The volume of malicious cyber attacks is increasing every year. Although many companies use the latest network security systems, they aren’t immune to the hackers’ favorite strategy — social engineering. Unlike malware, social engineering tricks people into volunteering sensitive data. Here’s what you should know to protect your business.

Phishing

This is the most frequently used social engineering attack, especially against small businesses. Check out these frightening statistics:

 

How is phishing carried out? Criminals make use of emails, phone calls, or text messages to steal money. Victims are directed to phony websites or hotlines and are tricked into giving away sensitive information like names, addresses, login information, social security, and credit card numbers.

To protect yourself, be wary of emails from people you don’t know that offer you a prize, come with attachments you didn’t request, direct you to suspicious sites, or urge you to act quickly. Phishing emails usually appear to come from reliable sources, but they are wolves in sheep’s clothing.

One of the most infamous and widespread examples of phishing was during the 2016 Summer Olympics in Rio, where victims received fraudulent emails for fake ticketing services that stole their personal and financial information.

Tailgating

What’s the fastest and easiest way for criminals to enter a secure office? Through the front door, of course! Tailgating happens when an employee holds the door open for strangers and unauthorized visitors, allowing them to infiltrate an organization. This simple act of kindness enables fraudsters to enter restricted areas, access computers when no one is looking, or leave behind devices for snooping.

Quid pro quo

Here, scam artists offer a free service or a prize in exchange for information. They may lure their victims with a gift, concert tickets, a T-shirt, or early access to a popular game in exchange for login credentials, account details, passwords, and other important information. Or hackers may volunteer to fix their victims’ IT problems to get what they want. In most cases, the gift is a cheap trinket or the tickets are fake, but damages from stolen information are all too real.

Pretexting

Fraudsters pretend to be someone else to steal information. They may pose as a telemarketer, tech support representative, co-worker, or police officer to fish out credit card information, bank account details, usernames, and passwords. The con artist may even convince the unsuspecting victim to apply for a loan over the phone to get more details from the victim. By gaining the person’s trust, the scammer can fool anyone into divulging company secrets.

In spite of the many security measures available today, fraudsters and their social engineering schemes continue to haunt and harm many businesses. Thus, it’s best to prepare for the worst. To protect sensitive information, educate yourself and be careful. Remember: If anything is too good to be true, it probably is!

To shield your business from social engineering attacks or to learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

 

Published with consideration from TechAdvisory.org SOURCE

How many times this month have you paid for something online using your credit card? Was each payment page secured by HTTPS? If you’re not 100% certain, you’re a prime target for identity theft. The padlock icon in your web browser’s address bar is immensely important and it requires your attention.

HTTPS Encryption

Older web protocols lack data encryption. When you visit a website that doesn’t use HTTPS, everything you type or click on that website is sent across the network in plain text. So, if your bank’s website doesn’t use the latest protocols, your login information can be intercepted by anyone with the right tools.

HTTPS Certificates

 

The second thing outdated web browsing lacks is publisher certificates. When you enter a web address into your browser, your computer uses an online directory to translate that text into numerical addresses (e.g., www.google.com = 8.8.8.8) then saves that information on your computer so it doesn’t need to check the online directory every time you visit a known website.

 

The problem is, if your computer is hacked it could be tricked into directing www.google.com to 8.8.8.255, even if that’s a malicious website. Oftentimes, this strategy is implemented to send users to sites that look exactly like what they expected, but are actually false-front sites designed to trick you into providing your credentials.

 

HTTPS created a new ecosystem of certificates that are issued by the online directories mentioned earlier. These certificates make it impossible for you to be redirected to a false-front website.

What this means for daily browsing

 

Most people hop from site to site too quickly to check each one for padlocks and certificates. Unfortunately, HTTPS is way too important to ignore. Here are a few things to consider when browsing:

  • If your browser marks a website as “unsafe” do not click “proceed anyway” unless you are absolutely certain nothing private will be transmitted.
  • There are web browser extensions that create encrypted connections to unencrypted websites (HTTPS Everywhere is great for Chrome and Firefox).
  • HTTPS certificates don’t mean anything if you don’t recognize the company’s name. For example, goog1e.com (with the ‘l’ replaced with a one) could have a certificate, but that doesn’t mean it’s a trustworthy site.

