Tag: security

Be Digitally hack-proof
Why do people hack systems? Hacking is a technique used to compromise any digital device. Hackers want to get into your device to use your data for varied reasons – naturally, most of these motives are financially driven.

A data breach is usually what leads to a hack. There is a difference even though both terms are used interchangeably.

A data breach happens when data that is left vulnerable in an unsecured environment gets viewed by someone who shouldn’t have access to it.

While hacks are the result of malicious behavior, breaches happen as a result of negligence, human error, or other non-malicious behavior that creates a security vulnerability.

Hackers may access your device just to say they could or for financial gain, to protest, or to gather sensitive information.

So what makes a hacker?

In the past, a hacker may have been a whiz kid or specialized programmer but in the modern-day, hacking has become easier and more people are becoming hackers. As more people shop online and use computers for everyday tasks, they become the prey of hackers worldwide.

Actual hacking is technical in nature – the hacker does not communicate with the person whose PC they are hacking into.

But they can also use psychology to trick the user into clicking on a malicious attachment or providing personal data. These tactics are referred to as social engineering.

Your cellphone too can be hacked

While most associate hacking with Windows computers, the Android operating system also offers an inviting target for hackers. That means millions of people who use Samsung phones can be hacked.

Some fifty years ago, there was a name for hackers who obsessively explored low-tech methods for getting around the secure telecommunication networks and expensive long-distance calls. they were called phreaks.

This was a portmanteau of the words phone and freaks. They were a defined subculture in the 1970s, and their activity was called phreaking.

Phreakers have now evolved out of the ‘analog technology era’ to become hackers in the digital world. They are beyond a sub-culture and have become a genuine threat to the safety of our information and data.

Mobile phone hackers currently use a variety of methods to access your mobile phone and can intercept phone calls, voicemails, text messages, and even the phone’s microphone and camera, all without your permission or even knowledge.

iPhones are not safe either

In 2020, many journalists working for Al Jazeera were victims of a sophisticated zero-click spyware attack.

The Toronto-based internet watchdog group Citizen Lab was asked to look into the attacks, which took place in July and August, and they released their findings at the end of December.

The report found that 36 journalists, producers, anchors, and executives had their iPhones compromised by Pegasus spyware. The spyware, developed and sold by an Israeli-based firm called NSO Group, targets security vulnerabilities in the iMessage app.

The so-called “zero-click” exploit deploys without any user interaction. Once installed, it can record ambient sound and phone conversations, take pictures, and access user credentials. It sounds like science fiction but it’s very much real!

Types of hacks

Malware

People can use hardware to sneak malware into your PC. In offices, hackers will infiltrate networks by giving staff members infected USB sticks, dodgy USB cables, and mouse chords.

It is crucial to always think before plugging anything into your work or personal device with access to confidential data.

Educate your staff about being careful before plugging anything into their PCs.

Malware infections generally occur when users interact with dangerous code by clicking on a URL or downloading malicious software disguised as an authentic program. But zero-click spyware penetrates devices without any user interaction.

Citizen recommends making sure that your mobile OS is updated to the latest version. Identified vulnerabilities in previous versions of iOS were patched in the iOS 14 update.

Practicing good digital hygiene is always important for the security of your mobile devices.

Use sites like haveibeenpwned.com and breachalarm.com to see if your email credentials have been compromised. Use strong passwords on any apps that contain sensitive data and delete any apps that you do not regularly use.

Missing security patches

Always remember to update your security tools. Too many people ignore update notifications or security patches, leaving themselves vulnerable. It’s not just antivirus software that needs patching.

Tell your staff to ensure that all their antivirus and applications are routinely updated as security patches become available. This task is usually the job of your IT department if you have one in the first place.

Getting your password information

Hackers can obtain your credentials through several means, but commonly they do so through a practice called keystroke logging or keylogging.

Can you believe that the most common password is “123456”? Hopefully, yours isn’t so, or any of the most hacked passwords in the last 10 years.

Through a social engineering attack, you could accidentally download software that records your keystrokes, saving your usernames and passwords as you enter them.

This and other forms of spyware are malware that tracks your activity until a hacker has what they need to break into your system.

Attackers can deploy malware on a user’s machine if they are in your environment and capture your credentials via keylogging too.

Hackers also use password cracking programs that can run letter and character combinations, guessing passwords in a matter of minutes, or even seconds.

To get around this, use a password management tool that securely houses your company’s credentials. These tools can often auto-generate lengthy, diverse character passwords that are difficult for hackers to guess. They can also autofill for your employees for easy access to their tools.

Encryption and multi-factor authentication methods also offer more layers of protection.

Distributed Denial-of-Service (DDoS)

This technique involves taking down a website so that a user cannot access it or deliver their service. DoS attacks take place when hackers inundate a target’s server with large influxes of traffic. The amount is so frequent and high that it overloads the server by giving it more requests than it can handle. This crashes your server and your company’s website.

Larger businesses can get hit by a Distributed Denial of Service (DDoS) attack, which is a synchronized attack on more than one server or website, potentially taking down numerous online assets.

A good method to fight DDoS attacks is to use cloud protection services to spot them – like Acunetix or Netsparker.

Social Engineering & Phishing

This is where hackers try to get your personal information, often by impersonating a legitimate and maybe trusted source.

Many types of social engineering bait come in the form of phishing emails.

A hacker sends you a message that looks like it’s from someone you know, asking you to do something, like wire them money, or to click or download an infected attachment to see more.

Here is a hilarious example of a phishing Email

“The top malicious email attachment types are .doc and .dot which make up 37%. The next highest is .exe at 19.5%,” according to a report by Symantec. Always be cautious of opening these types of attachments.

Warn your employees to never give out private business information over email, to think before opening any attachments, and educate them on mail scams.

Use email software that scans for phishing. Microsoft 365 and Google’s Business packages come equipped with such. Google’s tech uses AI to scan the content and find things such as spelling errors and dodgy URLs. This enables the system to block them before they even hit your inbox.

Most people or companies that get hacked or suffer from a data breach do so mainly due to negligence. Many do not prioritize beefing up their security systems before it is too late. Hacks are, however, completely avoidable so don’t fall victim to them.

