30
Oct, 2019
to-do_209072166_400.jpg

Tip of the Week: Your Cybersecurity To-Do List

to-do_209072166_400.jpg

It is a well-established and widely-known fact that your employees are some of the biggest threats to your business via the technology that they use each and every day. If your employees aren’t aware of the practices and policies that they need to follow to prevent these threats, you could find yourself in an unpleasant position. Here, we’ll review four categories of cybersecurity basics that everyone in an organization should abide by, and some tips to support each.

Preventing Phishing

Phishing has been becoming more and more of a favorite tactic by hackers, meaning that you and your employees need to look at any messages that come in via your email (or other solutions) with a critical eye. Here are some practices to help you minimize the influence of phishing on your business:

  • Watch for “Urgent” messages (or, for that matter, “URGENT!!!!!!” ones). Many phishers will try to manufacture urgency to make sure you click without taking a moment to consider it may be an attack. Resist this knee-jerk response.
  • Review in detail. Many phishing messages show distinct warning signs, such as blatant spelling or grammar errors (but this may just be the person you’re talking to as well). You can find other, more reliable signs by giving any links or the email address of the sender the “hover” test. Without clicking on anything, hover your cursor over the links and a small pop-up box will appear. This box will show you the address that really sent the email, or the link that you would actually be redirected to. Check to make sure all the details are kosher. For these reasons, it’s recommended that you don’t click on any links in emails. Instead, retype the URL into your web browser.
  • Double-check with the sender. If you have access to another means of communication with the supposed sender of an email, reach out to them using that other means to confirm that they sent it. If they didn’t, it’s a pretty safe bet that the email is fraudulent.
  • When in doubt, assume the worst. If you just aren’t sure how legitimate a given email is, don’t click around in it. Assume that it is a phishing attempt, and report it to your IT provider.

Establishing Safe Browsing Habits

Unfortunately, there are plenty of threats that reside online, and it is only too easy for a user to unwittingly allow them in. Make sure your users abide by the following policies to minimize the threats you’ll potentially need to deal with.

  • Think before you click. Similarly to links found in emails, there are plenty of opportunities online to let in a threat. Consider what you’re clicking on before you do so. (The “hover” trick works well here too… check out the bottom of the window.)
  • Reserve business computers for business purposes. Non-work-related browsing can bring users to websites that can host threats without the user realizing. Discourage your users from surfing the web, downloading content, and doing other things online unless they are work-related.
  • Moderate access. Use firewalls and content filtering to keep unwanted content off of your network, and users from accessing unwanted content, respectively.
  • Trust your IT resource. If you are even the slightest bit unsure about something, whether it’s a program you’ve been prompted to install or making sure your settings are focused on maintaining security, reach out to IT for assistance.

Enforcing Strong Passwords

It seems that everything requires a password these days, which makes it all the more important that you and your users are aware of how to keep them safe – especially in the workplace.

  • Don’t recycle passwords. Once a password has been used and replaced, it is best to not use it again – this is why you’ll often find a “you have used this password too recently” message if you attempt to use it again within a certain timeframe. This is the same reason that passwords should not be used for more than one account – if that password is compromised, you’ve just lost control of multiple accounts.
  • Avoid easily-guessed passwords. As a way to try and come up with a password that is easy to remember, many people will resort to using common elements in their password – pet names, maiden names, birthdays or anniversaries – or use a simple phrase or a string of numbers. The entire point of a password is to make it so that others are unable to access one of your accounts, so making it something that can be guessed is counter-productive.
  • Consider leveraging passphrases instead. Passphrases are not only typically more secure than a password, they also have a tendency to be more memorable. Let me ask you this… which of these two would you find more memorable, “F4njUJ29S5” or “pearquiethigh?” You can also use basic substitution to make you passphrase more secure, turning our example into “pe@rqu!e+h!gh” instead.
  • Use a password manager. One of the main reasons that people reuse passwords so often and neglect to change them is the fact that they are scared of forgetting them. A password manager can help reduce this by securely saving all of your different passwords behind one master password. 

Protecting Your Business’ Data

Finally, there are many threats out there to your business’ data – including any you have on your clients or your employees. You have a responsibility to yourself, as well as these clients and employees, to make sure that this data is as secure as possible.

  • Make sure your business’ data is backed up. There are so, so, so many ways that your business could lose its data. While it may be attacked, it could just as (if not more) easily be lost due to equipment failure, user error, weather conditions… the list goes on and on. If your on-site data is lost, you will want to make sure you have an up-to-date copy squirreled away in the cloud to reference.
  • Protect your assets with access control. You need to be concerned about both the security of your digital files, and of your actual business location. If you’re using multi/two-factor authentication to secure your online resources, or requiring identity confirmation in order to enter certain areas of the business… you need to be doing both.
  • Maintain your security solutions. The thing about security software is that it isn’t something that you can just set up and count on indefinitely. Attackers are always examining these solutions to find vulnerabilities, so it is important that you regularly update and patch the ones you use to keep them safe. Every solution you have should actually be set up with security in mind. A glaring example is your company’s wireless. Not only should that be secured with a password, it should be hidden away from outside users.
  • Keep your payment options compliant. For your sake, and the sake of your clients, you should make sure your business is compliant to whatever regulatory standards that apply to it… including the Payment Card Industry Data Security Standard (PCI DSS).

