Oneonta NY's Best Web Design & IT Company
(607) 433-2200
Email: info@directive.com
330 Pony Farm Road
Suite #3
Oneonta, New York 13820
What if I were to tell you that, by the time you finished reading this sentence, all personal data in existence was exposed? If every text sent, every Google search executed, every website visited, everything we had ever done online, was made public? Gizmodo recently reached out to an assortment of experts for their insights. Here, we’ve assembled their responses for you to consider.
How concerned are you about your data privacy, as a consumer, particularly when you entrust it to another business? If you answered “very”, you aren’t alone… 87 percent of Americans consider their data privacy to be a human right. Having said that, most don’t pay near enough attention to their own security precautions. Let’s take a few moments and examine this trend.
This may be an uncomfortable truth when it comes to data security: the weakest link to keeping your data secure will be your employees. As social media giant Twitter recently discovered, despite the best technical security measures you have in place, all it takes is a break in protocol to place your client’s data and your business’ reputation at risk.
Since the onset of the coronavirus, many businesses have managed to sustain themselves through remote work—also commonly known as telework. While this strategy has allowed quite a few businesses to survive, it has also opened them up to security threats. Here, let’s focus on one such threat: vishing, or voice phishing.
Today’s smartphones are equipped with assorted ways that users can authenticate their identity, from the now old-fashioned PIN to basic biometrics. However, while these options are available on a wide range of phones, not all of them are equally secure. Let’s look a bit closer at these authentication measures to find out which is most effective.
When we think of cybercrime, most people’s minds go to one of two places. On the one hand, some think about the annoying, misspelled emails that are so obviously scams, while on the other, we can’t help but think about the hacks that we see in movies, where a criminal manages to overcome the best the government can incorporate into their defenses.
Data security always needs to be considered as one of your most important business priorities. After all, the ramifications of data loss are wide-reaching and severe. To help you ensure that your data security is at the level it needs to be, we’ve put together five questions you need to answer regarding your business’ security preparedness.
Many users are noticing or just starting to hear about Google and Apple’s initiative to work with local governments to provide an easy way to help users prevent getting infected with COVID-19. The idea is that, if a local or state government wanted to build an app for users that would tell them if people nearby have been tested positive for COVID-19, they would get a notification on their phone.
This, of course, raises many questions and concerns about privacy, but a lot of people are being warned that this has been forced onto their phones already, and that just simply isn’t the case. Let’s take a look.
With the given pandemic, a lot of people have had a bit more time on their hands, so it makes sense that many are turning to streaming services and the like for their entertainment. Unfortunately, this has not gone unnoticed by cybercriminals.
Let’s take a few moments and examine the practice of credential stuffing.
The password is the core element of both data security and user authentication. This makes the construction of them extremely important to protecting digital assets. Unfortunately, not everyone understands how to construct passwords that actually work to protect the information on the other side. Today, we will discuss how to build a solid password that works to keep your digital resources safe.
With COVID-19 creating an unsure situation for so many businesses, and by extension their employees, these employees are suddenly finding themselves in a vulnerable position. Regardless of whether or not your employees are able to come into the office right now, it is important that you share the following information with them, as it may help to keep them out of a tough spot.
COVID-19 has changed the way that most business owners look at a dollar. For months, businesses have been making strategic budget cuts to try to stay afloat. Cybersecurity has been the ultimate growth industry over the past several years, but in the face of the pandemic, the market for these products and services is seeing substantial retraction. In fact, Gartner estimates that in 2020, the cybersecurity industry will shrink by almost $7 billion. Today, we’ll take a look at the cybersecurity market and why it is important not to slow your cybersecurity spending if you can help it.
With the COVID-19 crisis far from over, many businesses have had their attention pulled away from their cybersecurity needs by the concerns that the current health crisis has generated. Here, we’ll be reviewing some of the observations that a group of 273 cybersecurity professionals have made, courtesy of an annual survey.
In response to the coronavirus pandemic, many people are avoiding human contact by turning to the Internet and mobile apps. On a national scope, mobile banking alone has seen an increase of 50 percent over just the last few months. In what certainly is no coincidence, the Federal Bureau of Investigation recently put out a warning that identified banking apps as likely targets for hackers.