Other ways to protect yourself
- Download a reliable anti-malware product that can both detect and neutralize malware and block connections to malicious phishing websites.
- Of course, whether you are on Windows, Android, a Mac, an iPhone, or in a business network, you must always use layered protection wherever you can.
- Only download phone apps from the legitimate marketplaces that police themselves for malware-carrying apps, such as Google Play and the Apple/Amazon Appstore.
- Check the ratings and reviews first. If it has a low rating and barely any downloads, it might be best to avoid that app.
- Use long and complex passwords. Don’t use numbers in sequence. You can also use mixes of letters that can be remembered through rhymes.
- Consider using a password manager.
Advert
7 February 2021
Get a vault for your data!

It’s not often that we readily endorse a product or company. However, when the nature of work they engage in is considered ground-breaking and has a positive impact on our lives – it most certainly warrants a mention.

The rationale for considering such tech-driven projects as highly significant is neither due to ‘gut feeling’. Nor that it is simply because it is fascinating and therefore must be an excellent product. This project actually has a value proposition for you!

We are indeed well into the information age and while we have written extensively about data, its importance to marketers, and its fragility when used and abused by unscrupulous third-parties for their financial gain.

The issue of data security is, however, quite a serious one. You just need to pay attention to the news to become even more aware.

Data breach incidents

In Europe, where security is supposedly more advanced, we have seen the likes of renowned airline British Airways, being hacked. Several hundreds of thousands of customers’ personal data compromised.

These were followed by hacks on other major airlines such as Cathay Pacific. Aside from airlines, other business outfits have suffered a similar fate.

The perpetrators are getting a lot more brazen and very recently, a cable car, used as public transport in Moscow was hacked. This left vulnerable passengers terrified and stuck high up in the air. And all this happened probably to the amusement of the pranksters (hackers).

Can you imagine the chaos and commotion that would be caused if their control systems of driverless cars were to be hacked?

The digital intrusion gets even more sophisticated...

This time affecting the very wealthy: private yachts are now being hacked and taken into the pirate waters, all via uniquely coded signals, reading data from their antennas!

Data security

On the issue of data security, you often hear about extra protection but not just anti-virus and anti-phishing software. The more secure and heavily encrypted Blockchain technology is, however, making waves in the digital sphere.

It is mainly for the escalation of its once shining star by-product designed for discreet transacting – Bitcoin.

Blockchain technology has also triggered several other technologies based on its digital cryptology technology. The aim is to ensure that your information is kept safe from prying eyes while stored, used, or transferred online.

Blockchain products such as cryptocurrencies, however, are not completely safe from hackers.

A solution

The company we chose to highlight uses a unique vault system and is called Zortrex. It has adopted one of such Blockchain technologies dubbed tokenization. It will be using it to ensure that your highly sensitive data online is kept safe.

“Our tokenised solution would have protected their customers’ personal identification information (PII) details. Instead the hackers ran off with the date of birth; passport numbers; financial data etc,” says Susan Brown, Chairperson of Zortrex – relating to the British Airways incident.

Tokenization is the process of converting rights to real-world assets into a digital token on a blockchain.

Brown’s background in data privacy systems as well as her devoted passion for the protection of PII, financial and healthcare data led her to start up and chair Zortrex.

The law on data

Thanks to new laws like the European GDPR law, which enforces the protection of data, breaches are now met with hefty financial penalties.

“Companies have disrespected your data for over 25 years, and if left unattended, there will be nothing left to protect,” Browns says.

Companies now have to think twice about getting your consent and how to use and share your data digitally. But is it enough? The simple answer is no.

The authorities just do not have the resources to investigate every complaint nor to actively enforce all data breaches.

We have ingeniously invented systems that automatically align with financial messaging, payments and securing information. All of which require data.

“However, we need to go a step further to secure all the PII details with tokenization. This is so that in the event of a hack, the cookies and trackers will only be following a ‘useless’ token will be no real identification on it,” Brown explains.

Zortrex would naturally like to tokenize all healthcare data. This way, vulnerable those of you living outside of major cities can also feel assured that your privacy is protected.

Using Blockchain

The application of the all-powerful blockchain is not limited to use in the financial sector and will be applied via the supply chain to all industries that deal with your data – especially the most sensitive ones.

A business angel or any investor for that matter looking to get onto the next best thing since Amazon would therefore be unwise to pass up the opportunity to back the Zortrex venture given its scope.

Furthermore, regulations are currently being implemented primarily in the pharmaceutical sector.

A tokenized supply chain such as what Zortrex offers would be ideal for this new law which is planned to be implemented by 2023. A judiciary blockchain, for instance, would allow the police to “talk” to the prison service. They, in turn, will communicate with the legal sector or public health institutions (NHS).

Forensic evidence would in such instances be tokenized and kept secure (away from tampering) during legal hearings. In another practical scenario, Smart Contracts (which could replace some lawyers) can spark off legal aid assistance to you.

Your court cases will be heard quicker and be more efficient. Protection registers can also be guarded using tokenization – rendering them more secure.
Blockchain technology offers quality assurance making sure that no shortcuts are taken.
This will enable the monitoring and tracking if any of your data is shared with third parties once tokenized. The third-party apps would only gain access to your data once the trigger has been activated.

Like other pioneers and visionaries, Brown’s futuristic hope that every child being born will have their name, date of birth, blood type data being tokenized, might seem far-fetched.

Zortrex wants to use its technology to put the hackers out of business!

Tokenisation cannot be mathematically reversed and thus it will least it will keep the hackers busy for a while.

Scalability

For such high ambitions, the creators of Zortrex’s software have adequately ensured that the technology used is fully scalable. One stumbling block many Blockchain projects now face is what is referred to as scalability. This is the ability of a network or software to grow and manage increased usage.

Cryptocurrencies like Bitcoin and Ethereum specifically – which is used to build a lot of Distributed Applications, however, have massive scalability issues.

The growth in demand for DApps is also crippling (slowing down) those systems. They need to investigate the incorporation of alternative technologies, upgrade or split their platforms to cope with such high demand.

Someone must take the first step in securing this data forever. You should be able to purchase what you want without being harassed by trackers and cookies.

The need for tokenization is endless and further, down the line, celebrities and government official’s PII can be secured by it to protect them from damaging schemes, ‘bad press’, and scandals.

In a previous blog, we “prophesized” that data is the new commodity – like gold or oil. However, the actual value with that data will lie in its privacy, the ability to store it securely and unlock it only with legal permission by its rightful owner.

