Your servers are full of Data, Cyber Criminals love them.

Your servers are full of Data, Cyber Criminals love them.

P 37% of cyber attacks are discovered directly on servers, making them the most likely place to identify an attack within an organisation. That’s one of the alarming stats taken from a recent survey of 2,700 IT managers around the world.

 

 But why are servers such tempting targets for cyber hackers?

1. Servers are at high value

Servers often contain an organisation’s most valuable data. For example, personally identifiable information (PII) such as employee and customer records could be stolen if they’re not adequately secured (for example, with encryption) on the server.

Regulations, such as the strongly introduced GDPR that protects EU citizens’ data, levy significant fines for non-compliance. Attackers know this and will threaten to release sensitive data if their demands are not met.

2. Server downtime is very costly

Servers are the motherboard of organisations and are critical to their day-to-day functioning. Unexpected downtime can seriously impact productivity by revoking access to important files or communication tools such as Microsoft Teams. Ransomware attacks can cause organisations to grind to a halt unless a costly ransom is paid.

In instances where an organisation is reliant on servers for commercial function downtime can be even more severe.

3. Servers are the perfect staging ground to attack

Servers are usually strongly connected in an organisation’s network. They are also online & running 24/7 all year round, which makes them an ideal platform for launching further attacks and performing reconnaissance looking for weak spots to exploit across the entire network. If you can’t identify a compromised server, the gates to your IT stronghold could be wide open to the elements.

So what can be done in order to secure your organisation’s servers? The answer is in the right combination of advanced protection, visibility with powerful tools like Endpoint Detection and Response (EDR) and server specific features such as File Integrity Monitoring.

With Sophos Sandstorm, you’ll receive a next-gen advanced threat defence. It provides a whole new level of targeted attack protection, visibility & Analysis. IT can quickly & accurately identify evasive threats before they enter your network.

What other solutions miss, Sophos Sandstorm uses powerful, cloud-based, next-generation sandbox technology.

 

We’re Urban Network, we can help save your Business.

We specialise in managed IT & technology services to help businesses across London & the wider-South East, from our base in Wapping, East London.

Urban Network has a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Among our range of skills, we have a specialism in cyber security. Ensuring we aid our clients with employing the best & most appropriate security practices, procedures and tools to protect their sensitive data.

If you have any concerns or challenges with your cyber security, or with your technology generally, we would like to hear from you. Please contact the team today.

 

GDPR Fines are nasty, here’s a few ways to avoid them.

GDPR Fines are nasty, here’s a few ways to avoid them.

In the recent months as you’re well aware of, both British Airways (BA) and Marriott Hotels have hit the headlines because of eye-watering GDPR fines – £183 million for BA and £99 million for Marriott.

The fines show that the GDPR (General Data Protection Regulation), has given enforcers like the UK’s ICO (Information Commissioner’s Office), some serious tools to play with. BA’s fine is almost 400 times larger than the ICO’s previous record fine – a unworthy $645,000 penalty handed to Facebook for the Cambridge Analytica scandal.

With these new fines in play, we highly recommend you make sure you’ve minimised your risk of being next in the firing line.

GDPR is focused on protecting European Union citizens and it applies to anyone who holds personal data on an EU citizen, wherever in the world you are located. Marriott, a U.S. organisation, is a case in point.

Here are five best rules we recommend all organisations stick to, in order to minimise the risk of a GDPR data loss fine:

  1. Patch early, patch often. Minimise the risk of a cyber attack by fixing vulnerabilities that can be used to gain entry to your systems illegally. There is no perimeter, so everything matters: patch everything you can get hold of.
  2. Secure personal data that’s in the cloud. Treat the cloud like any other computer you own – close unwanted ports and services, encrypt data and ensure you have proper access controls in place. And do it on all your environments, including QA and development.
  3. Minimise access to personal data. Reduce your exposure by collecting and retaining only the information you need, and making sure the only people with access to it are the people who need it to do their jobs. Not everyone needs access to certain data.
  4. Educate your entire team. Ensure that everyone who might come in to contact with personal data knows how they need to handle it – this is a GDPR requirement. Whether they’re invovled with computers or not, everyone needs to know.
  5. Document and prove data protection activities. Be able to show that you have thought about data protection, and have taken sensible precautions to secure personally identifiable information.

We can help

Urban Network can perform tests on your systems to ensure they are protected, as well as information that your business is conforming to best practice, including penetration testing and intrusion testing, however the very basic elements of patching endpoints with vendor security patching, and ensuring antivirus is up to date is the often overlooked start point.

