In the past five years, there has been a significant rise in the sharing of files and information between computer users. Many businesses have also taken to sharing files using cloud services and peer-to-peer (P2P) networks, allowing users to share files with each other over the Internet. This brings about a number of issues, both with file recoverability and overall security.

With the seizure of a number of cloud storage and sharing websites, including Megaupload, and the seemingly omnipresent malware in P2P files and the shaky security in relation to P2P networks, businesses have had their hands full staying secure. Do you know what your options are when it comes to data security?

Cloud Services Knowhow The recent seizure of Megaupload’s files and servers by the US Government caught many people and businesses unprepared. While Megaupload’s main purpose was file sharing, it was found that a large number of organizations were using their services to store files. If you had files stored on Megaupload, the chances of getting the files back are non-existent.

It needs to be pointed out that many cloud services don’t guarantee that files stored on the service will be recoverable in the event of a crash, or disruption in service, e.g., a government seizing servers. If you read the user agreements of a number of major cloud services, they all have clauses stating that if data stored on their service is lost for any reason, it’s gone forever, and the hosts can’t be held liable for losses.

Risks of P2P With high speed Internet widely available at low prices, P2P file sharing has become incredibly popular, it’s almost uncommon to find someone who has never used a P2P service. If you or your employees use P2P at your office, there are a number of potential security threats you should be aware of:

• The unknown share: If you put a file in a folder that is shared on a P2P network, it’ll be shared with all other people connected to that folder and almost anyone can access it. This is normally done by mistake, i.e., not looking where the file will be saved when you save it. There’s also malware out there that will move files into a shared folder which the developer of the malware can find and upload with ease and without the user knowing it is happening.
• Open network: Typically P2P works on open networks: users give and share. What this means is that when using P2P on a poorly configured network, the whole network could be unsecure, allowing for access to other computers connected to the network.
• Untracked data: If you share a document with another person, and they then share it with others, there is potentially, an unlimited amount of people that can get the data. If you want to take it back, it can be impossible to do so, even if the original document is deleted.
• Storage hijacking: There’s news of malware that has been developed with the purpose of downloading illegal material onto your hard drive. This could pose a problem if the data is found, as you will be liable.

What Should I do? With regards to cloud services, as with anything that comes with a contract, the first thing you should do is gain an understanding of it by utilizing reading material such as blogs, news articles and Wikis. It’s a pain in the neck, but it’ll help you understand the boundaries of the program and your responsibilities. Remember that if you go to court to get files back from a company, and it becomes known that you didn’t read the agreement, you’ll probably end up losing that case.

Second, it’s not recommended to keep single copies of data on one cloud service. Chances are high that in your business, you store your data and backups in a place separate from the computer. This makes sense with the cloud as well - keep your data with a number of different cloud services. If it’s important enough, have physical backups of what you put in the cloud.

For P2P networks there are also a number of steps you can take to protect the data on your network:

• The most obvious one is to ban employees from using any file sharing services outside of your network.
• If you do allow file sharing, it’s a good idea to establish and strictly enforce a protocol for this. You should also set which users are allowed to share files, and what files are appropriate to share. Be sure that all staff are aware of your policy and the measures that will be taken in the event of any deviations.
• Develop a system to classify documents by whether or not they can be shared, and who they can be shared with.
• If you work in an office where you need to share files, but don’t want to use a P2P network or the cloud, and are unsure of other solutions out there, don’t worry. There are companies that specialize in document sharing solutions that should be able to provide you with assistance.

The most important thing is that whatever the situation is, you take action to try to solve the problem while frequently revisiting the actions to ensure that they are working. If you’d like to learn more about document sharing over the cloud, or via P2P networks, give us a buzz. We’re more than happy to help.

It’s hard to find someone who isn’t using social media in some way, or at the very least isn’t aware of its existence. Companies are becoming wise to this and are starting to utilize social media tools to build their brand, or bring in new customers. If your company does not use any form of social media, it may be time to look into getting your business out there.

Social media, once called a fad, has become the norm and is going to be with us for some time. A large number of companies already have an online presence, and are taking advantage of the benefits that social media can bring. Here are a number of things you can do to get your social media adventures underway.

Be Clear on Social Media It’s important that before you start looking into the different forms of social media that are out there, you are clear on what social media is, and what it isn’t. Social media is a way to meet people, and share content and ideas with them. For companies it’s a form of non-traditional marketing - think of it as soft marketing - it’s not meant to be the place where you flog your products, rather a place to develop interest in your company, so people will want to do business with you. By using social media you can show people who your company is, and connect with them on a more personal level. If you are clear on what social media is from the beginning, there’s a higher chance that you’ll be successful when you develop your online presence.

