Categories
Industry Insights IT Security IT Solutions Managed IT Services

What is CyberSecure Canada

Many organizations are receiving calls about this service so you may be asking what is CyberSecure Canada?

The Canadian government launched CyberSecure Canada.  It is a national cybersecurity certification program for small and medium-sized organizations.

Their mandate is to enhance organizations competitive advantage by letting their partners, client, and supply chain know they are a certified trusted business partner.

What is CyberSecure Canada Certification?

The Cybersecure Canada certification program helps organizations implement certification requirements so they can protect themselves against cyberattacks.  This will ensure they protect their business, their clients, and partners.

This program is a proactive step toward securing Canadian organizations from cyber threats.  The program is designed for organizations with less than 500 employees.

Why get CyberSecure Canada certified?

  • It will improve your competitive edge within your industry.
  • It will reassure your clients, partners, investors, and suppliers.
  • It will show that valuable data is secure to a standard.
  • It will limit impacts to your organization from cyberattacks.
  • It will reduce financial loss, reputation damage and protect critical infrastructure.
  • It will ensure your organization is eligible to compete in opportunities that require cybersecurity certification.
  • It will show that your security is adequate.
  • It will show that you are not risky organization.
  • It will Lower your cyber insurance premiums with certain carriers.

Is it hard to get CyberSecure Canada certified?

It is not an easy fast process however it is not as in-depth as a SOC2 Type II audit.  It will take work from management, human resources, IT department, managed IT services provider, and many more departments or professionals. You will need to pass thirteen controls published by the Canadian Centre for Cyber Security.  You can then apply for certification at www.canada.ca/cybersecure.  You will then work with an accredited certification body that audits your organization.   This must be repeated every two years to maintain certification.

What are the 13 Security Controls for CyberSecure Canada?

  1. What is the plan to recover from a cyber attack (Incident response plan)
  2. How do you handle patch management (Automatic patching)
  3. How do you securely configure your devices (Device configuration)
  4. What do you use to install and monitor systems (Security software)
  5. Do you use multi-factor authentication controls (Authentication)
  6. How do you handle ongoing team education on cybersecurity (Training)
  7. How do you backup and perform data encryption (Data Protection)
  8. What controls do you use to secure mobile devices (Mobility)
  9. Do you use a firewall in your network (Perimeter)
  10. What is the security posture of your IT partners (Outsourced IT services)
  11. What security do you use on your website (Websites)
  12. What limitations do you place on access to data and services (Access controls)
  13. What security, encryption, and disposal do you use for storage media (Portable storage)

How much does CyberSecure Canada certification cost?

The cost to get CyberSecure Canada certified will depend on your unique organization needs.  You will need to pay for registration as well as the audit. There are many certification bodies listed at www.canada.ca/cybersecure so find the one that works best for your organization.

Have Your Passwords Been Stolen in a Data Breach? Try our free data breach scan today and start protecting yourself from cybercriminals.

Going to the cloud or worried about security?  We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

Categories
Industry Insights IT Solutions Managed IT Services

365 iT SOLUTIONS Certified as Datto Global Partner

Great companies are developed from great partnerships as 365 iT SOLUTIONS certified Datto Global Partner to offer industry leading disaster recovery services to organizations.

365 iT SOLUTIONS has announced the company has been certified as a Datto Platinum Global Partner program organization.  This industry leading certification recognizes a Datto partner that is actively engaged with the Managed IT  Service Provider (MSP) community by providing expertise, mentoring, and industry advice on a wide range of business-related technology challenges when it comes to the Datto suite of services.

What is Datto?

Datto is an innovative industry leader in offering organizations comprehensive backups, recovery, and business continuity solutions.  It is used by many managed IT services providers (MSP) and managed security services providers (MSSP) worldwide to offer their clients one of the best award-winning services.

Datto was founded on technical innovation and thinking outside the box.  They have created innovative technology that enables organizations to protect against cyber security threats and minimize business downtime in an increasingly complex IT environment.

Dattos ensures managed IT services providers have the ability to offer maximum uptime of organizations critical data and applications no matter where they are located including local servers, end-user computers, or in SaaS applications.