19 March 2019
Get a vault for your data!

It’s not often that we readily endorse a product or company. However, when the type of work they engage in is considered groundbreaking – and one with the potential to have a massively, positive impact on our livelihoods, it most certainly warrants a mention.
The rationale for considering such tech-driven projects as highly significant is neither due to ‘gut feeling’ nor that it is cutting-edge/fascinating and therefore must be an excellent product – it actually has a value proposition for everyday people!
We are indeed well into the information age and while we have written extensively about data, its importance to marketers and its fragility when used and abused by unscrupulous third-parties for their financial gain, the issue of data security is quite a serious issue – we must just pay attention to the news to become even more aware.
In Europe, the where security is supposedly more advanced, we have seen the likes of renowned airline British Airways, being hacked – with several hundreds of thousands of customers’ personal data compromised. This was followed by hacks on other major airlines such as Cathay Pacific. Aside from airlines, other business outfits have suffered a similar fate.
The perpetrators are getting a lot more brazen and very recently, a cable car, used as public transport in Moscow was hacked, leaving vulnerable passengers terrified and stuck high up in the air – probably to the amusement of the pranksters (hackers). We all know about driverless buses and cars coming to the market soon.
Can you imagine the chaos and commotion that would be caused if their control systems were to be hacked? The hacks get even more sophisticated: this time, affecting the very wealthy – private yachts are being hacked and taken into the pirate waters, all via uniquely coded signals, reading data from their antennas!
On the issue of data security (with almost full anonymity); we have also heard about extra protection (and not just anti-virus and anti-phishing software) but the more secure and heavily encrypted Blockchain technology that is making waves in the digital sphere. Mainly for the escalation of its once shining star by-product designed for discreet transacting – the Bitcoin.
It has also triggered several other technologies based on its digital cryptology technology to ensure that information is kept safe from prying eyes while stored, used or transferred online.
The company we chose to highlight uses a unique vault system and is called Zortrex. It has adopted one of such Blockchain technologies dubbed tokenization – and will be using it to initially ensure that highly sensitive data online is kept safe.
“Our tokenised solution would have protected their customers’ personal identification information (PII) details, instead the hackers ran off with the date of birth, passport numbers, financial data etc,” says Susan Brown, Chairperson of Zortrex – relating to the British Airways incident.
“Tokenization is the process of converting rights to real-world assets into a digital token on a blockchain.”
The establishment of this start-up company was due to Brown’s background in data privacy systems as well as her devoted passion for the protection of PII and financial/healthcare data. In her view, companies have disrespected their customer data for over 25 years, and if left unattended, there will be nothing left to protect.
Thanks to new laws like the European GDPR law which is now imposing the data protection; data breaches and abuse of customer data is now met with hefty financial penalties. Companies now think twice about consent and how to use and share customer’s data digitally – but is it enough? The simple answer is a no. The authorities just do not have the resources to investigate every complaint nor to actively enforce all data breaches – yet.
“We have ingeniously invented systems that automatically align with financial messaging, payments and securing information, all of which require data. However, we should and need to go a step further to secure all the PII details with tokenisation so that in the event of a hack, the cookies and trackers will only be following a useless token as there is no real identification on it,” Brown explains.
Zortrex would naturally like to tokenise all healthcare data so that vulnerable people living outside of major cities can also feel assured that their privacy is protected. In a previous blog, we wrote about the new Internet of things (IoT). For all those devices being built for it, their IP addresses and the serial numbers can be tokenised to avoid the terrifying thought of the whole Internet being compromised.

The application of the all-powerful Blockchain is not limited to use in the financial sector and will be applied via the supply chain to all industries that deal with customer data – especially the most sensitive ones.

An angel investor or any investor for that matter looking to get onto the next best thing since Amazon would therefore be unwise to pass up the opportunity to back the Zortrex venture given its scope!

Furthermore, regulations are currently being implemented primarily in the pharmaceutical sector and a tokenised supply chain such as what Zortrex offers would be ideal for this new law which is planned to be implemented by 2023. A judiciary blockchain, for instance, would enable the police to “talk” to the prison service, who in turn, will communicate with the legal sector and public health institutions such as the UK’s NHS.

Forensic evidence would in such instances be tokenised and kept secure (away from tampering) during legal hearings. In another practical scenario, Smart Contracts (which are touted to replace lawyers) can spark off legal aid assistance, so that court cases can be heard quicker, more efficient than currently pertains. Protection registers can also be protected with tokenisation rendering it more secure.

Blockchain technology offers quality assurance with every process being undertaken making sure that no shortcuts happen; as the smart contracts trigger any possible malfeasance. This will enable the monitoring/tracking of any data sharing to third parties once it is tokenised. The third party apps would only gain access to the data once the trigger has been activated.

The company will be providing numerous business blockchain platforms; Asset Chain, Supply Chain, Accountancy Chain, Debt Chain, Life Cycle Management Chain, Outsourced Worker Chain; the list is endless, and all will be adequately secured.

Like other pioneers and visionaries, Brown’s futuristic hope that every child being born will have their name, date of birth, blood type data being tokenised, might seem farfetched – but may we remind you of the need for data protection taking into consideration the growth rate of massive data breaches.

Zortrex is aiming high and wants to use their technology to put the hackers out of business! Tokenisation cannot be mathematically reversed and thus it will least it will stop the hackers for a while.

Brown explains further that as they move with their education; other information can be added on to the token, as with all their healthcare; any allergies tokenised; what injections they have had right through their life cycle until the day no more data can be tokenised.

For such high ambitions, the creators of Zortrex’s software have adequately ensured that the technology used is fully scalable. One stumbling block many Blockchain projects now face is what is referred to as scalability – which in tech terms, is the ability of a network or software to grow and manage increased demand.

Cryptocurrencies like Bitcoin and Ethereum specifically – which is used to build a lot of Distributed Applications, has massive scalability issues. The growth in demand for DApps is crippling those systems and they are having to investigate the incorporation of alternative technologies, upgrade or split their platforms and accompanying cryptocurrencies to cope with such high demand.

Someone must take the first step in securing this data forever. Citizens should be able to purchase what they want without being harassed by trackers and cookies. The need for tokenisation is endless and further, down the line, celebrities and government official’s PII can also be secured to protect them from damaging schemes, ‘bad press’ and scandals.

