Lisa Rogers – Director of Information Technology – Fondren Orthopedic Group
“I knew that Enterprise Systems would do the job right – that everything was wired, labeled, and reworked properly. It gave me a lot of confidence that I would have a stable network. I would highly recommend Enterprise Systems! I cannot say enough about what a professional job they do.” – Lisa Rogers – Director of Information Technology – Fondren Orthopedic Group
Gregg Cannon – Director of IT, Grimes County, Texas
“They worked with us throughout the whole process. It was very simple to implement.” – Gregg Cannon – Director of IT, Grimes County, Texas
Robert Hale – Manager Technical Engineering, Novant Health
“Enterprise Systems is one of our invaluable assets that we use every day in all of our networking needs.” – Robert Hale – Manager Technical Engineering, Novant Health
5 Tips for Successful Remote Workforce IT Management
5 Tips for Successful Remote Workforce IT Management
An unprecedented crisis is gripping the world today. At the time of this writing, hundreds of thousands are battling a new disease while billions have had to put their normal lives on hold to mitigate the damage COVID-19 could cause. Economies globally are in peril, and businesses are taking immediate steps to flatten out the curve of the impact of this virus. Some have shut a major chunk of their operations while others are leveraging the technology at their disposal and allowing, or even requiring, employees to work remotely.
While switching to a remote workforce is a welcome move, it brings with it a slew of challenges, the biggest being the need to ensure business continuity with minimal loss of productivity. Technology makes this transition feasible; however, given the unexpected magnitude of the situation, transitioning to a remote workforce on a dime has likely caught many businesses off guard, especially small and midsize businesses. It goes without saying that their IT teams and infrastructure are being put to the test during these trying times.
To ensure your business makes it through these turbulent times relatively unscathed, here are five tips to help you manage your remote workforce.
1. Use an endpoint management solution for remote monitoring and management
Now that all of your users are working from home, you need a way to efficiently manage those remote devices. Look for an endpoint management solution that provides remote monitoring and remote control of remote and off-network endpoints. This way your IT team can easily and efficiently access any of these endpoints to troubleshoot issues and maintain uptime.
Endpoint management tools can provide access to these devices without interrupting the user so IT technicians can work behind the scenes. This keeps employee productivity high while allowing the IT team to get things done.
2. Automate many routine IT management tasks
3. Have a reliable backup and disaster recovery strategy
With the current pandemic creating chaos for everyone, the last thing you should be worrying about is your backup systems. Your backup systems should provide reliable, enterprise-class business continuity and disaster recovery (BCDR). Reduce downtime with instant recovery, ransomware detection, and automated disaster recovery testing. An appliance-based DRaaS solution can be integrated into your endpoint management tool, allowing you to manage backups from the same console. Meet the backup demands of the business while using a workflow that is familiar. This will ensure your business data remains safe from any unexpected incidents of data loss or downtime.
4. Back up your SaaS data
Many organizations are now using a number of different Software as a Service (SaaS) applications, such as Microsoft Office 365, Google G Suite and Salesforce, to enable a more mobile and distributed workforce. With this shift to SaaS applications comes the need to have a backup solution that will protect all of your SaaS app data. A loss of this data could really slow down your business at a time when efficiency and productivity are more critical than ever.
5. Protect against a likely increase in cyberattacks
It is especially during a crisis, such as the pandemic the world is facing now, that cybercriminals work double-time to exploit vulnerabilities that can harm your business. These attacks could take place by accessing your compromised credentials on the Dark Web or by orchestrating sophisticated phishing attacks. With the lines between working from home and office blurring, a thorough security assessment, including Dark Web monitoring, should become a priority.
Sailing through these troubled waters isn’t going to be easy, but with the right approach and tools, your business can certainly come out on top when the dust has settled.