 

Avoiding sites that don’t use the HTTPS protocol is just one of many things you need to do to stay safe when browsing the internet. When you’re ready for IT support that handles the finer points of cybersecurity like safe web browsing, give our office a call.

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

If you’re getting targeted with surprisingly relevant ads, there’s a chance your internet activity is being tracked and analyzed by market researchers. While this doesn’t bother most people, private browsing mode can offer you some protection against online marketers and would-be data thieves.

What is private browsing?
Your web browser — whether it be Chrome, Edge, Firefox, Safari, or Opera — remembers the URLs of the sites you visit, cookies that track your activity, passwords you’ve used, and temporary files you’ve downloaded.

This can be convenient if you frequently visit certain pages, can’t remember your login details, or if you’re trying to recall a website you visited a few days ago. But if someone else uses or gains access to your computer, your most private (and embarrassing) internet activities are exposed for anyone to see.

With private browsing — also called Incognito Mode in Chrome and InPrivate Browsing in Edge — all the information listed above does not get recorded. In fact, all the websites and information you accessed in the private browsing session is immediately discarded without a trace as soon as you close the browser. This can come in handy when you’re using a public computer because you’re instantly logged out of all the accounts after closing the window.

Your cookies also won’t be tracked. In a normal browsing session, sites like Facebook will inundate you with highly targeted ads based on the sites and pages you’ve visited. But in private browsing mode, your internet activity won’t be used against you by marketing companies.

Another benefit of private browsing is you can use it to log in to several accounts on the same site, which is useful if you need to log into two different Google accounts at the same time.

Limitations of private browsing
Although private browsing does prevent your web browser from storing your data, it doesn’t stop anyone from snooping on your current activities. If your computer is connected to the company network, system administrators can still keep track of what you’re browsing even if you’re in Incognito Mode. Also, if spyware or keylogger malware is installed on your computer, hackers will still be able to see what you’re doing online. Even though private browsing has quite a few benefits, you shouldn’t solely depend on it for online privacy.

Your computers must be equipped with Virtual Private Networks that encrypt your internet connection and prevent anyone from intercepting your data. And don’t forget to scan your computer for viruses with a strong anti-malware program to keep spyware and other malicious web monitoring software at bay.

If you want to know where you can get these solutions or learn more about web browser security, call us today. We have the tools and expert advice you need to prevent anyone from snooping on your internet browsing.

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment
Published with consideration from TechAdvisory.org SOURCE

As a business owner, it’s essential that you are aware of the hidden costs associated with the Cloud and what measures you can take to keep those costs down. They might be more than what you’d normally pay for at first, but it could add up and cost you two, or even three times more than its worth. Pay the right price for the services you receive, and not a penny more with these five tips:

No standalones
Cloud services come in various shapes and sizes, many of which are standalones that can contribute to rising costs. Opt for a service provider that offers a suite of products that all work together. They are often less expensive than a group of standalone products. Another benefit of working with a provider is that you receive a single point of contact to resolve your issues quickly and effectively.

Experience matters
If you have to integrate a standalone Cloud service into your system, make sure you hire an experienced integration consultant for the job since they will be able to finish the job quicker, thus making it cheaper. Integration mishaps can cause serious downtime which drains a lot of money.

Backups are important
Performing endless backups will definitely waste cloud storage space. That’s why it’s important to examine your Cloud storage data by asking the following questions:

How many versions of this data do you need to store for the long-term? The more versions you store, the more it costs.
What regulatory demands do you need to meet? Some data may need to be accessible for up to three years, whereas other data can be deleted after 30 days.
How quickly do you need to access your backup? If you can wait for a day or two, archive that data to a less expensive service or offline at your provider’s data center.

