1.4million homes and business in the UK still receive nowhere near this level of service. Are you one of the people that, in some parts of the country are still subjected to dial up connection? I vaguely remember the sound when connecting to the internet of high pitch squealing & it sends shivers down my spine. Living in an urban area I can safely say that I get super fast broadband at 70mgb, & 4G service on my mobile.
Broadband in our daily life
As a mother, and someone that works fro home my life would be so much different without fast broadband. For example I would not be able to work from home to suit my childcare needs. Or be able to help my son do his homework. I often try to explain to my 5yr old that he doesn’t know how good he has it. When I was child we had 4 channels and if we were good, we got a trip to the video shop at the weekend. We didn’t have the option to flick through the latest films or TV shows available to download. So many people still don’t have this luxury, that I and many others take for granted.
Urban V Rural Life
If you are reading this and think well that can’t possibly be the case, you will be surprised as I was. One of our directors lives only 10 miles from Ashford, Kent. He has fibre broadband in his house, for all the good that means. Due to the distance from the local cabinet he gets 2mgb speed. He doesn’t have the option to stream TV content simply because his broadband is not quick enough, and struggles with checking emails or working from home.
With more and more people looking for a different lifestyle and commuting to work in towns and cities this is becoming more of an issue. We all know that many are already struggling with the issues on train travel in the South East. Many of these commuters quite often don’t have the option to work from home on the days when the trains aren’t running. So whilst the idea of working in a city and living in the country was for a better work/home balance this isn’t always the case.
It’s not just homeowners in rural areas that are suffering
Small businesses are also struggling, unable to compete against larger corporations. In this day and age you should be able to run a business from anywhere in the country no matter your skills or trade. Many people run businesses from home offices or a unit on a farm, whether it’s making furniture or running a virtual office assistant, broadband speed is paramount – customers want to look at websites and make contact by email, not pick up a phone. It’s just the way people expect to communicate today.
It is also affecting the younger generation as well. I am really impressed with the ICT set up in my son’s school. It’s surprising how much the internet can play a part in the school day. If he was at a school in a rural area would he get the same benefits as a town school? It’s very possible that some schools in rural areas have very limited connection. So if we look at the future this lack of broadband in rural areas is also affecting our future workforce, as technology is everywhere in the workplace.
Working with Rural businesses
Here at MPR IT this is something we take extremely seriously, and hope that it doesn’t take another 3 almost 4 years for the government pledge to be completed. Many of our customers are based in rural areas, and we have worked with a number to improve their broadband speed and connectivity to help their business. With our experienced and qualified engineers in fibre optic cabling and point to point wireless, MPR IT will ensure that we can evaluate the best possible solution for you. See our case studies on point to point wireless and fibre optic cabling for more information on work we have carried out. If you are suffering slow connection, don’t sit and wait for the government pledge by 2020 contact us to see how we can help you now & discuss your options to improve your business & home connections.
BBC’s Countryfile recently included a report on how many parts of the country that do not have broadband. A farmer trying to complete his tax returns or get the latest farming news from the Government was struggling with 42kb speed and as the phone lines where he lived were not always reliable even this couldn’t be relied on. Meaning that after a frustrating 45 mins he still could not check emails for the camping side of his business. This meant that he missed out on potential bookings and enquiries for people to pay and stay at his farm in the summer months. I looked into this further and found another clip also by Countryfile from 2013 highlighting the same issues. In the earlier clip it showed very similar stories and how peoples live were affected. With rural high street banks and post offices closing, it is expected that people will use the internet for these services, when in fact these are the areas that don’t have the broadband to support these services. Nothing has changed much in the intervening years.
Both episodes, it highlighted how people living in these rural areas were trying to overcome the issues. In one a cop-operative of farmers were digging trenches in their own fields to have cables laid and cabinets installed to connect their properties and businesses, in the other it showed how the installation of point to point wireless portals could be installed on the side of a property to collect the radio waves from a radio mast 6 miles away. In principal this is the best option without the need to lay cables and install cabinets, however there can be environmental factors which can affect your choice of how to improve your internet connection.Read more
Do you own a Hewlett Packard notebook or laptop? It has recently been announced by HP, that a number of their batteries need to be recalled. This is part of a worldwide project and follows an earlier recall notice in June 2016. You are advised to to check your battery as a matter of urgency. Even if you checked your battery last year you must still check again following the expansion of batteries being recalled.
If you have an affected battery you must stop using this IMMEDIATELY. You can still use your notebook but you must connect your notebook to a main power source. Once logged with HP, you will be sent a replacement battery.
We also strongly advise that your files and documents held on your notebook are backed up in the event of the battery overheating.
Please see the HP page with details on how to check your battery. You can either check this manually or you have the option to run a utility.exe to establish if you are affected.
Alternatively, for option B, you will need your notebook and battery serial number to input into the site. You will need to switch off your device to obtain this information, please follow this link.
If you are still uncertain if you are affected by this please contact our help team as a matter of urgency 0800 030 20 30.