It's time to upgrade your Windows 2008 and/or 2011 servers. After years of declining support from Microsoft, there is now an official date of when these server operating systems will be classed as "end of life" and will no longer receive support.
Less than a year away, Microsoft are urging all businesses using these servers to upgrade to newer software (such as Windows Server 2019) by January 14, 2020. The following server operating systems will be affected by this change, and need to be upgraded before the January 2020 deadline:
Even if you have recently bought a new physical server, your business may still be affected, as your I.T. infrastructure could be relying on virtual servers that are running the 2008 and 2011 operating systems.
When operating systems are classed as end of life, security vulnerabilities and software bugs are no longer patched by Microsoft - which could leave your systems insecure, glitchy, and incompatible with many modern software programs.
Let's look at the risks your business could face by continuing to use an operating system once it has become end of life.
You may also like to read our other fact flyer sheets:
|Posted in: Security IT IT Consulting Networking Security|
As the saying goes, all good things must come to an end. Over the recent years, Microsoft has slowly been scaling back support for the Windows 7 operating system, but in January next year support will officially come to a close.
When Windows 7 becomes end of life on January 14 2020, security vulnerabilities and software bugs will no longer be patched by Microsoft - which could leave your machine insecure, glitchy, and incompatible with many modern software programs.
The easy answer is to upgrade to a Windows 10 machine. A great deal of individuals and enterprises on the Central Coast have already upgraded and are using Windows 10 like they knew nothing else ever existed. However, Net Applications reports that 37% of people are still hanging on to their Windows 7 machines, despite being surpassed by Windows 10 almost four years ago.
Does your desktop look like the above? If so, you could be running Windows 7.
While familiarity with your Windows 7 device can be hard to break, staying with the ten-year-old platform is not worth the risks it could bring in to your home or business.
Let's look at the risks involved when Windows 7 becomes end of life in January.
Windows 10 is a cleaner, modern version of the Windows 7 user interface albeit with more features.
The start menu follows the same logical sequence and has that familiarity, but there are added features such as the search bar which will activate a search across your hard drive files, control panel, and the Internet, helping you find what you need quickly.
Windows 10 has less inherent vulnerabilities than Windows 7, and the up-to-date support will keep you and your data protected. The Windows 10 software has improved stability and performance over Windows 7, and also has the Windows App Store, allowing you to download apps onto your PC, laptop, or Surface tablet just like you would on a smartphone.
Windows 10 comes pre-installed on nearly all new workstations and laptops, and has twice-annual updates that bring new features to the platform.
You may also like to read our fact flyer sheets:
|Posted in: Security IT IT Consulting Networking Security|
Unfortunately, a business was harmed in the making of this true story.
"Your files have been encrypted. Please submit payment within 48 hours to restore your data."
Can you imagine turning on your computer tomorrow and finding all of your business data inaccessible? Could you continue trading, or would your business come to a halt? This is the precise scenario a small business was recently faced with.
The business owners in this article, like many people, relished in the ability to complete work remotely from the comfort of home. But without the right security in place, their open connection to the network was like an unlocked door, and it was all too easy for hackers to gain access to the company's files.
So who are these hackers? Anyone with an internet connected computer is capable of attacking you. With anonymous cryptocurrencies and the ability to attack victims across the globe, cybercrime is virtually untraceable.
What are they after? Your data and information because it is not only extremely valuable to you, but is also a valuable commodity on the dark web. Your business data is like currency. Even in a small to medium business, data is just as attractive to hackers as a corner store cash register.
Hackers have two options with your data.
The situation faced by the business I alluded to in the first paragraph is an example of how hackers make money from Ransomware. Through inadequate security measures, a hacker gained access to their server, encrypted all of their files, and then issued a ransom note for 0.8 Bitcoins (at time of attack - approximately A$7,500.00). The files were largely worthless to the hacker, BUT the files were the currency and life blood for the business. Bitcoin is a digital tender and can be used to buy and sell items anonymously on the internet meaning hackers have a way of being anonymously paid.
The challenge for any hacker is to gain access to your data storage (your laptop, server etc). There are many vectors for infection (the placing of malicious software in your system) and many methods where you can be tricked into letting the infection in including spam, social engineering and malicious advertising. Other ways that hackers can break in include website hacking and exploiting insecure remote access, insecure communications, aging equipment, and vulnerabilities in your software and/or equipment.
In the example of the Business mentioned earlier in this article, it was all too easy for a hacker to break in via the remote access.
But why this business? Well, it wasn't personal. It was simply a random leveraging of opportunity and high vulnerability increases opportunity. A hacker can go on any number of public websites that lists every device open to the internet and can apply his or her automation tools to choose targets to attempt to hack into. If you are reading this on your computer right now and you're online, your IP address is one of millions around the world that may come up in such a search.
Hackers utilise products such as Shodan (like a 'Google for hackers') and Masscan, meaning they can scan all four billion internet IP addresses, looking for vulnerabilities in less than six minutes. If a vulnerability or insecure practice is found, the hacker will look to leverage this into an attack. They don't necessarily know you, they just know your IP address is vulnerable and they will try to exploit it to see if they can earn some money.