More people than ever are utilizing the conveniences of the Internet and mobile apps to avoid unnecessary human contact during the coronavirus pandemic. In fact, mobile banking alone has increased by 50 percent over the last few months, nationwide. In a recent PSA, the FBI warned that hackers are likely to be targeting mobile banking apps.
If you have a computer, it has data on it that you’ve stored. Whether it’s the novel you’ve been working on in your spare time or pictures from your kid’s sixth grade graduation on your home PC, or the databases and applications that your business’ infrastructure supports, all of this data is generally stored in exactly the same way. Whatever your case, you should know that your data is terrifyingly fragile - far too fragile to ever be kept in just one place. Let’s dive deeper.
A security audit is designed to test the overall integrity of your business when it comes to its IT security. In today’s environment, businesses need to have strengthened fortifications in place to protect themselves from cyberthreats, and these fortifications need to be properly tested and reviewed over time. Let’s talk about some of the types of audits and their benefits, and how you can assess your security.
The days of the cash-only business are over. It doesn’t matter if your business is a multinational corporation or you cut grass for a living, accepting payment cards is not only convenient for your customers, most of the time it’s the most secure way to get paid. In an effort to protect the personal and financial information of consumers who have come to depend on their payment cards, the banks that back the credit card industry have developed a regulation that businesses who process cards need to adhere to. Today, we will go over this regulation and how it affects small and medium-sized businesses
Starting in 2008, Verizon has produced a report outlining the cybersecurity incident trends that the previous year demonstrated. In doing so, they have provided a resource that gives businesses greater insights into where their cybersecurity efforts need to be focused. Let’s go over some of 2019’s trends and insights that were highlighted in the Verizon Business 2020 Data Breach Investigations Report (DBIR).
As much as a business relies on its technology, it relies just as much upon its employees to properly put that technology to use. Unfortunately, this can very easily expose the business to various threats that involve their employees. Understanding these insider threats is crucial for a business, especially given how current events may tempt those who would never have considered them otherwise.
We have all been going through tough times recently due to the COVID-19 outbreak and subsequent social distancing measures and lockdowns. As we continue to go through rough times, we would like to encourage people to be vigilant and attentive with their security, lest you fall victim to one of the many recent COVID-19 scams out there. Here are several of the scams out there.
It seems as though every business is depending more and more on their IT. This means that their employees have more exposure to their IT systems. Unfortunately, that relationship is where the majority of the problems you will have are. The facts are that any business that has built a strong security policy has the solutions in place to keep direct infiltration from happening. Hackers have to find another way.
The way people talk about cybersecurity, it’s as if it is something like a television or a new phone: something you can just buy. That’s not the truth. When you are seriously looking at how you can keep unwanted entities off your network, while having control over what you do with your technology, you need to look at it as three levels of security.
If you consider it, it’s amazing how much trust people have in Internet-based companies. They not only believe that these companies will fulfill their expectations, but that they will work to provide protection for some of their most valuable and sensitive information. Let’s take a look at some of the data collection practices that companies use and what they do with that data.
Conferencing has been an important tool for businesses as stay-at-home orders have moved their operations out of the office and into worker’s homes. While there are dozens of video conferencing solutions on the market, businesses should consider security just as much as they consider functionality. Today, we’ll take a look at security for your company’s conferencing solutions.
Remote workers have an increasing number of tools to allow them to remain productive as COVID-19 concerns force them out of their office due to social distancing requirements. Yet many newly remote workers are finding unexpected problems in their new world as they adopt new technologies such as Zoom. Take a moment to learn how to keep your Zoom meetings safe and give your remote workers the tools they need to remain productive.
At any given time, a business needs to consider its security, but this need only exacerbates when its employees are working remotely. With the coronavirus pandemic still in play, the likelihood is that your employees are in this situation has risen dramatically. In order to maintain your organizational security, you need to consider the many factors that a remote workforce can introduce.
The growing popularity of ransomware has been disconcerting to many IT professionals, particularly due to the different tactics that this malware variant has been spotted utilizing. In order to protect your business from these attacks, it helps to know how they work. We’ve put together a beginner’s field guide to ransomware types to help you identify (and hopefully avoid) it.
