(403) 237-7750

Archive for category: Security Alert

Security Alert: Meltdown and Spectre Vulnerabilities

/in /by

What Are Meltdown and Spectre?

Computer researchers have recently found out that the main chip in most modern computers—the CPU—has a hardware bug.

It’s really a design flaw in the hardware that has been there for years.

This is a big deal because it affects almost every computer, including PCs, laptops, smartphones, and servers.

This hardware bug allows malicious programs to steal data that is being processed in your computer memory.

Normally, applications are not able to do that because they are isolated from each other and the operating system.

This hardware bug breaks that isolation.

So, if the bad guys are able to get malicious software running on your computer, they can get access to your passwords stored in a password manager or browser, your emails, instant messages and even business-critical documents.

So, What Are We Doing About This?

There are two updates required by all computers.

The Windows updates were approved last week and should already be deployed to your computers.

A firmware update is also required and this is going to take some time; many of the patches are not even available yet.

Our team will work with you to schedule a time when the firmware updates can be applied as they become available.

Thankfully, there are no known active threats exploiting these vulnerabilities.

In the meantime, we need you to be extra vigilant, with security top of mind and Think Before You Click.

Please don’t hesitate to contact your ITeam Account Manager or IT Manager for more details.

The ITeam understands the cybersecurity issues facing Canada. We are committed to helping Calgary- and Alberta-based businesses develop proactive, cost-effective IT strategies that minimize risk and maximize efficiency. Contact us to learn more.

Important Take-Aways from the Equifax Data Breach

/in /by

If cybersecurity wasn’t at the top of your to-do list, the recent Equifax data breach should have you on high alert.

Between May and July 2017, names, social security and social insurance numbers, birth dates, addresses, and driver’s license numbers were stolen, along with over 200,000 credit card numbers.

This breach primarily affected 145.5 million consumers in the United States, but thousands in Canada and the UK have been affected as well.

This data breach has the cybersecurity community reeling, and businesses and individuals alike are wondering what the next step is.

What’s shocking for many IT professionals is that despite available technology, breaches are usually caused by the simplest mistakes.

Proper preventative measures within the security infrastructure of any business could slow down hackers and even stop them entirely.

Here’s what you can do in light of the Equifax breach:

From the Business Perspective

The fallout of the Equifax data breach has compelled businesses of all sizes to ramp up cybersecurity. It is a critical element of any modern organization, and it’s risky to assume that large companies, such as Equifax, are the only targets, since hackers rely on inadequate security measures that are particularly evident in small businesses.

Unfortunately, breaches are not 100-% preventable. However, this is not to say that with strong security measures, these breaches can’t be drastically mitigated. By adequately preparing for a potential breach, you may greatly reduce the number of people affected and the amount of data compromised. Here are some ideas to help you prevent the next major security breach:

  • Segment networks – Too many user controls permit too much access. If your infrastructure is properly segmented, a breach can be restricted to small areas, prohibiting access to the entire database.
  • Require multi-factor authentication – This is a common method of security, requiring more than one method of authentication to verify a user’s identity.
  • Employ robust data encryption – Design your security system so that even if malicious attempts are successful, a hacker can’t interpret the contents.
  • Foster a commitment to functionality – Key to any successful cybersecurity strategy is some assurance that systems are working as they should. This involves regular updates as well as internal audits.

From a Personal Perspective

If you have a credit history, there is a chance that your information was compromised by the Equifax breach. Preventative measures can be utilized by consumers as well as businesses, and the following tips will help protect against identity theft:

  • Check to see if your data was compromised. The Office of the Privacy Commissioner of Canada has instructions and further guidance.
  • Check credit reports – Many credit card companies now provide your credit score for free. Investigate any changes in your credit, such as new accounts.
  • Request a credit freeze – Although this doesn’t prevent access to current accounts, no new accounts can be opened in your name.
  • Monitor your accounts closely –Alert your financial institutions of suspicious activity.
  • File taxes early – The earlier you file your taxes, the less likely it is that someone else will be able to file using your sensitive information.
  • Enroll in a credit monitoring service.

There is no such thing as perfect security, but with the right technological overhauls, a data breach does not have to be devastating. Protecting your data is the top priority, so make sure your cybersecurity efforts are at least on par with the existing threats. Let The ITeam help with your security through our managed it services.

The ITeam Security Bulletin: WannaCry Ransomware

/5 Comments/in /by
Important information about WannaCry ransomware

You may have seen the news this weekend.
WannaCry Ransomware

Criminal hackers have released a new strain of ransomware that spreads itself automatically across all workstations in a network, causing a global epidemic.

