Time to resolve to review IT security processes

Posted by Mike Vizard on Dec 15, 2016 12:00:20 PM

There’s no doubt that most IT security professionals were left shaking their heads this week when it was revealed that the Federal Bureau of Investigation tried to inform the Hillary Clinton presidential campaign as far back as September of 2015 that their IT systems had been hacked. Alas, for a variety of issues relating mainly to a lack of IT security skills and flawed communications processes, it would take several more months for senior-level Clinton campaign officials to become aware of the true extent of the security breach.

Unfortunately, what occurred in the Clinton campaign is not an exception. A new study published this week by the McAfee Labs unit of Intel Security find that 93 percent of the 391 IT professionals surveyed acknowledged being unable to triage all potential cyber threats. The study finds that on average organizations are unable to sufficiently investigate 25 percent of security alerts.

But the most troubling aspect of the McAfee report is that 64 percent of the organizations surveyed said they rely on managed service providers to one degree or another for security operations assistance.

Read More

Topics: Cyber Security

IT Incident response planning creates new opportunity for MSPs

Posted by Mike Vizard on Dec 6, 2016 9:50:58 AM

Thanks to hard-won experience, most managed service providers (MSPs) have an IT incident response plan in place to cope with any disruption to their business. In contrast, however, it turns out most internal IT organizations don’t.

At a time when distributed denial of service (DDoS) and ransomware attacks are making it apparent just how weak many of the cyber defenses that organizations have put in place really are, large numbers of IT organizations are struggling to cobble together an incident response plan. MSPs that already have IT incident response planning expertise in place based on established best practices should not overlook that opportunity.

Read More

Topics: Cyber Security

Dyn DDoS attack false fodder for anti-cloud crowd

Posted by Ron Miller on Oct 27, 2016 3:51:55 PM

There's no doubt that you heard about, and were probably affected by the Distributed Denial of Service (DDoS) attack on domain registrar Dyn last week. It was a devastating attack that took down services like Spotify and Netflix along with business cloud services like Box and Zendesk for a time on Friday.

Read More

Topics: Cloud Trends, Cyber Security

Infographic: Don’t let ransomware be your customers’ worst nightmare

Posted by Lauren Beliveau on Oct 25, 2016 11:50:00 AM

National Cyber Security Awareness Month is over—but conversations about security with your customers should not. Cyber criminals are becoming more and more sophisticated with their attacks, and ransomware attacks have increased 13 percent in September alone.

Ransomware is running rampant, and as an IT provider it is your job to protect your SMB customers and their data from this dangerous cyber threat. The best way to mitigate an attack is education. Paired with robust security measures, educating your SMB customers to identify an attack is crucial and can essentially save their business. 

Read More

Topics: Cyber Security

MSPs need to be prepared for rising wave of DDoS attacks

Posted by Mike Vizard on Oct 25, 2016 10:18:51 AM

Now it’s been conclusively demonstrated how susceptible even the largest of organizations are to distributed denial of service (DDoS) attacks. At the core of these attacks are multiple forms of malware that have spread to millions of devices connected to the Internet. Once infected, those devices are then incorporated into a massive botnet like the one that directed last week’s DDoS attack against Dyn, a provider of Domain Name System (DNS) services to Web stalwarts such as Google, Twitter, Airbnb, Paypal, Netflix, and Spotify.

While Dyn was eventually able to fend off the attack, the performance of multiple Web applications slowed to a crawl. In many cases, managed service providers (MSPs) with customers that were adversely affected by the attack on Dyn were dealing with more than a few irate calls. After all, there’s a direct correlation between Web application performance and the amount of revenue many organizations can generate per hour.

Read More

Topics: Cyber Security

The MSP’s Bookshelf: Social Engineering – The Art of Human Hacking

Posted by Lauren Beliveau on Oct 19, 2016 10:02:00 AM

Headlines about new data breaches, ransomware variants, and costly phishing scams seem to be popping up on a daily—sometimes hourly—basis. The media tends to focus on large Fortune 500 companies that are attacked, which leads many small business owners to assume that these threats are unlikely to affect them. Unfortunately, this is not the case—anyone can fall for a social engineering attack, and small businesses are targeted often.