Vulnerabilities are found in devices daily. They can take the shape of mistakes in programming, insecure policies by the device manufacturer or the deliberate inclusion of backdoor access in programming. But most vulnerabilities are just human error, with programmers often working under a lot of pressure to deliver a product this is why so many updates to Windows and Mac operating systems are pushed out each month.
So, the hackers have an easy way to scan the internet, they can access the known and published vulnerabilities, they have developed toolkits which will automate the entire process, they have tools to break in (a common example is automated password guessing-or brute force password hacking) and they can make untraceable money.
With these hacker strategies in mind, what happened with the small business in this article? The hackers, via their search engine and automation tools, were able to isolate a venerable IP address, which in this case it was the remote connection at the server. The hacker easily found their way to the server and started a brute force password attack. This sort of attack is not flagged by Windows and can only be determined by checking the event logs of the server. The hackers eventually guessed the right password which allowed them into the server. They deployed their ransomware software which encrypted all their data and then issued the ransom.
This catastrophe could have been avoided. If you are storing your data on a server at your business and accessing it remotely, there are three key ways to prevent hacking.
Without the VPN, a remote connection opens a portal into your server that is visible and easily accessed by anyone else. A VPN reduces the 'visibility' of the remote connection and provides the security to prevent any unauthorised entry.
If the business in this article had a bullet proof 3-2-1 back-up solution in place; then at least they could have ignored the ransom, purged the server, installed the necessary VPN and endpoint security and then loaded their back-up data.
Lastly, with an appropriate password management regime, maybe the hackers would not have been able to crack this Business's password.
So, how did this story end for the Business in this article? Not too well I am afraid. The ransom was paid but then the hackers went quiet. There has been no contact since. They did not deliver the decryption key nor the program to decrypt the data. They had to downsize their operation significantly.
The moral to this story is this: regular security audits should be implemented on business networks to ensure best practices are being adhered to and when issues are found, it is always best to action them with urgency.
You may also like to read these fact sheets:
|Posted in: Security IT IT Consulting Networking Security|
To be successful, a small to medium business must be seamlessly efficient and provide an outstanding customer experience. Your Information Technology should be the backbone of this goal. By investing in quality, reliable, proven I.T. infrastructure, you remove the likelihood of down-time, allowing you to concentrate on running your business and providing excellent service. Anything less will be costing you money in inefficiencies and downtime.
SPEED-The speed of your system impacts everything from staff productivity to customer satisfaction. For optimal speed, you need to have business grade equipment, enough internet bandwidth, a server (onsite or remote) that can handle the workload and that is configured properly for your business. You should also have a trusted I.T. provider that can perform maintenance on your system and head off downtime before it happens, and to respond quickly if things go wrong.
SCALABILITY- Scalability is simply the ability for your systems to grow seamlessly as your business does. It means staying up to date with equipment, software and licensing, and being able to add users, updates, new applications or servers as needed. A good I.T. provider will analyse your system and offer advice to ensure it will grow with you.
SECURITY- There are many ways in which small and medium businesses are vulnerable to security breaches, and the consequences can be devastating. There are several things that need to be in place for full protection, including physical protection of your equipment, antivirus, password protections, your perimeter and the cloud, and solid backup policies. Your I.T. provider should be able to assure you that your business is secure from threats like hacking, accidents, data corruption and ransomware.
RELIABILITY- You need your I.T. system to be working for you all the time and at optimum speed. This means having equipment that is up to the task, warranty cover and the necessary backup. It also means having your system monitored and managed by a good I.T. service provider. Your system is a bit like a car you wouldn't buy a car and then not get it serviced, expecting it to never break down.
Click here to download the Insight in full How to make your I.T. work for you or if you would like to know more, please contact Naomi or Michael. Alternatively, give us a call on 02-43370700
LOYAL I.T.- We specialise in I.T. solutions for your business; providing software, hardware, networks, configurations, consulting and support for 15 years from their base on the Central Coast.
|Posted in: IT IT Consulting Networking Security Computer Software|
The latest phishing attack has made its way to the Loyal I.T. helpdesk today - with a cleverly disguised PDF attachment that asks for your email credentials.
You may have email correspondence back-and-forth with a potential client or customer that on the surface appears legitimate, but quickly goes sour once they attach a PDF document they say is related to their query, or is confirmation of their purchase.
This PDF may also appear legitimate - with a warning inside that says it has to be viewed in Adobe Reader (see left image below). If you click on this warning, you are then taken to a website that asks you to login with your email credentials in order to view the document (see right image below). These email credentials are then sent straight to the attacker, who now has full access to your email account - as well as any accounts that use those same credentials.
Phishing attempts put your business at risk, as attackers gain access to your email accounts and can send fraudulent correspondence on your behalf. This can include false bank details, theft of data, or correspondence that may damage the reputation of your business.
If you think your password has been compromised, please do not hesitate to give our office a call on 02 4337 0700.
|Posted in: Misc IT Networking Security|
for enquiries or log a job.