If you or a co-worker are not paying attention and accidentally open one of these phishing email attachments, you might infect not only your own workstation but immediately everyone else’s computer too.

The initial infection was stopped on Friday, but it has since been rewritten and is again spreading in the wild.

There are 200,000 confirmed infections in over 150 countries as of this afternoon.

While most of the damage has been in Europe, Russia and Asia, there are over 6000 confirmed incidents in North America.

According to CrowdStrike’s Vice President of Intelligence Adam Meyers, the initial spread of WannaCry is coming through phishing, in which fake invoices, job offers and other lures are being sent out to random email addresses.

Within the emails is a password protected .zip file, so the email uses social engineering to persuade the victim to unlock the attachment with a password, and once clicked that initiates the WannaCry infection. Microsoft confirms this in a blog post.

Be very careful when you get an email with an attachment you did not ask for. If there is a .zip file in the attachment, do not click on it but delete the whole email. Remember: “When in doubt, throw it out!”

At The ITeam we work hard to ensure your networks are protected. Technology cannot stop every threat, and the last line of defence is alert and educated users.

Please share this information within your organization and outside your organization as you see fit. If your company requires IT support in Calgary, call us for a quote.

The ITeam Selected as a CDN Top 100 Solutions Provider in Canada

/in /by

Calgary, Alberta – May 2, 2017 – The ITeam Ltd., Calgary’s leading source for Managed IT support and cloud services is pleased to announce that the company has been ranked in the 2017 CDN Top 100 Solution Providers in Canada, demonstrating The ITeam’s dedication to providing clients with superior service and support of top cloud solutions.

The Top 100 Solution Providers is an annual ranking produced by Computer Dealer News (CDN), the voice of the IT solution provider community in Canada since 1987. The ITeam ranked #100. A complete list of the Top 100 rankings can be found here: http://www.computerdealernews.com/top-100-solution-providers/top-100.

“We are honoured to have been selected as one of CDN’s Top 100 Solution Providers in Canada. The ITeam has worked diligently to enhance our cloud services to provide our clients with the most comprehensive, customizable, and cost-effective cloud solutions possible,” said James Wagner, President of The ITeam. “Our Calgary-based company is known for our commitment to quality.”

About The ITeam

The ITeam has been delivering quality IT results for over 20 years. As the shift to cloud computing has enabled businesses to be more nimble and capable of meeting customers’ needs, The ITeam has worked to provide the necessary support, security strategies, and partnership required to make the transitions easier. The ITeam delivers cost-effective, comprehensive, customized solutions to clients.

About Computer Dealer News

Computer Dealer News (CDN) — the voice of the IT solution provider community in Canada for more than thirty years — is the most widely read and trusted source of information for Canadian channel executives. Providing insightful commentary on technology products and services and covering the key players that are impacting this segment, CDN also delivers a critical analysis of the competitive landscape detailing both the challenges and opportunities facing solution providers. Each year, CDN connects with IT solution providers across the country to collect data for an industry benchmark report which, once compiled, presents an overview of this market segment as well as trends.

Locky: New, Insidious Ransomware

/in /by

Locky: New, Insidious Ransomware

By now, we’re all familiar with the threat of ransomware, which accounts for nearly 20 percent of all spam.

One wrong click on a seemingly legitimate email and your network is held hostage.

Until you pay a ransom to the cyber hackers who managed to catch the unlucky email recipient off guard, your network remains vulnerable.

What Is Locky?

Locky is the latest ransomware to wreak havoc and works.

It contains a hidden JavaScript file in the attachment that evades most common malware detection software because it appears to be a harmless file.

Locky has proliferated so quickly that it now accounts for more than 16 percent of all ransomware attacks.

While the U.S., Japan, and France have been the most severely targeted, Locky has made its way to Canada.

Canadian businesses must take precautions against the threat.

How Does Ransomware Work?

Ransomware works by creating fear.

The messages are usually designed to make the recipient of the email believe that the email was sent by someone they trust.

It makes the recipient believe that the action needed to take (opening the file or clicking on the link) is necessary to conduct business and that it is an urgent matter.

Cyber hackers are clever, so businesses have to be constantly on alert.

In addition to implementing robust email security as well as offsite backup and recovery solutions, the most important step is to immediately warn staff.

It is easy to be fooled by emails that seem to be coming from legitimate sources, and once the person has clicked on the link or opened the file, there is no recovering.

Employees must learn to treat every email with caution and follow the ITeam Email security guidelines every time.

Download the ITeam Email Security Guide Here.

email security guide