In another previous blog, we “prophesized” that data is the new commodity – like gold or oil. However, the actual value with that data will lie in its privacy, the ability to store it securely and unlock it only with legal permission by its rightful owner.

19 December 2018
Digital Dribs & DApps!

We have barely scratched the surface with the Internet (from the early eighties) and it is already seemingly being threatened with the competition. A possible replacement by a new phenomenon.

Well, for lack of a better word, “replaced” has connotations of a dying Internet. This is far from accurate. This new phenomenon – fostered by blockchain technology, will change the way we use and consume the Internet as a service.

So, what is this new Internet-like system creating waves online? And why is it making online marketers quiver at the prospect of them losing out on the exponential revenues they have previously enjoyed?

Well, without hyping it up any further, it is called Distributed Applications or ‘DApps’ for short.

A brief history of Apps

Before we delve further into its meaning and use in the cyber world, perhaps some background context is required.

The way we use online or mobile applications software or “Apps” has changed how we consume products and services online. Companies jumped onto the bandwagon when they discovered that we mostly use Smartphones for the Internet.

App developers were then subsequently sought after to create mobile Apps for practically anything. What started as something mainly for gamers moved quickly onto applications for practically any commercial activity.

We now use Apps for our shopping; fitness; traveling; online bookings and banking. Developers now create customized software to help us with practically, anything.

In addition, we now have App stores for every significant tech provider – Microsoft, Google, and Apple to mention a few. This has naturally fattened the pockets of software companies and created an additional stream of income for them.

The ‘catch’ for using mobile apps is that even though it costs you nothing to download, using them still requires you to register with your personal details. You can also do this by linkingyour existing social media accounts.

The benefit to App providers

These Apps, which are integrated with social media services, create a data goldmine for marketers to study and track browsing habits. Through them, marketers can gain valuable insights into your interests and then customize their products/services to sell to you.

The impetus behind a distributed application system is that it serves to distribute plow some of the wealth garnered from your data via application providers back to you.

Data mining has become more lucrative and accessible because of Artificial Intelligence (AI) and Machine Learning. Do you ever notice how after browsing online or having a conversation or a chat application like WhatsApp or Facebook Messenger? You go online later, and you see Ads displaying the items you discussed? Creepy isn’t it? Well, that is the future of Web 4.0 for you!

Staying ‘woke’

Luckily for us, there is a school of knowledgeable and security-conscious programmers who are not ‘giving in’. They help us understand how the Internet has become a cesspool for marketers to harvest our data. Social media platforms, search engine providers, and mobile application providers facilitate them immensely with this.

Image Courtesy of blockgeeks

Imagine getting paid to surf the web for hours. The way you get paid for taking on a survey, partaking in a social experiment, donating an organ or sperm?

This is the way distributed apps are touted to work. They reward you for the use of specific applications (in a peer-to-peer review setting) with cashable tokens. Seems only fair right?

Now you can imagine how companies like Cambridge Analytica would react to having to pay you for their use of your data. They would surely be reluctant and that’s why they preferred to work clandestinely. But if they could pay companies like Facebook for the use of data, why not pay us directly?

Early adoption

Joining the ‘DApps revolution’ is a no-brainer. Those at the forefront of building and supporting DApps will end up with a more substantial chunk of the market.

DApps primarily provide you with the use of payment systems. These are specifically known as Smart Contracts and Proof of Work systems.

There are currently also web-browsers (built as DApps on blockchain platforms such as Ethereum or EOS) that will reward you for merely using their DApps.

For instance, you are rewarded in cashable tokens to surf the net over applications like Google Chrome, or Mozilla Firefox.

It is only a matter of time that this form of Internet-browsing and use of applications becomes the norm.

The Internet revolutionized the way we communicate, socialize, learn, shop, and do business online. DApps however, will determine the way you get compensated for doing the things you love to do online.

11 December 2018
Get more organised digitally!

One often hears the phrase “technology is your friend” To what extent the friendliness/support is, in being a most effective “companion” to assist you to cope with your daily activities or business plans depends on how you embrace it.

Read more via Get more organised digitally!

28 October 2018
Get more organised digitally!

We often hear the phrase “technology is your friend” To what extent this friendliness is, to help you to cope with your daily activities or business plans depends on how you embrace it.

Life can be chaotic. Which so much to do it is easy to frequently miss important appointments. Delays often come from having to wait till you get to a PC to respond or not remembering contact details. The worst is having to ask someone repeatedly for their number or business cards.

If you often experience that, you are getting it all wrong and definitely need this friend!

The need for emails

Emails are on a progressive, disruptive path to eliminate postal services. They even facilitate and encourage the acceptance of digitally signed documents.
Most financial companies and legal institutions in many developed countries already accept digitally signed documents.

Your digital signature confirms that the information originated from you and has not been altered through encryption. This makes it legally binding.

Naturally, you need special software or Adobe Sign, to digitally sign and attach as a PDF to an email.

Thanks to emails, we can now also easily store and get in touch with our contacts. It could be in the office, lounging around a park, watching your children play; even onboard/at the underground train station.

Additional email tools

Calendar and contacts syncing is a simple tool which is not offered entirely by all domain host providers. It works wonders along with your calendar and scheduler.

If you need a simple CRM tool to just help with email contacts and plug into an existing sales app, you can do so with a useful add-on like Outlook Customer Manager.

There are certainly advantages of decluttering your emails. This helps to alleviate the frustration of unimportant mails getting in the way of the ones you need to access frequently. For that, there is a clutter service offered by Office 365.

Additionally, to avoid retaining important attachments, and clogging up space on your mailbox, you can with a click, save large file attachments directly to your cloud storage.

With all that relevance of emails, it is critical that you source the best one – even if it costs a bit more than the (free) webmail services provided by Outlook (Hotmail), Gmail and Yahoo.

Naturally, with a paid service, you will almost be freed from the scourge of spam and malicious items embedded in documents. In some cases, they are screened even before landing in your mailbox.

More advanced features

Other perks like a ‘catch-all service’, data loss prevention, in place-hold (compliance features), and advanced threat protection. You can add them as essential services to give you an even more peaceful emailing experience.