365 iT SOLUTIONS Certified as Datto Global Partner 1

Datto’s full suite includes the following Unified Continuity solution:

  • Proactive Cloud Continuity for PCs that give the ability to protect and restore PCs with a reliable image-based all-in-one cloud backup and disaster recovery using a quick response.
  • Proactive SaaS protection including cloud-to-cloud backups and fast recovery for critical data in Microsoft 365 and Google Workspace cloud environments.
  • Proactive file protection that is fast and easy. This includes file and folder backup including restore with technical support for Windows and Mac.
  • Proactive workplace safe file sync that gives the ability to share in a centrally managed secure collaboration platform in the cloud.
  • Proactive disaster recovery appliances including SIRIS devices that are able to protect and quickly restore servers with reliable image-based all-in-one business continuity and disaster recovery services.
  • Proactive industry leading ALTO protect devices that can quickly restore small business servers with reliable image-based all-in-one business continuity and disaster recovery cloud services.

Going to the cloud or worried about security?

We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

 

Great companies are developed from great partnerships as 365 iT SOLUTIONS certified Datto Global Partner to offer industry leading disaster recovery services to organizations. 365 iT SOLUTIONS has announced the company has been certified as a Datto Platinum Global Partner program organization. This industry leading certification recognizes a Datto partner that is actively engaged with the Managed IT Service Provider (MSP) community by providing expertise, mentoring, and industry advice on a wide range of business-related technology challenges when it comes to the Datto suite of services. What is Datto? Datto is an innovative industry leader in offering organizations comprehensive backups, recovery, and business continuity solutions. It is used by many managed IT services providers (MSP) and managed security services providers (MSSP) worldwide to offer their clients one of the best award-winning services. Datto was founded on technical innovation and thinking outside the box. They have created innovative technology that enables organizations to protect against cyber security threats and minimize business downtime in an increasingly complex IT environment. Dattos ensures managed IT services providers have the ability to offer maximum uptime of organizations critical data and applications no matter where they are located including local servers, end-user computers, or in SaaS applications. Datto’s full suite includes the following Unified Continuity solution: • Proactive Cloud Continuity for PCs that give the ability to protect and restore PCs with a reliable image-based all-in-one cloud backup and disaster recovery using a quick response. • Proactive SaaS protection including cloud-to-cloud backups and fast recovery for critical data in Microsoft 365 and Google Workspace cloud environments. • Proactive file protection that is fast and easy. This includes file and folder backup including restore with technical support for Windows and Mac. • Proactive workplace safe file sync that gives the ability to share in a centrally managed secure collaboration platform in the cloud. • Proactive disaster recovery appliances including SIRIS devices that are able to protect and quickly restore servers with reliable image-based all-in-one business continuity and disaster recovery services. • Proactive industry leading ALTO protect devices that can quickly restore small business servers with reliable image-based all-in-one business continuity and disaster recovery cloud services. Going to the cloud or worried about security? We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto. 365 iT SOLUTIONS is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT Services, Managed Security Services, IT Support Services, IT Outsourcing Services, Tech Support Services, Cloud Services, Business continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring. We Make IT Simple!

Categories
Industry Insights IT Solutions Managed IT Services

Today is Bell Let’s Talk Day

365 iT SOLUTIONS is a proud supporter as today is Bell Let’s Talk Day dedicated towards mental health initiatives in Canada.

Bell Canada will donate towards mental health initiatives in Canada.  It will donate 5¢ for every applicable call, text, tweet and TikTok video using the hash tag #BellLetsTalk.

In other social media channels, you can post a video with the use of Facebook frame or Snapchat filter. It will state “Let’s work together to help create positive change!”

Bell Canada has given people many ways to show support and help create positive change towards mental health.

For every view of their official Bell Let’s Talk Day video, Bell Canada will donate 5¢ more towards mental health initiatives and help spread the word!

Today is Bell Let’s Talk Day 1

What else can you do to share the word about Bell Let’s Talk Day?

  • Twitter – Tweet and retweet using #BellLetsTalk or watch their official video.
  • Facebook – Use the Bell Let’s Talk Facebook frame or watch their official video.
  • Instagram – Watch their official video on Instagram.
  • Snapchat – Use the Bell Let’s Talk Snapchat filter or watch their official video.
  • YouTube – Watch their official video on YouTube.
  • TikTok – Upload a video using #BellLetsTalk or watch their official video.
  • Pinterest – Watch their official video on Pinterest.
  • Text messages – Send a text message sent by a Bell wireless customer.
  • Calls – All calls made by a Bell wireless and home phone customers.

