Antivirus

Most Employees Use Work Computers For Outside Activities

December 12, 2014

Thomas Fox is president of Tech Experts, southeast Michigan’s leading small business computer support company.

GFI Software, a leading software tool provider for companies like Tech Experts, recently released a report that found the personal use of company computers and other devices is leading to major downtime and loss of confidential data in many businesses.

The study of about 1,000 small business employees who used a company-provided desktop or laptop computer found that 39 percent of them said their businesses have suffered a major IT disruption caused by staff members visiting non-work related websites with work-issued hardware, resulting in malware infections and other related issues.

Even more alarming, the study showed nearly 36 percent of staff members said they would not hesitate to take company property, including email archives, confidential documents and other valuable intellectual materials, from their work-owned computer before they returned the device if they were to leave their company.

The Human Factor In Network Security

December 12, 2014

Scott Blake is a Senior Network Engineer with Tech Experts.

As you’re aware, disaster can manifest in many forms. In the past, we have included articles about weather-related events and how to best prepare your business against disasters.

However, there is another type of disaster that’s unlike flooding or fires that can also have devastating effects on your business.

The Human Factor
When it comes to safeguarding your business both physically and virtually, you have the power and controls available to give the edge against company espionage, cyber-attacks, or absent-minded employees.

It comes down to three basic areas: Software, Hardware and People. Once you have a firm grasp and control over these areas, you will have reduced your risk level considerably.

Software
Make sure all of your company’s electronic devices – from company-owned smart phones, tablets, laptops, workstations and servers – are running anti-virus and have a firewall in place.

While some devices are easier to secure and manage than others, this is a critical area, so be sure to make the best attempt to cover all your devices.

Be certain that your data storage devices are running backups and the backups are indeed good. As an added form of protection, encrypt your data being stored, making sure you save the key offsite as well.

That way, if your data is comprised either through internal access or external, it will become very difficult to use the data that was stolen.

The size of your company and the amount of sensitive data you have will dictate the frequency of your backup schedule. Remember, it never hurts to be overprotective when it comes to your data.

Hardware
Have security/firewall devices in place. Make sure they are fully configured for your business and that the firmware is up to date.

A lot of security devices add increased measures through the firmware updates.

They often have the ability to fully lock down your internal network as well. Restrict Internet access to only websites necessary for your business operations.

If your business offers Wi-Fi access for either internal use or guest use, make sure that controls are in place to limit access to your company’s internal network. The best precaution is to place the guest Wi-Fi on a completely separate network.

While Exchange mail servers can increase overhead, they will also add a level of increased security to combat against viral infections being delivered via email and attachments.

I’m sure everyone is well aware of Crypto-Locker and its variants. The majority of Crypto-Locker infections were delivered through infected PDF files sent as attachments.

People
By nature, humans are (and will always be) the most random aspect to safeguard your business from. It is vital that you run full background checks on any employee that will be given access to sensitive data or hardware.

Restrict the use of portable media such as flash drives and external hard drives while employees are working on or in the server room. Some companies may go as far as banning all portable media devices entirely.

Be proactive in actively monitoring your employees and watch for any changes in behavior, appearance, attitude and tone of speech. These can all be signs something is wrong.

If you have questions or you’re looking for suggestions, call Tech Experts at 734-457-5000, or email us at info@mytechexperts.com.

(Image Source: iCLIPART)

Network Security And The “People Problem”

November 30, 2014

Michael Menor is Vice President of Support Services for Tech Experts.

Security teams that focus on what is already happening and the layers of defense being breached are constantly in reactive mode.

Reviewing reams of data produced by technology – firewalls, network devices or servers – is not making organizations more secure. With this approach, the team fails to prevent breaches or respond in a sufficiently timely way.

Instead, the addition of more data and more complexity perversely prevents achieving the end result: protecting sensitive information.

The significant breaches of today are executed by people infiltrating the organization and attackers are doing this by assuming identities or abusing insider privileges.

There is a gap between the initial line of defense (the firewall) and the company’s last line of defense (the alerts received by the security team and their following analysis.)

Tracking user activity, especially connections between suspicious behaviors and privileged users, would allow organizations to close this gap.