Before You Launch Into Social Media There are a number of things that your company needs to have either already done, or considered, before you jump in:

• Have a website: It’s a good idea to have a solid website with information about your company, contact information, products and services. Most potential customers will look at your website after looking searching for you online, and before they choose to do business with you, so your website needs to provide the relevant information they are looking for. If you don’t have a website, or feel yours is lacking, it’s easier than ever to get a professional looking site. With a quick search you will be able to find some competent designers.
• Get educated: It will be beneficial to educate yourself on current trends regarding social media. This can be done by simply going to social media websites, taking the free introduction tours and reading blogs related to the sites. Beyond that you should also research your competitors’ websites and Internet presence. Observe what content they have online, and more importantly: what they don’t have. It will also help to connect with and observe industry experts, see what they post online, and note the style and tone they use. This will help provide you with a sound knowledge base from which you can then create a more effective online presence.
• Set goals: As with any step in business, you should have a plan with realistic goals. Aim for results that are achievable for your company. If you’re a small, local IT company that focuses on providing support for banks, don’t expect to have the same massive hype that Microsoft and Apple do. Clearly set objectives and review periodically.
• Develop a focus: In real life, you can’t be all things to all people. The same goes for social media. You need to develop a focus on what type of online content you would like to share. You should aim to create content that your customers will want to share with people.
• Stake a claim: You should to go to the main social media websites - Google+, Facebook, LinkedIn and YouTube - and reserve your personal and business usernames. This is important because it will make you look more professional by having the same username across all sites, and users will be able to find you easier.
• Ask for help if you need it: While some companies make social media sound easy, it can be deceptively hard to master. If you feel lost, or are having a tough time with it, there are knowledgeable consultants out there who are happy to help.

Time to Get Social When you feel you know what direction you will take, it’s time to start developing your online profiles. It can be tough to decide which social media tools to utilize. Unfortunately there is no right answer. Most small businesses follow the crowd, and this means having pages on Facebook and Linkedin. This does not mean that you should join these networks simply because they have the most users. It is recommended that you follow what similar businesses or direct competitors are doing. If they are on one service but not another, do the same to begin with, but be on the lookout for new social media sites, or features being added to existing sites.

One Thing to Not Forget There is one really important thing we can share with businesses thinking of pursuing social media: it isn’t a turnkey operation. You can’t just, “set it and forget it.” To be successful, you need to be active by posting updates, news, and above all interacting with the people who reach out to you. After all, they are your customers. If you do establish your social presence but forget to keep it up to date, you will be the company that’s forgotten.

If you would like help with your social media strategy, please get in touch with us. We’d love to hear from you.

Ever since the computer became a household item, malicious software has been developed, aimed at causing havoc, or worse, stealing information. Businesses and governments have spent untold amounts of money to ensure safety from all sorts of cybercrime, but it is still a rising trend.

A quick Google search for “cybercrime trends” yields over 78 million results, the majority of which are likely to affect large enterprises or governments. While it is beneficial for all businesses to be aware of the major trends, there are a number of threats that will affect small businesses more than others. Here are some current cybercrime trends that SMEs should be aware of.

Mobile Malware Smartphones are becoming ever more popular, and with this popularity has come an exploding number of apps. Malware developers have been picking up on this during the past few years and there have been an expanding number of apps dedicated to attacking your phone or mobile platform. The most common type of malware on mobile devices is spyware, followed by SMS Trojans. SMS Trojans run in the background of some applications, and make international calls or text messages from the developers’ services causing huge phone bills. The final form of malware targets online payment apps on the phone.

One of the main reasons this form of malware has become so popular is due to the openness of some markets, such as the Android Market. The owners of the app markets are working to track down and get rid of the guilty apps on their marketplaces, but you still need to remain vigilant. while installing apps. Look at the developer of the app - how many times has it been downloaded? Maybe double check the app’s integrity online before installing and double check the app on the internet.

Open-Source Malware Kits A common thing malware developers do is write code for malware and then sell it to interested buyers. But a rising trend is that developers are writing malware that is open-source—any person can download and change it. The worrying thing is, many developers of already powerful malware have been releasing open-source versions of their software. This means that there will be an increase in the number of malware attacks out there, as devious developers can easily come up with more elaborate hacks.

