Business Focused IT Support
Showing posts tagged with: password security

Keeping your network secure

by Nicki Dowsett in Anti-virus software, cybercrime, Disaster Recovery, Engineers, General, Helpdesk, IT Support, IT Systems, MPR IT Work, Password Security, Ransomware, Training

Keeping your network secure – this is a subject that should be carefully considered for any network whether business or personal. Technology is the main way that people communicate today and we increasingly rely on email communication. Cyber criminals are using this as an opportunity to send more and more scam emails, texts and phone calls. Often all very realistic. Making sure your network has the best security systems in place will help to keep your network and data secure.

Password Security and 2FA

When it comes to password security the one main rule is NEVER EVER share your password with anyone. Then next is to ensure that your password is difficult to guess. 123456 or password are sadly still often used despite them being so easy to guess. Making sure you have a password that is harder for criminals to guess is vital. Alongside using different passwords for each account. With so many passwords to remember for your work and personal accounts it is becoming harder to separate these out as well as remember them all. This is where 2FA( 2 factor authentication) is an advantage. Many on-line accounts now require 2FA, where you will enter your normal password and are then required to confirm the log in with an additional code generated by text, email or an authenticator app.

Finally if you are ever asked to reset a password via an email – check it is a genuine request. It is very unlikely that any organisation would ask you to reset a password unexpectedly. Many people unfortunately become victims of scams through realistic looking requests to update passwords.

Firewall – why do you need one?

In the construction industry, a firewall is historically the protection between two buildings to prevent fire spreading across adjacent buildings.

The computing equivalent works in a similar format. Acting as a security fence surrounding your network, a firewall observes and restricts information coming in via email or the internet. The firewall will only allow information from sources pre-determined by your firewall and can either be a network or host based security system.

In most homes and businesses, routers are used to enable the connection of various devices to the internet. Prior to routers, each individual device would need to be plugged directly into the modem. When connected directly in this way, a device has a public IP address a allowing information to be accessed by anyone on the internet. As technology has developed most devices will have their own firewall built in. However larger networks will have a separate firewall to protect the security of the network.

Antivirus Software – why do you need it?

Did you know that the first computer virus was released in 1971? The Creeper virus was not designed to be malicious or cause damage but was an experiment to demonstrate a mobile application. Today, it is believed that over 6000 new viruses are released each month.

Antivirus software, also known as anti-malware, is a computer program designed to prevent, detect, and remove malware. Antivirus software can protect users from: malicious browser helper objects, browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious LSPs, dialers, fraudtools, adware and spyware. There are various levels of protection available on the market. It is important that your choose the right anti-virus software for your network. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity, online banking attacks, social engineering techniques, advanced persistent threat and botnet DDoS attacks.

Security Awareness Training and Testing (SATT)

In addition to Firewalls and anti-virus software, MPR IT Solutions also offer SATT, Security Awareness Training and Testing. The purpose of this is to stop security incidents on your network, by providing your end users with Security Awareness Training and regular Testing. SATT is a fully managed service that is bespoke and tailored to every individual organisation. It takes up none of your time or resources, and is guaranteed to make a difference.

The SATT service combats the weakest cyber security link in any organisation – your end users – and is delivered in three stages over a 12-month service agreement. The total cost for the 12 month SATT service is far less than the cost of just one security incident.

Contact our team today

Supporting companies from a wide number of industries, MPR IT Solutions are experienced in the multitude of options across the markets and can tailor the right security systems to keep your network secure.

For more information on protecting and securing your network contact our team today on 0800 030 20 30 or email sales@mpr-it.co.uk

Read more

Email Security & Cybercrime

by Nicki Dowsett in cybercrime, Industry News, IT Support, IT Systems, Password Security, Ransomware

Email security and cybercrime –  Almost daily there is a story that covers this subject in the news, whether it’s a large global corporation or an elderly retired person.  So many people are still unaware of the risks that can be faced with email security.