True understanding of identity has the ability to cut through the overwhelming explosion of data that can render security organizations blind and unable to respond to real threats or even detect if they are under attack.
It is time to incorporate identity into the organization’s breach prevention strategy and overall security. We have to stop accepting a gap approach to security, which is usually focused on data and devices rather than people. In light of the budding perimeterless world, identity will increasingly be the primary factor that matters to the security team.

Identity data is pervasive, yet typically absent from the security world view. For security organizations, our corporate identity (the personal identity elements we bring to our corporate environment) and our behavior are aggregate details essential in building a picture of what is happening within – and beyond – the corporate perimeter.

Together, they offer deep context to inform the security team of the appropriate response to potential threats and real attacks.

The critical piece in this approach is the security organization’s ability and capacity to understand the full scope of identity: who the person really is behind any given device and whether they are behaving abnormally.

This is particularly helpful when identifying attackers that have managed to acquire privileged user credentials.

Identifying Normal Behavior
One way to reduce the scope is to focus on the highest risk identities first. If you accept that the greatest risk comes from people inside your organization that can access sensitive information – known as “privileged users”, which can also include non-human accounts that may have access – then the correct steps are as follows:

1) Reduce the number of privileged users/identities and accounts.

2) Limit the privileges any one user has to systems and applications necessary to do their job.

3) Integrate the identities of privileged users into security and risk monitoring to spot behavior that may indicate a breach.

Closing the Gap
As more and more of the computing environment breaks outside of the control of central IT organizations, spearheaded by the move towards BYOD (or Bring Your Own Device), the ability to recognize who a user actually is and what is normal for them becomes a foundational part of effective security monitoring.

Without such identity-powered security, security teams will continue to struggle to differentiate whether the events they are monitoring are worth a reaction and that hesitation allows attackers to execute more and more damaging data breaches.

Furthermore, security teams will continue to operate in reactive mode and fail to prevent breaches or respond in a sufficiently timely way.

If identity is a central component to security management, then security teams will be in a better position to understand the behavior of users and will spend far less time trying to identify the meaning behind the events they are seeing.

People will continue to be our biggest point of exposure and with a keen focus on user behavior and activity, we will be in a much better position to limit the impact of breaches.

(Image Source: iCLIPART)

Security Tips For Your Smart Phone

November 30, 2014

Today it is fairly easy to carry out business tasks using smart phones. Emailing, browsing the Internet and even creating or editing documents is now a breeze.

So technically, smart phones are now carrying a large amount of sensitive data that needs to be protected. Not only are Smart phones subject to the same threats as PCs, but they are also quite easy to misplace and lose.

Here are a few tips that will help you mitigate some of these security risks:

Screen lock the phone
Whenever you leave your phone unattended, lock your smart phone to require a password or PIN code or set it to lock after few minutes. This will prevent unwanted access and will protect your data in case the phone is lost or stolen.

Enable remote device wipe
Check if your phone allows the memory-wipe function in case it is lost or stolen. Some phones have this feature embedded, but most others will require that you download an app and potentially pay for the service that goes with it.

Apply system updates
From time to time, smart phone vendors, mobile carriers, or hardware manufacturers update the operating systems on their phones. These updates usually include useful and necessary security-related improvements.

Turn off Bluetooth discovery mode
Many people leave their smart phones on Bluetooth-discovery mode around the clock. On some phones, this feature is set by default; however, check your phone and make sure it is disabled when you are not using it. Failing to do so, your phone will constantly be discoverable to others and allow people to connect to your device without prior authorization.

Install mobile anti-virus
Malware purveyors are increasingly targeting smart phones. It is now important to use anti-virus software for your phone just like you would do for your PC.

This is particularly important for Android devices as they are built on an open platform susceptible to malware.

Tips To Protect Your Business PC From Malware

October 31, 2014

In today’s online world, technology users are essentially in a state of near-constant attack. Almost every day, there’s a new data breach in the news involving a well-known company and, quite often, fresh rules for protecting personal information are circulated.

Because of malware in email, phishing messages, and malicious websites with URLs that are one letter different from popular sites, employees need to maintain a high level of awareness and diligence to protect themselves and their organizations.

Phishing activities are especially pervasive, including attempts to steal users’ credentials or get them to install malicious software on their system. The astonishing success rate of phishing attacks makes them a favorite.