Following these guidelines is a great start to ensuring your company’s security. NuTech Services can help get you this far, and beyond. Reach out to us at 810.230.9455 to learn more about what we can do.

28
Oct, 2019
bug_216065370_400.jpg

Microsoft Releases Rare Bug Fix Off of Regular Patch Schedule

bug_216065370_400.jpg

Most of us like to take matters into our own hands, almost to a point where we might refer to ourselves as control freaks. So, when it comes to letting other people or even our own devices update themselves, we tend to click “remind me later” or “don’t ask me again”. Patches however, are a crucial task in the computing era. Keeping everything up-to-date aids your business in staying one step ahead of lurking threats. Recently, Microsoft announced that it had two major security updates which required emergency patches. 

The two vulnerabilities were patched off of Microsoft’s typical “patch Tuesday” due to the urgency. Most Microsoft patches are released on the second Tuesday of the month. The fact that these two were released ahead of time might seem like an insignificant occurrence, but the reality is this event is a major red flag.

Internet Explorer Zero-Day

The most significant patch was for a zero-day vulnerability that was found in Internet Explorer. It may be hard to believe, but people are indeed still using this antique browser to surf the web. The term zero-day suggests that the vulnerability that was discovered, had already been exploited by ill-minded cybercriminals. 

While not much information has been released on the event, Microsoft did call it a remote code execution exploit that, if accessed, could have given a user control of another user’s account. The attack requires phishing someone who is exploring the internet on Internet Explorer, and luring them onto a malicious website. Once there, an attacker would be able to gain access over the victim. 

Internet Explorer is such a forgotten browser that the event did not spark a lot of controversy. This is largely due to the fact that Internet Explorer makes up just two percent of the active market share. However, for the relatively small amount of users that continue to surf, an event like this is still a huge disaster. 

Microsoft Defender DOS Bug

The second patch that Microsoft expedited was a denial of service vulnerability in Microsoft Defender. The antivirus program comes standard in all Windows 10 PCs, and truly is the core of Windows 10’s sterling security record. 

The bug that was discovered wasn’t necessarily obvious, or easily exploitable. In order to do so, the attacker would need the ability to read, understand, and write code. Doing so would allow them to disable Windows Defender components, giving the attacker access. This would give them free rein to do whatever malicious act they chose to deploy. 

Patches aren’t optional. If you are worried about your business’ vulnerability, speak to one of our experts at NuTech Services. We have the know-how to keep your software up to date. Give us a call at 810.230.9455 today! 

25
Oct, 2019
scam_284361147_400.jpg

How Cybercriminals Can Add “Be Scammed” to Your Google Calendar

scam_284361147_400.jpg

Users seem to have a bit of a blind spot when it comes to solutions put out by Google, particularly the risks associated with Gmail. It’s almost odd to say: a security threat leverages Gmail. Unfortunately, it isn’t unheard of, as a phishing scam has been leveraging Gmail and its cooperation with Google Calendar for some time now.

Here, we’ll review the basic experiences that this scam subjects a user to as it sets the trap… and, of course, what your business can do to avoid these threats.

How Users Can Be Scammed

Put yourself in the shoes of a targeted user for a moment: just like any other day, you access your Gmail account and discover what looks like a Google Calendar invite. The invite is apparently for some kind of company-wide meeting (probably to discuss the company’s trajectory, policy changes, or something like that) to take place at the end of the workday. The message includes a link to the complete agenda, which can be accessed once a user confirms their credentials. You do so… and in doing so, fall for a scam.

This scam can be pretty safely categorized as “brilliant in its simplicity,” much like other phishing attacks can be nowadays. By using Google’s own convenience-based features, a fraudulent calendar event can be automatically added to a user’s Google Calendar, notifying the user. Fraudulent links send the user to a faked Google login page, where the user’s credentials are stolen as they attempt to log in. Alternatively, the link just begins installing malware directly to the targeted system. This scam has also proved effective against private users – informing them of some fabulous cash prize they’ve “won” through these fake Calendar entries.

How the Scam Was Uncovered

As it turns out, the details of this scam were reported to Google by an IT security firm in 2017, but Google has not made any steps to resolve it until recently.

The firm stumbled upon this discovery when a coworker’s flight itinerary appeared in an employee’s Google Calendar. From there, the researcher realized the implications of this accidental discovery, and quickly determined that users just don’t anticipate phishing attacks to come in through their Calendar application.

Can This Scam Be Stopped?

Now that Google has acknowledged the issue, a fix is currently being developed as of this writing. Until the point that a successful fix is deployed, you need to make sure your users are protected against this vulnerability.

The first thing they need to do is ensure that no Gmail events are automatically added to their Google Calendar. Under Settings in the Google Calendar application, they need to access their Event settings. From there, they need to deselect the option to Automatically add events to my calendar from their Events from Gmail.

