Category: Cyber Security

  • 5 Ways “Tribal Knowledge” Sabotages Your Cybersecurity Efforts

    5 Ways “Tribal Knowledge” Sabotages Your Cybersecurity Efforts

    Even if you’re unfamiliar with the phrase “tribal knowledge” you’ve still most likely participated in it. Tribal knowledge is anything in your workplace people just “know”. If you have a particular co-worker that gets upset if the AC is turned down below 75 so no one does, that’s tribal knowledge. If the snacks in the breakroom are first come first serve and no one can claim dibs, that’s also tribal knowledge.

    Tribal knowledge is anything in your workplace that is common knowledge and is not documented. If the rules are posted somewhere it goes from being tribal knowledge to policy, and when it comes to the technology in your business, it is much more secure to rely on policy than tribal knowledge.

    Having policies for your technology holds everyone in your organization accountable. No one can claim they didn’t know the rules if the rules are clearly outlined and defined. Having effective policies are also necessary for maintaining your compliancy with federal rules regarding cybersecurity and business and for meeting the requirements for things like cybersecurity insurance.

    Here are the five ways tribal knowledge typically sabotages your cybersecurity efforts:

    1. The rules are loosely applied. If somethings not policy, then it can be difficult to make sure everyone is on the same page. A new hire will not be aware of your rules from the start and others may feel the rule doesn’t apply to them because they haven’t been strictly told it does.
    2. The rules are up to interpretation. What you think something means and what someone else may interpret something meaning can be vastly different, especially when being communicated person to person where some of it is probably getting lost in translation.
    3. You have no documentation. If the guidelines for online safety in your business are communicated verbally, you have no documentation for how or when they’re being applied. If you have a ransomware attack and you go to your insurance company without documentation, you’ll most likely be turned down.
    4. You’re not keeping up with the times. If you have employees stuck on the way things “have always been done” instead of evolving policies to fit your workspace as it grows, you’re going run into a problem if you ever need to implement comprehensive cybersecurity changes in the future.
    5. You’re losing access to relevant data. Policies help you document your processes, and that documentation is data that could help your business grow. If a certain activity is not working or could be working better, the documentation you’re creating with comprehensive policies could help you find out sooner which will save your business time and money.

    In addition to these five tips, we’ve also created this PDF for four easy things to implement in your business (click to download).

    Four Policy Changes To Start With
    Click to download.

    These items will get you on the right track but if you feel like it’s time to get serious about cybersecurity, it’s best to leave it to the professionals. At Valley Techlogic, we have over 15 years in the cybersecurity space. We have a robust cybersecurity package that can be used standalone to leverage our cybersecurity stack if you already have an IT team in place or in conjunction with our IT service plans if you don’t currently have reliable assistance for your business’s technology. Schedule a consult today to learn more.

    Looking for more to read? We suggest these other articles from our site.

    This article was powered by Valley TechLogic, adns, n IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • October is National CyberSecurity Awareness Month, Our Checklist Will Get You Started

    October is National CyberSecurity Awareness Month, Our Checklist Will Get You Started

    Every October the CyberSecurity & Infrastructure Security Agency (CISA) releases a list of resources and tips for National CyberSecurity Awareness Month – which is now in its 18th year.

    This year’s theme is “Do Your Part. #BeCyberSmart”. There has been an onslaught of news worthy ransomware attacks, DDoS attacks and data breaches (up 38% this year compared to last) in 2021 and there has never been a better time to address what the average person or business can do so they don’t end up as part of these statistics.

    We’ve created this checklist so you can see if you’re following the right path to keep your business safe from outside intruders.

    Click to download the online capable version.

    Cybersecurity requires ongoing maintenance to succeed. Following simple safety steps will help but it’s important not to disregard active threats to your business from the outside.

    Ongoing employee training is one way to combat those threats, cybersecurity training has evolved to include bite size doses of good advice for your employees that could make the difference between inadvertently falling for a phishing scam or attack attempt and reporting it to your IT team as they should. 95% of data breaches involve human error.