Why? More than 70% of people will follow the link to a phony website and, of those that followed the link, 30%-50% will routinely give up their usernames and passwords.

Many like to think of the network perimeter with all its firewalls and other fancy technologies as the front line in the cyber war, but the truth is there’s a whole other front.

Every single member of a company’s staff who uses email or the Internet is also on the front line and these people are generally considered a softer target than hardware or software. It’s simple: if the bad guys can get an employee to give up his or her user credentials or download some malware, they can likely waltz right past the technological controls, basically appearing as if they belong there.

When using a computer for personal functions, a user generally has to have the ability to install software and modify the system configurations. Typically, such administrative functions are not available to all users in a corporate environment.

As a result, even if an organization has made an effort to improve a system’s security, a user doing work on a personal computer has the ability to disable and circumvent protections and has the privileges to allow for the installation of malware.

As companies migrate toward a world of bring-your-own-device policies, some companies are developing strategies to help address these risks. But, as a rule, using a work computer for personal reasons or doing work on a personal computer (or tablet or smartphone) can significantly increase the threat level that an employer has to protect itself against.

To help their organization protect systems and data, employees need to implement some smart web browsing habits. Smart web browsing means engaging in the following activities:

Beware of downloads
Malware can be hidden, not just in applications or installation programs, but in what appear to be image and video files also. To limit the likelihood of downloading content that contains malware, only download from reputable sites. With sites that are not a household name, take the time to do a little research and see if other people have had issues.

Additionally, be sure that antivirus software is set up to automatically scan downloads. Or scan downloads manually, even when receiving them from name-brand sites, as it is not unheard of for infected files to make their way onto otherwise legitimate web sites.

This is especially true for file-sharing sites where the site owner cannot control every piece of content a user may place there.

Be wary of deceitful sites
Those running sites already breaking the law by illegally distributing copyrighted materials — like pirated music, movies or software — probably have no qualms about including malicious content in their downloads or stealing information.

Many popular web browsers today have built-in functionality that provides an alert when visiting a website that is known to be dangerous.

And if the browser doesn’t give a notice, the antivirus software may provide that function. Heed the alerts!

Employees need to protect their devices from online and in-person threats. Start by keeping the company’s system patched. Configure it to automatically apply updates or issue notifications when there are updates and then apply them as soon as possible. This doesn’t just apply to the operating system.

Keep all installed applications updated; sometimes this takes a little extra work.

Remember, the challenge of security is that the bad guy needs to find only one hole in a security system to get past it, so fix them all. Think of it as putting dead bolts on doors, but leaving the basement window wide open.

To that end, security professionals like to debate the usefulness of today’s antivirus software. And it’s true that malware continues to become more sophisticated and harder to detect. But it always amazes me how old some of the malware running around is. As a result, use antivirus software and keep it up-to-date.

Also, use a software firewall, either the Windows firewall or one provided in an antivirus package. This is especially true for laptops connected to public wireless access points at hotels or coffee shops, but it also applies to home systems. It just provides that extra layer of defense.

And finally, please, don’t ever give passwords to anyone. Be vigilant and question anything new, especially emails and forms in the web browser that request work credentials, no matter how nicely the request is made.

(Image Source: iCLIPART)

Top Tips To Avoid A Virus Or Malware Infection

October 18, 2013

by Michael Menor, Network Technician
Malware is short for “malicious software.” It includes viruses and spyware that get installed on your computer, phone, or mobile device without your consent.

These programs can cause your device to crash and can be used to monitor and control your online activity. Criminals use malware to steal personal information, send spam, and commit fraud.

Avoid Malware
Scam artists try to trick people into clicking on links that will download malware and spyware to their computers, especially computers that don’t use adequate security software. To reduce your risk of downloading unwanted malware and spyware:

Keep your security software updated. At a minimum, your computer should have anti-virus and anti-spyware software, and a firewall. Set your security software, internet browser, and operating system (like Windows or Mac OS) to update automatically.

Don’t click on any links or open any attachments in emails unless you know who sent it and what it is. Clicking on links and attachments – even in emails that seem to be from friends or family – can install malware on your computer.

Download and install software only from websites you know and trust. Downloading free games, file-sharing programs, and customized toolbars may sound appealing, but free software can come with malware.

