How to Secure Your Company’s Valuable Devices

How to Secure Your Company’s Valuable Devices

As small-business owners focus more on keeping their digital information out of harm’s way, many can neglect to provide the same level of security for their physical assets — including company-owned cell phones, laptops, tablets and digital cameras.

The good news is that a growing number of affordable products, beyond traditional alarm systems, can help keep your physical facilities and equipment safe. Here are six tools to consider if you’re looking to secure your company’s valuable devices as well as the data that’s on them:

1. A Keypad, Key Card or “Biometric” Lock System
Digital lock systems can replace a traditional key with a digital combination, employee identification card, finger print or retina scan. Systems with keycards or passwords can be centrally controlled and monitored, and they are more convenient than traditional locks and keys. Prices for these systems can start as low as $100 per door.

Some entry-level options include a LockState keyless lock (around $120) and the BioAxxis Biometric Deadbolt ($225).

2. Device-Tracking Software
With more employees taking company equipment home, there’s a greater chance that some items can go missing. Installing tracking software can help you locate and retrieve these devices when they go missing.

Tracking software uses global positioning system coordinates — just like the GPS in your car and the mapping software on your mobile phone — to pinpoint where your missing device is. Some systems also can locate your mobile device through proprietary technology if someone uses it to access the Internet.

There are free, open-source options such as Prey, as well as numerous products with additional features that you can buy. Absolute Software’s LoJack for laptops, for example, starts at $40 for one year.

3. Portable Device Locks
Laptops and other portable technology devices are among some of the most commonly stolen business items. But installing locks that tether them to desks or other hard-to-move objects can reduce the likelihood of theft. Such locks typically start around $20 and can go as high as $100, depending on the brand and style.

Some examples include Kensington’s combination laptop lock ($20) as well as its iPad case/lock combination ($60).

4. Non-Removable Identification Labels
Metal tags engraved with company information can be attached with weather resistant and tamper resistant “high bond” adhesive to business equipment that can be easily stolen. Thieves know that it will be harder to sell stolen devices with permanent labels or to use them in public.

Prices vary depending on the type of label and quantity ordered, but expect to spend about $8 apiece for metal labels with adhesive backing. Two companies to consider for custom metal labels are Metalmarkermfg.com and YEUELL.

5. Motion-Sensing Lights
Motion-sensing light technology systems trigger lights when there is activity in the immediate vicinity, alerting employees to suspicious activity. These detectors can work with any light, whether in a secure area inside your office or in a dark area outside.

Simple outdoor motion-sensing spotlights are relatively inexpensive, such as the Lithonia double-head spotlight (about $120). The price of indoor systems can vary depending on the size of your space.

6. New or Updated Surveillance Equipment
Unless you’re a relatively new business, chances are your security cameras and monitoring system are outdated. That is, if you have any at all.

For less than $500, several systems allow you to view your security camera feeds from any device, using a Wi-Fi network. Options include an entry-level Uniden three-camera wireless system ($300) and the Lorex four-camera set ($650) which is designed for mobile viewing.

The physical security of your business and the devices you use is as important as the safety of your business data. Using one or a combination of these tools can help ensure that your business is not an easy target for theft.

By, Senorita

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Ideas to earn money , Internet , Marketing , Money

How to Protect Your Business from Malware in Custom Apps

How to Protect Your Business from Malware in Custom Apps

When Pakistani IT professional Sohaib Athar inadvertently live-tweeted the American raid on Osama bin Laden’s compound, he didn’t expect to become an overnight internet celeb. And he certainly didn’t expect the follow-up: A hacker installed malware on Athar’s blog. His millions of new visitors–and potential new customers–were at risk of becoming malware victims.

Security attacks on businesses–from single-person operations to some of the corporate world’s giants–are on the rise. It’s a new and increasingly ugly world out there for companies doing business on the web.

Even corporations with enormous resources and teams are vulnerable. Earlier in 2011, hackers breached the credit card and personal data of at least 70 million Sony PlayStation Network users. And RSA, a Bedford, Mass.-based security firm that provides security to more than 90 percent of the Fortune 500, was itself compromised by hackers who exploited a hidden flaw in certain software the company hosted. Sony expects a $3.2 billion net loss for the 2010-2011 fiscal year, in part because of the attack. And RSA now faces persistent concerns that its once invulnerable security products have been rendered less effective.