    It can also be important to have a team behind you making sure all of your company devices are maintained and updated, even if that outdated Windows 7 computer that sits in a corner is barely used it can still be a threat to your business. Older devices with outdated software can act as a gateway to allow bad actors into your business.

    More advanced maintenance such as enabling two-factor or multi-factor authentication on company accounts can be another important step to keeping threats out. If someone gets your password from another company’s data breach (which happens all the time) that phone pop up could prevent you from being hacked.

    Finally, having a comprehensive backup program for your businesses data is the final shield against cyber threats. We’re unique in that we offer not only active backups but archival backups as well. The archival backup is “Write once, Read many” which means you can look at the data as often as you like but it can’t be edited or deleted.

    A bad actor may find your unbacked up data, and they may gain access to your active backups, but that archival data is virtually bullet proof. For your important files, the ones that must not be deleted at any cost, having that backup there and ready if you need it is the peace of mind most of us would not want to be without (learn more about our backup program here).

    If this article has gotten you thinking about what you can do to improve your cybersecurity processes or even that you need to create a plan to get there, we’d love to help. Schedule a discovery call with us to learn more about how Valley Techlogic can help you be #CyberSmart.

    Looking for more to read? We suggest these other articles from our site.

    This article was powered by Valley TechLogic, adns, n IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • Massive DDoS Attacks Cripple VoIP Services

    Massive DDoS Attacks Cripple VoIP Services

    If you use VoIP in your business, you may have been affected by service outages so far this week.

    That’s because Bandwidth.com, a major hosting provider for VoIP services such as Accent, Ring Central, Twilio and more has been under assault by a major distributed denial of service (DDoS) attack. While they’re working tirelessly to reroute call streams, as of Tuesday outages were still occurring nationwide.

    Distributed Denial of Service (DDoS) attacks are not a new occurrence in the VoIP world, hackers regularly target VoIP services in an effort to gain a ransom to make the attacks stop. Canadian VoIP provider, VoIP.ms, has been under siege since last week by a DDoS attack being performed by the hacking group REvil.

    REvil, a Russian linked ransomware gang, was also responsible for the attacks on Kaseya that made major news in July. They are demanding $4.5 million from VoIP.ms to end the attacks but so far VoIP.ms is holding firm and not giving in to the demands.

    You may be wondering what happens during a Distributed Denial of Service (DDoS) attack or even what a DDoS attack is. During a DDoS attack hackers flood the target networks with service requests, bogging down the systems until they either slow to a crawl or go offline completely due to the overload.

    To put some context behind it, Cloudflare a cybersecurity oriented service provider that helps websites mitigate DDoS attacks were themselves hit by a DDoS attack last month that served their website 17.2 million requests per second. The real target of the DDoS attack, a financial customer of Cloudflare, was served 330 million attack requests in seconds. Most websites and online servers cannot bear the brunt of that many requests instantaneously.

    VoIP providers are an easy target for ransomware, cutting off communications to the outside world for those who are affected is a tangible problem that creates a heightened sense of urgency. The same urgency cannot be replicated from your business’s website being down for a while, though the loss of revenue that may occur from that should not be overlooked. For some business’s that loss can equal as high as $250,000 hourly.

    You may be thinking, I can’t have my phones go down I’ll just switch back to a landline provider even if the cost is higher and it would lack many of the features acquired with VoIP. I’m sorry to say It would do you no good.

    Nothing is truly cut off from the web these days, even your typical landline phone utilizes a web-based connection somewhere down the line. POTS aka Plain Old Telephone Service which performed phone services over copper wires is going the way of the dodo in most places.

    The FCC even called for a mandatory termination of POTS lines In 2014. As of 2018 only 5% of the country was landline only.

    To sum it up, avoiding the internet when it comes to making phone calls is no longer a possibility. With that said we understand that having your phone lines down is disruptive and unnerving. We’ve created this checklist with steps to take if you find your phone service down.