The COVID-19 pandemic has greatly disrupted daily life, restricting people to their homes and preventing them from going into the office to work. In response, many companies are hurriedly changing over to a remote-capable workforce and having their employees work from home. This strategy can be highly effective, but if a company and its team isn’t careful, it can also be risky.
In today’s 24/7 always-online business environment, it is unrealistic to expect your team to spend 8 hours in front of a computer and not access their personal email or click on a non-work-related link. It happens every day. What also happens every day is that an SMB finds its network compromised by malware or a loss of productivity due to a lack of focus.
Is access to your email, your bank accounts, your website, or your social media accounts being bought and sold on the online black market? It’s more likely than you might think.
New York State recently mandated a stay in place order, requiring only essential businesses remain open and all others have their employees stay at home. The goal is to reduce the spread of coronavirus, by increasing social distancing. The best way to do this is by having fewer employees physically in the office. For telecommuting to be successful you need to have a plan in place before you need to use it. Here are 5 steps to allow your employees to work from home in the age of coronavirus.
If you’re in business today, there are three words that are critical for you keep in mind: Cybersecurity. Is. Important. As such, every business needs to have taken the time to put together a cybersecurity policy--a set of guidelines that instruct the business how to proceed with the highest level of security possible. We’ve taken the liberty of suggesting a few guidelines for your business to follow as you do so.
Most businesses that really lean on their IT go to great lengths and expense to keep those systems secure. Sometimes, however, all those firewalls and antivirus software don’t stop threats that come in from your staff. Today, we are going to go through the three different types of human error that your staff can undertake, and how to deal with each.
COVID-19, or coronavirus, has been a major global health concern over the past couple of months. At this point, it is clear that this disease could have serious impacts on the workplace. We wanted to provide a brief rundown of good workplace and network health practices, as well as a few pointers on how you can handle health-based employee absences.
On July 26, 2019, New York Governor Andrew Cuomo signed the Stop Hacks and Improve Electronic Data Security (or SHIELD) Act into law. With the passing of this law, businesses with operations in New York now must put certain safeguards in place to help protect the private information disclosed to them by New York residents.
Windows 7 might not be supported by Microsoft any longer, but millions of people are still using PCs that run the antiquated operating system. Since Microsoft has put an end to extended support for Windows 7 OS, a couple bugs have been found. Let’s take a look at what exactly is behind these issues and discuss your options.
Your cybersecurity is only as strong as your weakest link, and in many cases, that starts with your passwords. As the Internet of Things continues to become more ubiquitous in our homes and businesses, we risk exposing our private lives to the public-at-large. When we don’t manage our ‘always connected’ devices, we may be placing the security of our businesses and homes at risk.
As prevalent as cybersecurity threats unfortunately are today, many users tend to overlook major threats that they just aren’t focused on nearly as much: social engineering attacks. Social engineering attacks are just another means for a cybercriminal to reach their desired ends, and therefore needed to be protected against.
Over the past few years, there has been a general fascination with smart devices in the home, and to a certain extent, the office. These Internet of Things-powered appliances and gadgets can help add to the convenience of rote tasks and other everyday activities, but is it actually a good idea to use them? As it turns out, unless you’ve taken the proper precautions, maybe not.
Personal information is precious, especially in this increasingly digital day and age. This makes it incredibly important that you are doing everything you can to protect it in your business - whether it is your own or belongs to somebody else. Here, we’ll go over a few tips to help you better protect the data you’re responsible for.
As you oversee your business, there is a lot that you’re going to have to manage - including how much access your employees have to the data you have collected and generated throughout your operations. An access management policy can help you to accomplish this. Here, we’ll review a few key features you need to include in your strategy.
These days most consumers lean heavily on their payment cards. Whether they use credit cards, debit cards, or gift cards, consumers today are much more apt to use their card then they are to use cash. Why is this? Convenience mostly, but also there is a belief that using a payment card is more secure than walking around with a wad of cash in your pocket. Today, we will get to the bottom of the matter.
Cybersecurity should always be a priority for a business, and cyber criminals are always evolving their tactics. As a result, it pays to keep an eye on the horizon for the next looming threats. Here, we’re reviewing a few threats that cybersecurity professionals say that businesses should be concerned about in the near future.
Nearly everyone uses Google in some way or another. The search engine is, by far, the most common way people get answers and find content online. The margins aren’t even close, either. Currently, Google handles about 90% of search queries, while the second and third place goes to Yahoo and Bing, who share just below 5% of the search market share.