To disable invitations to events from automatically adding themselves to the Google Calendar, a user needs to go through the same process, this time switching the Automatically add invitations option to the much safer “No, only show invitations to which I have responded.”

With any luck, this – combined with a little vigilance from your users – will protect your business from a phishing attack via its schedule. To learn more about how to protect your business against a variety of threats, subscribe to our blog, and give NuTech Services a call at 810.230.9455.

23
Oct, 2019
steps_244849832_400.jpg

The Truth About Compliance and Cybersecurity

steps_244849832_400.jpg

To the average person there are some definite blurred lines between IT security and IT compliance. In fact, these lines are so blurry to most people that they would consider them the same thing. They aren’t. How is it possible to create a fully compliant, completely secure computing environment? You start by understanding how to make both possible.

IT Security

Let’s start with IT security because it’s undeniably important if you want to maintain not just IT regulatory compliance, but business on your own terms. IT security, like the act of complying with regulations, is an act of risk mitigation. In the case of IT security, the risks are many and complex. You have the risk of operational issues like downtime. You have the risk of system corruption from hackers and other outside entities who are trying to break through (or in) and get access to your assets. There is also internal risk to physical systems, central computing infrastructure, and every endpoint on the network.  

In IT security, the amount of risk often dictates what kind of action is necessary, since reacting to the problems themselves isn’t a viable option. Thus, when protecting your network from threats, you will likely have to be much more comprehensive about your attention to detail as you would even under the most strictest compliance standards.

IT Compliance

Compliance also is all about minimizing risk, but to stay compliant, it’s more about focusing on following set-in-stone rules than it is about keeping systems secure. Most of the regulations that have been passed down by a government entity, third-party security framework, or customer contract have very specific requirements. This gives network administrators a punch-list of tasks that need to happen to keep their organization’s IT compliant with their various IT mandates. 

Insofar as it works to maintain digital asset security, many regulations are created to ensure that risky behavior is not introduced, while others are very specific about what data needs to be protected, and what systems need protection. In fact, some regulations barely touch the IT infrastructure, only dictating that the business purchase regulation-compliant hardware. 

Where Your Company Stands

Compliance standards typically depend on which vertical market your business does business in, or more specifically, how it uses sensitive information in the course of doing business. That doesn’t speak to your organization’s complete IT security strategy. In order to keep all of your digital (and physical) assets secure, there needs to be a dedicated plan to do it. After all, today the user is the most common breach point. 

With that truth it is important for the business that operates under the watchful eyes of a regulatory body to understand that you may be compliant, but still be at risk. It’s important that aside from meeting all the compliance standards set forth by your industry’s regulatory mandates, you need to put together a cybersecurity strategy that prioritizes the ongoing training of your endpoint operators. 

At NuTech Services, our technicians are experts in modern compliance standards and cybersecurity. Our team can work to simultaneously build an IT infrastructure, the policies to govern that infrastructure, and the endpoint monitoring and protection solution that will keep your business secure from threats, while also being compliant to any mandated regulations your business is under. Call us today at 810.230.9455 to learn more.

21
Oct, 2019
AI_292930626_400.jpg

How is Artificial Intelligence Changing the Face of Cybersecurity?

AI_292930626_400.jpg

If you are concerned about your business’ ability to keep its network secure and data protected, you’re not alone. More businesses than ever are utilizing modern strategies to ensure that their networks are safe, their hardware is stable, and that their data stays secure. With the continual shifts we are seeing in the threat landscape it is essential that cybersecurity continues to evolve. Today, we take a look at some of the innovations being made in cybersecurity, and what to expect out of future cybersecurity tools.

Some of the best cybersecurity methods are practices developed over the past few years. This is because social engineering, specifically phishing, has become a major problem. There are billions of phishing emails sent each year, and some of those are so convincing that even people who have had some basic cybersecurity training fall victim to them. To fight this, security firms have started to look to tomorrow’s technologies to help them mitigate risk today. 

Artificial Intelligence – The Future of Cybersecurity 

One of the most effective ways of combating this rise in hacking is to use the most dynamic technology you have access to and make a tool that will help you mitigate the massive risks. One way is to reduce the effectiveness of these hacks. In this case the technology is artificial intelligence.

When we talk about artificial intelligence, we are talking about having a machine that learns as it is continually exposed to threats. This will work to solve common issues at first, but as these systems advance, and are exposed to user behaviors, they will be able to replace access management systems. Since the AI will be constantly monitoring systems, as well as user behaviors, workplace roles, and common actions, it will be able to recognize a person without, the need for password-protected accounts and creating ubiquitously secure endpoints. If the system recognized any deviations, an additional form of authentication such as biometrics would grant or deny access. 

Cost will initially be a factor for businesses, especially small and medium-sized businesses, but as large companies begin to truly trust these platforms, they will have viable endpoint-protection systems for small businesses. 

Cybercrime Accelerates with 5G

5G and beyond will bring a lot of changes to the user experience, of course, but it will also make huge changes to cybersecurity. Before long, the AI systems that are being developed to thwart today’s cyberthreats will become essential systems for the sustainability of mobile computing. Just think about how much cyberthreats have multiplied over the past decade after the jump from 3G to 4G. The jump to 5G isn’t going to any less dramatic.