You can, for instance, use In-Place Hold (Litigation Hold) to place user mailboxes ‘on hold’ and preserve mailbox items permanently.

This feature is especially crucial for those in the financial and legal sectors – requiring emails and its contents to be preserved for a minimum of seven years typically. Security is the central factor that has kept the postal service in business – well at least for now.

Your checklist when shopping for a good email solution:

• A decent-sized mailbox – with archiving ability – 50GB is the new standard size (don’t get short-changed!).

• Should allow you to sync emails, calendars, and contacts onto multiple devices – and it must always work!

• SMTP is now the standard and preferred Email protocol. If you are still on POP3 or even IMAP – run away!

• Customizable domain (a .com or .net or any other you have bought), with the option to add more domains and email aliases. (info@ …sales@ etc).

• Sync to an active directory – to keep your user-profile and allow for ease of single sign-on or extra security features like two-factor authentication. (Prevents unauthorized people from accessing your emails by pairing to your phone via an SMS code).

• Your mailbox (since you are storing contact details or using it along with a CRM or ERP solution) must be GDPR-compatible.

Final thoughts

Finally, a good email hosting service should provide the ability to add innovative features in the future. These include extra archiving space, advanced threat protection, and enterprise voicemail. These are characteristics of a good email solution.

Preparing to use an email solution can be effortless if you have the time. Most software suppliers like Microsoft (Office 365), have support sites with primary training material and “how-tos”.

Check out Microsoft’s Support page to upskill your Office, email, and overall cloud-software aptitude.

24 October 2018
Anonymous Surfing
You don’t have to be an online arsonist, hacker, or international cyber-terrorist to hide your online identity. Likewise, concealing your PC’s web address or your Internet Protocol address (IP address), making it unknown to the public, does not necessarily mean you are up to no good online.

We will, therefore, build a case for why it is important at times to conceal your private online location using VPNs (Virtual Private Networks).

A VPN is a connection method used to add security and privacy to your private and public networks. This includes your Wi-fi Hotspots and access to the Internet. They are most often used by corporations to protect sensitive data but now also by people like yourselves for the same purpose.

Click on the image to view a quick video

Let’s get back to the importance of your IP address. It is probably something you rarely think about but is crucial to your online lifestyle even as an individual. How so? You might still ask.

Well, without an IP address, you wouldn’t be able to get the current weather, check the latest news, or view videos (streaming) online for instance.

The uses of VPNs

Your IP is also used to access every online service you partake in including very private things like your internet/mobile banking or online trading activity. Think of it as your physical address and how important it is when getting things delivered by post or using it when you need to make applications for loans, jobs, etc.

“Without a public IP address, online service providers like Netflix, BBC, or Amazon wouldn’t know where to send the information you asked for. They wouldn’t be able to get it to your computer.”

Imagine how naked you must feel if you have nothing to protect this address from the advent of a hack without adequate data encryption. Also the just the haggling by overzealous online marketers, spam, malware, and even ‘419 scammers’!

Now the argument for whether using VPNs is illegal is highly debatable for some of the valid reasons highlighted above. It should, however, be a given right to be able to use it. And even though it is commonly used by cyber-thugs to mask their clandestine and often dark activities, it should not be outlawed altogether.

The case for VPN

The legitimacy of VPNs debate, therefore, carries on into a grey area.
We will, however, investigate a few VPN providers that are ‘paid for services’ and even offered by established companies such as AVG (which primarily offers Antivirus protection).

The directive is to help the everyday consumer surf the web without ‘virtual’ salespeople bombarding them with offers based on personal information gathered in an ‘unsolicited’ manner.

Policies like the European-based GDPR law were put in place to protect consumers from the non-consensus use of their data. Even your Internet Service Providers (ISPs) can track your online activities via your IP and sell your browsing habits.

Some forward-thinking people and companies, however, have long been shielding themselves manually using VPNs.

One direct benefit for you as a consumer is the ability to access content (information, products, and services) from different servers. A good VPN service can enable you to obtain access to other geo-locational content despite being on a different continent.

It is perfectly legal provided you are paying for the service. The burden falls on the provider of the service and not you if it came down to a legal “scrap”.

Rationale for using them

If you perform these tasks frequently, you need a VPN:
- Hide your IP address (to enable anonymity from marketers and hackers)
- Change your IP address (to avoid identity theft)
- Encrypt data transfers (private and financial data)
- Mask your location (to access other services)
- Access blocked websites
A word of caution when navigating websites blocked by governments with a VPN. Unless you are a high-profile journalist working on a case and backed by good legal aid – it’s not a wise thing to do.
Do some research if you are not sure because accessing such sites could land you in some hot water. Rather use a known privacy service like Tor to ensure full anonymity to gain access to restricted sites if you really must.

Top Virtual Private Network Protocols

VPN protocols and available security features are numerous. The most common (best) protocols are:
ExpressVPN – the acclaimed best offshore VPN for privacy and unblocking.
IPVanish – great for P2P and Torrenting.
VyprVPN – the best choice for those looking for security.
NordVPN – security is its middle name.
TunnelBear – dubbed the easiest VPN to use.
Windscribe – a VPN which gives you unlimited connections.
Hotspot Shield – an awesome solution for online browsing.
KeepSolid VPN Unlimited – the jack of all trades of VPNs.
CyberGhost – rich clients and ease of reconfiguring.
ZenMate – user-friendly VPN that caters to the newbies to VPN.
PureVPN – take advantage of easy to use apps and access to many servers.

Source: www.itproportal.com, PureVpn

Making the choice

Picking a VPN service can be a daunting task as there are now literally hundreds of them to choose from. Landing the right one means striking the right balance between what you are offered, the ease of use, and naturally, the price.

Some providers offer free you VPN services while some like AVG charges for their VPN service. Paid VPN providers, however, are preferred to the free service providers as they offer robust gateways, proven security, additional free software, and unmatched speed.

The key is to find the best VPN that meets your immediate needs while matching your budget.
24 September 2018
Cloud (Storage) Wars!

The term “storage wars” has taken on a new meaning. It has shifted literally from the ability to keep one’s belongings in physical containers to having one’s data stored and managed in the digital realm.

A question often asked is whether the (Internet) cloud is infinite. The answer is both a yes and no.

The top four cloud tech companies are endlessly engaged in a silent market share war. It is a tough choice as they all offer millions of gigabytes in storage. We can only attempt to investigate to what extent is there an abundance of storage when we ‘run out’.