Here at MPR IT, we have sadly gained a considerable amount of experience in dealing with these threats.  We would therefore like to remind our customers of some simple guidelines that you should ensure your staff follow for email security.  These include recommendations from the Government Cyber Essentials Scheme.  We also strongly advise if you or any employee is concerned they have an affected PC/Laptop – call us asap

  • Email Attachments – Never open an email or attachment if you don’t know the sender.  If you are not expecting an attachment from a known sender – call them and check they did send you something
  • Check email addresses – criminals will set up accounts with very similar email addresses making it easy to trick you into thinking you know the sender  joe@bloggs.com or joe@bloggs.co
  • Malware Protection – do you have a robust malware in place? This will stop viruses and ransomware from getting through to your emails and employees
  • Access Control – encourage your staff to choose passwords that would be hard to guess and not simply change the number on the end each time it needs to be Password or 123456 are not ever going to be good choices.  Also ensure that admin passwords are only given out to members of staff that should have access to these.
  • Firewalls – investing in a high end firewall can prevent hackers from gaining access to your systems and to make certain there are no leaks.
  • Secure configuration – Is your system configured to ensure security for your organisation. Are all laptops, PC’s and phones password protected? Do files need to be password protected?
  • Patch Management – the likes of Microsoft and other operating systems regularly release new updates to their software. Ensure you are fully up to date as these updates will often include patches to ensure your systems are more secure.  As hackers become more clever the software providers work hard to identify areas to increase security.

We also recommend you view the following websites

Whilst the majority of news stories cover ransomware and data being lost or damaged, we have known criminals to spend months watching systems, gathering information and general daily routines.  Then with a simple email, that looks to have come from a sender you know they have managed to gain access to your bank accounts and emptied them before anyone has realised.   Either way it is extremely costly to your business.  Please ensure your staff are fully briefed on email security and the types of scams and crimes that can & have happened.  If any doubt or you would like more information please contact us to discuss.

 

Read more

Wanna Cry Cyber attack

by Nicki Dowsett in cybercrime, Disaster Planning, Helpdesk, Industry News, IT Support, IT Systems, Microsoft, Password Security, Ransomware, Uncategorised, Windows 10

Wanna Cry Cyber Attack – Over the last couple of years, I have spent several hours if not days reading articles on cyber crime and hacking as part of my role here at MPR IT.  If you follow us on social media you will also see how this is a hot topic for us and we quite often post news stories of hacks and how you can protect yourselves, I have also written a few blogs on the subject (all of which can be found on our website).  So, the breaking news on Friday and all over the weekend of the hack affecting over 150 countries around the world, with some 200,000 machines affected this wasn’t entirely a shock for me.  All too often I see stories of both large corporations and small one person business being hit by hacking or ransomware.

Map of Wanna Cry affected countries

Extent of countries affected by Wanna Cry in Red

As a company that takes pride in providing the best support and advice to our customers, our priority is prevention rather than cure, although we do unfortunately have experience on the cure as well.  Our key guidelines for protecting your systems are pretty simple:

  • Ensure you Operating System is the most current and up to date – Microsoft release patches and updates regularly. This particularly virus is targeted towards out of date, older systems.  Please ensure your system is fully up to date.  If you have any concerns please contact us and we can check this for you.
  • Many virus’s are spread through email attachments – NEVER open anything from someone you don’t know or aren’t expecting. If you are unsure about an email or attachment, call MPR IT or the company where the attachment has come from and enquire as to whether it is legitimate.
  • Ensure you permanently delete any emails with attachments that you do not need, or where you don’t know the sender.
  • Make sure that you have an up to date Anti Virus – MPR IT can check this for you if you are unsure how up to date this is or if you don’t have anti-virus we can provide anti virus software to your company.
  • NEVER share passwords with anyone and make sure that passwords you do have are always different. PASSWORD1 is surprisingly still a popular choice – it’s not a good idea as very easy to guess.
  • Back up your data daily and store a copy off site securely as well on site. The worst that can happen if data is backed up is that you lose one days’ work, and not everything.

The virus ‘Wanna Cry’ that hit the world on Friday, and spread over the weekend is mainly targeted at Government departments.  Where systems are older and the networks are very large, this allows it to spread so quickly, we are therefore not expecting for this to affect many of our customers, however please be assured that our team are prepared and ready to deal with any issues that you may experience.

To our customers with a contract that includes workstation monitoring, we have already rolled out emergency patches to any potentially affected machines.   If you do not have a contract that includes workstation monitoring please contact us and we can look to update any patches or we can review your contract to include workstation monitoring should you wish.

Please take this simple advice and pass to your colleagues and get the message out on how to avoid potential cybecrime hacks and viruses.  Hopefully one day soon I won’t be spending so much of my time reading articles on cybercrime.

Read more