It will be crucial for cybersecurity professionals to be able to leverage systems that are both ubiquitously available to search through large streams of data while also being capable of learning on the fly in order to ascertain what data is potentially malicious and what data is less so.

Luckily there are still years before these types of systems will be needed. Unfortunately, there are enough threats out there to be a major problem going forward. The IT professionals at NuTech Services can help you protect your hardware and data. Give us a call at 810.230.9455 today!

18
Oct, 2019
AdobeStock_80613642_400.jpg

Big Data for the Small Business

AdobeStock_80613642_400.jpg

Today, large companies typically use their data to help them make more educated business decisions. This strategy can actually benefit smaller businesses as well. However, they often don’t think they have enough data to facilitate analytics or BI (Business Intelligence) platform. Let’s take a look at how small businesses can use their big data. 

To Identify Trends

The number one thing you need to know about data analysis is that the data you use needs to be structured in a way to allow you to get the most accurate information possible. This isn’t always easy. In order to put your business in the right position you can’t just rely on decision makers to go with their gut reaction, you need a definitive plan fueled by empirical data so that you avoid huge costs to solve small problems. The simplest way to do this is to identify trends inside and outside of your business. You can do this through a dedicated business analytics platform, using your organizational data to help you make sound business decisions. 

Improving Operational Effectiveness

Another part of the business that can be improved through the use of analysis is operations. Traditionally, the more efficient your business is, the more effective it is. This doesn’t change because you have data; but, with the data you can get a better perspective about how your business works, how your customers interact with your company, and a lot more. The better you understand the separate parts of your business the more you can confront its pain points and build effectiveness. 

Shifting Your Revenue Generation Strategies

Since you are in business to make money, it stands to reason that using any resources to help you do that is beneficial for the company. Combing through your operations and marketing data can provide opportunities that you didn’t know were there. It can make all the difference for the small business that needs to transition quickly in order to sustain operations. 

It’s been said that data is the new oil. That may or may not be true, but for the small business, drilling into your data to see the best way forward is a solid practice that will become commonplace before long. To get out in front of it, call the IT professionals at NuTech Services at 810.230.9455 and we will help you get started using your data to benefit your business today.

16
Oct, 2019
website_228145272_400.jpg

URL Manipulation and What to Do About It

website_228145272_400.jpg

Most people know what a URL is. It’s the address of a website, typically starting with http:// or https://, and it is essentially the location of a web page or application that can be accessed through a web browser or application. Nowadays, URLs are being manipulated by actors for both positive and negative means. Let’s take a look at URL manipulation and how it could affect you.

The URL

Before we get into the manipulation of the URL, let’s define its parts. 

The first part of the URL is called the protocol, which tells the computing network which language is being used to communicate on said network. Most of the time, the URL will use the protocol “HTTP”. The HyperText Transfer Protocol makes it possible to exchange web pages. Other protocols that are used include File Transfer Protocol, News, and Mailto. 

The second part of the URL is the ID and password, which makes it possible to access secure servers on the network. This part is typically removed because the password will be visible and transfer unencrypted over the computer network.

The third part of the URL is the server name. It allows users to access information stored on specific servers whether through a domain or the IP address associated with the server. 

The fourth part of the URL is the port number. This number is associated with a service and tells the server what type of resources are being requested. The default port is port 80, which can be left off the URL as long as the information that is being requested is associated with port 80.

Finally, the fifth, and last, part of the URL is the path. The path gives direct access to the resources found tied to the IP (or domain).

Manipulating the URL

By manipulating parts of the URL, a hacker can gain access to web pages found on servers that they wouldn’t normally have access to. Most users will visit a website and then use the links provided by the website. This will get them to where they need to go without much problem, but it creates their own perimeters.

When a hacker wants to test the site for vulnerabilities, he’ll start by manually modifying the parameters to try different values. If the web designer hasn’t anticipated this behavior, a hacker could potentially obtain access to a typically-protected part of the website. This trial and error method, where a hacker tests directories and file extensions randomly to find important information can be automated, allowing hackers to get through whole websites in seconds. 

With this method they can try searching for directories that make it possible to control the site, scripts that reveal information about the site, or for hidden files. 

Directory traversal attacks, also known as path traversal attacks, are also popular. This is where the hacker will modify the tree structure path in a URL to force a server to access unauthorized parts of the website. On vulnerable servers, hackers will be able to move through directories simply.

What You Can Do?

Securing your server against URL attacks is important. You need to ensure that all of your software is updated with the latest threat definitions, and keeping a detailed configuration will keep users in their lanes, even those who know all the tricks. 

The IT experts at NuTech Services can help you keep your business’ IT infrastructure from working against you. Call us today at 810.230.9455 for more information about how to maintain your organization’s network security.