[gravityform id=”6″ name=”Contact” description=”false”]
Extended Cyber Security Software & Services
ENTERPRISE SYSTEMS
EXTENDED CYBER SECURITY SOFTWARE AND SERVICES
Today’s Cyber Threat Landscape requires an Enterprise Cyber Security Strategy that is multi-layered to provide protection from your network’s edge to the core. In addition to our Fortinet Cyber security partnership, our Cyber Security portfolio enables us to help you identify exploited corporate user credentials, lock down your endpoints with AV/AM software, manage passwords, protect mobile users and even protect the data itself with ransomware –proof data storage. Many of these security solutions are available as on premise or 24×7 managed services.
State and Local Government agencies, Higher Ed and K12 can acquire many of these products and services through our Texas DIR (*), TIPS (**) and BuyBoard Commodity Contracts. Our Cyber Security portfolio includes:
Dedicated Managed Security Services
DarkWeb ID – Dark Web Monitoring Services (**)
Alert Logic Security Operations Monitoring Services (**)
Alert Logic’s 24×7 SOC provides SIEM, Security Operations Center and Governance services as a service. Its technicians continually monitor your network for vulnerabilities, correlate logs for incident root cause definition and guide your team in problem remediation. In addition, it provides your staff with vital reports to prove your companies compliance with the key government regulations applicable to your company.
Endpoint Security Products
PC Matic Pro Endpoint Suite (**)
Traditional blacklist based endpoint protection depends upon identified threat list and threat signatures. This makes your network vulnerable to new Day Zero cyber threats that have not been identified and protections published. PC Matic Pro Endpoint Suite uses a unique whitelist technology to blocks all unwanted and unsafe programs from executing, keeping your endpoints safer and more reliable. Its SuperShield feature uses advanced heuristics to prevent script-based attacks from leveraging known good windows scripting hosts. Built-in features patch management and driver updates assure the latest application protection against vulnerabilities and keep endpoints running at peak performance to prevent a loss in efficiency.
TrendMicro Endpoint Security Products (**)
Password Management Tools
Thycotic Secret Server (*, **)
Discover, manage, protect, and audit privileged account access across your organization. As cyber threats continue to increase in volume and sophistication, effective and agile, Privileged Account Management (PAM) has become mission-critical for organizations of every size. Now you can adopt an aggressive privileged account security posture with Secret Server, our enterprise-grade PAM solution available both on premise and in the cloud. Empower your security and IT ops teams to secure and manage all types of privileged accounts quickly and easily.
Thycotic Privilege Manager (*, **)
86% of breaches involve compromised endpoints. They are the most common entry point for threats and your largest attack surface. Companies spend billions on cyber security, yet hackers and disgruntled employees continue breaching systems. Thycotic’s Privilege Manager empowers you to implement a least privilege security posture and implement application control on endpoints, minimizing risks caused by cyber attacks – without disrupting end-users. The executables for unapproved applications, including ransomware and other malware are blocked from operating because they are not listed as approved application son your managed endpoints.
Thycotic Account LifeCycle Manager – Service Account Governance (*, **)
Service accounts abound in every organization and failure to manage them leads to significant risk. These specialized non-human accounts are used by applications or other services to access data and network resources for specific tasks. Because of their “set it and forget it” operation and limited human interaction, service accounts often fly under IT’s radar and rarely get inventoried and controlled. This lack of governance makes service accounts the ideal target for cyber criminals. Thycotic’s Account Lifecycle Manager enables service account governance by automating the lifecycle of service accounts, from workflow-based provisioning to account decommissioning.
Thycotic DevOps Secrets Management (*, **)
Rapid, iterative DevOps workflows often expose many security vulnerabilities directly tied to privilege management. Every container, server, and application can have privileged access, dramatically expanding the attack surface for intruders looking for an entry point, and the growth of robotic process automation (RPA) further expands those entry points. It’s difficult to balance high-speed, dynamic DevOps practices and RPA deployments with necessary security policies. Thycotic’s DevOps Secrets Vault automates secrets management to provide DevOps teams the speed and agility needed to stay productive without sacrificing security.