Support a mental health in Canada and join the conversation about mental health. #BellLetsTalk

 

Looking for resource and documentation on The Bell Let’s Talk Toolkit?

A lot of people and organizations want to help but they down know how to help create positive change.  Here is a great tool kit to help you spread the word about Bell Let’s Talk Day and mental health in Canada.

Bell Canada created a toolkit that includes a conversation guide and helpful templates for use in schools, communities, and workplaces.

Here is a link to the Bell Let’s Talk toolkit.

 

Is Bell Let’s Talk Day  only for Bell customers?

No, Bell Canada has made sure that everyone has access or can contribute.  Every time someone uses of the hashtag #BellLetsTalk in the methods mentioned above or watch their official video, Bell Canada will donate 5¢ towards mental health initiatives and help spread the word!

 

How does Bell Let’s Talk Day work?

Bell Canada made the program simple, so it is accessible by all Canadians. On Bell Let’s Talk Day, Bell Canada will donate 5¢ towards mental health initiatives and help spread the word.  This will can be a text, call, tweet or TikTok video using #BellLetsTalk.  You can also use social media video views or Facebook frame or Snapchat filter.

 

How much did Bell Let’s Talk Day raise in 2020?

Bell Canada listed in July 2020 that their Bell Let’s Talk Day raised $5 million in a Diversity Fund to support the mental health and well-being of Canadian members of Black, Indigenous and People of Colour communities.

 

How do I donate to Bell Let’s Talk Day?

If you or your organization would like to apply for funds to help with mental health initiatives in Canada, you have to fill out an application for Community Fund grants.  All funds are disbursed before December of the calendar year.  You can apply for funding by clicking on the following link.

 

Why is Bell Let’s Talk Day talk important?

Mental health is major issue in society especially when things like COVID change society.  The Bell Let’s Talk Day campaign has made important contributions to destigmatizing and raising awareness about mental illness in Canada.

This allows society to focus on individual-level interventions and the Bell Let’s Talk Day campaign detracts from systemic and social factors that shape experiences of mental illness and mental health in Canada.

 

What is the purpose of Let’s Talk Day Foundation?

Bell Canada created the foundation with the mandate to create awareness and reduce the stigma associated with mental health in Canada. They go to kids clubs and schools to highlight issues related to mental health and encourage people to openly discuss their concerns with family, friends, and other resources to support mental health in Canada.

 

What is the hashtag #BellLetsTalk?

Bell Canada will donate towards mental health initiatives in Canada by contributing 5¢ for every applicable text, call, tweet.  This will also include TikTok videos using #BellLetsTalk hashtag as well as viewing their official video on social media video or the use of Facebook frame or Snapchat filter.

 

What do you know about mental health in Canada?

Bell Canada is committed to raising awareness towards mental health.  This includes emotional, psychological, and social well-being of all Canadians.  Mental health affects how people think, feel, and act.  It also helps determine how people handle stress and make healthy choices to support their well-being.  Mental health is important at every stage of life, from childhood and adolescence through adulthood.

Today is Bell Let’s Talk Day 3

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

 

We Make IT Simple!

 

 

 

Categories
Industry Insights IT Solutions Managed IT Services

365 iT SOLUTIONS Achieves Another Microsoft Gold Partner Level

As a leading managed IT services provider in Toronto, 365 iT SOLUTIONS achieves another Microsoft Gold partner level increasing their presence in the market as a leading Microsoft partner.

 

By achieving these Microsoft Gold Partner level certifications, 365 iT SOLUTIONS has demonstrated high levels of delivery and support of Microsoft services.   We have the ability to demonstrate how Microsoft products and services delivery and support can address any business need and business goal.

 

Our Microsoft Gold partner levels allows us to differentiate our organization versus other managed IT services providers including the ability to demonstrate expertise and build stronger long-term partnerships with clients.  By having real world experience and knowledge, we have the ability to align a client’s needs based on theirs needs versus Microsoft’s technical capabilities.