14
Oct, 2019
history_249687757_400.jpg

Cybersecurity: An Origin Story

history_249687757_400.jpg

The way a business handles network security is directly related to what problems will arise from their use of information systems. Cybersecurity has become a major part of all businesses, of all geographic locations, and all sizes. Because the better your cybersecurity is, the less problems your business will have to overcome, cybersecurity has grown into a multi-hundred-billion dollar a year industry. Cybersecurity hasn’t always been a concern for businesses. After all, the internet hasn’t been around for THAT long. However, the history of cybersecurity has a fascinating story behind it, and today we’d like to share it with you. 

Let’s start with where we are now. History is best told on a timeline, so let’s start from the present. Cybercrime today is profiting over $1.5 trillion each year, and that figure continues to climb. Some have predicted that this figure will nearly quadruple by 2021. Security breaches are up by 67 percent over just the past five years.  

How is this figure climbing so quickly? Well, let’s examine the most popular form of cybercrime: phishing. The method that cybercriminals are using are able to deploy all types of malware, yet also has data-stealing abilities. Whether that data is your sensitive personal information, or login credentials to your bank account, phishing gives a cybercriminal direct access. The worst part for people who have fallen victim, is until something dramatic happens, they are clueless that they have even become a victim. Phishing attacks have led to billions of records being exposed, stolen, or corrupted each year.

Cybercrime has become a real concern for all business owners. So how did all of this start?

The Beginning 

This information NuTech Services is about to reveal may be hard to believe, but cybercrime was Bob’s fault. This trillion-dollar criminal trend is the result of a research project held by a man named Bob Thomas. Bob Thomas made the observation that a program is able to move across a computer network, leaving a trail behind. He then proceeded to write a code that was named “Creeper”. This code resulted in a program that was designed to travel between Tenex terminals on the ARPANET. The message that came across? “I’M THE CREEPER : CATCH ME IF YOU CAN”. 

The research project sparked the attention of email inventor Ray Tomlinson. Tomlinson altered this program into a self-replicating one. This resulted in the first computer worm. Immediately after this discovery, he wrote an additional code which was titled “Reaper”. This chased down the Creeper code, and deleted it; which resulted in what was effectively the first antivirus software. 

So how did Bob’s experiment start all of this? Well, in the 1980s Soviet hackers considered the applications of this experiment. Academics designed applications that could be used to infiltrate other networks. This ideology quickly spread, and in 1986 German hacker Marcus Hess hacked into an internet gateway which was hosted at the University of California at Berkeley. This hacked connection was then used to piggyback onto the ARPANET. He hacked into a total of 400 computers, including mainframes hosted at the pentagon. 

How did this turn into such a profitable “business”? Hess planned on selling the secrets found on these computers to the Soviet KGB. Before he was able to do so, he was caught by the group effort put forth by the FBI and the West German government. His conviction was the first of its kind — cybercriminal activity sentencing. The abnormality of the case resulted in a 20-month suspended sentence. 

At the same time as this was occurring, computer viruses started to become a serious threat. With the exponential growth of the internet, there were more connections that viruses could infect. The virus started to become a real problem.

The Middle

In 1988, Robert Morris woke up and decided he wanted to see just how big the internet had become. Morris, a software engineering student at Cornell University, wrote a program designed to spread across various networks, work themselves into Unix terminals, and begin replicating. The software replicated so quickly that it actually slowed down the early Internet, which caused major carnage. This carnage become known as “the Morris Worm”. Morris’ worm resulted in the formation of the Computer Emergency Response Team, known as US-CERT today. Morris was the first person convicted under the Computer Fraud and Abuse Act (CFAA). This act was introduced with the intentions to protect against unauthorized access. 

After Morris’ worm was handled, viruses began being developed at an absurd rate. The antivirus industry, which started in 1987, began to grow as a result. By the time the Internet was an accessible user-product in the 1990s, dozens of solutions were available to prevent devices from being infected. These solutions scanned the binaries on a computer, and tested them against a database of known virus-code. There were major problems with this protection method, such as the abundance of false positives. They also had a tendency to use a lot of the systems’ resources to scan for these viruses. Remember how slow dial-up used to feel? Your anti-virus could have been the culprit. 

The mid-90’s to late-2000’s were a prospering time for the world of viruses. While the figure was estimated to be a few thousand known viruses in the mid 90’s, that figure was estimated to be around five million by 2007. These different malware strains were either worms, viruses, trojan horses, or other forms. By 2014, 500,000 different types of strains were being created daily. This time truly was the malware boom. 

Who was stopping this boom? Well, nobody. Cybersecurity professionals needed to make an effort. Antivirus solutions simply couldn’t keep up, and while they might detect malware, they had a hard time preventing it. Innovations in cybersecurity developed quickly. First, endpoint protection platforms (EPP) that didn’t just scan for known code, they also scanned for code similarities. This meant that unknown viruses could be detected.

The End?

With advanced malware defeating endpoint protection regularly, it was time to further innovate cybersecurity measures. The timeline innovators had was cut short with the deployment of WannaCry. WannaCry was, at this point, the most devastating piece of malware that existed. WannaCry even shook the world of the most capable security professionals. It encrypted the data on a computer and forced the computer owner to pay in Bitcoin to regain access to these files. This deployment sparked an explosive increase in the cybersecurity industry. It was time for cybersecurity to surpass the capabilities of cybercriminals, instead of being constantly behind.