Minimize “drive-by” downloads. Make sure your browser security setting is high enough to detect unauthorized downloads. For Internet Explorer, for example, use the “medium” setting at a minimum.

Use a pop-up blocker and don’t click on any links within pop-ups. If you do, you may install malware on your PC. Close pop-up windows by clicking on the “X” in the upper right-hand corner of the title bar.

Resist buying software in response to unexpected pop-up messages or emails, especially ads that claim to have scanned your computer and detected malware. That’s a tactic scammers use to spread malware.

Talk about safe computing. Tell your kids that some online actions can put the computer at risk: clicking on pop-ups, downloading “free” games or programs, opening chain emails, or posting personal information.

Back up your data regularly. Whether its text files or photos that are important to you, back up any data that you’d want to keep in case your computer crashes.

Detect Malware

Monitor your computer for unusual behavior. Your computer may be infected with malware if it:

slows down, crashes, or displays repeated error messages
won’t shut down or restart
serves up a barrage of pop-ups
displays web pages you didn’t intend to visit, or sends emails you didn’t write

Other warning signs of malware include:

new and unexpected toolbars
new and unexpected icons in your shortcuts or on your desktop
a sudden or repeated change in your computer’s internet home page
a laptop battery that drains more quickly than it should

Get Rid of Malware
If you suspect there is malware on your computer, take these steps:

Stop shopping, banking, and doing other online activities that involve user names, passwords, or other sensitive information.
Update your security software, and then run it to scan your computer for viruses and spyware. Delete anything it identifies as a problem. You may have to restart your computer for the changes to take effect.

If your computer is covered by a warranty that offers free tech support, contact the manufacturer.
Before you call, write down the model and serial number of your computer, the name of any software you’ve installed, and a short description of the problem.

Tech Experts offers technical help on the phone, in our office, or in your home or business, based upon what is most convenient for you.

Telephone and online help generally are the least expensive and most time efficient, but you may have to do some of the work yourself. Bringing the computer to our office is usually less expensive than having a technician visit your business or home.

Once your computer is back up and running, think about how malware could have been downloaded to your machine, and what you could do differently to avoid it in the future.

Malware: What Does It Look Like And How To Prevent it

April 25, 2013

By Tech Experts Staff
The most common issue among users for both home and businesses alike are malware infections.

While malware is a generic term for malicious software, the fact is all malware slows your computer down and brings potential security risks along with it.

Malware can be anything from viruses, trojans, and spyware to “PC Optimization” programs that really do your computer more harm than good.

While some are more serious issues than others they all have negative effects on a workstation or a server so they all need to be taken seriously.

What does malware look like? In most cases an unusual window will open up, something you do not recognize.

Many times malware looks like the speed up your pc programs or could even be designed to look as if it’s antivirus software. It is very common to see software like this requesting credit card information to purchase the software and remove the so called infections.

Do not ever give credit card information out on your computer unless you’re absolutely certain it is a program you’ve downloaded and setup.

One example is your antivirus software will sometimes let you extend a subscription that is expiring via credit card.

“How can I even get a virus, I have antivirus software installed?” This is the single most common question we have from clients that come in for virus infections on their computers.

It is a common misconception that antivirus software means you cannot get a virus. The fact is antivirus software is strictly preventative.

The way antivirus software works is the antivirus vendor makes a virus definition based off of a virus. This definition is what allows the antivirus software to find and stop viruses from infecting a computer. That being said, someone has to get infected before the antivirus companies have an example virus to make a definition for.

Due to this everyone, whether they have antivirus software or not, are susceptible to viruses.

The difference between someone with antivirus software installed and someone that does not is that the person with it installed is not susceptible to infections after a definition has been made, while the other is.

“If antivirus does not completely protect me then how do I keep from getting viruses?” This is the follow up question we always get. For starters, safe browsing habits help to greatly reduce the chances of getting a virus infection.

Do not click on ads. The most common place for someone to get a virus is the ads on websites like Facebook that are very appealing and tend to catch users eyes.

Another thing that can be done to reduce the chance of infection or at least the severity of it is to use a standard user account. Society as a whole has a bad habit of always using the administrator account on a computer for everything they do.