What’s the first thing that comes to mind when you think of social engineering? A scammer trying to trick someone into giving away their banking info or social security number? That’s one common way it’s used, but social engineering is more than that. Social engineering is an all-encompassing term, and it’s all around us—whether it’s someone trying to get a raise or get a friend to share a secret. What it boils down to is the art of convincing people to change their frame of mind—and often divulge confidential information.

Read More

Topics: Cyber Security

Webinar: Get to know the security side of Intronis MSP Solutions

Posted by Adam LaRock on Oct 13, 2016 11:21:00 AM

A recent U.S. government report indicates that, on average, there have been 4,000 daily ransomware attacks since early 2016. That’s a 300-percent increase from the average of 1,000 daily attacks in 2015. This growing epidemic means businesses can no longer consider email security and next-generation firewalls an extra precaution; IT security is now a critical necessity.

Data protection and security go hand-in-hand, and as a part of Barracuda we are committed to helping our MSP partners not only recover data when loss occurs, but to help prevent that loss from happening in the first place. That’s why we’re hosting a webinar on Wednesday, Oct. 19 to introduce you to our growing portfolio of security products. Learn how you can take data protection one step further and offer your SMB customers total protection. Register for the webinar

Read More

Topics: Events and Webinars, Cyber Security

Navigating the IT endpoint security paradox

Posted by Mike Vizard on Oct 11, 2016 11:37:51 AM

One of the biggest challenges in modern IT security concerns what to do about endpoints. One school of thought suggests that anti-virus software as most organizations know it isn’t all that effective anymore. As such, this camp argues that more of the IT security budget should be shifting back to either defending the perimeter or encrypting data.

At the same time, thanks to the rise of more sophisticated social engineering attacks there’s more malware on endpoints than ever. A very strong case can also be made for proactively remediating vulnerabilities on endpoints as quickly as possible in order to prevent that malware from spreading laterally throughout the organization.

Regardless of where an organization lands on that endpoint security spectrum, one thing that is certain is not enough is being done to proactively manage endpoints.

Read More

Topics: Cyber Security

How to host your own cyber security lunch and learn

Posted by Katie Sousa on Oct 10, 2016 12:46:41 PM

October has been designated as the month to raise cyber security awareness, helping people avoid potential threats such as phishing scams and malware infections. For MSPs, National Cyber Security Awareness Month is the perfect time to educate your customers about these types of attacks and how they can help keep their business and its data safe.

That’s why we put together a new event-in-a-box to help our MSP partners teach SMBs and their employees about cyber security at a sit-down lunch. Here are some tips on how to plan your own cyber security lunch and learn:

Read More

Topics: Events and Webinars, Cyber Security

Ask Intronis: How can I create an effective cyber security campaign?

Posted by Lauren Beliveau on Oct 3, 2016 7:04:00 AM

Q: I’ve started offering more security solutions to my MSP customers to help them be more proactive about cyber security. I know I need to start marketing these new services, but I’m not sure how to approach it. Should I educate my customers about how to avoid attacks, or should I focus more on the products I have to offer? Is there a way I could use National Cyber Security Awareness Month to launch a successful campaign?

Congratulations on expanding your MSP portfolio! As threats continue to rise, it’s smart to have not only a reactive plan in place to protect your customers in case something were to happen, but also a proactive approach to stopping threats in the first place. While having the right security in place helps, the most effective thing you can do to stop an attack is educate your customers. Creating a marketing campaign is a great way to teach them about different threats and show them you’re there to help.

National Cyber Security Awareness Month  just got underway, and to start your campaign off on the right foot we consulted with Courtney Steinkrauss, our senior partner marketing specialist. Courtney works closely with our partners, creating enablement tools that help them create their own events and campaigns. Courtney believes that it is never too late or too early to start planning for your next campaign, so if you miss launching a cyber security campaign this month—it’s not too late to launch one next month.

Read More

Topics: Cyber Security, Ask Intronis

MSP Health Check
MSP Phishing Quiz
MSP Marketing Assessment
Intronis Local Lunches