The only way anyone was able to determine if they were being infiltrated was to have a transparent network. Administrators began using endpoint threat detection and response (EDR) services to monitor their networks. This solution is still cutting edge by today’s standards. While this isn’t the end for cybersecurity, EDR services are extremely capable of keeping malware out of your network. 

If you would like to learn more about cybersecurity, or are interested in keeping your business’ data safe, call NuTech Services today. Our professionals can be reached by calling 810.230.9455.

11
Oct, 2019
outsource_102117857_400.jpg

There’s Value in Outsourcing Your IT, Part V

outsource_102117857_400.jpg

Information technology continues to play a more significant role in businesses, and as technology changes, so should yours. IT procurement is a critical part of any business’ success, which means that your business can greatly benefit from a managed service provider. They have the know-how to procure all of the best technology. Today, we will discuss how your business can acquire the IT it deserves. 

Businesses Depend on IT

There are a lot of different pieces of technology that go into a business, and like a puzzle they all need to fit together and work. So where do all of these puzzle pieces come from? Let’s examine different types of technology.

Servers and Networking

Here are two scenarios, and the different methods businesses use to handle them:

Walter’s business is growing extremely quickly, but his servers are the same ones he’s been using for years. He realizes he is running low on storage space, and his increasing staff puts pressure on him to upgrade his server. Walter manages to cobb something together, hoping it will suffice for the time being. When Walter attempts to merge his servers into one slightly larger server, he misconfigured a few components resulting in downtime for his entire staff. Not only has he wasted his own time, but now he is experiencing the most expensive segment of downtime he has ever experienced. 

Jesse, on the other side of town, also is experiencing extraordinary growth. Jesse however, makes a simple phone call to his managed service provider. He is connected to a professional, who advises Jesse on server options that will sufficiently support his growing business. His managed service provider not only points him in the right direction, but also comes on site to install this new technology. Jesse knows he isn’t a tech know-it-all, so he leaves deployment of servers to the professionals. His business is ready for increased data storage that same week he decided it was time to expand. 

Workstations

Your business’ employees are only capable of what their technology can handle. When it comes time to upgrade or add additional workstations, there are a few options one can take. Let’s see how our two business owners handle these situations.

Walter, who is an impulse spur of the moment shopper, sees what he believes is a fantastic deal on eBay. He decides that these second-hand computers will be able to handle all of his employee’s programs without issue. However, upon arrival Walter notices that his computers are missing a few components. It turns out that the eBay listing was actually for five home-made computers that the builder was never able to get to operate properly, rather than complete working PCs. Overlooking the description just set him back a large amount of money, and the computer repair shop charges nearly as much as a brand new PC would have. 

Jesse, has a few empty desks he would like to fill with capable computers as well as a few new employees. He reaches out to his managed service provider to discuss which computer might fit the needs of his business. The professionals are able to use their connections to get Jesse a fantastic deal, and most importantly, the purchase of the computers comes with free installation.

Software as a Service

What good would a computer be without the necessary software? Businesses should be utilizing the latest and greatest software. There are a few different approaches a business owner can take to procure the necessary software to boost productivity within the office.

Walter knows that software can be expensive, so he decides to torrent a few versions hoping that he doesn’t get caught. Unfortunately, however, Walter is exposed as a fraud and his business is the center of attention for all things media. His business suffers massively, and he wishes he had spent a fortune on the software instead. 

Jesse too knows how expensive software can be. Unlike Walter, he once again leans on his managed service provider. They offer what is known as software-as-a-service. This service gives you all the latest and greatest software, for a low monthly cost. It’s like renting a tool, as opposed to buying it outright. Not only does this tool come with free installation as well as support, but it doesn’t set Jesse back a large sum of money. He is able to give his employees all of the programs they need to proficiently do their jobs. 

Which Experience Sounds More Enjoyable?

If you had a choice to be Jesse or Walter, which would you choose? Managed services truly offer support for all of your business needs. If you would like to learn more, reach out to our professionals by calling NuTech Services at 810.230.9455 today!

9
Oct, 2019
managedIT_118394944_400.jpg

There’s Value in Outsourcing Your IT, Part IV

managedIT_118394944_400.jpg

Many businesses are capitalizing on the vast amount of benefits Managed IT services can bring to the table. These service providers are able to assist your business in obtaining, and managing the technology that you rely on. Working with one of these providers can help your business simplify data management practices, as well as make them much more secure. Today we will go over how they are able to do so.

As we have done throughout this series, we will compare the experience that a managed service provider is able to deliver, compared to the alternative.

Cloud Services

Brennan’s business gathers and stores a substantial amount of data, as most businesses do. His business relies heavily on this data, as he runs an organization which depends on client contacts. To store all of this data, Brennan decides to do some research and build his own server. He understands the basics, and begins work. Not only does this take up a large amount of space, it also requires an absurd amount of power to operate. This makes the office unbearably hot. Furthermore, Brennan hooks up connections incorrectly causing equipment failure. This is not covered under warranty, and the initial cost of setting up a server is astronomical. 