At the core of these attacks is a new family of business security risks. Not only are web criminals taking advantage of weaknesses in commercially available business computer hardware and software, they’re exploiting the growing number of hidden flaws lurking inside the purpose-built, custom business applications that are usually found on public company websites. These application vulnerabilities have geeky, almost harmless sounding names like SQL (pronounced “sequel”) injections and cross-site scripting errors. But they’re far from harmless. The attacks are real, profound and potentially devastating for businesses and their customers.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Internet , Marketing

BlackBerry Management Center: Reining in Smartphone Chaos

BlackBerry Management Center: Reining in Smartphone Chaos

If smartphones are a small-business boon, they’re also a potential liability.

Not only do businesses who offer them to employees have to keep track of who is using what device, they’re also loaded with information you don’t want “just anyone” to have access to. (If you’ve ever had to replace a lost or stolen company smartphone, you know what a hassle it can be.)

The Waterloo, Ont.-based smartphone giant Research in Motion recently debuted its new BlackBerry Management Center — basically a do-it-yourself tool for managing three to 100 BlackBerry devices. It’s free, which makes it an appealing choice for companies that can’t afford expensive IT services to handle their growing arsenal of smartphones.

It’s also one more reason RIM hopes businesses will continue to use its products. Google’s recent blockbuster buy-out of Motorola Mobility means these business oriented technologies are more important to the struggling smartphone maker than ever before.

Here’s a first look:

What it is: BlackBerry Management Center lets you manage your business’s BlackBerry devices from anywhere using an online Web application. You can manage a number of things through the service like setting up email, contacts and calendars for each of your company phones. If a phone gets lost, you can lock it and display a message telling whoever finds the phone how it can be returned. Worst case scenario: you can use BlackBerry Management Center to wipe the data from a lost or stolen phone, including its microSD card. You can also restore the settings and content from a lost or broken phone onto a new phone.

What you might like: Managing user phones from the Web application is as easy as promised, although you’re going to have to do some legwork to sync company devices with your BlackBerry Management Center account. The hard part mostly boils down to retrieving several ID numbers attached to your various BlackBerry devices as well as making sure apps like BlackBerry Protect and email are properly configured on each device. Once that’s done, using the service is pretty much a matter of navigating a few simple menus that display your options for each smartphone.

Another useful feature: Employees who use their personal Blackberry devices in your business can add them to the service. In that case, users can determine how much control BlackBerry Management Center has over their device.

What you might not like: The mobile work crowd is diverse. And if they’re not all using BlackBerrys, they’re not all controlled by this product. Which absolutely limits how much order the Management Center will bring to the mobile chaos in your shop.

What to do: If your shop has a bring-your-own-gadget-to-work culture, Management Center is not for you. It simply does not support a broad enough array of devices to make it worth the hassle. But if your business has even a couple of BlackBerry devices in the mix, this service could provide some peace of mind.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Ideas to earn money , Internet

Ways to Back Up Your Smartphone

Ways to Back Up Your Smartphone

Apple iOS
Apple’s new service for protecting and simplifying mobile data access is iCloud Storage. The service automatically backs up mail, calendar and contacts information from users’ iPhone, iPad, Mac or PC for automatic access across different devices and is free for up to 5 GB of storage. The service pushes information out to devices over the air so there’s no worry about docking to keep things in sync. It even backs up purchased music, apps, books, device settings and app data daily over Wi-Fi. All a user needs to do to restore or switch to a new device is enter their Apple account sign-in at setup, and iCloud does the heavy lifting.

Android
If you’re looking for a more comprehensive Android backup solution that will save third-party apps, data and settings, the best you’ll be able to use without rooting your phone is MyBackup Pro ($5 plus 50 MB online storage for free and $1 to $2 per month for more online storage). The program runs automated scheduled backups, supports a wide range of Android phones and will back up app install files that do not have copyright protections programmed into them. If your phone is rooted, one of the most thorough choices on the market is Titanium Backup ($5.99 for Pro), which backs up all apps, all data associated with them and the Android Market links that show you’ve paid for them. It also saves most phone settings and data. A free version saves to the device’s SD card, but the Pro version will integrate with Dropbox.