Banking Trojans Along with the open-source malware kits, there has been an increase in the number of banking trojans—aimed at stealing account information and passwords. While these trojans have been a threat ever since banks first started offering online banking, they have become popular again as people and businesses are starting to move their online banking onto mobile devices, and the trojan software is easily accessible. This makes mobile banking apps an easy target.

With cybercrime on the increase, now is a good time to review your security, ensure its up to date and remind employees of your mobile device policy. If you don’t have a policy in place, or feel that your security is inadequate, give us a call, we are happy to help you. Remember: with good security and knowledge, there is no reason you should fall victim to cyber theft.

The majority of businesses, no matter the size, are networked these days—and are often also connected to the Internet and other networks. Many of these businesses have come to rely on internal/external networks for their day-to-day business. However, when one of the networks goes down this can be a problem since an outage could cause a loss of profits. 24/7 networking can help reduce these losses.

How can 24/7 network monitoring help your business, you ask? Through preventative operations. The main idea of network monitoring is to act as an “Early Warning System” to let managers and owners know of potential problems before they strike.

What Does Network Monitoring Monitor? There are a number of things you can monitor with Network Monitoring. The most popular areas include application and system performance, bandwidth usage, and server status. You can also set up monitoring of additional areas, for instance: server load, ink levels in printers, time left on software license agreements, which devices are connected to the network, their data usage, and more. This is all done 24/7.

The one thing Network Monitoring does not normally monitor is unauthorized access to networks. It can be set up to look for unauthorized access, but this is normally taken care of by another system.  

How Does Network Monitoring Help Me? Network Monitoring is a preventative system, intended to warn you about potential network problems so you can proactively seek solutions before a vital network goes down. This makes it, in a round-about way, a justifiable addition to business value since, when implemented right, there will be less network crashes—which means less or no profit loss.

What Should I Monitor? In an ideal world, you would monitor each and every network. Over time, you can get there, but if you’re like most Small Business owners or managers, you have neither the time nor the budget to implement a full system. As with most projects, it’s suggested that you implement a system like this in stages. The most common areas to start with are:

• Local Area Network (LAN) Data
• Internet data usage
• server status
• alerts to existing networks

If you’re unsure of where to start, try contacting a local Network Monitoring service, or hire a consultant to establish a system. If you would like to know more about 24/7 Network Monitoring, or other ways to improve business value, please contact us.

Many companies realize the benefits of virtualizing their systems, and some have even started the process. In the current economies around the world, businesses are looking at ways to save money and streamline processes. A recent report on virtualization found that some organizations achieved investment returns of up to 269%. Read on to learn more.

What is Virtualization? Virtualization is the creation of a virtual computing environment, where one hardware system can run multiple virtual environments. Common types of virtualization include servers, storage devices, or networks. The benefits of virtualization include lower costs, improved IT management, and reduced energy consumption.

The Survey A report published by CDW-G focuses on government organizations in the United Sates. Many SME owners and managers like yourselves are probably asking, “How do study results involving the government help my business?” Well, if you look closer you can see that what the government organizations did can easily be replicated by SMEs, just on a smaller scale.

Results In recent years, many companies have had to tighten their belts due to economic difficulties. Government agencies are no exception. The results of the survey found that agencies and organizations realized investment returns as high as 134 to 269%. The survey found that if IT managers invest in Server Virtualization, Document Management, Storage Virtualization, and Cloud Computing in that order, the returns on Server Virtualization alone can help pay for, if not totally cover the cost of, the other three processes. CDW-G found that on average, the total cost of implementing all four separately is over USD 1.1million, but when implemented in order, the average cost was around USD 400,000.

While it is unlikely that SMEs will see a return on investments of this magnitude, it is highly likely that they will see increased returns if they follow this method of re-investing returns from Server Virtualization into the other three steps. In times of economic stress, this could be a huge boost to your bottom line.

Helpful Recommendations From the results, CDW-G offered some useful recommendations that all businesses can use:

• When budget cuts are needed, first look for ways to increase efficiency without service cuts.
• Review technologies and processes to identify inefficiencies.
• Consider savings and efficiency opportunities in all new solutions.
• Leverage available savings into new projects.

As with any new process, it’s equally important to ensure that you educate the users of the processes and stay on your toes to keep updated.

Apple is a company that in recent years has released a number of excellent products and has gained a following of incredibly devoted fans. One of the most popular products Apple produces is the Apple iPad, and in early March they announced the next version of the iPad, the New iPad. Does it live up to the hype? Will it be useful for your business?