Remove users
Many Cloud service providers charge by the number of users in your system. By neglecting to manage the list of users, you could end up paying for people who no longer work for you. Implement processes that remove users when they are terminated and consider scheduling a regular audit. Ideally, this should be once every six months to a year, to ensure that your Cloud user list is up-to-date.

Monitor proactively
Ask your Cloud provider whether they can proactively monitor your account to notify you of potential issues before they cause problems. This is especially important if you have a pay-as-you-go license that charges based on resource and storage usage.

Utilizing the right technology resources is vital to your business’s success, and so is knowing how to prevent them from racking up a staggering monthly bill. If you wish to enjoy all the benefits Cloud computing can provide your business without breaking the bank, give us a call and we’ll be happy to help.

Time to Get Your Business into Cloud Computing Services? GCInfotech is your Cloud Computing Company Servicing NYC, CT and NJ. With our IT Support, it’s a simple, cost-effective and totally scalable IT infrastructure that also provides 24/7 support as part of a monthly program. Using the power of the Web, our cloud computing management services provide the IT hardware, software, and data backup you need to keep your your company running safely and efficiently. Contact GCInfotech cloud professionals today.

Published with consideration from TechAdvisory.com SOURCE

Digital advertisements are ubiquitous across the internet. And just as users started to come to terms with that, Microsoft has taken ads one step further. The Windows File Explorer has begun to show ads for services like O365 and OneDrive, and if you’re wondering how to disable them, this article is for you.

Who is getting these ads?

Right now, we’re still unsure of how widespread Microsoft’s new advertising strategy goes. Not every Windows workstation has started displaying File Explorer banners, and based on some overwhelmingly negative reactions online, the campaign might get shut down before it even reaches your desktop.

However, even if you have yet to be targeted, you can quickly and easily disable these ads right now.

How do I turn them off?

At the moment, these pushy promotions show up only in Windows’ File Explorer window, so that’s where we’ll begin. After you’ve opened a new window, there are only five steps to boot them off your screen:

  1. Select View from the ribbon along the top of any File Explorer window.
  2. Click Options on the far righthand side.
  3. In the new window select the View tab.
  4. In the Advanced Settings window pane, scroll down and deselect ‘Show sync provider notifications’.
  5. Click Apply and close the Folder Options window.

That’s all it takes! Keep in mind that we highly recommend the services Microsoft chose to advertise with this move. Office 365, OneDrive, and others are all great cloud platforms for safely working and collaborating from any device in any location — we just don’t want to see advertisements for them when we’re hunting down sales records.

When you’re in the market for the Windows tips and tricks, this is the best blog on the web. If you’re looking for something a little more robust however, our managed services are second to none. Get in touch with us today to learn more!

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment.

Published with consideration from TechAdvisory.org SOURCE

With all the recent hacking scares all over the world, you know and understand that your cyber security and your business’s cyber security are extremely important. However, when it comes to authentication processes, you may not be sure what the real deal is. There are two seemingly similar types of authentication that are often confused. Those are, of course, two-step and two-factor authentication. Find out more about the differences between the two here to ensure your cyber security will always be top of the line.

If you are seeking out a way to improve your business’s cyber security, both for your business itself as well as for your customers, you are likely looking at your authentication process. Two-step and two-factor authentication are two of the most commonly used options in cyber security. And in current cyber security, many businesses use the terms two-step and two-factor authentication interchangeably.

There are, however, subtle differences between the two. A two-step authentication process requires a single-factor login (such as a memorized password or biometric reading) as well as another of the same type of login that is essentially sent to the user. For example, you may have a memorized password for your first step and then receive a one-time-use code on your cell phone as the second step.

Two-step authentication does function to add an extra step in the authentication process, making it more secure than a single-step authentication (i.e. just the password). However, if a person or business is hacked, it will do only a little to stop hackers from getting a hold of whatever they are looking for.