On the other side of the town, Dale works in the music industry. His business decides to go with managed services. Dale is quickly connected with a trustworthy, dependable cloud service. He is then able to store all of his data and applications in the space provided by this service. It only costs a minimal monthly fee in comparison to the initial cost a server build would require. 

Backup and Disaster Recovery

Let’s assume both Brennan and Dale are given the same set of circumstances. A flood causes both businesses to be completely under water. How differently will these two business owners handle this disaster?

Brennan, panic stricken, attempts to grab whatever equipment he can salvage. His business relies entirely on the information stored within his computers. He is only able to get a small number of computers operating again, and since all of his data was in-house, nearly all of it is destroyed. Brennan’s business is in some truly dire straits. 

Dale immediately begins his backup and disaster recovery plan. His plan has been tested recently, so he is confident that his entire business can operate off-site. All of his data is stored in the cloud, which means it is all accessible anywhere there is internet. Dale’s cloud service also goes the additional mile of storing his data in an additional place. This ensures that there truly is a backup, and the same disaster that causes a backup plan to be utilized does not destroy the backup data. 

Data Warehousing

The process of combining seeming less unrelated data into a singular platform is data warehousing. This process helps businesses fuel their analytics as well as their business intelligence platforms. These platforms are turning into some of the most important tools a business owner can utilize, as they provide immense value by providing decision makers a thorough knowledge base.

This processing requires a bit of computing power. In fact, it requires more computing power than Brennan’s entire home-made system is able to muster up. Since Dale utilizes managed services, he has no issues accomplishing his goals. His provider’s flexibility ensures he is able to adjust his infrastructure as needed. 

Managed IT Value – Up Next 

In the next part of our series, we will be discussing how a managed service provider can assist with IT procurement. NuTech Services is always available to answer any questions you may have, so give us a call at 810.230.9455 today!

7
Oct, 2019
consult_245132467_400.jpg

There’s Value in Outsourcing Your IT, Part III

consult_245132467_400.jpg

When you need something done that requires a level of skill or experience or knowledge that you don’t have, what do you do? Generally, you call in someone who has the required skill, experience, or knowledge that is required. Your business’ information technology strategy should be approached in the same way. As we continue our series on how managed services can make a business more efficient, we’re considering consultants.

What is Consulting?

Like we’ve established, it isn’t uncommon for people to recruit an expert or a professional with the capability to assist them with a task that the person cannot do. There are many reasons that people do so: they may not have the skill to safely work on whatever process is required of them, they may lack the technical know-how to complete it. Sometimes, it is simply to ensure that something is done the right way.

Whatever the reason may be, bringing in an expert (often referred to as a consultant), is a great way to help reinforce your chances of a positive outcome.

What You Should Expect When Working with Consultants

First and foremost, the consultants you work with need to have a better grasp on their area of expertise than you do, and should be motivated to give you the value that you are looking for in a provider. NuTech Services qualifies as a consultant for managed services, working with businesses to ensure their information technology solutions are optimized.

As such, we are committed to using the experience and expertise that we have built up to deliver the solutions and services that our clients need to be successful. After all, the success of a managed service provider is dependent on the success of its clients, providing the motivation to deliver services that deliver the positive outcomes these businesses are looking for.

There are a variety of services we offer to help accomplish this shared goal through our consultation. If the technology you use could stand to see an upgrade, following through with us allows the decision makers we work with to take the data on their past and present IT strategies. As a result, we can make the best decisions for them that will help to cement their business’ future.

Here are some of the consulting services that we offer:

Virtual CIO

One of the biggest concerns that businesses come to us with regarding their technology is (predictably) the cost associated with their IT implementations. There are a few reasons that that they’ll do so… some are looking to upgrade, others will want to scale their technology to match their business’ growth without outpacing their budget. Whatever the reason, there is one fundamental motivation why they do so:

In essence, these companies want to make sure that their investment will provide them with the value they require (or really, demand) of it.

Working with you as your Virtual CIO, we can oversee your complete IT strategy. Our seasoned professionals will evaluate your current technology, identify which products and services will serve your needs best without breaking the bank, and work with you to strategize your approach to your IT from top to bottom. As a result, you aren’t saddled with the responsibilities to research and come to decisions – duties that you probably have neither the time nor the practical experience to take on.

Business Process Management

One of the major benefits of any business technology is the positive effect it has on efficiency. When working to streamline your processes, your in-house resources may not have the perspective to see the big picture and come up with an efficient and effective plan. An outside resource, like a managed service provider, has that needed perspective. Pair that with the experience they have in optimizing business resources, and you have a winning combination.

By working with a partner who is committed to equipping you with the processes and tools from start to finish, you can shift your productivity/waste ratio in the right direction – and the better your productivity, the higher your revenue.

Vendor Management

How much time has your business sunk, in total, into working with your vendors? How much has that cost the business? You need to keep in mind that vendors are – in most cases – effectively salesmen. Not to say this is a bad thing, but it does mean that the majority of vendors will prioritize making a sale over ensuring you get what will serve you best. However, with NuTech Services, you will no longer need to deal with vendors … we’ll do it for you. Anything you need, you’ll be able to call us and get it, simplifying and streamlining your procurement.