The problem with this is that if a user does download a virus, the virus is now working on an account that has full privileges to the entire computer versus an account that only has permissions on a very small part of it.

Aside from having good browsing habits the best thing you can have on a workstation or a server is a high quality antivirus. Paid antiviruses tend to offer other features to help further protect your computer. We sell a Managed Vipre Antivirus that has very high detection rates and is business grade software. It is very light weight and does not slow down computers.

If you are interested in looking into our antivirus solution to help protect your business or residential computers let us know.

How To Know If You Have A Virus Infection

March 13, 2013

by Jeremy Miller, Technician
There is a lot of anti-virus software on the market today. They are created from many different software developers. All of them are a little different in how they protect your system.

There is no guarantee that your anti-virus software can protect you from any virus out there.

First let’s look at how anti-virus software works. Anti-virus software is usually installed on your computer, then it is scheduled to scan your computer regularly. A virus scan will scan each file on your computer for a “known” virus signature.

A virus signature is a piece of code that is known to your anti-virus software manufacturer as a virus. If your anti-virus detects a signature it will either remove it or ask you how to handle the file. You should remove any viruses that your anti-virus finds for you.

Most anti-viruses come with heuristic protection as well, which is when your anti-virus is able to detect suspicious activity on your computer.

Viruses are known to leak information, such as online banking information, or any other personal or confidential information.

They can lie dormant waiting for a specific user interaction before becoming active. They have the potential to cause unrepairable damage to computer operating systems.

There are many ways to get a virus on your computer with having an anti-virus software installed. The main reason is that virus developers have studied many different anti-virus software, and have been able to write viruses that cannot yet be detected by most anti-viruses.

The reason your anti-virus software cannot detect a newly written infection is because the anti-virus manufacturer has not yet seen the virus and does not have a signature in the database for it. This is the big reason why you should keep your anti-virus software up-to-date.

Another reason that your anti-virus software might not detect a virus would be because you trusted it.

Have you ever saw a pop-up on your screen asking for your permission to allow a program to run? If so then you may have allowed a virus to infect your system.

The last most common cause of infection is attempting to “Speed up your PC.” There is a lot of software out there that claims to speed up your PC for free. The problem is that good software is not free. Some free versions of software can actually slow your computer down, to promote the paid-version.

Also when downloading this software, there is usually a few links that look like download links.
If you click on the wrong one, you may install a virus. Also once you do get the right link, there are usually additional software included during the installation process.

You should always pay attention to every screen during the installation process to make sure you are only installing what you intended to install. There are a number of ways to detect if you may have a virus on your computer.

Your computer should behave regularly. This means your computer should not have any drastic changes day-to-day.

If you have lost access to something, or cannot connect to sites or services that you normally can you may have a virus. If you are browsing the Internet and your address bar does not go directly to the site you want, you may have a virus.

Also if your computer takes longer to startup than usual, this may be a sign of a virus.

If you have any of these symptoms on your computer or if you would like to proactively manage your computer’s security, you should contact us for assistance.

We recommend regular check-ups for your computer to prevent any malicious activity on your computer. You can contact us to work out a plan to combat malicious activity on your computer that will be simple and easy to understand.

Steps To Improve Your Virus Protection

September 21, 2012

by Jeremy Miller, Technician
Many people have asked lately how their computer might get infected by viruses. There are a large number of ways that a virus can get into your PC.

So you need to be properly protected so that in the event viruses find their way onto your system they will be eradicated.

The most important part of improving virus protection is starting with good reputable antivirus software. These usually do require that a little bit of money be spent, but the benefits far outweigh the cost.

There are a lot of antivirus software providers making it difficult to choose which antivirus to purchase.

When choosing an antivirus application, you want it to protect against known threats and irregular behavior or heuristics. Heuristics is a form of “artificial intelligence” which monitors patterns of behavior similar to malware activity.

You will always need to make sure that your antivirus software is up to date.

In some software, where it is okay to fall behind on an update, here and there to maintain functionality in some proprietary software, this is not true with your antivirus software.

Each update contains another list of viruses that have been found in the wild. Antivirus software usually costs a periodic fee that must be paid to continue your subscribed service.

This subscribed service is the updates to the antivirus software, and you will want to make sure that your subscription does not run out.

