Buckeye IT blog

At this point, it’s hard to believe that anyone needs to be told that cybersecurity is important, but some organizations are still doing the bare minimum to protect their network and data. That can’t go on forever. Today, we thought we would discuss how to put together a cybersecurity policy that covers all the bases, and will give you the peace of mind that you are actively combating today’s most present threats to your network, infrastructure, and data. 

When it comes to protecting your business, cybersecurity is a huge consideration that must be kept in mind. However, it isn’t the only consideration. Some of the biggest threats to your business can actually come from your own team. Let’s go over the three kinds of insider threats that you need to be on your guard against, and how to avoid them.

Millions of people are still using the Microsoft Windows 7 operating system despite it being completely unsupported. When Microsoft pulled the plug on support for the OS in January, most industry professionals expected there to be some exploits found pretty rapidly. It turns out that the very first exploit was actually Microsoft’s fault, and that Windows 7 support had a little life in it after all. 

Over the past two decades, business technology was largely separated between information technology (IT)--that is, the business’ computers, networking equipment, and peripherals--and operational technology (OT): all other technology. As IT advanced, so has OT, which today presents many of the same risks that IT always has. Today, we will take a look at how to secure your business by focusing on where your IT meets your OT.

A few years ago, there was a decision made to make a concerted effort by manufacturers to create their products, but to also create those same products with “smart” technology inside. Basically, because of the rampant innovation of Internet-connected systems, devices, appliances, and knick-knacks of all types we have to ask the question: Are we being dumb for using all these smart devices? 

Unless you run a business in which each and every employee is responsible for identical tasks, you are going to encounter the need for variable permissions among your staff so that your data can be better protected. One effective means of enforcing these permissions is through an access management policy. Let’s review a few components you should include in such a policy.

With data being such a valuable asset today (especially personally identifiable data), you can’t afford to let any of the information your company has access to fall into the wrong hands. The same goes for all of your data, especially that which concerns your employees or your clients. Let’s go over a few tips that should help you keep this data safe, step by step.

Over time, your business will accumulate a lot of data, including some that certain employees or departments will have no need to see (or perhaps shouldn’t see). An effective way of keeping eyes from wandering is through an access management policy. Let’s go over a few elements you ought to prioritize in your approach to controlling internal access.

Let’s take a look at a real-world scenario that I ran into a few weeks ago with a family friend. For the sake of this story, let’s call him Bob. Bob lost access to a pretty important online account.

Microsoft is just days away from retiring not just one, but two of its most popular operating systems. The software giant has made a point to run a major campaign warning people who are still using Windows 7 that they are going to lose support after the January 14, 2020 deadline; but, as of this writing, there are still over a quarter of desktop users running the software. With the deadline looming, we thought we’d look at what this means for users and go through some of the options they have.

Cybercriminals aren’t exactly holding back when it comes to attacking businesses, which means that businesses can’t rest on their haunches as the new year rolls in. Let’s take a few moments to look toward the near future, and the issues that cybersecurity professionals are warning us about.

Trend Micro, the developer of the popular antivirus program, has attracted some unwanted attention after a former employee managed to steal customer data and sell it to scammers. These scammers then use this data to call Trend Micro customers. If you use Trend Micro’s antivirus solutions, you’re going to want to pay close attention to any calls you get.

It can be easy to slack off when it comes to good password practices. Many users still use the same password across multiple sites and often don’t use secure passwords. Password managers make this a lot easier, but it’s really two-factor authentication (2FA) that can make all the difference. Strong, unique passwords are still important (not all accounts offer two-factor authentication) but let’s talk about why you should always enable two-factor or multifactor on all of your accounts when possible.

In many ways, explaining why sufficient cybersecurity is important for your business has become redundant - especially when it is much more important to understand how this cybersecurity needs to protect you. The threats to data and privacy are known, but no less potent. In order to counter them, you need to make sure you have what you need to protect your business - starting with a few key considerations.

Your business relies on its servers in order to function - which makes it incredibly important that these servers are sufficiently protected. There are a few practices that you can put into place that will help you to secure your server room. Let’s work our way from the inside out as we review them.

Every IT administrator today needs to be concerned about cybersecurity, as does every private business when it comes to its network. However, the same can’t really be said for the computing resources of the government and other public entities… simply due to the lack of talent available.

There are hundreds of things that a business owner has to do, so managing the security of the data coming in and going out from mobile devices might not make the hierarchy of considerations that need to be immediately addressed. Today, we will take a look at why paying attention to the mobile end of your business is so important, how Mobile Information Management (MIM) helps with that, and how MIM fits in with the rest of your mobile strategy. 

Common opinion more or less states that passwords aren’t so much “necessary,” as they are a “necessary evil.” The best practices that are recommended to maintain the efficacy of passwords today can certainly feel excessive - which tempts many users into ignoring these practices, to the detriment of their security. Fortunately, many large companies - like Google - are trying to make passwords easier to manage.

If you have a bank account or a credit card, chances are you’ve been made aware of a hack or a data breach. Big organizations are more frequently being breached, forcing them to run damage control for the often millions of customers affected. News coverage often bashes these big organizations, but what about smaller ones? The truth is, smaller businesses are breached just as often, with the consequences being just as severe. 

Patching your software is one of the most important, yet ignored, tasks in computing. Keeping all of your software up to date with the latest threat definitions can help your business’ IT stay secure. Recently, in a somewhat atypical move, Microsoft has announced that they have released an emergency out-of-band security update to fix two critical security issues.