The “Cloud” as explained in our previous blog, is a series of backed-up servers scattered across the globe.

Consequently, in terms of availability of storage, it is just a matter of where (location) a datacenter can be run and at what its maintenance costs are.
The answer to how infinite is the cloud, therefore, boils down literally to a cost, rather than a capacity issue for cloud-storage providers (CSPs).

The main CSPs vying for a market share in the paid cloud storage subscriptions are Google, Microsoft (Azure), Amazon, and IBM.

There are also smaller yet significant players such as Box, Dropbox, Tresorit, and Barracuda. A quick online search on their websites will reveal what they can offer you.

Similarly, the pages of any one of the smaller companies will give some comparisons of each cloud storage offer (bundles).

We will, however, focus on the major ‘players’ and summarize their offerings based on offers for both individuals and small to large enterprises.

What to look out for

Some of the key features to look for when storing data in the cloud include Encryption at rest and in transit, as well as end-to-end encryption; 2-Step Verification, HIPAA Compliance.

Other factors to consider are the actual server location, ability to sync any folders, and perform selective Synchronization.

There are also key offerings such as offering the ability to edit files on mobile devices. For businesses, the ability to remotely wipe mobile devices, perform file-versioning, and other useful features for data management.

As a business, if the above-mentioned features are not in your cloud solution, you better look into switching away.

While you can technically run your own cloud, it would require a full-on IT team. That or a very good support system to assist in its maintenance and administration.

It is for this very reason that a SaaS(and Hybrid)-approach to storage is preferred by many medium to large enterprises.

4 of the most popular CSPs

Google

Weaponry:

A standard (personal) GoogleDrive starts from 15 GB in size and comes when you open a Google email account. This is a standard with most Android-powered mobile phones which require a Gmail account to register the phone.

It is a convenient way to store and access your pics, videos, and files across multiple devices or back them up in case of a hard drive crash.
If you do not mind the inconvenience of having several logins, you could get away with multiple drives giving you 15 GBs each.

There is, however, a drawback as there is no such a thing as a free lunch – the level of security and compliance features naturally are little to almost none. Additional storage can also be purchased with different upgrade plans, which may come with more add=ons such as extra file encryption.

When it comes to their business offering, their Team Drive is available with the G-Suite bundle. One can upload 750 GB of data per day and up to a total of 5 TB in size. Team Drive can contain a maximum of 100,000 files and folders, however, this limit can be increased upon request.

The basic package including the more advanced security costs $5 per user per month and gives you 30 GB for storage and collaboration.

A full comparison of available storage plans

Tactical strengths:

The ease of accessing and using the drives via strategic partnerships such as Android provides them with a growing market share. As it is cloud-based and not linked to physical devices, you can access your GoogleDrive using a Mac computer as well.

There are growing talks of incorporating Artificial Intelligence <AI> into the data management systems. They are currently building a full AI Center in Accra, Ghana. This will help bigger companies manage, access, and organize their stored information faster and with more purpose.

They have recently launched a set of new cloud storage tiers under the branding Google One. This comes with revised pricing and storage options: 15 GB: remains Free; 100 GB costs $1.99/month; 200 GB $2.99/month and 2 TB $9.99/month.

Potential weakness/es:

Google is a latecomer when it comes to offering business solutions and still battles with the stigma of being a free service and thus associated with inferior quality.

The integration with Office applications is still something they struggle to get right. Not many are fans of Googlesheets.

Most non-Microsoft platforms will have this compatibility problem.
They also run into a few data syncing problems ever so often, especially with the free storage. Google offers full 24/7 customer and technical support with their products. More aggressive advertising and pricing of their business offerings now serves to hopefully alleviate this issue for them.

How Google bounces back from a hefty EUR 4,34 billion fine for colluding with Android will determine if they survive the storage war. This especially if they will be now forced to allow other CSPs to offer services on mobile devices.

Amazon

Weaponry:

One of the first cloud solution providers to offer eCommerce and Business-to-Business (B2B) offerings. Amazon and its Amazon Web Services (AWS) have come a long and calculated way from just offering/selling books online.

They are actually seen as a formal threat and a direct (more superior) competitor to Microsoft’s cloud (equivalent) offering – which we touch on next.
Most of this comes from a robust and apparently the world’s largest global cloud infrastructure.

Based on this, its cloud storage, dubbed Amazon S3, works on a “pay as you use” basis while its free tier starts you off on 5GB of storage. Thereafter you pay in increments based on the storage class you fall under.

So the first 50 TB will cost $0.023 per GB per month and then the next 450 TB will cost $0.022 per GB per month and so on.
This is practical for businesses that do not have a limit to storage space but scale up and down very quickly based on their operations.

Tactical strengths:

Amazon’s storage platform gives users and businesses alike the ability to geographically store and move data with the highest levels of encryption. In addition, one can use data analytics on your data without moving the data into a separate analytics system.

Amazon Athena additionally provides anyone who knows SQL on-demand query access to vast amounts of unstructured data. As with Google, AI incorporation along with Alexa would facilitate this even further.

Other notable benefits offered include open workflows, Hybrid-cloud storage capability, powerful APIs, and easy and reliable access to many Third-Party vendors & Partners.

Naturally, you get access to its AWS Marketplaces. It also has a strong compliance adherence including HIPAA/HITECH, EU Data Protection Directive, and FISMA.

Comparison of the various storage classes available.

Potential weakness/es:

Its primary offering of consumer goods and online delivery will make it prone to any bad press received if that arm of operations does not work well.

Further expansion into areas like streaming TV via Amazon Prime and cashless stores might result in a jack of all trades expert in none phenomenon. They are, nevertheless, handling all well so far.

Microsoft

Weaponry:

The “go-to” tech company for word-processing software as well as operating systems. This software giant like Amazon is branching into many products.

They now offer games, server hosting software, applications, an online store for all its devices, software, services, and of course, storage.
Its Azure platform powers certain parts of Nasa and utility giant Schneider Electric to mention a few clients. Its purchase works similarly to Amazon via ‘pay-as-you-use’ terms.

Storage users need to have a .Net Framework and SQL installed to use the storage. For those looking for quick storing solutions without building heavy infrastructure, they can adopt the cloud completely.