The answer: yes, and no. The New iPad (that’s the actual name) takes the good parts of the iPad 2, and adds a few improvements including a new 5 mega pixel camera. The biggest change is the New iPad has the Retina Display, with a screen resolution of 2,048 x 1,536 pixels, making it one of the best Tablet displays on the market. Other changes include a new, slightly faster processor, and a slightly heavier (by 10 grams) body. Changes aside, the New iPad looks exactly the same as the iPad 2.

Apple has stated that the price of the New iPad will start at USD 499 for the 16 GB Wi-Fi version. There will be a version that connects to 4G mobile data networks, and the price for that version will start at USD 629 for the 16 GB version.

What Does this Mean for My Business? In truth, the New iPad means whatever you want it to for your business. Apple has said on many occasions that they want to bridge the gap between interaction and creation with the iPad. The New iPad is a step toward this goal, but it won’t be very useful for users who work with spreadsheets or other data-heavy programs. If you or your business gives lots of presentations, and doesn’t need to use the advanced functions of programs, then the New iPad could be a useful tool. It really comes down to how you, as a manager and company, operate. You can pretty much guarantee you will find some use for the iPad, it just may not be a Key Success Factor.

The one downside is the price. As a small business it can be hard to justify spending over USD 600 per iPad with data connectivity, when the iPhone costs far less with a plan and can do pretty much the same stuff, if not more.

Scam Warning As with most other Apple products, there is sure to be a number of scams surfacing over the next few weeks saying that you’ve won a free iPad, can get a free iPad, or any number of similar come-ons. It is a good idea to let your employees know that Apple doesn’t normally give away its products, and will definitely not post on people’s Facebook pages or put banners on websites advertising such a thing.

Apple has taken steps toward giving businesses a new way to operate, and the New iPad offers some great functions for businesses. If you’re thinking of adopting the iPad into your business, or would like to know more about the New iPad or Apple’s products, please contact us.

Do you need to save money on your IT costs? If so, here are five things you can discuss with your IT provider: be practical, be creative, invest in training, consider enterprise-directed IT, and consider long-term costs and benefits. Below we discuss each in more detail.

1. Be practical. Extend the life of existing systems to help you get the most out of their value.

2. Be creative. Think outside the box. You might allow doctors and nurses to use their own smart phones and tablets on the job, foster development of your own apps, and leverage inexpensive cloud services, such as Google Apps.

3. Invest in training. It's easy to underestimate the cost savings associated with training—and the easier a system is to use, the less training you'll need to provide.

4. Consider enterprise-directed IT. Much of the technology that's interesting and cost effective right now isn't consumer directed – it's enterprise directed.

5. Consider long-term costs and benefits. With new technologies popping up left and right, choosing the right ones is critical. Those that protect against data breaches, for example, may be the most important given that a recent ID Experts and Ponemon Institute report found data breaches in U.S. healthcare organizations have cost providers more than $6 billion a year.
   

   Published with permission from TechAdvisory.org. Source.

Hackers have gotten pretty advanced in the past few years, and one of the most complicated hacks talks to you while it goes about its business. There is a new hack targeting businesses with the aim of stealing banking information. Be on the look out as this is one of the most devious hacks yet.

The hack, a variation of the Man-in-the-browser (MITB) hack, is a form of Trojan horse that mainly infects a Web browser and has the ability to change a Web page, insert orders or transactions covertly. The user will not notice any change to the website. This particular hack infects user’s computers with a Shylock malware program, a new form of malware that focuses on bank accounts and financial transactions.

The user goes to a banking website, attempts to log in and is given an error message stating that security checks are being undertaken. After a few minutes a window pops up telling the user that a representative from the bank will be contacting them to go over their account details. A chat window will open up and the “representative”, who is really the hacker, will ask the user for their account information. While the user and hacker are talking, the hacker will log into the account and proceed to go to town, so to speak.

At this time, it seems like the hack is not widespread, but it is spreading, and it is one of the more sophisticated programs out there. To learn more about this or any other security threat that may have you worried, please contact us.

Hey, it's nowhere near the gargantuan status of Facebook or Twitter, but lesser-known Pinterest has a following, and especially if your target market is females, it can be a very versatile and unique online marketing tool – that is, if you use it the right way.

What is Pinterest? In a nutshell, it's something like a social media scrapbook, album, and bulletin board combined. Each interest / theme has its own 'Pinboard' where you put photos, videos, or other media that interest you.

