If you don’t where it is, you can’t protect it.
Do you know where ALL your organisation’s data is – not physically, but on which web and cloud services?
Here’s the problem. If you don’t where it is, then you can’t protect it. The secondary problem is finding out, because not everyone in your organisation will be onboard. It is common for people to sign up to web services because they offer something useful that helps them do their job.
They sign up using their email address and creating a password. There is the first headache – how does anyone track what has been signed up to across your organisation, let alone who has access to it? If that person leaves, no one will change the account credentials if they don’t know about it, but your ex-colleague still has access.
Secondly, what data do they upload? Is that data that you have a legal or moral responsibility for?
There’s nothing noble about Nobelium.
This isn’t theory – it’s real. USAID is a pretty important US organisation – promoting democracy and human rights around the world. Turns out, someone there was using a well-known email database tool called Constant Contact. But their account wasn’t well protected. Worse still, their account had a huge mailing set up, and of course, it had all the official USAID templates.
So, these Nobelium people, allegedly a Russian state-sponsored hacker group, compromised the Constant Contact account and sent a bulletin out. The bulletin contained malware that allowed the hackers to take command and control over victims computers. Ironically the fake email alleged interference in the US federal elections.
So, what can you do?
The first step is knowing what SaaS tools your people are using. We call this SHADOW IT and it is inevitable. Rather than stopping it, the job IT has is to identify it and manage it. The second step is to secure those platforms. That’s why our KARE for Security S2 plan contains a useful tool to help you identify what services your people are using.
Refer : What We Know About The Apparent Russian Hack Exploiting USAID : NPR
FREE Covid-19 Health Contact App
Are you ready for the move back to COVID-19 Level 3? Are you ready to track visits of your staff to other workplaces, or visitors to your workplace? It's not just tracking visits. You have an obligation to check you are not exposing your staff to COVID-19 either in...
Americans Report US$13 Million in Losses From Coronavirus Scams
The United States’ Federal Trade Commission (FTC) has received more than 17,000 complaints from U.S. consumers who reported total losses in excess of US$13 million from COVID-19 related scams. The crime that was reported the most was the rather broad category of fraud...
Fancy a date?
How many working days are there in a month? For many of us doing budgeting, the number of days matter for either income or costs. For years, I have spent a few moments as part of our budget setting exercise to look through an annual calendar, count the days in each...
Are your staff struggling with technology working from home? Who are you going to call?
Who are you going to call? When you are stuck on an IT problem, you are working from home and the only person next to you is a pet! Out of sight but not out of mind - IT Training is MORE important now than ever How do you offer training remotely? How do you...
LOCKED DOWN, BUT NOT OUT!
Life must go on, irrespective of the Covid-19 disruption. With our staff, our clients and our various stakeholders relying on us, we simply have to make sure we use this time to come back stronger than ever. Many of us have been through these challenges before, and...
WARNING – COVID-19 ISN’T THE ONLY PANDEMIC RIGHT NOW
There’s more than one infection going on right now. There’s an avalanche of cyber-criminal activity as well – the crooks are faking websites to look like official WHO ones, sending fake emails that appear that to come from authorities – health departments,...
OFFICE 365 IS DEAD. LONG LIVE MICROSOFT 365
This week, some guy we hadn’t heard of made a big change to the products we all use. He renamed them. So in reality, everything keeps working as it did before. But what appears on invoices and quotes will change. We’ll take a little while to get used to these new...
Kinetics provides an Essential Service!
As updated by the Cabinet yesterday, helping you to work from home is an essential service. That doesn’t mean business as usual though. We’re well aware that we need to fight this virus together. KINETICS is able to visit customer sites when necessary to ensure work...
Remote Working Tips and Tools
Working from home is different. Managing staff working from home is also quite different. Here are a few tools to assist: 1. Is everyone working ok? Do we know where they are and what they need? How do we discharge our Duty of Care to our colleagues? Introducing...
Slow Cloud? The race to Remote Work
Coronavirus in NOT a conspiracy by the tech-industry to get everyone to the cloud. Imagine trying to get your workforce to work remotely without the cloud, and without ubiquitous connectivity like UFB. Those screeching dial-up modems that disconnected all the time...