WatchGuard Authpoint Multifactor Authentication (*, **)
WatchGuard’s AuthPoint service is the right solution at the right time to provide effective authentication on an easy-to-use Cloud platform. MFA provides the strongest approach to user identification – requiring users to supply information they know, with information provided on something they have, to positively identify a specific person. With a simple push notification, the AuthPoint mobile app makes each login attempt visible, allowing the user to accept or block access right from their smartphone.
WatchGuard DNSWatchGo -DNS-Level Protection for Users on the Go (*,**)
StorageCraft ShadowProtect – Server Replication Software (**)
Like disasters, IT environments are anything but standard. That’s why businesses need a single cross-platform solution that protects a mixed, hybrid environment. ShadowProtect® backup and disaster recovery software ensures on-prem business systems and data are fully protected and always available. ShadowProtect enables you to meet or beat your recovery time and recovery point objectives (RTOs and RPOs). In the event of a server failure or ransomware infection, ShadowProtect enables you to restore server files and folders in minutes by using its patented VirtualBoot technology to instantly boot a backup image into a virtual machine and continue working in a matter of minutes. Then when healthy server hardware is available, ShadowProtect facilitates a bare metal restoration.
[gravityform id=”6″ name=”Contact” description=”false”]
Kalispell Regional Healthcare Data Security Event
Kalispell Regional Healthcare Provides Notification of Data Security Event
Despite being named in the top quartile for data security readiness by a third party firm, Kalispell Regional Healthcare (KRH) was recently a victim of a highly sophisticated attack on our information technology systems. Safeguarding our patients and their personal information is a top priority, and we want our community to be aware of what happened and how we have addressed it.
This summer we discovered that several employees were victims of a well-designed email that led them to unknowingly provide their KRH login credentials to malicious criminals. We immediately disabled the employees’ accounts, notified federal law enforcement, and launched an investigation, which was performed by a nationally recognized digital forensics firm, to determine whether any personal information was affected. On August 28, 2019, we learned that some patients’ personal information may have been accessed without authorization. A deeper investigation specifically determined which patients’ information may have been accessed as early as May 24, 2019.
Different information may have been involved for each person. The information may have involved a patient’s name, Social Security number, address, medical record number, date of birth, telephone number, email address, medical history and treatment information, date of service, treating/referring physician, medical bill account number and/or health insurance information.
Although there is no indication that the information was misused, we have mailed notification letters to potentially-impacted patients to make them aware of the event and the steps they can take to protect their information. All notified patients are being offered complimentary fraud consultation and identity theft restoration services. In addition, the notification letters may also offer affected individuals 12 months of web and/or credit monitoring services at no charge, depending on what information was involved for that individual. In addition, we have taken further steps to revise procedures that will minimize the risk of a similar event from happening again.
4 services offered by the end of the reputed cabling service provider
Carrying any activity smoothly has become possible in today’s digital world. The network cabling installation is certainly responsible for it. There are many companies that rely on cabling services to increase their competency while improving the task of activating their daily routine. Linking with the exterior infrastructure is easy for the firms, and it had become possible because of the cabling service providers.
Fortunately, the cabling services through network cabling companies have come up as a boon for any organization. Now, computer, Internet, printer, other hardware devices can be connected to one another in any organization.
Why you hire network cabling services
Accept it or not, a good network cabling system is essential to run your business in a smooth manner. Since there are a lot of cabling service providers available in the marketplace, the task of building a network cabling structure is no longer tricky.
In today’s time, there are a lot of companies that specialize in cabling installation services. Therefore, you have a long list of services offered by the reputed cabling service providers now. Read on to learn more about their services.
-
Cabling service
Cabling service makes it easy to reduce cost, save time and improve the overall productivity of a company while speeding up the data transfer. Now, organizing and maintaining a procedure in an organization has become somewhat convenient.
-
Carrier service
It may not be easy to look at your Internet, telephone, cable company bills, contract, and services. This will not only consume your time but also bring a lot of confusion. Now, you can hire a cabling service provider to the job for you. The service provider brings an appropriate solution for your cable service needs.
-
Managed service
Optimizing the IT environment and monitoring or preparing for an emergency issue that requires immediate attention is now possible with managed service of cabling service providers. Their technicians will assist you with IT tasks and fix the errors that may cause you major harm. Now, dealing with day-to-day operations is no longer difficult for you.