Once you have an antivirus program installed, you will want to schedule it to run at a time when your computer is on but not in use. This will keep your computer clean and not slow down your work.

Another serious measure of protection is keeping all applications on your computer up to date. Windows updates all the time to fix any new security vulnerabilities that become discovered.

All of the programs that you have installed on your computer must remain up to date as well. These applications update to improve the application and to fix security vulnerabilities.

If for some reason you have to keep an outdated version of software on a computer, then is is even more important to protect that software against viruses.

Even the best antivirus software cannot protect against all viruses. This is where backups are useful. You should back up your network constantly, and your workstation weekly.

Having backups on and off site is the best way to prevent costly disaster from striking your company. You will need to monitor your backups on a regular basis in order to confirm that the process is working properly.

Without testing, your backups may be corrupt and you would have no way of knowing.

We offer managed antivirus, backups and services such as patch management. This means that for a low monthly cost we can manage all of your computer updates and backups.

We can take the hassle out of which updates you should or should not install. We can also offer a cloud based backup solution to protect you from losing data that cannot be easily replaced.

The Best Ways To Protect Yourself From Malware

August 22, 2012

By Tech Experts Staff
Users who bring their computers in to repair malware infections invariably ask the same question: “Why didn’t my antivirus stop me from getting viruses?”

So, you’re probably wondering, “If having antivirus software on my computer won’t protect me from viruses, what will?”

The fact of the matter is that while computer users are told they have to have antivirus on their PCs or risk getting infection, a machine can still get a virus despite antivirus software being installed.

Antivirus not foolproof
Antivirus software is designed to help prevent your system from becoming infected, but it isn’t foolproof. Antivirus software is constantly updated, but can be out of date for hours or even a day or two when a new infection is discovered.

Virus definitions are used to detect viruses and prevent them from gaining access to your computer. Automatic updates in antivirus software like Vipre download the updated definitions to protect your computer.

It’s the time period between when a new virus or malware is released, and the software companies can update the definitions, that your system is vulnerable.

How to protect from malware
Although no antivirus software, even the most expensive versions, offers guaranteed virus protection, antivirus software is a must have. We’ve seen a number of infections where clients have said that they were on legitimate sites at the time the infection hit their computer.

Even legitimate websites have the chance of malware being coded into them by hackers, causing that website to send the malware onto your computer.

So, the absolute best thing you can do is to have antivirus software installed.

The next best step is to be cautious about what you are looking for on the Internet. Many times, users looking for “free” items on the Internet don’t suspect that they might as well be searching for free viruses.

Hackers are crafty – targeting people looking for free downloads is an easy way to spread an infection.

Some of the most common risky items to search for are “screensavers,” “free games,” “work from home,” and “taxes.”

With the search terms shown here, it’s easy to see how computer users could easily be tricked into downloading a file or application that was laced with a virus.

Cautious browsing
The second step to preventing infections on your computer is a combination of common sense and caution.

While it may not be common knowledge as to what is and is not safe to click on while on the Internet, really what it comes down to is using common sense. There’s no such thing as a free lunch, even on the Internet – if it seems to good to be true, it probably is. It’s very important while browsing the Internet that you do not click on anything that just catches your eye. Many times, people have a tendency to click on ads, and because of this, ads have a high risk of containing malware. Don’t click on ads!

The second part, be cautious refers to everything you are doing that involves the connection to the Internet.

If you are using email, make sure you were expecting an email from the person sending it. Opening forwarded emails is a bad habit.Many viruses attach themselves to email accounts and send a lot of spam and forwarded messages which unsuspecting users click on and mistakenly download a virus onto their machine.

So to sum everything up, you should always have antivirus software installed on your computer and keep it up to date.

Even if you think you are a computer pro, keyloggers and many other items can get into your computer and run in the background undetected sending away your private information.

Always use common sense and extreme caution as to what you click on. Nothing is free and you don’t ever know for sure who or what is on the other end of that email you just happened to get in your inbox.

If you think you may have a virus or malware on your computer, or just want it checked for safety’s sake, give us a call or bring your computer in and we can check it out.

It is all too common to see viruses on machines but not actually see anything different on the computer other than it “running a little slow.”

« Previous Page