On the other hand, there is two-factor authentication (sometimes referred to as multi-factor authentication), which is significantly more secure. This type of authentication requires two different types of information to authenticate. For example, it could be a combination of a fingerprint or retinal scan as well as a password or passcode. Because the types of information are different, it would require a hacker a great deal more effort to obtain both forms of authentication.
In essence, every two-factor authentication is a two-step authentication process, but the opposite is not true. With this information in mind, you can be certain that you are using the right type of authentication in your business to keep your business and customer information as secure as possible.

Your network needs the best security technology has to offer. What type of authentication that results in is just one of hundreds of choices that must be made to achieve that end. To take the stress out of securing and protecting your network, call us today for all the help you could ever ask for.

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment.

Published with permission from TechAdvisory.org SOURCE

Earlier this year, thousands of Delta passengers worldwide were grounded due to a power outage that halted critical IT operations. This was a huge problem not only for the many delayed travelers, but also for the airline company itself. Within three days, the airline company cancelled around 2300 flights and paid over millions of dollars in downtime costs. But if you weren’t personally affected, why should you care? Well, without a business continuity in place, companies like yours can face the same repercussions. In order to prevent that, take heed of some poignant lessons companies can learn from Delta’s IT failings.

Strive for 100% redundancy

According to Delta’s chief information officer, a power failure caused the company’s data center to crash, grounding thousands of would-be passengers. Although power was restored six hours after the incident, critical systems and network equipment failed to switch to a secondary site, corrupting valuable data in the process. And while some systems failed over, other vital applications didn’t; this created bottlenecks, decreased revenue, and diminished customers’ confidence.

Delta’s case is a massive wakeup call not just for the airline industry but for every business — large and small. Companies must implement disaster recovery plans for their data centers, on-site technology, and Cloud applications to continue servicing customers while fixing the main issue with their primary systems. Companies also need to get rid of the false notion that redundancy plans to assure service continuity is restricted to larger corporations. DR and business continuity solutions are extremely affordable today, and a partnership with a provider can help you in more ways than one (more on this later).

Always test your backups

So although Delta had a plan to bring its business back to normalcy, the DR plan left a lot to be desired in practice. This begs the question as to whether the airline company is actually testing, reviewing, and reinforcing its vulnerabilities to different disasters.

The point is that even though your company may have a failover protocol in place, that protocol adds no value to your business unless it has been rigorously tried and tested. In order to avoid the same fate as Delta, make sure to find out whether your disaster recovery plan is capable of running mission-critical applications like email and customer service applications before — not after — downtime occurs.

Account for different types of vulnerability

In an interview with the Associated Press, Delta CEO Ed Bastian said, “We did not believe, by any means, that we had this type of vulnerability.” Indeed, it’s often hard to foresee what threats and vulnerabilities a natural disaster, power outage, or hacker can produce. But it’s not impossible.

By conducting a comprehensive audit of your data center security and disaster protocols, your business will be more aware and adept at minimizing the risk of potential disasters. This also means evaluating and preparing for disasters that are likely to happen to your business depending on its geographic location. Southern US, for instance, is prone to hurricanes and flooding.

Call for help

These lessons and strategies are all crucially important, but pulling off a DR and business continuity solution on your own may be difficult. For this reason, it’s critical to have a planned partnership with a managed services provider that can assess, plan, test and install the continuity solutions your business needs in order to minimize the impact and avoid encountering a Delta IT outage of your own.

To find out more about business continuity and guaranteeing complete IT redundancy, contact us today.

Published with permission from TechAdvisory.org SOURCE

There is no doubt that Microsoft Office 365 is a force to be reckoned with when it comes to programs that are being used in today’s modern office. With timely updates and releases of new features, users and competitors alike find it hard to keep up. But are you confident that you are harnessing the power of Office 365 the right way? If the answer is no, then read this article to get some top tips.

When an enterprise purchases certain Microsoft Online services such as Office 365, there is usually a Microsoft Partner of Record that is linked to the enterprise account. One of those is MessageOps. According to Chris Pyle, CEO of MessageOps, based on the data and feedback that they have gathered from Office 365 customers, they have concluded that not all business owners understand the true power of Office 365 and know which apps are most useful.