Our Sentinel monitoring software can cover these elements of your network, and coupled with one of our recommended Enterprise Firewalls, the basics are all covered.

To add extra layers of additional security, Urban Network can liaise with you to ensure that there are comprehensive policies in place for password control, access control and network housekeeping and importantly remote access and BYOD policies. We can look at the current implementations of any other facet of your network, and give advice on industry best practices to ensure your business is sufficiently covering your risk.

 

We’re Urban Network, we can help save your Business.

We specialise in managed IT & technology services to help businesses across London & the wider-South East, from our base in Wapping, East London.

Urban Network has a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Among our range of skills, we have a specialism in cyber security. Ensuring we aid our clients with employing the best & most appropriate security practices, procedures and tools to protect their sensitive data.

If you have any concerns or challenges with your cyber security, or with your technology generally, we would like to hear from you. Please contact the team today.

 

With the power of Firewall, you can prevent Ransomware.

With the power of Firewall, you can prevent Ransomware.

Ransomware has vaulted to the top of the news, again. With devastating attacks continuing to impact governments, education and business operations in multiple states, counties and countries, With the United States being the most recent under attack.

Capital One was a major firm recently caught under fire of Ransomware.

These attacks can start in a number of different ways – some start with a simple phishing email, others begin with hackers leveraging vulnerabilities in networking stacks to gain a foothold and move quickly to other systems on the network. One of the most devastating network vulnerability exploited in a ransomware attack was Capital One a couple of months ago.

Since then, new vulnerabilities have been discovered, but there are still many networks out there that are vulnerable.

Unfortunately, many of these un-managed networks stack vulnerabilities that are ‘wormable’ which means that hackers & malware can exploit these holes in an automated method with no user interaction, enabling the infection to spread quickly and easily to a wide group of systems.

Of course, deploying an industry leading protection product like Sophos SG Series, and maintaining a strict patch management strategy are top best practices. But there are also other best practices you should consider to help keep ransomware, hackers, and attacks off your network in the first place.

Your firewall provides essential protection against exploits by closing up or protecting vulnerable ports, as well as blocking attacks using an Intrusion Prevention System (IPS). IPS looks at network traffic for vulnerabilities, and exploits and blocks any attempt for attackers to get through your network perimeter or even cross boundaries or segments within your internal network.

Here are the essential firewall best practices to prevent ransomware attacks from getting into and moving laterally on your network:

 

  • Reduce the surface area of attack: Review and revisit all port-forwarding rules to eliminate any non-essential open ports. Where possible use VPN to access resources on the internal network from outside rather than port-forwarding. Specifically for RDP, ensure port 3389 is not open on your firewall.
  • Apply IPS protection: Apply suitable IPS protection to the rules governing traffic to/from any Windows hosts on your network.
  • Minimise the risk of lateral movement: Protect against threats moving laterally on your network and consider segmenting your LANs into smaller sub-nets, assigning those to separate zones that are secured by the firewall. Apply suitable IPS policies to rules governing the traffic traversing these zones to prevent worms and bots from spreading between LAN segments.

We’re Urban Network, we can help save your Business.

We specialise in managed IT & technology services to help businesses across London & the wider-South East, from our base in Wapping, East London.

Urban Network has a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Among our range of skills, we have a specialism in cyber security. Ensuring we aid our clients with employing the best & most appropriate security practices, procedures and tools to protect their sensitive data.

If you have any concerns or challenges with your cyber security, or with your technology generally, we would like to hear from you. Please contact the team today.

 

Everything in Texas is huge, including the Cyber Attacks.

Everything in Texas is huge, including the Cyber Attacks.

Texas is a big state. Stupidly big. With up to 30 million residents it’s the second largest state in America, it has a land mass twice the size of Germany, and a GDP larger than Russia. Texans like to say, “Everything is bigger in Texas”, and usually that’s a good thing to brag about. However, this time bigger certainly isn’t better.

News hit a few weeks back that 22 government organisations in the Lone State were recently under attack by coordinated & intelligent ransomware attacks. It’s a bright reminder that as attacks continue to evolve, it’s crucial that your defences evolve even faster.

 

How do I make sure I’m not involved with an intelligent ransomware attack?

So how can you help ensure your organisation isn’t the next ransomware victim?

To hit the ground running, does your solution provide or have industry-leading technology to ensure attackers can’t use un-patched, vulnerable software programs to distribute and install ransomware into your systems?

Urban Network can perform tests on your systems to ensure that systems are secure, and your business is conforming to best practice, including penetration testing and intrusion testing, however the very basic elements of patching endpoints with vendor security patching, and ensuring antivirus is up to date is the often overlooked start point.

