Password management is a common challenge businesses in any industry face. A shocking number of businesses still rely on paper-based logbooks or unsecured spreadsheets to manage their privileged account credentials. According to Forrester (a leader in business technology research and advisory) estimates that 80% of data breaches involve privileged credentials which means organizations must make password protection a top priority in their security strategies. Read more
Articles tagged: security best practices
A “golden key” or a universal back door method, allows the bypassing of normal authentication in a product, computer system or algorithm. If used ethically it can be used for securing remote access to a computer system or for debugging purposes. The controversy surrounding golden key methodology stems from the fact that in the wrong hands, it can also open up physical access to those with malicious intent.
Major hardware manufacturers like Apple, Microsoft and Blackberry have taken publicly dissimilar positions on releasing universal back doors to their devices. As the world increasingly depends on devices supplied by these few suppliers, it is important to know where they stand, so you have an idea where your sensitive personal data is likely to end up. Read more
Ottawa wins top rankings, in a game no one wants to be playing.
It is the malware infections (including phishing and ransomware) rate that Ottawa ranks highest in, even when compared to a city like Toronto where the population is significantly higher. Our city has taken notice, as Ottawa Hospital, Carleton University and several non-profit charities have fallen victim. In an effort to combat the attacks, Prime Minister Justin Trudeau announced last summer the public consultation on cyber security strategy, while the IT industry as a whole strives to share threat information about emerging threat vectors. Read more
The Digital Privacy act, originally passed in 2015, has updated elements of its legislation that will require Canadian businesses to adhere to strict guidelines and policies in order to protect confidential information and disclose security breaches. While each organization will have to prioritize its defenses, there will be certain criteria every one will have to follow. While official standards will be released later this year, there are steps you can and should implement immediately to improve you company’s security posture. Read more
As a response to the ever-evolving cyber-security threats Canadian businesses face in daily internet interactions, the federal government has responded. Later this year, newly drafted hacking disclosure legislation will require all businesses in Canada to report any cyber security breach as soon as they become aware of it. Read more
Two Factor Authentication is an extra security method that can be implemented to ensure specific online applications and services are fully protected. With recent password hacks and well publicized security breaches happening to companies small and large it aims to protect your network from phishing attacks and stolen credentials. Two factor authentication can be used as a proposed solution, but how safe is too safe? Read more
Generic user accounts are typically set up and shared among users that have rotating, temporary or intern positions. While the initial time saving aspect of setting up generic accounts is present, the potential long-term pitfalls outweigh the benefits. The conflicts that could arise are something to be aware of before deploying generic accounts across your organization. Read more
Ransomware is a threat to everyone in your organization. Businesses today are under constant attack from various security threats. It’s important that every user connected to your network understands how they are being targeted. When the impact ransomware could have on your business is understood, end users and your IT service provider can work together to provide the best protection. Read more
Outsourcing your IT needs to a service provider can be a cost effective way to manage and scale your infrastructure. Read more