BlackBerry
Until very recently, the gold standard for BlackBerry device backup was through SmrtGuard ( $44.99 per year), a fully fledged suite that not only backs up data but also offers anti-virus, anti-spam, an emergency beaconing system, remote wipe and a load of other bells and whistles. But it’ll cost you plenty. Though it is still in beta, Research In Motion’s BlackBerry Protect (appworld.blackberry.com) gives BlackBerry users a free way to wirelessly back up and restore contacts, calendar appointments, memos, tasks, browser bookmarks and text messages. And folks with a lot of apps can supplement either option with the shareware BlackBerry Swiss Army Knife (free), which saves apps and app data to the device’s memory card.

Cross-Platform
The every-other-platform answer to Apple’s iCloud Storage, m:IQ (free) works on Android, BlackBerry, Symbian and Windows Mobile. In addition to backing up all the things iCloud does, m:IQ also saves call log, voice mail and texts. Though data won’t automatically be synced into a native app on your desktop, it does go into an easily accessible web account and any online changes are automatically pushed back out to the device wirelessly.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Ideas to earn money , Internet

10 Time Management Tips That Work

10 Time Management Tips That Work

Chances are good that, at some time in your life, you’ve taken a time management class, read about it in books, and tried to use an electronic or paper-based day planner to organize, prioritize and schedule your day. “Why, with this knowledge and these gadgets,” you may ask, “do I still feel like I can’t get everything done I need to?”

The answer is simple. Before you can even begin to manage time, you must learn what time is. A dictionary defines time as “the point or period at which things occur.” Put simply, time is when stuff happens.

There are two types of time: clock time and real time. In clock time, there are 60 seconds in a minute, 60 minutes in an hour, 24 hours in a day and 365 days in a year. All time passes equally. When someone turns 50, they are exactly 50 years old, no more or no less.

In real time, all time is relative. Time flies or drags depending on what you’re doing. Two hours at the Department of Motor Vehicles can feel like 12 years. And yet our 12-year-old children seem to have grown up in only two hours.

Which time describes the world in which you really live, real time or clock time?

The reason time management gadgets and systems don’t work is that these systems are designed to manage clock time. Clock time is irrelevant. You don’t live in or even have access to clock time. You live in real time, a world in which all time flies when you are having fun or drags when you are doing your taxes.

The good news is that real time is mental. It exists between your ears. You create it. Anything you create, you can manage. It’s time to remove any self-sabotage or self-limitation you have around “not having enough time,” or today not being “the right time” to start a business or manage your current business properly.

There are only three ways to spend time: thoughts, conversations and actions. Regardless of the type of business you own, your work will be composed of those three items.

As an entrepreneur, you may be frequently interrupted or pulled in different directions. While you cannot eliminate interruptions, you do get a say on how much time you will spend on them and how much time you will spend on the thoughts, conversations and actions that will lead you to success.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Ideas to earn money , Internet , Money

Is Technology Killing Your Productivity?

Is Technology Killing Your Productivity?

Office technology can enhance productivity by automating time-consuming drudgery and offloading brain-draining tasks such as managing budgets and organizing records. But the same technology can also prove to be time-wasters, especially if used incorrectly.

Business owners often come to rely too much on a specific tool or app because of its novelty or because it’s what they’ve been using for years without giving much thought to whether it’s making their companies and employees more productive.

Take Bryan Council, co-founder and president of Birmingham, Ala.-based broadcast news-monitoring firm Metro Monitor, for example. Two years ago, he reevaluated the 18-year-old company’s technology processes. One of the biggest changes he made was switching from using Microsoft Office software such as Word and Excel to the online Google Docs applications. Service upgrades are made automatically and the web-based automatic version tracking functions eliminate the need for employees to pass documents around or rename files after making changes.

“Conservatively, I would estimate we see about three hours a week in time savings [after switching to Google Docs],” Council says.

We asked small-business owners about which applications they’ve found to be the biggest time-wasters. Here, they’ve identified the top seven and offer solutions for how to improve efficiency.

1. Contact management apps
Businesses often don’t have client contact information stored in one centralized application. Instead, employees carry separate contact lists spread over numerous apps like Apple Address Book and popular email services including Microsoft Outlook and Google’s Gmail. It wastes time having to ask around about who has the relevant contact information or, worse, not being able to find it at all.

Solution: For the same reason he likes Google Docs, Council suggests moving contacts online with Salesforce, a database that can be accessible by any employee, anywhere, with fields for recording details about client interactions. Pricing ranges from $5 to $25 per user per month, depending on the features.