 

365 iT SOLUTIONS was able to achieve Microsoft Gold Partner level while servicing multiple industries including healthcare, financial services including fintech, insurance services, construction services, manufacturing, and logistics.

 

Why is Microsoft Gold Partner important?

Microsoft Gold Partner Competency represents the highest certification available for Microsoft Partners.  This demonstrates that the partner has a specialized skill set when it comes to implementing a particular Microsoft product or service. Only the top 1% of Microsoft Partners worldwide carry the Gold Partner certified status.  All Microsoft Partners undergo regular audits to demonstrate their proficiency, skill set, and experience.

Here are 4 reasons why you should choose a Microsoft Gold Certified Partner:

  1. Microsoft Gold Partners are Always Up to Date – Microsoft is constantly evolving and so are the competency requirements associated with them. Microsoft Gold Partners must stay on top of these changes.  As a leading Microsoft Gold Partner, you must be able to leverage the latest Microsoft products, services, and technology to help your business succeed.

 

  1. Microsoft Gold Partners Must Meet High Standards – Microsoft puts high standards on partners that must be met to be a Microsoft Gold partner based on rigorous standards set by Microsoft. These standards are not easy and can be difficult to achieve. There must be a minimum number of employees that have passed various Microsoft core value exams before that organization can receive Gold Certification.  This process is repeated annually.

 

  1. Microsoft Gold Partners Have Direct Access to Microsoft – Microsoft Gold Partners are experienced when it comes to their specific Microsoft skill set. This means they rarely need to consult with Microsoft directly but if they hit a wall on an issue, they can open a technical support case directly with Microsoft.  As a Microsoft Gold Partner, we have direct access to advanced Microsoft technical support engineers.  This results in faster response times and quick turnaround of issues.

 

  1. Microsoft Gold Partners Can Do Proof of Concept – Ever wonder if a technical solution will work for your organization or address a business issue or goal? Microsoft Gold Partners have access to various product licenses therefore they can develop demos that offer clients proof of concept before the commit more time, money, and resources to a technical solution.  This these tools as their disposal, Microsoft Gold Partners have the ability to offer a test environment before a client goes all-in on a technical solution.

 

365 iT SOLUTIONS carries the following Microsoft certifications:

 

  • Gold Datacenter
  • Gold Small and Midmarket Cloud Solutions
  • Gold Cloud Platform
  • Gold Collaboration and Content
  • Gold Windows and Devices
  • Gold Cloud Productivity
  • Silver Application Development

 

Going to the cloud or worried about security?

We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

 

365 iT SOLUTIONS Achieves Another Microsoft Gold Partner Level

Categories
Industry Insights IT Solutions Managed IT Services

Work for Home and Remote Working Raise the Risk but Businesses are Slow to Adapt

COVID-19 has brought about a change in cybercriminal activity as work from home and remote working raise the risk but businesses are slow to adapt.

A recent cyber security study went to market to get an understanding of how businesses rate their own cyber security and compliance risks.

Here are some interesting results from the study:

  • 31 percent report their entire business process has changed and is still evolving since COVID-19.
  • 26 percent report that they rushed certain projects that were scheduled for later.
  • 18 percent report security as being a c-level concern.
  • 57 percent report team collaboration platforms such as Microsoft Teams and Slack as the largest risk
  • 41 percent report marketing technologies as the largest risk.
  • 25 percent report management personal social media as the largest risk to phishing attempts.
  • 52 percent report unauthorized apps as a large cyber security concern.
  • 59 percent report budget and purchasing new technology as a concern.

According to a recent Deloitte article, cybercriminals are adapting their cyber tactics and targeting people in their homes and office.  As working from home becomes a gateway to new forms of data theft, companies face increased cyber risk.

Some key summary points include the following:

  • Cybercriminals are creating new cyber tactics and exploiting COVID-19 fears.
  • Work-from-Home (WFH) is becoming the best gateway to data theft.
  • Old technology and inadequate cyber security are slowing down productivity.
  • 25 percent report an increase in fraudulent emails, spam, and phishing attempts
  • 50 percent of them use the COVID-19 crisis as the mechanism.
  • 26 percent report they want copies of valuable company data in case of ransomware.
  • 80 percent feel their organization needs to prioritize preventive cyber security measures.

