Insights

June 3, 2014

Cyber Attack In Headlines – Advisory On Effective Protection

Posted by

Jez Nolan

Cyber Attack!

This is nothing new really – it has been progressively getting worse for some time and the recent headlines are about something that has been proliferating for several months.

These attacks, CryptoLocker, Gameover Zeus, GOZeus and P2PZeus are designed to take your money. Viruses are now a thing of the past really.

Reassurance

A quick note to reassure our clients that we are a step ahead of the game.

The recent introduction of the web filtering agent that we rolled out across the board should stop these scams in their tracks. It stops the outbound collection of encryption keys and other payloads in its tracks, or the delivery of stolen information. The external locations cannot be found, and therefore cannot be reached. Simple but effective.

We have also been managing the patching/updating of all machines for some time now. These continuously fix security weaknesses. This was introduced across the board at no extra cost quite some time ago.

Plus the move to Webroot endpoint protection last year. This is very different to traditional AV.

Traditional Anti-virus – Effective?

Most people are still in the mindset that their Anti-virus will protect them. This is simply no longer the case. These products are purely reactive and are always out of date. It takes the companies time to analyse viruses, then test and release the signature files, and then more time for your machine to periodically download the update. This can be as much as 1-2 days. The horse has already bolted!

It is even rumoured that several of the main players in endpoint security are starting to realise that the game is over.

We are not suggesting that you do not use an endpoint security (anti-virus/anti-malware etc.) product, but that you use it as well as several other forms of protection.

Multi-layered Protection

We strongly reiterate that modern computing requires multiple layers of protection. There is more to this in our IT Security page, but these are the minimum essential components needed:

  1. Decent (not free) Anti-virus/anti-malware protection
  2. E-mail security software that scans inbound e-mail
  3. Regular patching of all machines
  4. Efficient spam filtering
  5. Corporate strength firewalling
  6. Web content filtering and security
  7. An effective company policy with regards to peripheral devices on corporate networks: USB sticks, Mobiles etc.
  8. User awareness and behaviour

Author:
Jez Nolan

Posted:
June 3, 2014

Jez is an avid solution finder, working with your business to find the most sensible tech and non-tech answers that result in less stress, more time and more profit. He is the Managing Director of Ingenious and has been in the IT Industry for nearly 30 years. He has extensive business and IT experience, starting in large corporates and now applying best practices to the SMB/SME.

Get An
Online Quote

No waiting or sales calls needed. To get an instant online quote just complete a few details and choose between our three support packages to suit your needs best.

Get A Quote
Ingenious Ltd.

Registered in England and Wales: No. 4050242.
Trading Office: Woolwich House, 43 George Street, Croydon, CR0 1LB.
Registered Office: Bluebell Cottage, High Street, Stroud, Glocs, GL6 8DR, UK.
VAT No. 761 3355 38.

More on Ingenious

 

Social Media