2. Social media apps.
Even when used for business promotion, people can waste time using social-media apps such as Twitter, Facebook and LinkedIn if they jump at every message or troll constantly for mentions of their company or other topics.

Solution: First, don’t use a web browser for monitoring social media apps. Active social networkers should use a free dashboard app such as TweetDeck or Hootsuite, says Glenn Phillips, president of San Francisco-based computer consulting firm Forté. Dashboards aggregate multiple services for a quick overview and allow users to schedule several social posts at a time.

Also consider checking messages at regular, predetermined intervals. For Twitter, Council suggests creating saved searches that collect mentions for later reading. He also recommends setting up a separate email account that’s dedicated specifically for social media so your updates don’t distract you from important work email.

3. Email
If not prioritized appropriately, checking and responding to email can be a time-killer, warns Jared Goralnick, founder of Walnut, Calif.-based AWAYfind, a maker of email alert software. People often respond to emails in the order that messages arrive rather than in order of importance, he says.

Solution: Goralnick recommends moving non-urgent emails that might take more than a couple minutes to handle to a task list that prioritizes them. If you are still using Microsoft Outlook 2003, upgrade to the 2007 or 2010 versions, which provide better, faster searches — eliminating the need for meticulous filing.

4. Microsoft PowerPoint
Two extremes can hinder your productivity as well as that of your audience: Not having enough information on a slide can make your presentation hard to follow, while too much information might be too much work for you and mind-numbing for others.

Solution: Keep information on slides minimal, but with bullets to highlight key points, recommends Tim Crawford, chief information officer of Foster City, Calif.-based small-business IT consulting firm All Covered. The real “meat” of the presentation, he says, should be delivered verbally. If extra detailed information is necessary, one option is provide it afterwards as a hand-out.

5. Instant Messengers
Employees may conduct prolonged exchanges over instant messengers including AOL Instant Messenger and Google Chat. As with texting, the problem is that it’s usually faster to have one full conversation rather than a series of conversation snippets.

Solution: Save instant messaging for communicating with employees in remote offices or who aren’t within earshot. When you do send a message, keep it simple. If the conversation requires more than a few messages back-and-forth, try the telephone.

6. Microsoft Access database
Business users such as attorneys often use Access to store the thousands of records required for a complex case. But starting at $200, this software has limitations and can be slow when it comes to searching the database, says Bill McComas, a partner in Baltimore law firm Shapiro Sher Guinot & Sandler.

Solution: For large projects that include thousands of documents, try using a structured query language (SQL) database such as Oracle’s cloud-based offerings, which are designed specifically for managing large amounts of data. The entry-level Oracle Database XE is free. The more advanced Standard Edition One is $180 per person per year. Both require an experienced database programmer to set them up.

For small projects, consider using Evernote. You can take notes directly in this free app as well as drag and drop documents, PDFs, spreadsheets and even audio and video files. And a browser plugin captures Web pages. A $5 monthly fee adds backup to the cloud and features additional search capability and version tracking of documents.

7. Google Analytics
While Google Analytics can be a useful, free tool for monitoring traffic and trends on a Web site, it can also become addictive for people who become “fixated,” constantly checking how a business site is performing, says Phillips.

Solution: Google’s Web metrics might be more important for some businesses than others. Unless your company is web-based and your traffic is a direct function of your revenue, it’s probably “sufficient” for most companies to check this app once every couple weeks, Phillips says.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Ideas to earn money , Internet

Dumping Your BlackBerry? Join the Club

Dumping Your BlackBerry? Join the Club

If your New Year’s resolutions include trashing your BlackBerry, you’re not alone.

As many as 60 percent of users at small companies plan to exchange their BlackBerry phone over the next 12 months for another platform such as Apple’s iPhone or Google’s Android, according to a new report from Boulder, Colo.-based research firm Enterprise Management Associates. Some 30 percent of users at larger, enterprise-size companies are expected to make the same change, the report says.

“If you look at the amount of adoption of Android and iPhones — devices that didn’t exist a few years ago — that shows that this trend [of declining use of BlackBerry phones for business] has been going on but is accelerating now,” says EMA managing research director Steve Brasen, who wrote the report.