Should that not stop an attack – or should an exploit not be leveraged – how will your solution stop attacks it’s never seen before?

Our Sentinel monitoring software can cover these elements of the network, and coupled with one of our recommended Enterprise Firewalls, the basics are covered.

To add layers of additional security, Urban Network can liaise with you to ensure that there are comprehensive policies in place for password control, access control and network housekeeping and importantly remote access and BYOD policies. We can look at the current implementations of any other facet of your network, and give advice on industry best practices to ensure your business is sufficiently covering your risk

Keeping a continued eye on the security that is deployed in your systems.

 

We’re Urban Network, we can help save your Business.

We specialise in managed IT & technology services to help businesses across London & the wider-South East, from our base in Wapping, East London.

Urban Network has a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Among our range of skills, we have a specialism in cyber security. Ensuring we aid our clients with employing the best & most appropriate security practices, procedures and tools to protect their sensitive data.

If you have any concerns or challenges with your cyber security, or with your technology generally, we would like to hear from you. Please contact the team today.

 

Don’t let the storm of GDPR catch you out, BA face £183m in fines.

Don’t let the storm of GDPR catch you out, BA face £183m in fines.

In recent news, British Airways has been given notice of a record-breaking £183 million fine, followed a day after by Marriott Hotels at £99.2 million.

The reason? Breaching data protection laws. This should be enough to unnerve anyone responsible for cyber security and handling personal data, whether they are a large corporate, or a small business.

Don’t fall into the same pit, it certainly won’t be easy to get out of…

What happened to British Airways and Marriott Hotels?

British Airways’ fine of £183 million represented 1.5% of its turnover in 2017, which was only achieved as a reduction to the maximum penalty through cooperation with the ICO investigation. If the ICO had sought the maximum fine of 4% of BA’s total revenue, the bill could’ve been £489m.

For Marriott Hotels, Information Commissioners Office are proposing a £99.2m fine.

It’s said that about 30 million of the hacked guest records related to residents of 31 countries in the European Economic Area. Seven million related to UK residents.

The General Data Protection Regulation (GDPR)?

The GDPR came into force in May 2018 and is the biggest transformation to data protection and privacy in the past 20 years. The GDPR gives data regulators the power to fine up to £18m, or 4% of annual global turnover, whichever is greater. In a new attempt by European policymakers to incentivise security practices and stop large-scale data breaches.

Last year Facebook was fined £500,000 by the ICO, which involved the data of up to 87 million users improperly being shared with third-party developers without sufficient consent. Given Facebook’s worldwide revenue was £31.5bn in 2017, they could have received a fine of up to £1.26bn had the case had been eligible under GDPR.

 

Small & Medium sized business are not immune.

It is a common mistake to think that your business will not be targeted. Most hackers are conducting their attacks at random – with businesses often falling victim to malicious software breaching their network, at the fault of a staff member inadvertently clicking on a suspect link in an otherwise unassuming email.

 

How can I protect our business from a Data breach?

If you’re unsure at this point, we’d recommend giving us a call; we’d be more than happy to advise your next steps.

This is not the best time to be worrying whether your security is up to date or not.

Which brings us onto the first point, cyber security best practice.

Making sure you’ve got the most appropriate security for your business, whilst also applying updates frequently to solidify its performance and protection. You don’t want to be left vulnerable simply because you’ve delayed the patch by a week or two.

Another major point; it is a legal requirement of GDPR to ensure you back-up your data, and ensure it is encrypted.

Whether this data resides on personal laptops, or stored away in remote data facilities via the internet, every business regardless of size should employ a 3-2-1 backup rule to best mitigate data loss & minimise the impact of an outage.

 

 Lastly, but very much still incredibly important, is to ensure that your team are trained and aware of their susceptibility to cyber-attack.

As discussed in a previous blog, phishing takes its aim directly at your team; firing emails left, right and centre, embedded malicious attachments and links to fraudulent websites, from which software to steal or corrupt your data can manifest itself into your network. Staff awareness is key to data protection, if your front-line team understand this level of importance, you’ll have few issues keeping out of its path.

 

We’re Urban Network, we can help save your Business.

We specialise in managed IT & technology services to help businesses across London & the wider-South East, from our base in Wapping, East London.

Urban Network has a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Among our range of skills, we have a specialism in cyber security. Ensuring we aid our clients with employing the best & most appropriate security practices, procedures and tools to protect their sensitive data.

If you have any concerns or challenges with your cyber security, or with your technology generally, we would like to hear from you. Please contact the team today.