Google curates the search results on the fly based on a lot of variables including where you are located, what kind of device you are on, and your online surfing habits. This means Google is collecting a lot of information about how we use the web to give us a better experience. Let’s look at how you can control what Google knows about you to better protect your privacy.
Passwords… can be annoying, if we’re being honest. They are, however, also incredibly important to your business’ overall security strategy. We’ve all heard the suggestions on how to create secure passwords. As it turns out, there is more to modern security then that. Let’s explore a few options to help you create useful passwords, and take a look why passwords are only the beginning.
Disney+, Disney’s new Netflix-like streaming service launched with a lot of fanfare on November 12th. The service promises to offer Disney’s massive library of shows and movies, including content from all of the franchises the company has been buying up over the last decade. Unfortunately, many thousands of subscribers have come to find their credentials stolen, and the House of Mouse isn’t exactly giving anyone a clear answer.
This leads to the question, how would your business handle a data breach?
We all know how important it is to protect your desktop and laptop computers from malicious threats. Installing antivirus and security software is one of the first steps you take when you get a new computer, and for good reason. An unprotected device is at great risk. With that said, a lot of users don’t think about the threats that target their most-used devices, their smartphones.
Automation is sometimes misconceived as a troublesome or unreliable addition to business. It’s not about replacing people with machines, it’s about getting more done with the people you have. Having an attitude that doubts technology and believes nothing can replace human processing can quickly put you at a disadvantage compared to your competitors.
I want to start this article out by admitting that there are a lot of active threats out there these days. There are hackers--hacking collectives, actually--that’s whole purpose is to infiltrate businesses and steal data, money, and most often, the trust people have in their technology. One way to help keep your stuff secure is by relying on two-factor authentication.
Most people have acquired much of their familiarity with what a hacker is through the mixed representation seen in pop culture today… but does this impression match up to a hacker in real life? Popular entertainment unfortunately doesn’t differentiate between different hacker types and their motivations very well, so that’s what we’ll handle here.
Cybersecurity has become an overly complicated, increasingly important part of our lives. These days, many people are concerned about their privacy; who is collecting their data, what data is being collected, how to prevent information from being stolen, how to prevent breaches, etc. Then there are the traditional threats like malware, ransomware, and phishing that are not only becoming more common place but are capable of doing more damage.
I have a confession to make: it’s actually a pretty trying time to be in the IT business right now. A year ago, the Department of Homeland Security issued a statement for IT and Managed Service Providers (MSPs) about an increased risk of being targeted by cybercriminals.
For many, Facebook is a huge part of daily life, whether you want to think of it that way or not. There are more than two billion active users. That means if you pluck any 4 random human beings from anywhere in the world, at least one of them likely logged into Facebook today.
It’s important to know that you still have control over your information, so in today’s blog we’re going to talk about a few ways you can take control over your online identity on the world’s largest social network.
Imagine a world where there wasn’t a singular dishonest being. Passwords would simply vanish from our everyday lives, as we would not be paranoid of a breach or other forms of cybercriminal activity. The harsh reality is this will never become reality. Even worse, the cybercriminals don’t just skim for lack of passwords. Instead, the dishonest criminal goes even further; they take advantage of common or recurring passwords. So how do you know if your password practices are leaving you vulnerable? Google is here to help.
Cybersecurity is a big point of emphasis for the modern IT administrator. For the private business, it’s important for enough to be done in order to secure the business’ assets, and the integrity of the network itself. Unfortunately, when looking at public computing resources, there isn’t enough talent available to properly secure the systems that government entities rely on.
You may not think much about managing mobile data, but if your business routinely transmits sensitive data over the Internet, you should. Today, businesses of all types are using the Internet as a tool to drive their sales and marketing processes, but they don’t often consider the threats that come in when they use it for productivity. Today, we will go over what a Mobile Information Management solution is, and how to leverage it for your business.
If you’ve spent any time using a computer, you probably know what a URL is. It is the address of a website. It typically starts with “http//:” or “https://” and directs the Internet browser on where the user would like to surf. Nowadays a threat could be created by manipulating the URL. Today, we’ll take you through this threat.
