SpireTech Blog - Category: Security
IT Security topics
In case you missed it last month, we’ve licensed specialized software that runs in Azure that optionally enables additional security for our clients using Office 365. The software works to automatically keep security tight, and alert on suspicious logins and emails. To learn more, please visit:
With work from home, we’re noticing an increase in the number of machines being shut off when we are trying to install updates. Please remember to log off and leave your computers turned on and connected to power when we prompt you for updates.
Thank you for your cooperation. Read more...
Security vendor Sophos disclosed that during the breach we wrote about last month, hackers tried and failed to install ransomware. The firewalls which received the hotfix blocked the subsequent attempts to install ransomware – this includes all SpireTech VIPsupport customers. Hopefully, this underscores the importance of having a team paying attention to this sort of thing for your business and acting promptly when it matters.
For all the gory details, you can visit https://news.sophos.com/en-us/2020/05/21/asnarok2/ Read more...
We are thrilled to announce that Intercept X received a 100% total accuracy rating in the enterprise, SMB, and consumer protection tests by SE Labs.
Whether you are protecting your employees at work, or them and their families at home, you will get outstanding protection with Intercept X technology. It’s important that employees working from home have the same protection you have at work.
For those of you on Microsoft Authenticator and getting push notifications to approve sign-ins on your email and Microsoft online services, congratulations! You’ve just added another layer of security to your account. However – a word of advice: if you get a prompt on your phone to approve a sign-in to your account and you aren’t getting a prompt at your computer – please don’t blindly hit approve.
This can legitimately happen if your computer is on and you aren’t sitting in front of it – but it can wait until you’re back in front of it to verify it’s really you that prompted that authentication popup. What you never want to do is “approve” someone else that has your password to get into your account. Only hit approve when you know it’s you that’s doing the asking.
If you aren’t on MFA yet – we’ll be getting around to you soon.
As a reminder to what we advised last month, we’re putting a stop to SpireTech support for Win 7 machines on July 1st. Congratulations to those of you that have successfully eradicated these machines from your networks. However – in a review today, we see that approximately 10% of machines are still running Win 7. We’ve now got 30 days to get rid of the rest of them. While we don’t want to create unnecessary hardship for clients that may be stressed due to COVID-19, we still need clients to make an effort to replace the remaining systems.
Win 7 machines can be slow, insecure, and time-consuming to support. If your network gets breached due to outdated software, or you call us for support on a Win 7 system, we reserve the right to invoice for time beyond 15 minutes of support. Read more...
SpireTech Managed Services clients are now able to purchase a security essentials add-on for Microsoft 365 offered by SpireTech. This add-on, based on powershell and services running in Microsoft Azure, enables additional security features designed to continuously enhance your security on Microsoft 365. These features do not require additional Microsoft licensing to function.
Real time location monitoringWe monitor the login locations for every sign in, and alert on activities outside of expected regions.
External forward monitoringWe monitor automatic forwarding rules. A common tactic employed by hackers to exfiltrate data.
Mailbox auditingLogs actions taken by users in their and other’s mailboxes.
M365 License trackerGet notified every time a license is added or removed from your account, and receive a monthly report of all licenses, use, and assignments.
Email Spoofing ProtectionGet a warning when an external user attempts to impersonate any internal user, including managers.
Monthly Security ReportA detailed report of several key system and security aspects of your M365 tenant. A necessity for regulated industries, and great peace of mind for everyone else.
The morning of Saturday the 25th of April, our technicians woke up to see an email in our boxes about a zero-day security breach of Sophos firewalls. A novice might read it and think “another boring security email” – we read it and thought immediately “this isn’t good”.
This was a successful attempt en-masse to steal VPN credentials. You need to let the severity of that soak in for a moment – if a hacker has access to your VPN, they have access to your network – usually with lots of soft targets inside. Many companies have added additional VPN users recently with the current WFH situation, so it was the ideal time for them to strike.
All of us mistakenly tend to operate on the assumption that our firewall will keep us safe, and we don’t need to worry about strong passwords, updates, and security inside our networks – this should be a reminder to everyone this isn’t the case. Read more...
Some of the security concerns we’ve been warning clients about recently have turned out to be true. Read on to hear about recent incidents, what we’ve already done, and are planning to do to further shore things up.
Each Managed Services client primary contact will be receiving (or will have already received by the time you read this) an email from us regarding the need to increase security and authorizing the setup of multi-factor authentication on all your corporate accounts where applicable. While this may be inconvenient, we request your cooperation to ensure the security of your data, prevent ransomware, data theft, and redirection of funds to hackers. Read more...
We remain very concerned about recent security issues related to work from home, including:
- Proper anti-virus and anti-malware software installed on home systems
- Patch management and updates of home systems
- VPN’s allowing additional paths for intruders or malware into networks
- Weak passwords
We encourage our clients to take steps to mitigate these risks including:
- Set up Multi-factor authentication on company accounts
- Request SpireTech manage employee-owned computers during this crisis for only $30/mo
- Install proper anti-virus on unmanaged endpoints (included above)
- Upgrade to Microsoft 365 Business Premium, which includes intelligent security, bring-your-own device management solutions such as Microsoft Intune and EMS, and can mitigate risks related to access to corporate data outside the firewall.
Please schedule an advisory call with your Technical Client Manager if you’d like advice on how to improve security in your current WFH situation. Read more...