Work from home and remote working raise the risk but businesses are slow to adapt.  Organizations need to take proactive measures in order to be able to ensure that the exchange of data between their offices and those employees working from home is protected.  This will avoid home offices becoming a gateway to cybercrime.

Have Your Passwords Been Stolen in a Data Breach? Try our free data breach scan today and start protecting yourself from cybercriminals.

Going to the cloud or worried about security?  We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

 

Categories
Industry Insights IT Solutions Managed IT Services

Malware Cyberattacks Are Down but There Is a Catch

In an interesting turn of events, malware cyberattacks are down but there is a catch which involves cyber security criminals shifting focus.

Malware cyber attacks are down but there is a catch, they have become more focused.

According to recent release from SonicWall, here are some interesting statistics to consider:

  • Decrease of 39 percent over the last quarter as cyber attackers have move to targeted approach.
  • Increase of 40 percent in global ransomware
  • Increase of 19 percent increase in intrusion attempts
  • Increase of 30 percent rise in internet of things (IoT) malware.
  • India showed a decrease of 68 percent in malware attacks.
  • Germany showed a decrease of 64 percent in malware attacks.
  • UK showed a decrease of 44 percent in malware attacks.
  • US experienced 145.2 million ransomware hits from hackers in one quarter
  • US is experiencing an increase of 139 percent year-on-year increase.

A third (33.7 percent) of all ransomware attacks this year were accounted for by the Ryuk malware. Through Q3 2019, SonicWall detected just 5,123 Ryuk attacks, but Q3 2020 saw detection of 67.3 million Ryuk attacks.

Ryuk ransomware is the new kids on the block as it was discovered August 2018 however it made significant gains in popularity in 2020.  With work-from-home (WFH) including the increase of remote and mobile workforces, there appears to a large security gap resulting not only in financial losses but also impacting healthcare services with attacks on hospitals and other healthcare facilities.

Ryuk ransomware is especially dangerous because it is targeted and a multistage cyberattack.  The general rule from cyber security professionals is if an organization has Ryuk, they most likely have several other types of malware.

The study also finds a 30 percent increase in IoT malware attacks, a total of 32.4 million world-wide. This is put down to attackers trying to use the devices as entry points to attack networks being used by the flood of home workers.

You can see updates on the Ryuk ransomware for The Canadian Centre for Cyber Security (Cyber Centre).  Cyber Centre is Canada’s national authority on cyber security and response to cyber security events.  Their Canadian national computer security incident response team works with government departments, critical infrastructure, Canadian businesses, and international partners.  Their mandate is to prepare for, respond to, mitigate, and recover from cyber events using industry authoritative advice and support in cyber security incident response.

Malware cyberattacks are down but there is a catch so how can I protect myself against Ryuk?

The first step in protecting against any ransomware attack is to ensure you are using a managed next-generation anti-virus with built-in Artificial Intelligence (AI).  This will offer your organization real-time protection designed to stop advanced malware attacks such as ransomware.

The second step is to ensure you have secure backups of your data on a regular basis with high-level encryption and multi-factor authentication.

The third step is to ensure your IT department or managed IT Services provider ensures your systems and software are updated regularly.

Have Your Passwords Been Stolen in a Data Breach? Try our free data breach scan today and start protecting yourself from cybercriminals.

Going to the cloud or worried about security?  We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

 

We Make IT Simple!

Categories
Industry Insights IT Solutions Managed IT Services

Happy Holidays from the 365 iT SOLUTIONS Team

The holidays are a time to spread cheer and happiness.

We would like to thank everyone a fantastic holiday season.

All of the best to those that have helped support 365 iT SOLUTIONS.

The holidays are a great time to show gratitude, so thank you to everyone that has supported us this year.

We look forward to the coming years.

From everyone at 365 iT SOLUTIONS, Thank you!

Happy Holidays

Categories
Industry Insights IT Solutions Managed IT Services

Cybersecurity Trends and Predictions for 2021

As we fast approach the new year, many organizations are looking into cybersecurity trends and predictions for 2021 in order to ensure they are using the latest industry best practices.