Controlling your organization’s data relies on keeping your network and computing infrastructure free from threats. Early detection allows your business to actively confront risks before they develop into major issues. However, threats are becoming more difficult to detect in early stages, and one hidden threat could doom your entire business.
To keep your business’ network free from threats, and to keep your software working effectively, patching the software it uses is extremely important. The reason is that the threat landscape is always evolving. Recently, Microsoft announced that they have released an emergency out-of-band security update to fix two security issues, an atypical act for the software giant.
Gmail and the applications associated with it seem to have some level of inherent trust among users. We just don’t anticipate threats to come in via something from Google. However, it does happen, as a recent spat of phishing has shown using Gmail and Google Calendar. What’s worse, this particular scam has been around for some time.
How concerned are you with your business' cybersecurity? When you envision your business in the future, do you see yourself constantly fighting cyberattacks, or paying ransom? Hopefully not, but what if cybersecurity turns into one of the most difficult parts to maintaining a steady business? Today, we will look into the future and hypothesize what your business may need to do to defend against cybercriminals.
If you were given the task to look up a phone number, call a business, and navigate to the new-to-you area, would you be able to without your smartphone? For some of us the answer will still be yes, for a vast majority, the answer is no. Smartphones have quickly transitioned from a calling device, to one of our most valuable tools. Shopping, navigating, video streaming, and an unbelievable amount of other capabilities are all at the palm of your hand.
The way a business approaches its network security is a crucial consideration - especially to a business that is planning to have a future. This has contributed to cybersecurity becoming a multi-hundred-billion-dollar (per year) industry. In its short history, cybersecurity has had a huge impact on businesses, so we felt it would be useful to go through some of the highlights of its deployment.
With more than $16 billion being scammed from more than 16 million people, there is clearly an issue at hand that could use some expert insight. Those who are familiar with Steven Spielberg’s Catch Me If You Can might know that the movie was based on the memoirs of Frank Abagnale, former con man and longtime security consultant of the FBI. With his 45 years of experience with the bureau, Abagnale can safely by considered an expert in cybersecurity and fraud protection.
It’s not a secret (well, not anymore) that the big tech companies have influence. These companies, that include Apple, Google, Amazon, and Facebook, have been in the spotlight more and more as the argument of data privacy has gotten louder and louder. Public sentiment is starting to blow back on their business model--and since, Yahoo, once the predominant name in Internet-based services, was broken up and sold to Verizon for cents on the dollar after being at the center of the largest data breach in recorded history--there have been rumblings that there has to be something done to protect the public from major publicly-traded technology companies that use individual’s data in ways that some deem unethical.
Do you use different passwords on every account you’ve created? Are these passwords sufficiently complex? Chances are at some point you have used a repeating password. Remembering 35 different logins for 35 different applications is hard enough, so it’s not surprising that the majority of people will use the same password for many applications. Bad password practices are all too common. So, how can you fix this?
Maintaining network security is always a priority for the security-minded company, but if your organization’s strategy is to fly under the radar, you need a new plan. No business is too small to be a victim of a network breach. What most people who are tasked with coming up with a network security strategy for a small business don’t always realize is that threats are everywhere. Today, we’re going to take a look at planning a secure and reliable Wi-Fi strategy that doesn’t inherently add to your business’ risk.
There’s a reason that cybercrime is so popular: it is no longer reserved for those with extensive programming knowledge to profit from. Now, according to a report by Deloitte entitled Black Market Ecosystem: Estimating the Cost of “Pwnership”, there is a complete economy built around easily accessible hacking tools that don’t require specialized knowledge to leverage.
Some terms are thrown around like everyone knows what they are. This is especially the case with IT and technology solutions. Perhaps it’s a result of them being around for quite some time in professional environments, but it doesn’t help those who are unfamiliar with the technology. One term that we should all understand is “firewall,” as it’s omnipresent in the business sector, but it’s far from the only security solution you’ll need to guarantee safety.
Just like you can form habits to be more productive, you can also form habits that expose your organization to risky situations, namely security problems. Your employees in particular are likely to have picked up a couple of nasty habits over time, so it’s up to you to address them and keep them from becoming an issue in the long term.
Habits can be a very effective way to improve your internal productivity, but others can expose your business to security risks. Unfortunately, there’s a good chance that your employees may have picked up the latter. This means you need to learn what to look for, so you can identify any problem areas within your business - and work to break the habits that led to these problems.