    If you don’t have a service provider to reach out to in the event of a service outage, we can help. We are proud of our VoIP service solutions and the reliable uptime we maintain for our clients. You can learn more about our VoIP services here. We even have a promotion for new customers. ?

    Looking for more to read? We suggest these other articles from our site.

    This article was powered by Valley TechLogic, an IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • Can you spot the phishing clues? And 10 tips to avoid falling for a phishing scam

    Can you spot the phishing clues? And 10 tips to avoid falling for a phishing scam

    If you’re not aware, phishing is another word for scams perpetrated over email. It was coined in 1996 and was first associated with hackers attempts to steal America Online (AOL) accounts, and it has not slowed down since then.

    As of 2021 most hacking attempts are phishing scams, the phrase is meant to evoke the image of a hacker literally fishing for their victims by baiting a hook which in this case is a credible looking email from a place you might actually do business from, a colleague or a family member. 94% of malware attempts originate from an email sent to the victim.

    Well as credible as they can manage, many phishing attempts are poorly worded and grammatically incorrect as the senders are from another country from the victim. In the image below we showcase a phishing email you might receive, click to reveal the answers.

    Spot the phishing clues
    Click to reveal the clues.

    Not all phishing attempts will be so obvious though, here are our 10 tips to avoid falling for a phishing scam.

    1. You are asked to reply with sensitive details. A legitimate business will never ask for your private details via email, if you’re unsure contact the business directly to ask.
    2. The message says you must respond urgently or face dire consequences. Legitimate businesses such as the financial institution you bank with won’t relay an important message over email alone, and they’ll never threaten you.
    3. The email contains a non-standard email attachment. While even standard email attachments can contain malware, a non-standard email attachment is a clear sign something is amiss.
    4. The senders email address doesn’t match the contents. As in our example, a legitimate business (especially a large one) won’t be using a gmail address. You also want to watch out for slight misspellings, such as an email coming from admin@paypa1.com
    5. The email contains an unusual request. You receive an email that looks like it’s from your boss, and he’s saying he wants to reward some key players in your company by gifting them gift cards from a popular big box store. He says not to give them to the players directly, simply reply with the gift card numbers and he’ll handle it. This is just one example of a scam we have unfortunately heard of happening. If the email is requesting large amounts of money be spent in unusual way or private details be sent over email, even if the email looks legitimate you should verify with the supposed sender first.
    6. It has an attachment you weren’t expecting. If receive an email with an attachment and the body suggests you requested information, but you don’t remember doing so, it’s probably a phishing scam.
    7. The email says you won a prize, but you must enter your banking information to claim it. Prizes are a common phishing scam trope; they may also try to get you to download a suspicious attachment.
    8. The URL in the email doesn’t match the business it claims to come from. As in our example, phishing attempts often involve a similar but not quite right URL. Many scammers will try to gain the victims trust by sending them to an “official” looking website where they will login with their legitimate credentials, allowing the scammer to gain access.
    9. The content is canned. Many phishing scammers reuse the materials of others. One example is you receive a suspicious sounding email, such as someone saying you have stolen their copyright images and you must visit a website to confirm. If you Google the email you may find examples of others online who have received that same
    10. The greeting doesn’t match the content. This is a simple one, if you receive an email supposedly from your boss but the greeting starts with “Dear” or another out of character greeting, it’s probably a phishing attempt.

    This is only a start, many phishing attempts are highly sophisticated and difficult to spot but knowing some of the signs will help you be more attentive to things that may be wrong with an email you receive. We also have found for our clients, randomized simulated phishing attempts can help them with training their staff to keep an eye out for phishing attempts.

    Most successful hacking attempts involve a human element, training is your only first line of defense. If you would like to increase your defense against phishing attempts, malware, ransomware and more, Valley Techlogic can help. Schedule an appointment with us today to learn about our comprehensive cyber security packages for businesses.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • The Extreme Side of RAAS (Ransomware As A Service)

    The Extreme Side of RAAS (Ransomware As A Service)

    When many people think ransomware they usually think on the small scale, someone’s email or computer being held hostage until a small sum is paid or an IT professional can assist with the problem (for the lucky ones).