  1. Zero Trust Approach to Security

Zero Trust is a security procedure that organizations should not automatically trust anything inside or outside its network.  Everything must be verified before granting access can be given. The zero trust approach to security is becoming more mainstream as organizations face the rising costs and  frequency.

 

Cybersecurity Trends and Predictions for 2021 zero trust 365 it solutions

  1. Cybersecurity Solutions that are Simple

With COVID, IT spending has been all over the map in 2020 as projects were put on hold while organizations tried to adapt to the work from home.  and analysts expect it to stay on the same track for 2021. That reality means that information security decision-makers will remain mindful of budget constraints as they choose what to buy in the coming year.

  1. Network Security will include more Mobile device management (MDM)

Why is Mobile device management (MDM) moving fast up the list?  Recent IT security studies shows that cybercriminals steal more than 24,000 records during each attack, at an average cost of $141 each making it more costly for businesses. This is why many businesses are tightening IT security on mobile devices including organizations policies on what devices can use the network and which apps employees can access while connected to it.  This will be crucial as many people use their own devices from home to access work.

Cybersecurity Trends and Predictions for 2021 MDM 365 it solutions

  1. Verification, Verification, Verification

Many organizations will be looking at identity-centric security as they believe that a verified identity will be necessary for accessing network resources. Organizations that implement identity-based security must shift into reactive mindsets as this will only represent one element of the security equation.  If a company does not use the zero-trust model there will still be a more rigorous approach to giving people access to content on organizations network in 2021.

  1. Cyber security training and phishing campaigns

The new year will bring new changes to IT security however some things will stay the same such as employee cyber security training.  Phishing campaigns will continue centering on attacks related to COVID-19 and work-from-home (WFH).  This means organizations need to proactively educate employees on how to recognize phishing and tell them how criminals might try to appeal to them.

  1. Data classification used to prevent breaches

A recent IT security study found that approximately 82 percent of organizations classify their data as confidential.  They also identified that putting data into categories as an access control measure is not enough to stop breaches due to 62 percent of companies allow employees to access data they do not need which increases their chances of a data breach by 2.5 times.  This is one large part of cyber security trends moving forward.

As 2021 approaches these cybersecurity trends and predictions for 2021 are some great items for management to discuss and plan around to ensure the latest industry best practices.

Going to the cloud or worried about security?

We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

Categories
Industry Insights IT Solutions Managed IT Services

Ransomware and Cyber Security News Review for October 2020

365 iT SOLUTIONS  is proud to offer ransomware and cyber security news review for October 2020 in order to help keep organizations informed of the latest cyber threats.

Why should you be concerned about cyber security? Simple. It is projected that a business is attacked by a cybercriminal every 11 seconds and damage from these cyber security attacks can hit over $20 billion by 2021.

There will be many organizations making the cyber security news headlines if cyber security policies and procedures are not changed.

Here are the highlights of Ransomware and Cyber Security News Review for October 2020:

  1. Philadelphia based eResearchTechnology (ERT) was a victim to a ransomware attack based on clinical trials being run to develop COVID-19 tests, treatments, and a COVID-19 vaccine.
  2. Ardonagh Group which is UK’s second largest privately owned insurance broker was force to shut down and suspend over 200 internal accounts with admin privileges as the cyber security threat progressed through their IT infrastructure.
  3. Daniel B. Hastings is a Texas based customs broker and freight forwarder with specialize service of moving cargo across the U.S.-Mexico border.  They experienced a cyber security breach where cyber criminals hacked the company files and posted them online.  It is reported this was done by the Conti ransomware hackers.
  4. Hall County Government in Georgia was the next victim. While officials didn’t release details of how the attack happened or what was being done to resolve it, government offices including the courthouse, community centers,  and the sheriff’s precincts were experiencing issues with phone and email services. It is thought that no employee or resident data had been compromised.
  5. Springfield Public Schools in Massachusetts is one of the largest school boards and they were attacked causing them to shut down all systems and closed the schools to prevent spread of the cyberattack.
  6. Daseke the US trucking company was another organization hit by the Conti ransomware hacker group by them exposing thousands of internal documents including personal information of their drivers and other sensitive data was posted to the Dark Web.
  7. The Lake George Land Conservancy in New York was hit with a ransomware attack on its internal network however they revealed that no sensitive donor data was compromised, and all data was backed up.  They did not pay the ransom as they have the proper setup.
  8. Crytek is a German based game developer and they suffered a cyberattack by the Egregor ransomware group resulting in encryption of devices as well as leaked data on the dark web.
  9. Stats Perform suffered a cybersecurity ransomware attack during college football causing issues at daily fantasy sports sites including FanDuel, DraftKings, and other gaming sites.
  10. Barnes and Noble made headlines when they experienced a number of outages due to cybercriminal activity which led to some online customers from being able to access their libraries. Other customers experienced a complete lock out from the platform.
  11. Dickinson County Healthcare System were the victims to another cyberattack that gave access to computer systems across its hospital and clinics without consent. The hospital is working still working with IT security experts including forensic experts to determine the full impact of the cyberattack.
  12. The Société de transport de Montréal (STM) that is the Montreal public transport agency had hackers demand a ransom of $2.8 million US to restore network operations however no data was leaked. Bleeping Computer reported that the RansomExx hacker group was responsible for the cyberattack.
  13. Sopra Steria is an IT outsourcing company that was also struck by a cyberattack as their Windows active directory had been compromised by hackers linked to the Ryuk malware group.
  14. Steelcase Furniture the world’s largest office furniture manufacturer and they also were hit by the Ryuk hacker group which shutdown their entire IT infrastructure network.
  15. Lawrence Health System in New York was forced to divert ambulances after a ransomware attack hit three hospitals.

Have Your Passwords Been Stolen in a Data Breach?

Try our free data breach scan today and start protecting yourself from cybercriminals.

Going to the cloud or worried about security? 

We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

We Make IT Simple!

 

Categories
Industry Insights IT Solutions Managed IT Services

Remote Workers Are Not Protected from Phishing and Vishing

Work from home and remote work is now the new norm however organizations must be aware that remote workers are not protected from phishing and vishing threats.

Phishing is well known but now mix that in with remote workforce, video conferencing apps, and corporate messaging.  The end result is now vishing.

Why are cyber criminals looking at vishing as the new cyber security threat? A few simple points.

Remote workers are not protected from phishing and vishing for the following reasons:

  • Increased use of personal computers by organizations with no Mobile device management (MDM)
  • Increased us of smart phones to conduct our work remotely once again with no Mobile device management (MDM)
  • Increase in phishing emails and vishing calls targeting remote workers

The pandemic had everyone scrambling to find ways for remote workers to work from home, but it did not stop cybercriminal hackers from attacking.

Hackers shifted their techniques to target remote work force at home that lost all the cyber security protection implemented by their managed IT services provider or internal IT department.

This introduced pressure on cyber security systems, policies, and procedures.  Cyber security education was one of the quickest ways to educate and protect organizations.

Remote workers are not protected from phishing and vishing but how do you protect them?

Here are some industry recommendations from cybersecurity specialists and managed security services providers.

  1. Employee education and cyber security awareness.
  2. Show your employees examples of phishing prevention and proven verification tips.
  3. Give examples of suspicious file attachments, malicious website URLs, and good user credential behavior.
  4. Ensure all your systems have updated and managed for the latest vulnerabilities, patches, and security software such as next-gen anti-virus.

When it comes to vishing prevention and verification tips, . these are not well known but there are still some basic cyber security approaches that can be used including:

  1. Inquiry for their name to look-up in the company directory
  2. Inquiry Asking for internal company information to verify their knowledge
  3. Request a call back number to verify where they are calling from
  4. Request for their supervisor’s name to look-up in the company directory

Have Your Passwords Been Stolen in a Data Breach? Try our free data breach scan today and start protecting yourself from cybercriminals.

Going to the cloud or worried about security?  We are your leading Cloud Services Providers Toronto and Managed Security Services Toronto.

365 iT SOLUTIONS  is Toronto’s leading IT consulting boutique firm offering industry leading IT solutions including Managed IT ServicesManaged Security ServicesIT Support ServicesIT Outsourcing ServicesTech Support ServicesCloud ServicesBusiness continuity and disaster recovery (BCDR), and Cyber Security Training and Dark Web Monitoring.

 

We Make IT Simple!