Top 5 Office 365 apps for the modern workspace

1. Sway

Although still in its early stages, one app that is quickly becoming popular is Sway. This is a presentation program that is being used for website creation where users can fuse together text and media. This program, which is included in the Microsoft Office app arsenal, is widely gaining popularity among the business owners and employees who’ve taken it up.

2. OneDrive for Business

If you’re familiar with Dropbox, then you probably know how OneDrive for Business works. It is a single location where users can save, sync, and share their files anytime, anywhere. Some businesses use this together with Dropbox, which is a paid app. Businesses that do this essentially double their cost as they are already paying for the same functionality as OneDrive, an app that is already included in most Office 365 plans.

3. Skype for Business

Hard to believe but there are still a lot of enterprises who pay for additional meeting and communication solutions that they have already paid for with Skype for Business. This app, which is already included in many Office 365 plans, goes beyond meeting and call purposes. It can also let you know which of your contacts is currently online, and you can also launch communications from Word and Powerpoint. What’s more, your communication is kept safe with the use of encryption and authentication processes.

4. Office 365 Groups

This app is very much popular with enterprises that require sharing of ideas from a group working on a project. It provides for a single place where the group can share documents, communication, and notes. This is predicted to become a complete replacement for SharePoint team sites as it is more user-friendly, more manageable and can be set up easily, although it is just as functional as SharePoint.

5. Intranets

With the help of SharePoint Online, intranets are making a comeback. The SharePoint intranet not only enhances communication and collaboration in the office, but the end-result is an effective streamlining and organized storage of information.

Harness the power of the Office 365 in your business. We have experts on standby anticipating your every question and ready to help you with the setting up, maintenance and management of your IT infrastructure. Give us a call.

Published with consideration from TechAdvisory. SOURCE

As part of the worldwide rollout of the new Apps, Microsoft announced Office Mobile released for Windows 10. Tablet users with Windows 10 can enjoy free access to the mobile versions of Microsoft’s popular Word, Excel, PowerPoint and OneNote applications. The mobile version of these applications is designed with a “touch-first’ interface to improve functionality for tablet users while providing all the Office features you would find on your desktop computer.

One of the biggest complaints about trying to edit a Microsoft Office file from a tablet is usability or lack thereof. That has all changed, at least for Windows 10 users, with Microsoft’s recent release of Office Mobile apps. The tablet-friendly versions of Word, Excel, PowerPoint and OneNote have been built from the ground up to improve touch functionality.
Even if you don’t have Windows 10, you still might be intrigued about the potential of having Office apps that are touch-friendly. Here are some of the new features you can enjoy when using Office Mobile apps.

Word

Microsoft Word Mobile has all the tools and features of the PC version including more nuanced tasks like being able to track changes and add footnotes. The Read mode, a mobile exclusive, improves the way documents appear by making them flow better on the smaller screens of a tablet while also letting you zoom in and out with a simple tap of the screen.

Excel

Recommended Charts is the prominent feature of the Excel Mobile app. It allows you to quickly show off your data using a stylish chart or graph with only a few taps. You will also find that reordering columns, adding formulae, changing chart types and the majority of Excel’s other core functions are easier than ever before.

PowerPoint

Of course Office wouldn’t be Office without PowerPoint. The mobile version of the app allows you to edit slides with new touch gestures. This makes it easy to insert and edit pictures, tables, shapes and SmartArt. But the real star here, and of the entire Office Mobile setup, is the Presenter View. This mode gives you full control over what your audience sees on the big screen during a presentation while still letting you view your speaker notes on the tablet.

OneNote

Windows 10 comes installed with OneNote, so you’re probably already using it. Tablet users will notice that changes made by anyone working in the notebook are automatically saved and synchronized for everyone to see.