The report shows 52 percent of users at larger companies (10,000 employees or more) primarily use a BlackBerry for work, while only 36 percent said they plan to still be using a BlackBerry within the next year. At smaller companies, (fewer than 500 employees) only 16 percent said they primarily use a BlackBerry phone. Of those, 7 percent said they’ll be using one next year.

BlackBerry phones are principally provided to employees by owners of larger businesses, Brasen says.

The report — which surveyed end-users as well as business information technology managers — says only 16 percent of users are “completely satisfied” with their BlackBerry phones, compared to 44 percent for the iPhone and 34 percent for Android. “The impression we have from the research data points to a lack of availability of business-related applications [among BlackBerry users],” Brasen says.

Personal preference is another factor. “We also noted several cases where end-users were carrying two smartphones: a BlackBerry for work and another type of phone for their personal purposes,” he says. “They don’t want to use the BlackBerry for personal reasons. But, who really wants to carry around two smartphones?”

Last week, BlackBerry maker Research In Motion experienced a massive service outage that affected millions of users in the U.S., Europe, the Middle East, Africa, India, Brazil, Chile and Argentina. RIM said the blackout was caused by a “core switch failure” that generated a backlog of messages.

Meanwhile, EMA’s report says small businesses are primarily supported by Android (43 percent) and iPhone devices (27 percent). Over the next 12 months, 50 percent of small business smartphone users say they expect to use the Android platform, while 29 percent plan to use an iPhone.

“Android is particularly strong in smaller organizations due to the relatively low cost of the devices,” the report says. “Since the Android platform is available on a variety of different physical devices offered by a host of different manufacturers, competition in the marketplace drives down overall prices of Android devices and encourages the availability of some lower-cost smartphone options.”

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Ideas to earn money , Internet

What to Do If Your Business Gets Hacked

What to Do If Your Business Gets Hacked

Your business has been hacked. It’s bad news, but it doesn’t have to cripple your operation.

Cyber-crooks increasingly are targeting small businesses to steal information such as passwords that lead to bank account balances and credit lines, customer data and sensitive product details. Hackers also may try to virtually hijack company computers or websites and use them to attack others online. They know most small businesses lack the security expertise, data protections and response tools that large companies have at their disposal.

Falling victim to a hack can be costly. Malicious or criminal data breaches on average cost victim companies $318 per compromised record in 2010, according to Traverse City, Mich.- based research firm Ponemon Institute.

But having a security recovery plan can make the process smoother and less expensive. Here are six critical steps to take if your business has been hacked:

1. Find out what happened.
To respond effectively, get a full picture of what happened, including how the hackers got in, which computers and accounts were compromised, which data was accessed or stolen and whether any other parties — such as customers or business partners — were affected.

This can be a difficult process involving costly security consultants, but you may be able to get less expensive help from companies you do business with, including your Internet service provider, security software company or website hosting firm. But the best route may be to contact your local, county or state police computer crimes unit and the FBI, which can do forensic analyses and provide valuable guidance.

2. Seek legal advice.
If you don’t have a special cyber-insurance policy that will provide an experienced attorney, you may need to hire one to navigate the legal issues. For instance, when hackers gain access to the personal information of customers or employees, you likely have a legal obligation to notify them, says Todd B. Ruback, a Warren, N.J.-based privacy attorney who specializes in data breach response.

You may also be required to alert state authorities. Because there isn’t a federal data-breach notification rule, companies that do business nationally may have to comply with as many as 46 different state laws. You also could face liability lawsuits from affected parties.

3. Communicate early and often.
Quick and honest communication with affected employees, customers and partners — about what happened, what you’re doing about the problem and what they need to do — is often more than just a legal requirement. It may be necessary to salvage your business.

“A data breach can be fatal for a small business” if monetary losses, the cost of rebuilding or reputation damage is high, says Michael Kaiser, executive director of the National Cyber Security Alliance, a public-private partnership based in Washington, D.C. “Maintaining trust in a crisis is the best way to hold onto your customers.”

4. Eliminate the problem.
To limit the damage, you may need to take disruptive and costly steps, such as removing infected computers and shutting down your website while you clean up. Consider reformatting hacked computers and restoring data with clean backups, or simply buy new computers.

If hackers exploited a software flaw, apply a “patch” from the software maker that fixes the problem or implement a recommended workaround. If they stole passwords, secure your accounts and set new, complex passwords that will be hard to crack.