With the launch of its online services (Microsoft 365), it has had to repackage a portion of its Azure platform to cater to small to mid-sized businesses.

These include functional/specific bundles such as OneDrive (personal), OneDrive for Business, and Sharepoint (powerful storage and content management tool).

The online version of the Sharepoint starts at $5.00 per user per month for a rather limited 1 TB per organization. Thereafter, users can purchase more in 1 GB increments of 12 to 16 (US) cents depending on the total (storage space) size ordered.

Tactical strengths:

Also early adopters of AI (Machine Learning) and recently, the Blockchain (Blockchain Workbench), Microsoft is providing its developers with more and better reasons to use its storage space for practicality.
Like their online storage offers on Office 365, Azure storage packages are also quite structured and well categorised.

There are specific functions such as a database server-data management system. Then there is one for application running services, and others to handle rest-based object storage (Blob Storage).
Lastly, they offer storage to help perform computations and process events (Functions).
These bundles are all provided free for the first 12 months and then range from $0.002 per GB to about US 0.20c per million executions.

They have a good Partner system to help distinguish and provide support for the best storage package based on one’s immediate needs.

To bolster their growing Marketplace, they recently also purchased a business that deals with OpenSource (GitHub). This enables more freedom for developers to manipulate the software on their platform.

For a comparison of the storage types via Azure and pricing for each, click here.

Potential weakness/es:

People have found its pricing a little to steep on the storage side and so keeping market share will be tough. Many new smaller CSPs offering cheaper per GB rates.

They can only counter this by offering more products that require their storage (compatibility-wise).
Some other cumbersome restrictions like users being only able to upload 20 000 files at once or the actual file-size limit might not bode too well with heavy cloud data users.

They also don’t have as many APIs as Google or Amazon does, but these are growing by the day.

IBM

Weaponry:

Probably the first of the CSP batch that provided cloud computing. It therefore has had the experience of honing ways of storing and retrieving data for larger businesses. International Business Machines (or IBM) can be considered as the grandfather of data storage.

As with the other CSPs, there is a free offering called the “Lite plan” consisting of a single IBM Cloud service instance with storage up to 25 GB/month.
Paid storage is staggered, per consumption and based on complex costing tiers based on location, storage class, and resiliency choice.

Storage charges start from $0.09 for up to 50 GB down to $0.014 for 500+ TB on what they call the Cross-Region Flex plan.

For more insight into the complex costing table, visit the IBM storage pricing page here.

Tactical strengths:

Their security is their biggest pride and strength and makes them a firm favourite for large companies and potentially governmental institutions.
The fact that they do not actively advertise as much as Google or Microsoft is telling. They clearly need to provide high secrecy and protection for their existing clients.

One such feature unique to the way data is stored on their cloud servers is using Information Dispersal Algorithms (IDAs). This helps to separate data in unrecognizable “slices” that are distributed across datacenters.

So basically the complete copy of the data resides in any single storage node, and only a subset of nodes are available in order to fully retrieve the data on the network. This is similar to how peer-to-peer sharing or data encryption works.

And speaking of heavy encryption, they have allegedly recently also started on the Blockchain and are experimenting with a particular Cryptocurrency to enable ease of payments. This in the light of IBM with its Watson platform looking to become more of a cloud-based data operating system.

Potential weakness/es:

IBM relies too much on its reputation as a forerunner for tech and cloud-based computing. It has earned that title for several decades before the likes of Google and Amazon barged in.

They might lose out on market share once the newer CSPs start to offer more robust products and compliance services like theirs.

Their high security and complex system come at a premium so designed for or rather restricted to wealthy companies essentially. The hosting option (main server locations) looks limited and restricted to geographical areas primarily in the US and EU.

Be wary of clandestine terminology such as ‘unlimited archiving/storage’ even with a paid subscription. This usually refers to storing data at rest and not the ability to constantly and unlimitedly sync files.

Another salient factor to compare would be the number of files that you can upload or sync at the same time.
This will be relevant for larger companies that need to upload large files and by large, we mean 10 GB files (2 and a half HD DVDs’ worth of content) and upwards.

Making a choice

At the end of the day, your decision to take on a faction in the storage war should be based on your priorities. You simply match it to what each of the companies is offering taking your budget into consideration of course.

You may need to consider running a combination of two or more of them.
Some larger companies offer storage as a “must-have” with hosted email or something as basic as purchasing a new smartphone.

You will, however, have to ask yourself a few more pressing questions around functionality, data security, and compliance before taking it up.

Or you can simply not accept the offer or disable it in cases where it is presented as a freebie!

18 July 2018
Already GDPR-ed Out?

Well, it didn’t take long. Less than a full week in fact, for the first GDPR-related court cases to surface against social tech giants Facebook and Google.

It was as if lawyers were just waiting to pounce on them for their apparent failure to protect our rights as online users. This pertains specifically to issues relating to data privacy and the sharing of private details mainly with third-party marketers.

How Facebook stores and shares your data has been clarified by several intense inquiries in the US and recently in Europe. This is where the law is set to benefit users of the social media platform in that geospatial area of the world.

The said lawsuit, however, focuses on the opt-out clause that forces you to make a choice to comply or leave. The claimant is a privacy campaigner. He has made the Billion-Euro complaint on behalf of several users; seemingly a challenge to Facebook.

Additionally, he has launched a separate suit against Google, accusing them of “pressurizing” users into accepting their data collection policies.
This ‘comply and accept or get thrown out’ clause could leave you without your routine dose of social media consumption. Such a clause is thus deemed unfair.

It could cost Facebook a lot if they get their way based on the terms stipulated in the new law. The social media giant could be fined up to a few billion or a sizeable fraction of their earnings in punitive damages.

The aim of the new law

The passing of the new regulation on May 25^th, 2018, better known as the General Data Protection Regulation {GDPR} has been a long time coming.

Despite the warnings of the “kick-in” of the regulation, many are unprepared for it. Some of the reactions to the law include confusion, anxiety by both large and small firms alike, and plain comical hysteria!

Non-compliance now carries heavy fines and penalties, up to 20 million euros for anyone operating within the EU borders.

So, what then, is the big fuss about GDPR?

Well, it boils down to a right that has since the launch of the Internet to the mainstream, been waivered and overlooked. Gaining CONSENT to use your data for anything other than the reason you went public on the Internet is very crucial.