The release of Office Mobile apps is just one of three big launches to come from Microsoft in 2015. Both Microsoft Office 2016 and Office Mobile for phones are slated for release this fall. Yet, while these tablet applications represent marked improvements for Windows 10 tablet users, they are probably not quite enough to warrant the switch from other operating systems just yet. In fact, even if you’re in love with the idea of having user-friendly, mobile versions of Office, you might want to hang on in there – it’s likely Microsoft will release them for iOS and Android in the near future, too.
Want to know what hardware and software is best for your company? Want to increase productivity in your office? Get in touch with us and we’ll show you how to do it.

investing2As a small or medium sized business owner, you likely have your hands full. Between managing your staff, looking for growth opportunities and keeping clients happy, you probably have little time to dedicate to new technology purchases. Being so busy, it can be easy to make a mistake when choosing an IT solution. That’s why we’ve compiled a list of common IT investment missteps that every business owner needs to avoid.

Investing in the newest technology instead of the best fit

It’s the job of every marketer to make you believe the newest technology on the market will resolve all your problems. And while the latest cloud or virtualization offering is likely to make things better for many individuals and organizations, it isn’t going to work for everyone.

Don’t let the flash and hype of a new product deceive you. Take the time to think about the results you’re trying to achieve with technology. Make a list of them, and when you’re done match those criteria with the product that fits. A GCInfotech professional will be happy to serve as your consultant to ensure you make the best choice.

Believing everything will magically work together

As technology evolves, it is inevitably becoming simpler to use. Consumers want user friendly products and solutions that are easy to implement, and nowadays that’s what they’re getting – at least most of the time. Because of this belief that all products are going to be plug-and-play, many business owners hold the misguided assumption that any new technology they implement is automatically going to synchronize with their other IT. It is simply not true.

Though many technologies are compatible with one another, your business is taking a big risk – that could result in massive downtime and wasted money – if you implement a new tool that doesn’t integrate well into your current system and workflow. Be smart, do some research or consult with a GCInfotech professional before making a purchase.

Assuming your team doesn’t need support and training

Now that you’ve found the perfect fit technology and you’re sure it will integrate into your current IT setup, you go ahead and purchase it. You let out a sigh of relief as you kick back and let your sparkly new IT solution power your company to new levels of success and profits in a SMB “happily ever after” fantasy. Sound too good to be true? That’s probably because it usually is.

Don’t forget that not all of your employees are going to instinctively know how to use the new technology. Consult with GCInfotech to review their support and training offerings for your particular technology solution.

Forgetting to create a budget

More and more IT solutions are packaged with pay-as-you-go monthly pricing. While this is a great way to help you avoid large upfront capital investment, if you implement too many different technologies too fast – and without thinking about the recurring costs – you could quickly run out of money before having properly created a complete technology platform.

Think about what you’re comfortable spending on IT before you open your wallet. Do some research, and either draft a budget on your own or acquire the assistance of a GCInfotech consultant to help you along.

Failing to get staff input

It’s wise to consult with the employees who will be using the new technology you implement, on a daily basis. It’s even wiser to do it before you purchase it.

The truth is that not all of your employees may be on board with the new product. They may actually even know some downsides to it you weren’t aware of. Regardless, it’s smart to consult with them beforehand, or you may find yourself in a constant fight getting them to adopt it.

Get a Single Source for all your Needs

Starting with your investment in new technology, and continuing through desktop services, cloud computing technologyremote IT solutions, remote disaster recovery, outsourcing disaster recovery and managed infrastructure services, GCInfotech is the one source you can count on for all of your support requirements. Because we can work on all aspects of your information technology, we can develop an end-to-end perspective to meet all your business computing needs-and thereby offer you better, integrated services than single-solution providers.

GCInfotech can help you take full advantage of your investment in a new technology solution, whether you’re just beginning the process of adopting it, or facing the challenges of upgrading, maintaining, and optimizing a system that’s already in place. Find out how with a complimentary consultation from GCInfotech.

Please contact us for more information or call 888-323-3066 to speak to our IT experts right away.

 

 

Published with permission from TechAdvisory.org.  SOURCE