5. Rebuild.
Put in place the technology and policies to help fend off future attacks. Make sure your computer operating system and other software are current and, if possible, receiving automatic updates to fix bugs. Consider designating one computer for online banking only, meaning no Web surfing and no email that might expose you to malware designed for financial fraud.

6. Revisit your security plan.
Make sure your security defenses are running properly and that data is being backed up securely. Your IT manager should consider setting up activity “logging,” or tracking, on all devices on your network so any future problems can be investigated more easily, says Brian Honan, principal consultant at Dublin, Ireland-based security firm BH Consulting.

Check with customers, partners and vendors to see what they’re doing to protect your data. Consider buying a cyber-insurance policy if you don’t already have one. Also, create a disaster recovery plan and train employees so everyone can respond quickly and calmly if faced with a hack or other crisis again.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Ideas to earn money , Internet

How to Avoid One of the Biggest Email Hacking Threats

How to Avoid One of the Biggest Email Hacking Threats

You might have heard of something called “spear phishing.” It’s an attempt to hack your computer or your accounts, or to con you out of money, by using an email message that’s tailored to you or your company. A phisher piques your interest with a conference invite, resume or invoice. But it’s a ruse to get you to provide sensitive information such as passwords, click on an infectious attachment or website link, or participate in a shady deal.

These personalized, deceitful messages can be crafty and believable enough to slip by spam filters and other security protections and to trick you — the last line of defense.

About one in every 300 emails in 2011 was a phish, according to security software maker RSA, a unit of EMC Corp. Entrepreneurs should be concerned because these emails are increasingly surfacing at the office. In a separate 2011 RSA Workplace Security survey, 45 percent of respondents said they had received a phish in their work email. Often, they are personalized “spear” messages to specific employees, sometimes including details mined from LinkedIn and other social networks to make them more plausible.

Spear phishing emails can be alarmingly effective. RSA, Google and a slew of large companies had valuable intellectual property stolen over the last two years in attacks that began with a spear phish of an employee. “They’re aiming for fewer targets, but they’re aiming for a higher yield,” says Jason Hong, an associate computer science professor at Pittsburgh’s Carnegie Mellon University and founder of Wombat Security Technologies, maker of a phishing filter and educational tools for companies.

Small companies have been targets of spear phish attacks, too. Last spring, an employee in receivables at a Wichita, Kan., ServiceMaster franchise opened an email tailored to her and unleashed a virus that scrambled her computer and sent spam to her contacts. The franchise’s mail server was also upended and shut down for most of the following two days while a technology consultant cleaned up, the company says.

Some spear phish attacks can cause more financial damage. Take PrintedArt, a Franklin Lakes, N.J., company that sells artwork. It has received several emails in recent months from supposed customers requesting unusual shipping arrangements requiring the firm to wire thousands of dollars to international shipping agents. But Klaus Sonnenleiter, the company’s president, became suspicious that the agents were impostors and refused the orders.

Here’s how you, too, can avoid getting reeled in by a phisher.

Use technology as the first line of defense.
Security technologies can block many phishing attempts before they reach anyone. Do the basics: use up-to-date antivirus software and spam filtering, and keep the software on your computers current with the latest updates — especially Adobe products and Java, whose bugs have been heavily exploited by malware writers.

Specialized anti-phishing technologies can also help. Major web browsers use built-in blacklists that provide a safeguard against known phishing websites. Google’s blacklist is used in the Firefox, Safari and Chrome browsers, while Microsoft’s blacklist is used in Internet Explorer.

And there are filters that use “heuristics,” a set of rules used to detect phishing that can block some attacks but can also generate false alarms. Microsoft includes this technology in SmartScreen, a feature in Exchange, Hotmail and Internet Explorer, and many security-software makers include heuristics in their product suites.

Teach employees how to spot these phishing emails.
Unfortunately, spear phish are especially adept at beating security technologies because they often look like legitimate messages. When they contain malware, it’s often tweaked to get past major antivirus products. And when emails direct victims to dangerous websites, the sites are often new and unknown to blacklists.

You must prepare employees to identify these types of emails. Experts say educating workers and instilling a healthy level of suspicion are effective in foiling phishers, who often use emotional triggers to create a sense of fear or urgency.

About 50 percent of people will fall for a reasonably good phish, say both Wombat and PhishMe, which provide anti-phishing training services. But they say employee education can whittle that number down to 10 percent or less.