Find Out How Else We Can Help

By working with a managed service provider, a company has a simpler means of handling their crucial technology. Whenever they need a problem solved, they simply lean on their provider to see to what’s needed… whether that’s support, resource management, or a representative to speak to vendors. NuTech Services can be that for your business.

To learn more about our consulting services, reach out to us at 810.230.9455 – and don’t forget to check back here on Wednesday for part four of this series!

4
Oct, 2019
support_108749551_400.jpg

There’s Value in Outsourcing Your IT, Part II

support_108749551_400.jpg

Old-school business information technology support isn’t necessarily wrong, but it most definitely isn’t cheap nor efficient. IT support strategies are developing in ways that some time ago, would have thought to be unheard of. Your business no longer needs a full on-site staff designated to maintaining network security or updating software. In part two of our five-part series, we discuss how your business can have the support it needs through managed services. 

MSP Support

The Managed Service Provider (MSP) provide an experience unlike traditional service providers’ methodology. Let’s take a look at two scenarios:

Tom is emailing his boss in regard to a company project when all of a sudden his software closes. Tom tries to re-open his email, resulting in well, no result. Tom, frustrated at his email software, spam clicks the application which causes his entire computer to freeze. He has to ask his neighbor to contact their IT department for him. Unfortunately, they are out for lunch which results in a massive amount of downtime for not only Tom but for the business itself. 

Jerry, who works for a business on the other side of town, is working on a project when he too is experiencing technical difficulties. Jerry has been working on a new business logo in his graphic design software. While opening his file, he is prompted with a message informing him that his software license is not valid. Jerry wastes no time in creating a ticket with his managed service provider. Within minutes, a technician remotes into Jerry’s computer, reconciling the issue at hand. Jerry is up and working in a timely manner. 

Time is money, so why not save yourself time with managed services? 

Onsite Support Services

Managed service providers leverage remote support simply because of how efficient it is. It doesn’t make sense for a technician to come all the way out to your business to resolve an issue that could have been resolved at their own office. However, when a situation occurs where a technician is actually required to be present, managed service providers have trained staff ready to be dispatched. 

When something goes wrong, IT support needs to be present. It isn’t cost effective to have IT support present when your infrastructure is operating as it should.

Keep Business Moving Forward

Time is a business’ most scarce resource, so why waste any of it? Every moment is valuable, so you can’t afford to sit idle waiting for IT to return back from lunch or wait for them to have a free moment. To ensure you get the most out of every second, NuTech Services offers managed services which can greatly benefit your business.

This is far from the end when discussing the benefits of managed services. Return back to our blog page to read part three of this series. If you would like to discuss additional support options offered with managed IT services, give us a call at 810.230.9455.

2
Oct, 2019
lightbulb_259477136_400.jpg

There’s Value in Outsourcing Your IT, Part I

lightbulb_259477136_400.jpg

Computers sometimes appear to have a mind of their own. For businesses, this is less than ideal. If the support structure is not in place to take control of your business’ infrastructure, your business’ profitability may be negatively impacted. In this five-part series, we will discuss how being proactive keeps your technology in check. 

A Proactive Approach 

Which scenario which would you prefer to be in:

You take your car to a shop for a tune up. A technician calls to inform you that your engine has hardly any oil in it due to a leak. However, he replaces a gasket and tops your oil off. The simple fix has cost just $80. 

OR

You notice your car is leaving dark black stains in your driveway, but after a quick google search determine that your car is probably fine, and the money you could be spending on a tune up could be better spent on an iPhone. Once all the oil is gone, your motor has completely seized due to the lack of lubrication, and you have to use your brand new iPhone to call a repair shop. The new motor will set you back $3,000. 

Your answer to the question should be obvious, but how can you take the same proactive approach with IT? The strategy most businesses choose is one that has proven its worth — managed IT services. 

What are Managed IT Services? 

Managed IT services monitor systems through the use of remote monitoring. This strategy is extremely beneficial as an IT staff does not need to be on-site at all times. By using state-of-the-art tools, managed IT providers are able to monitor your business’ network and hardware, ensuring they are operating correctly. If it is not working correctly, a technician is typically able to resolve the issue remotely. This, of course, means you might not even be aware of a potential issue–and most of the time–it will be resolved before you know it. 

Having a fix-it-when-it-breaks attitude has no place in any business. The value that managed IT services delivers cannot be matched. The only comparable proactive solution is having an on-site IT staff working around the clock. How much do you think that would cost you?

Imagine paying staff to sit around waiting for something to break. Now imagine paying the non-IT staff to sit around, while your IT staff tries to resolve the issue. The biggest cost a business faces with malfunctioning hardware is typically the downtime that results from it. 

Avoid Expensive Downtime

NuTech Services provides simple yet effective means which act before little issues turn into operational catastrophes. One solution we offer is a comprehensive patch management service. Not updating software leaves your business susceptible to data breaches. A data breach could put not only all of your data at risk, it could jeopardize your entire business. 

To learn how easily you can adopt proactive measures into your business, give us a call at 810.230.9455. Be sure to check for part two of this series on Friday.