-
Professional service
To run your business in a smooth manner and implementation of services in a smooth manner, you might need to hire a professional. The communication, network, security and maintenance service for your organization would be necessary. Instead of getting confused and being stuck in an unwanted situation, you should go for cabling service providers that offer professional services to operate your business in a convenient manner.
Planning is indeed an important step to take when you want to run a venture successfully. Efficient methods to ensure smooth operations would be necessary to avoid significant harms in the future. To make sure all the issues related to IT services are addressed, you can rely on cabling services providers without any doubt.
It is true that no one likes to face major harm when it comes to network cabling installation. In fact, maximizing the overall profit can be easy if you go for a reputed cabling service provider. But, before you hire one, be sure to look for the services they provide should meet your needs and goals.
Ransomware – Recover Your Data with OneXafe
Recover Your Data with StorageCraft OneXafe Continuous Immutable Snapshots
Ransomware threats continue to evolve and infect businesses, government, power companies, education and even hospitals. In 2018, an estimated $8 Billion in ransom was paid to anonymous attackers. The statistics are shocking, ransomware attacks on businesses are up 365% from Q2 2018 to Q2 20192. They are becoming more targeted, sophisticated, and successful at penetration. Unfortunately, many ransomware attacks continue to infiltrate despite the use of state-of-the-art prevention methods. In fact, 77% of organizations infected with ransomware were running up-to-date endpoint protection.
Ransomware can encrypt your files making it impossible to use them. The malware may lay dormant for weeks and may even delete your backups prior to the attack leaving you without a way to recover and forcing you to pay or lose your data.
StorageCraft OneXafe Continuous Immutable Snapshots to the Rescue
StorageCraft OneXafe storage protects your data with continuous immutable snapshots, every 90 seconds, so you’ll never have to worry again. An immutable snapshot is a copy of your data that simply cannot be overwritten or deleted by ransomware or users, because OneXafe and its patented distributed object store prevent that from happening. You can recover anytime, every time, making OneXafe the most effective protection in the market. Furthermore, OneXafe performs powerful inline deduplication on the continuous snapshots, reducing the data footprint.
Storage vendors claim their snapshots are immutable because it is simply read-only and cannot be changed. However this doesn’t protect the snapshot from being deleted or the snapshot volume from filling up. If your snapshots can be deleted and/or modified, are they truly immutable?
Enterprise Systems Corporation has the expertise to implement the StorageCraft OneXafe solution so you never have to worry again about ransomware. Contact us today for more information.
Stolen passwords offer the fastest path into your network
Stolen passwords offer the fastest path into your network
Insecure password practices are exploited in 81% of cyber attacks worldwide, and 61% of all attacks target businesses with less than 1,000 employees.1 While employee education and training can help, what’s most needed to reverse this trend is for authentication to require additional proof of identity beyond simple username and password, and to be widely deployed by all companies – no matter their size. Only then, will cyber criminals no longer be able to use stolen credentials to access and infect systems or steal data.
Are employees undermining company security with shared passwords?
Most employees are not intentionally trying to compromise company security; however you should ask yourself what password practices they now use to cope with the proliferation of online accounts requiring them. According to an often-quoted study by Microsoft Research, “The average user has 6.5 passwords, each of which is shared across 3.9 different sites. Each user has about 25 accounts that require passwords, and types an average of 8 passwords per day.”
A 2015 Dashlane survey revealed that each person had over 90 online accounts, and had to reset their password using a “forgot password” link for 37 of those accounts in the prior year. Companies that require frequent resetting of passwords make it even harder for users to craft strong passwords and then later recall them. In this environment, it’s understandable that users have simplified their passwords – creating ones that can be serialized – and limiting them to a few that are used across multiple accounts.