    Or perhaps you think of the major breaches where millions of accounts are leaked to the public, usually containing emails, phone numbers and other identifying information. As a whole the public has become desensitized to these sort of breaches (even though they’re still a serious problem).

    What we probably do not immediately jump to is a full-scale terrorist level attack that can cripple large swaths of the country – such is the case with the Colonial Pipeline Hack.

    Tech News #10

     

    While it’s still an ongoing situation, here are the details in summary.

    Systems were shut down Friday at the Colonial Pipeline, a pipeline which supplies 45% of the fuel used on the East Coast. FBI has confirmed the pipeline was shutdown voluntarily to prevent future damage and to assess the situation, however this has left much of the country in limbo as gas prices climb and many states have declared a state of emergency.

    It’s being urged that residents in those states do not stock pile gas as that will only prolong the problem of shortages once operations resume. As of Wednesday, operations are still down but they say they hope to resume operations by the end of the week.

    It’s also been confirmed by the FBI that the RAAS (Ransomware As A Service) group DarkSide is responsible for the attack. They create hacking tools that are then used in attacks on businesses, the group itself usually targets for profit businesses in English speaking countries.

    As a relatively new hacking group, they have since August 2020 conducted attacks on various businesses trying to extort money from them by threatening to release the data they obtain in their hacking efforts. They claim to donate all or part of their ill-gotten gains to charity organizations. Their ransomware demands range from $200,000 to $2 million.

    They claim to operate with a code of ethics and will not attack hospitals, schools etc. However, this pipeline attack will have a trickle-down effect to those services and the public at large.

    Ransomware in any form is disruptive and violating and it’s clear more needs to be done to stamp out these attacks.

    Raising public awareness about cyber security and the efforts required to be safe online will help. In addition to that, requiring businesses to have protective measures in place will cut off these groups before they’re able to acquire the funding they need to become large hacking organizations.

    We need to work together to making hacking less lucrative, because as it’s been shown our way of life and public safety may be at stake.

    If you run a business and need help with your cyber security services, we’re here for you. We have tailored cyber security plans for businesses of all sizes, and we would be happy to guide you through the process of protecting your business. Schedule a free consultation here today.

    Update: As of Thursday, the Colonial Pipeline has resumed operations. It’s unknown how long the gas shortages caused by the outage will last.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • Have a Dell laptop or computer? This vulnerability is one to watch out for.

    Have a Dell laptop or computer? This vulnerability is one to watch out for.

    Vulnerabilities that can broadly attack major systems or specific retailers are especially problematic. Many of these vulnerabilities are quietly patched before you’re even aware there was a problem but sometimes things can fly under the radar for a while.

    Such is the case in an affected Dell driver that has been pushed out to machines for the last 12 years. It was recently discovered this driver can allow bad actors to possibly gain more access to the affected Dell systems. It’s estimated hundreds of millions of Dell computers, laptops and tablets could have the affected driver and be at risk.

    While it’s not considered critical at the moment because the affected computers would already have to be compromised in some way for it to be used, it’s still problematic because it could make removing malware or other system infections more difficult. These drivers would potentially allow them unrestricted to the affected machines in the event the user is hacked.Tech News #9

    There are currently no recorded cases of this exploit being used, however now that it’s been made public that may change. Researchers have held back the details of the exploit to allow users time to patch, and Dell has issued a security advisory regarding the driver. However, they have not as of writing revoked the affected driver.

    This is another reminder as to the importance of maintaining updates on your machines. Even with security measures in place, no system is perfect. Vulnerabilities can be discovered years later with varying levels of severity. By maintaining patching, you won’t be caught off guard or risk having your machines exploited by a vulnerability.