What makes Pinterest unique is its concept, which has been consistently growing in popularity, especially with female audiences. And while Facebook and Twitter are more open to overt advertising, Pinterest takes a more conservative stance. While advertising isn't exactly prohibited, the marketing should definitely be more subtle and more consistent with a personal Pinterest profile. Here are some basic tips that will help you utilize Pinterest to your advantage.

1. Understand your market. The first question you should ask yourself is if Pinterest is something worth your time investment. Since the majority of Pinterest users are female, ask yourself if your products and services appeal to them directly.

2. Invest time. As in many other social networking sites, you need to put a personal and human touch to your Pinterest profile and in the way you interact with your audience. Log in often, update regularly, and respond quickly to any kind of feedback. Let your audience know that you're there.

3. Use other social media to augment Pinterest. Since Pinterest is less known, use your other social media accounts to point people your way in Pinterest, such as Tweeting or updating your Facebook status with your most recent Pinterest profile update.

4. Talk about what you represent. As mentioned earlier, since Pinterest isn't big on overt advertising, you need to market yourself in a different way. Talk about what your brand is all about. What do you represent? What content can you provide that would inspire your audience to share on their own Pinboards? If you're a furniture company, for example, you can try giving some tips on basic interior design and picking the right furniture pieces for spaces, with pictures or videos. What's good about Pinterest is that it challenges you to be more creative, and thus, more appealing to potential clients.

If Pinterest interests you, give us a call so we can discuss how you can maximize this new social media platform for your business.

Disaster: it could be as small as deleting a critical file or as big as the natural disasters that have been striking with more intensity in the past few years. Any way you look at it, disaster will strike eventually, in some form, leaving you with a problem to solve. It’s important to have a plan for when something happens. Do you?

Most companies have at least basic protection from emergencies and disasters in place. The most common forms of protection are insurance, server and computer backup, and basic preparations as required by law. While these protective measures are considered adequate for most companies, there is still a chance a disaster will strike, leaving your company in the lurch.

In the recent months and years an increasing number of occurrences, such as the earthquake in Japan and flooding in Thailand, have caused widespread disruption to businesses. To counter this, two business initiatives have risen to the forefront: Disaster Recovery (DR) and Business Continuity Planning (BCP). In fact, these two terms have become common buzzwords, a quick internet search returns over 53 million hits on business continuity alone. The problem is that many professionals are unclear on what each really is. It’s important to be clear on each topic and the basic steps to take to be prepared for any disaster.

What is a Business Continuity Plan (BCP)? BCP, first seen during the Y2K scare of the late 90s, is a plan that covers the way an organization prepares for and maintains all critical business functions. BC planning is comprised of activities that ensure maintenance, stability, and recoverability of service before, during, and after a disaster. The plan is typically set up on a day-to-day basis, and covers the whole organization.

It’s important to have a BCP for your organization because if something happens and you can’t deliver to your customers, they will go to another company.

What is Disaster Recovery? Disaster Recovery is considered a part of the overall continuity plan that focuses on the technical side of the business, including components such as data backup and recovery. Think of BCP as an umbrella and DR is under the umbrella — if you don’t have a disaster recovery plan, the overall umbrella is more or less useless.

What Should be in Your DR and BCP Plans? These plans both share a number of similarities, generally following the same steps involving the same elements. Both plans should include:

1. An operational plan for a number of disasters that could happen in your geographical area. The plans should cover occurrences as small as computer hardware errors and as large as massive natural disasters.
2. A succession plan for you or your top management.
3. Training for substitute employees on important tasks.
4. Cross training of your employees on the basics of different roles so they will be able to take over if need be.
5. A communication plan focused on different crises, including ways of communicating if networks are down.
6. Off-site meeting places for staff and managers.
7. A focus on safety. Foster partnerships and communication with local and emergency response services: Fire, Police, National Guard, Search and Rescue. Ideally, all employees should at least know basic first aid. If you have employees who are volunteer members of local Emergency Response Services, ask them to be responsible for teams.
8. Daily plans to backup your Enterprise systems, along with training and testing of recovery of systems.
9. Training and testing of all employees to practice recovery activities in situations as realistic as possible.

It’s important that you conduct regular tests of your systems and processes, and make changes as needed. Be aware that your business is always changing and so should your Business Continuity and Disaster Recover Plans.

With a carefully prepared and practiced plan, your business should be ready to face a variety of disasters with minimal downtime. If you would like to know more about Business Continuity and Disaster Recovery please contact us.