1 Verizon’s 2017 Data Breach Investigations Report
This trend is evident when viewing the list
of worst passwords used:
For businesses, as employees use simpler and weaker passwords – this puts networked resources at a greater risk for breach. Even worse, when an employee’s credentials are stolen from other sites and the credentials happen to contain the same password that gives them entry to your privileged networks, then the hackers can walk right in the front door masquerading as the user…and you are none the wiser.
We’ve reached the limit of the protection that solely password-based access to systems can provide. What’s needed are additional measures to ensure the identity of the user…which is what multi-factor authentication (MFA) provides.
How are hackers stealing credentials?
Given that usernames and passwords are often the only hurdle to accessing systems that yield financial rewards, hackers have taken a keen interest in lifting them when they can. Some common ways to compromise this information include:
- Phishing/Spear-Phishing: Criminals use email to try to get users to enter credentials into web pages or forms. It will look convincingly like an email from a person or business that the user has a relationship with, and sometimes will be very targeted at a specific individual (spear-fishing) who is perceived to have a great deal of privileged system access.
- Brute Force: With simpler passwords coming back into use, criminals will try common passwords until they find one that works. They’ve even written automated scripts that circumvent simple protections such as a limit on the number of authentication attempts within a certain time window. Remember, for businesses without MFA, they just need any single username/password combination to work.
- Wi-Fi Evil Twin: Using an easy-to-find $99 device, criminals can sit in a crowded area and pretend to be a legitimate Wi-Fi hotspot. When people connect, then the criminal is effectively a MitM (man-in-the-middle), observing network traffic and even the keystrokes of a user while connected. Studies have shown that people regularly check bank accounts, shop online, and yes, even access company networks, while on public Wi-Fi.
Once they have valid credentials, they will use them to access systems and steal data, consume resources with botnets, install ransomware, and even steal more credentials that might unlock other networks and personal data.
Louisiana governor declares state emergency after local ransomware outbreak
Three school districts have been hit by ransomware in North Louisiana this week.
Louisiana Governor John Bel Edwards has activated a state-wide state of emergency in response to a wave of ransomware infections that have hit multple school districts.
The ransomware infections took place this week and have impacted the school districts of three North Louisiana parishes — Sabine, Morehouse, and Ouachita.
IT networks are down at all three school districts, and files have been encrypted and are inaccessible, local media outlets are reporting.
This is the second time that a state governor has activated a state emergency due to ransomware or any form of cyber-attack. The first time was in Colorado in February 2018, when the Colorado Department of Transportation was forced to shut down operations because of an infection with the SamSam ransomware. However, that state emergency activated additional state resources to help with traffic, road management, and transportation, and not with deploying cyber-security experts to help victims, like in Louisiana’s case.
By signing the Emergency Declaration, the Louisiana governor is making available state resources to impacted schools.
This includes assistance from cybersecurity experts from the Louisiana National Guard, Louisiana State Police, the Office of Technology Services, the Governor’s Office of Homeland Security and Emergency Preparedness (GOHSEP), and others.
State officials hope that additional IT expertise will speed up the recovery process so schools can resume their activity and preparations for the upcoming school year.
Gov. Edwards was able to roll out a coordinated response for the ransomware infections at schools in the North Louisiana because he previously established a Cybersecurity Commission to assemble and coordinate response teams in the event of a cyber-attack.
He created this commission in December 2017, in the year when three ransomware outbreaks — namely WannaCry, NotPetya, and Bad Rabbit — had caused havoc across the globe, including in Louisiana.
“This is exactly why we established the Cyber Security Commission, focused on preparing for, responding to and preventing cybersecurity attacks, and we are well-positioned to assist local governments as they battle this current threat,” Gov. Edwards said.
The state of emergency will remain in place until August 21, or until the recovery process at impacted school districts wraps up.
Gulf Coast neighbor Florida could have used a state of emergency declaration last month, as well, after three municipalities were hit by ransomware — Riviera Beach (paid $600,000); Lake City (paid $500,000); and Key Biscayne (recovered from backups).
In recent months, US cities have been a prime target for ransomware gangs. Earlier today, some residents of Johannesburg, South Africa’s biggest city and financial capital, have been left without electricity after a ransomware infection.