    Here are 5 patching best practices:

    1. Automate. If you can, automate the process. Schedule your patches to happen at a time you won’t be busy working on your computer.
    2. Plan your approach. If you’re managing patching for your business, you want to plan how you’ll approach patching company wide. It may be prudent to patch overnight or patch in waves if your business is open extended hours.
    3. Test patches. Test patches on a single machine before rolling them out company wide, sometimes patches can create problems that might necessitate a rollback and that might hinder your business if everyone in the office is down.
    4. Maintain patch levels. The last thing you want to do is fall seriously behind on patches. Patching will be a lengthy process as you try and catch up, and your machines may be left vulnerable in the interim.
    5. Get Help If You Need It. Patching your home machines is a fairly straight forward process usually but patching from a business perspective can have many intricacies beyond just “apply patches”. When in doubt, leave it up to the professionals.

    If you need help with patching or the myriad of other items that keep your office machines in tip top shape and safe from malware, Valley Techlogic is here for your business. You can schedule a free consultation here.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • Your Information Was Leaked in a Major Breach, Now What?

    Your Information Was Leaked in a Major Breach, Now What?

    In what seemed to be major news for only a brief period of time, over 500 million Facebook account details were leaked last week. The data included things like profile names, Facebook ID numbers, email addresses, and phone numbers. While this data may be online in other forms the combined data together makes it a treasure trove for phishers and scammers.

    The colossal total of 533 million accounts was accessed by hackers exploiting a bug in a Facebook address book contacts import feature. It was confirmed by Facebook that the exploit was patched in August 2019, but it is unclear how many times the bug was used before then. The information featured users from 106 different countries. News Tip About Hackers

    It’s clear from Facebook’s response that this data has been out there for a while, and no one knows how it’s currently being utilized by bad actors to phish and scam people. It hasn’t been released that password data was a part of the breach, but it’s still our recommendation that you change your password any time you hear news of a major breach from a service you utilize. As well as making sure you use different passwords for different sites (if you don’t already).

    But what else can you do? Here are our 5 tips to protect yourself after a breach occurs with a service you use or have used in the past.

    1. Keep an Eye Out for An Alert from The Company Affected. We feel companies should be duty bound to let their users know if a breach has occurred. You should keep an eye out for an email detailing the steps they have taken to protect your data after a breach, what may have been compromised, and what you should do to protect yourself.
    2. Monitor Your Financials. If the breach happened within a financial institution you utilize, or even one we all utilize by default (such as the Equifax breach) you want to take the time to monitor your financials for suspicious activity. Many banking and credit card issuers offer free credit reporting as part of their services now. You can even freeze your credit to be extra sure but keep in mind if you do try to open a new credit card or loan the freeze will affect you as well.
    3. Change Your Passwords. We recommend changing passwords if a major breach has occurred even if the business confirms no password data was leaked, you really can never be too careful. If you need help remembering your passwords for various sites as well as creating stronger passwords, we recommend our article on the top 3 password managers we recommend.
    4. Be Extra Wary of Suspicious Emails. Following a data leak, phishers and scammers will use this newly obtained information to try and reach out and trick you into handing over your financial or other personal information. They may have names of relatives or other people you know to utilize and try to get you to send them money. If you receive a suspicious email it is best to report it to your email provider.
    5. File Your Taxes Early. If your social security number was stolen as part of a breach, you may want to be prepared to file your taxes as soon as possible to avoid having your tax refund stolen by scammers.

    In addition to these five tips if the company that was breached offers assistance in the form of either monitoring your credit or tips on how to safeguard your account, we recommend accepting their offer. Data breaches occur so often now that the public is desensitized but they are still a threat that should be treated seriously.

    Data breaches that affect businesses are a different animal entirely. There is much more to monitor and safeguard and it is not something you should try to tackle alone. Valley Techlogic is experienced in helping businesses recover from data breaches and we can help you recover your data and protect it from further attacks. Visit here to schedule a free consultation to learn more.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • It’s Not Your Imagination, Ramsonware is On the Rise

    It’s Not Your Imagination, Ramsonware is On the Rise

    We have talked about several major ransomware events over the past year, but these were far from unique. Ransomware and cyber security events have been on the rise lately and it’s been made abundantly apparent that NO ONE is immune to them.