This has become a contentious issue as many companies have over the years, unscrupulously benefited from data acquired (mined) – without your consent. Facebook only brought this into the spotlight recently.

You can read more about data mining here

Ad: Web, Network & App Scanner

Who needs compliance?

If you hold a folder, database of clients whether online or on your internal server, you would have to comply with the rules which stipulate full disclosure. This includes who you share your details with, and how the information is tracked, shared, and kept secure.

Furthermore, research in March this year showed that only 39% of the Fortune 500 companies in the UK and 47% had GDPR compliance taskforces.

Another UK firm commissioned study found that our buying behaviours are heavily influenced by we perceive our data is being handled by companies.

The consent given to use your basic information cannot be taken for granted – even in the medical environment.

German doctors’ practices, in the wake of GDPR, are manually making you sign consent forms. Doctors are now required to fully disclose who they share your contact information with.

How to be compliant

There are simple ways you can stay GDPR compliant. One method is to adopt an attitude of embracing it rather than just complying with it. You can be transparent with your customers by doing the following:

Add a cookie bar to your website. You can also add a clause/paragraph to that effect (website disclaimer) in your ‘About Us’ section.

Similarly, you must state clearly on any opt-in forms. Newsletters and any forms where their data is collected, used, and passed onto other third-parties must be announced. State clearly who they are and which data they have access to.

You then need to give your customer the option to select what they want to share. Even if such data may not be necessary for them to receive services from you.

Constantly review your relationships with third-party affiliates and partners to ensure that they are also complying with the law.
They could be jeopardizing your data compliance efforts – as Cambridge Analytica did with Facebook.

The last and most challenging step requires the action of what is promised above. This means an upgrade of your internal software to include security/encryption.

GDPR compliant software

You can obtain full compliance by using a GDPR-compliant package like Office 365 Enterprise E3. This package has email software specially designed for those of you dealing with sensitive client’s data that need to be kept for long periods. Litigation hold, heavy archiving features; as well as basic email encryption are all included.

You can add supplementary encryption software such as Azure Information Protection as an extra layer of security. This helps you to safeguard emails and stored data from being lost, compromised, or accidentally shared.

All said and done it is likely that if you are a bigger firm, you would either need to create the position of a data security officer internally. If your lawyers are not up to date with digital laws, however, you can simply outsource the service.

This should help make you become fully compliant thereby having to avoid issues with the data compliance authority altogether.

1 June 2018
For investment gains or for purpose?

As much as institutions, risk-averse, or simply skeptical people have downplayed the new digital currency revolution. It still, a decade after coming to public light, remains resilient.

Bitcoin now gets a regular mention in daily news and stock market reports. It is being traded by several established investors and even included by fund managers as high-risk portfolio instruments.

We all by now, have heard the rhetoric of high volatility and use for criminal activity when it comes to Bitcoin and its crypto-family.

Billionaires Warren Buffet and Bill Gates also weighed into this by publicly lambasting Bitcoin. Buffet equated cryptocurrency to rat poison 🙂

Be it may, digital currency, however, does have some unbeatable benefits and functions you cannot ignore.

Financial emancipation

Bitcoin and ‘altcoin’ investing have created a new wave of financial investors.

These include retired bankers, ‘millennials’ – who instinctively jump on-board a new discovery that has creative destruction-like tendencies. You also have the plumber, bartender, or ‘average man on the street’ looking to change their lifestyles instantaneously.

Based on their phenomenal returns, many people have taken to social media (via groups, profiles, and communities) to share their success stories. But this is also a reason to for you to heed caution when you take counsel from anyone claiming to be an expert in cryptocurrency investment.

Volatility is not new to trading – and especially not with Crypto trading. It is constantly on a rollercoaster ride making it hard for even seasoned trading experts to predict movements with traditional market analysis tools.

Money transfer

We all have undergone the painful stress of waiting for funds to clear so your rent gets paid or waiting endlessly to receive money from abroad.

With cryptocurrency, the aim is to be not only the most secure form of funds transfer – but the fastest.

Converting cryptocurrency to fiat money, however, remains a bottleneck. It still needs institutions to adopt or directly accept payments in cryptocurrency to avoid you going through another step in order to transact.

Cryptocurrencies still cut down transfer time significantly compared to traditional electronic fund transfers of fiat money.

Some well-established companies already use Cryptocurrencies like Bitcoin, and Litecoin for fund transfers, or even direct exchange for services.

Cost savings

We cannot ignore the reduced costs associated with dealing with money you have (hopefully) earned from hard work.

Even inheritances are gained because of the toils of the giver’s hard work. So, it wouldn’t be fair for a group of a few companies headed by executives to siphon it from you while claiming to ‘provide you with a service’.

We all pay for Internet use (and the security software associated), for smartphones and computers.

We, therefore, have the technology to make transactions ourselves without having to rely on others to charge us for things we can do ourselves.

The financial institutions have long preyed on your ignorance, obedience, and unquestioning trust. This, while they brazenly burn cash dabbling in equally questionable high-risk investments like derivatives and futures.

Use cases

Cryptocurrencies have nevertheless, got us thinking about making profits, the tax implications, and anything financial for that matter!

A recent development called Hodl Waves attempts to track and predict Bitcoin movements via complex usage history. It basically compares behavioural patterns of what you do when you have coins and when you choose to reinvest them.

Blockchain technology has also spurred a new path of careers and industries. More companies globally are looking to acquire lucrative Crypto-exchange licenses to operate.

These cryptocurrency exchanges require people to service clients in various areas. They will require employees as any company would.

Governments too will benefit from their operations. While there are still discrepancies in most countries about how to tax you, authorities can get a lion’s share from directly taxing exchanges.

A new wave arises

It is only a matter a time before the banking institutions and big companies get on board to benefit from the high-level encryption and speed provided by digital currency.

To conclude, the ‘wait and see’ mantra is all that we can exercise when predicting the future of digital currency.

There are, however, concerns on how secure the encryption can remain with the advent of quantum computing. This ground-breaking tech can make calculations at millions of speeds faster and thus able to crack the toughest data encryption.

Some form of regulation would be required in some form to keep Crypto prices stable.

10 May 2018

Translate »

This website uses cookies. By continuing to use this site, you accept our use of cookies.