Training programs usually start with sending employees fake phishing messages. If they fall for the ruse, they are given immediate online training about how to recognize scams and protect themselves by, for example, scrutinizing email addresses and website URLs.

If in doubt about the safety of an attachment, you can tell employees to forward the message to a Gmail account and view it safely in Google Docs, rather than download it to their computer, suggests PhishMe co-founder Aaron Higbee.

You also can encourage employees to use instant messaging and work together on documents using collaboration software, he says, making your company less reliant on unsecure email.

By, Sonumati

April 21, 2021
0
Affiliate Marketing , Blog Building , Content Marketing , Ideas to earn money , Internet

Free Tools for Improving Online Security

Free Tools for Improving Online Security

Many small-business owners fall below what some people call the “security poverty line.” Bootstrapping entrepreneurs can be especially vulnerable to hackers because they don’t have the money or personnel to buy, install and maintain the fancy security products large companies take for granted.

On the hunt for easy pickings, hackers are attacking these security-poor businesses, typically with indiscriminate, automated assaults that could be stopped by basic security tools and computer hygiene. Seven in 10 of the cyber break-ins analyzed in Verizon’s 2012 Data Breach Investigations Report occurred at organizations with 100 employees or less.

The good news is that it can be surprisingly easy and inexpensive to mount a quality defense on a budget. We spoke with Grady Summers, a vice president at Mandiant Corp., an Alexandria, Va.-based information-security firm, and former chief information security officer at General Electric Co., to assemble a list of easy-to-use, free tools that any company — including those without a technology staff — can use to create a comprehensive security program to protect its network, computers and data.

While no security program is perfect, applying these free tools can defend against the most common attacks. “A small business with a part-time IT person could probably do this in a day,” Summers says.

Defend your network.
Most of the threats to company networks come over the Web, Summers says. He recommends using filtering software to block dangerous websites, including “phishing” sites designed to trick unwitting employees into falling for a scam or infect their computers with malware.

San Francisco-based OpenDNS offers a free, cloud-based Web filtering product that can protect a single PC or mobile device, or an entire network, from known phishing sites. OpenDNS’s paid services offer more security features and the ability to block porn and other sites companies may not want people to access while in the office.

To find any weak spots on your network, run a scan. Lumension Security of Scottsdale, Ariz., offers a free vulnerability scanner for checking networks of 25 or fewer computers. It can identify software vulnerabilities and misconfigurations that could put you at risk.

Also, scan your website for security vulnerabilities. Hackers often break into customer databases by striking company websites or hack sites to plant malware that will infect visitors. Qualys, a Redwood Shores, Calif., security company, offers FreeScan, a free tool for detecting security vulnerabilities in Web applications and finding malware infections and threats in websites. Users are limited to five free scans.

If you have a capable in-house technology staff, you also may want to consider using Security Onion, a compilation of free tools for intrusion detection and network monitoring.

Secure your computers.
Protecting computers on your network starts with firewalls and antivirus software. Free basic firewalls now come with Windows and Mac computers, so make sure they’re turned on. Antivirus protection will require a download.

Among the most popular free antivirus programs is one from AVG. Another is Microsoft’s free basic security product Microsoft Security Essentials. It’s made for consumers and businesses with 10 PCs or fewer. And firewall giant Check Point Software of Redwood City, Calif., has a free security suite that includes antivirus and a ZoneAlarm firewall that monitors traffic leaving your computer, as well as standard inbound traffic. In addition, U.K.-based Sophos offers free antivirus software for Macs.

Eliminate security vulnerabilities by applying the free fixes software makers regularly issue. To make that easy, use automatic update features for Microsoft, Apple, Adobe and other products you use. Windows users can make sure all their programs are current by using the free tool FileHippo.

Protect your data.
Full disk encryption software can make company and customer data on your devices unreadable to unauthorized people. Free open-source software TrueCrypt is available for Windows, Mac and Linux machines and can be used to secure data on thumb drives and other storage devices. For Mac, Apple offers free full disk encryption dubbed FileVault2 to users with the Lion operating system.

If you have particularly sensitive information, Summers recommends creating a special encrypted area for that data with its own password. You can create this sort of encrypted “volume” with TrueCrypt and a similar Apple feature.

Also back up the data on your computers in case of loss, theft or damage. With Mozy, you can backup two gigs of data for free offsite and encrypted in Mozy’s data centers.

By, Sonumati