    From the yet to be officially validated Kia Motors attack, to the narrowly avoided disaster with a Florida Water Plant. No attack had more widespread coverage for a while (including by us) than the SolarWinds breach that seems to go deeper and deeper. These are just a few in a massive list of growing ransomware events that have happened to companies of all sizes. If you think your business is too small to be a target think again.

    According to this Datto report, one in five small businesses will experience a ransomware event. While larger businesses may be eyed as prized targets by hackers, most of the time they also have the staff and resources to put up a better defense against cyber security threats. This makes them much harder for hackers to infiltrate.

    A lackadaisical attitude towards being hit by a ransomware can cost your business big time. Ransomware extortion amounts continue to skyrocket, with the average demand in Q3 2020 being $233,817 according to the cybersecurity firm Coveware.

    If you’re thinking a demand like that could bankrupt your business, you’d be correct in that fear. 60% of small businesses will go out of business within 6 months of a cyber security attack.

    We have made an infographic with statistics on cyber security threats in 2021 so far.

    Infographic on Cyber Security

    We’re not presenting this facts to you in an effort to make you feel hopeless, there is a way to prevent an attack from hitting your business in the first place. The ONLY way to avoid a serious cyber security threat is to have proactive cyber security prevents in place. Many business owners cannot achieve this on their own.

    Cyber security prevention is an ongoing process, it’s not just installing a virus scanning software and configuring a firewall and calling it good. Business level cyber security protections can be complex to configure and manage.

    Your business has more hardware, more data and more assets to protect. Comparing it to what’s needed to protect a home PC network is apples and oranges. If you’ve just been crossing your fingers that it won’t happen to you that’s NOT a good idea, because statistically there’s a good chance that it will.

    If your business needs assistance in a cyber security plan that’s not just about checking boxes or relying on hope but actually protecting all of the valuable systems you need to run your day-to-day operations, reach out to Valley Techlogic today.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • The Solar Winds Rabbit Hole: What’s happened and what’s next?

    The Solar Winds Rabbit Hole: What’s happened and what’s next?

    In most situations where a massive hack or breach has occurred, trying to get a handle on what has been compromised or even what is still compromised can be a challenge.

    It’s unfortunately been our experience that in most cases things almost end up being worse than they initially look. Hackers are smart and if they can remain in your systems for a long time, they can get more to either use against you in a ransomware attempt or even leave breadcrumb behind to get back in your systems and hit you again.

    This is why we will always say prevention is key, but sometimes despite your very best efforts a breach occurs. We think this is certainly what has happened in the case of the massive Solar Winds breach that is still being unraveled weeks later.

    CyberSecurity NewsEven detection’s put in place by the NSA failed to detect this hack in time, and as of this week Microsoft was even included in it as it’s been exposed that some of their source code was revealed in the breach.

    Hackers grow more and more sophisticated by the day and it requires a full-scale team effort to prevent your business from either an attack aimed at it specifically, or as the case has been with Microsoft, being looped into a breach that’s occurring to a vendor you may use.

    Attacks from foreign bodies aren’t even very rare, international hacker networks are taking a growing lead in cyberwarfare. While most of these attacks are acts of espionage, if the payoff is lucrative enough hackers will strike anywhere.

    It’s unknown what the real damage from the Solar Winds hack will end up being, or what if anything will come from the exposure of Microsoft source code, but we think this should serve as a wakeup call to anyone who doesn’t take the topic of cybersecurity seriously.

    Here are some things you can begin to do to make your business more secure in 2021.