It can be a real head-scratcher when one of your otherwise well-performing employees routinely falls for the simulated phishing attacks that you roll out as a part of your cybersecurity awareness strategy. For all intents and purposes, the person is a great employee, but when it comes to acting with caution, they fail. If you’ve made a point to prioritize your staff’s working knowledge of phishing attacks, do you replace this employee? We’ll take a look at it today.
65 of any currency doesn’t seem like a lot of money, but when you are dealing in the cryptocurrency Bitcoin, it adds up quick. One city on Florida’s Atlantic coast is finding that out the hard way after getting hit with a ransomware that stymied the city of 35,000 government’s ability to function. Let’s take a look at the situation that made the city’s leaders agree to pay hundreds of thousands of dollars to scammers.
For much of the last five years, we’ve been told that the Internet of Things was going to be the most important innovation since broadband Internet was introduced. This growth, while its largely happening under the proverbial radar, is happening. There are around seven billion “smart” devices in 2019 with expectations that it will be three times that by 2025. With that many Internet-connected devices, there are bound to be some that come with vulnerabilities, whether it comes from being designed poorly or not frequently updated with modern threat definitions. Today, we’ll take a look to see if the Internet of Things should be considered a threat to your business.
Avoiding risk is important for every business, unless your business is as a daredevil, then mitigating risk will have to do. Nowadays, with technology being an omnipresent element in most businesses, technology-based risks have grown in concert. As a result, the modern business owner and IT administrators need to understand the new risks and how to proactively work toward avoiding (or mitigating) them.
Two of Microsoft’s most popular relational database management systems, SQL Server 2008 and SQL Server 2008 R2 will be losing support on July 9, 2019. If your business continues to use one of these titles for its database management, you are running out of time before you need to upgrade. Today, we’ll take a brief look at what the software is used for and what options are open to you going forward.
According to the New York State Police, Otsego County residents have been experiencing and falling victim to a slew of scams that have resulted in the reported loss of nearly $70,000 so far in 2019.
Let’s take a look and talk about how you can protect yourself and inform your friends, family, and coworkers of this threat that is definitely feeling too close to home for many of us.
There is one constant in the business environment, and it’s that your organization will be placed in a constant state of being at risk the second you start to make a name for yourself. What a lot of organizations don’t understand is that it doesn’t matter how high or low-profile a business is, there will always be data on a network infrastructure that is valuable to hackers and is targeted by threats.
Cybercrime has morphed over the past decade or so. With unbreakable encryption making breaking directly into a network all but impossible, phishing, Distributed Denial of Service (DDoS) attacks, and other methods of indirect hacking have become en vogue. As a result, software companies are looking in some strange places to find building blocks for intrusion mitigation. One interesting emerging technology being used for this purpose is blockchain.
Small businesses often fall into the trap of thinking that they are too small to be attacked. This misconception could ultimately cost your business too much. The fact of the matter is that all businesses have data that is worth something to hackers, and we’re here to prove it to you and offer a solution to this dilemma.
There was a time when people didn’t have to worry about getting computer viruses on their cell phones. Nowadays, with the exponential growth of mobile technologies, including application development options, mobile malware has become a problem, and it can be a big problem for your business. Today, we’ll take a look at the growing mobile malware market, from the threats to what you can do to keep it from being a problem for you.
Businesses have a lot of data to protect and it’s not so simple as implementing a catch-all solution that can keep your data secure. In fact, it takes several solutions working in tandem to maximize data security. We recommend a combination of a unified threat management tool, a Bring Your Own Device policy, and a virtual private network solution. Let’s take a longer look at them:
Hopefully, you’ve heard of phishing at this point: the method cybercriminals use to scam their targets by impersonating someone that their targets would trust, requesting access credentials or other sensitive information. Did you know that there are specific kinds of phishing? Here, we’ll review one of the biggest risks to your business... spear phishing.
Network security is a priority for modern organizations of all kinds… after all, threats don’t often discriminate between the computer networks that they try to access. One kind of organization that should be especially diligent is the modern college or university. There are many different kinds of sensitive data stored there, including the personal, medical, and financial trifecta, along with intellectual property.