    1. Have a Hardware Firewall like SonicWall. A hardware firewall makes it easier to have universal rules for your whole network versus having to configure rules for each device.
    2. Enable Core Isolation and Trusted Platform Module (TPM) on your Windows 10 Devices. These protocols will work in tandem to help stop malware and ransomware on your Windows 10 Devices.
    3. Also Enable Group Policy Settings with the Group Policy Editor. With group policy settings you can stop employees from doing things like opening attachments or random .exe files. You can also use group policy to prevent unknown USB devices from being used on work devices. Basically, group policy can prevent a lot of the activities that lead to ransomware or malware in the first place.
    4. Use Next Level Multi-Factor Authentication with a Hardware Key. We believe strongly in Multi-Factor Authentication (MFA) and the next step to that could be introducing the use of hardware keys to your business, a hardware key is a token that won’t allow you to unlock a device without it. Most hardware keys will also work in conjunction with software MFA like LastPass.
    5. You should Vet your Vendors, Even the “Bigger” Ones. As this Solar Winds breach has shown us, big or small a breach can happen to anyone. While you’re working on handling cybersecurity on your end you should also question the vendors you use as to what their cybersecurity policies are and what their plan is if a breach were to occur.

    This is by no means an exhaustive list but like we usually say, starting is a great first step. If you’d like an information packet of the Cyber Security services Valley Techlogic can provide, reach out to us today! Our comprehensive Cyber Security plan addresses all these topics and many more.

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

    Looking for IT Services in Fresno, Modesto, Stockton, Ceres, Atwater, Merced, Visalia or Lodi? We cover all these areas and more!

  • The ransomware attack crippling a major repair firm that no one’s talking about

    The ransomware attack crippling a major repair firm that no one’s talking about

    Dell, Lenovo, even Apple brand computer and device repairs might be seeing major repair delays at the moment as a top repair firm they use was hit by a ransomware attack that ground their operations to a complete halt.

    This has been seemingly squashed as a news worthy event for the moment but we think customers should be made aware that if they send their desktop or laptop in for a repair at this time they face major delays in getting it back. In fact, there may be a delay in even getting a box to send the machine back in as even shipping has also been affected by this ransomware.

    Reported briefly by ItWire, this attack aimed at the security firm Symantec has taken down a number of systems across the country. From the attackers’ view point they were able to disable one of the end point protections allowing access, and to make matters worse the software was up to date at the time, leading to major questions as to how this was able to occur at all.

    CSAT, used by Dell, Lenovo, Apple and more was hit just over a week ago and customers have been facing problems ever since.

    We haven’t been able to confirm that any customer data was leaked, however, according to the ItWire article a number of screenshots of computer directories were placed online.

    If the General Data Protection Regulation (GDPR) that governs in the UK applied in this case, these companies should have reported any exposed customer data within 72 hours. It’s possible no customer data was leaked but the scope of this apparent ransomware has us questioning whether that’s true.

    We’re uncertain if business support class customers are facing the same delays as home users however as with most things there may be a trickle-down effect.

    The ransomware that allowed this to occur was called NetWalker and it’s been responsible for 10 major breaches just this year. It’s clear to us ransomware as a service is not going anywhere soon when the payouts are so lucrative.

    Released in April 2019, the average payout on a NetWalker attack is $175,000 in bitcoin following each successful campaign. One of the highest payouts was $1.14 million from the University of California. It’s estimated the NetWalker ransomware gang has made $25 million in all.

    This latest attack shows that it’s not only a loss of data and having to pay a hefty sum that come as side effects from being hit with ransomware, the affected security firm and repair firm are also experiencing a major loss of credibility with customers that they may never fully recover from.

    You may think your business is too small to be hit with a ransomware attack, but the fact is ransomware as a service has made orchestrating these attacks easier than ever. Even a small payout of a few thousand dollars may be worth it to some individuals with low moral standing just looking for some quick cash.

    Or maybe they’re not interested in your money at all, maybe they’re interested in your data which may be more lucrative for them. Also, many hackers commit their attacks just for the thrill of it and will think nothing of dismantling your technology operations and leaving you stranded.

    We don’t think this should happen to anyone; we can help businesses located in the Central Valley beef up their cyber security provisions to stop ransomware gangs in their tracks.

    VTL Cyber Security

    Looking for more to read? We suggest these tech articles from the last week.

    This article was powered by Valley TechLogic, an IT provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

    Looking for IT Services in Fresno, Modesto, Stockton, Ceres, Atwater, Merced, Visalia or Lodi? We cover all these areas and more!