Blog

Phishing Problems?

Most companies and businesses today use email and Internet access for critical business functions.  Today most businesses are aware of the words: hackers, phishing and social engineering as well.  If you’ve ever checked an email that doesn’t have too much security in place that messages can successfully get in and out, then chances are you have seen a phishing email, an attempt to hack you, your computer or your company’s network by getting you as a person to click something, respond to an email or do something you normally would not do so that the hacker can gain some control or get access into a computer network, get information or just details about something, anything.

 

One of the best things your company can do to avert or counter phishing and social engineering is to offer training and development to your staff that comes apart from the forced ho hum another training day, help your staff develop their working knowledge on a regular schedule instead of the traditional method brain dump that simply doesn’t work since you need to have functional operatives that know how to properly handle a tool or piece of equipment.

 

MainBoard Consulting helps companies build custom solutions; we also help companies purchase existing systems and implement those systems in a consultative support role to the administration and management that likely is already at maximum capacity.  Whatever your company’s need, we’d like to help you grow and develop your staff and prevent the upper 70% reason why network breaches occur.

 

 

Thoughts on Email Security

Let’s face it, many people use email for business.  Many people use email so they can convey a message, do business, fall for a scam… Yep, I said it.  Email is the number ONE threat vector when it comes to Cybersecurity.  Getting your email address, a working email address that you check, open a message and interact with is one of the best ways that a hacker can execute on their strategy.

 

What can you do, what should you do?

 

1. Don’t give out your email to everyone, loosely and if you see someone is handling your email unsafely (THAT YOU KNOW), ask them to stop in person.  While it seems harmless that a legitimate contact can be doing a noble thing by emailing you, their improperly executed actions can be devastating later on.  I subscribed to a marketing list by joining an organization, somehow;  Strangely enough that my consent was never ever obtained along the way for open broadcast of my email but it goes to show that joining legitimate organizations doesn’t mean your email will be treated as securely as you would treat it.

 

2. If you don’t recognize it, don’t pet it.  That’s an attractive subject line?  Let the clicker beware, best not to click it.

 

3. If you get an email from SOMEONE YOU KNOW and the subject is unexpected, off the wall, out of context, hopefully in your SPAM Box, Junk Mail or other filtered folder, chances are it wasn’t from this person you know.  Before you click and just to be sure, pick up the phone and call them.

 

4. Your Bank, Creditor, the IRS, your Doctor, your Pharmacist, etc will legitimately NEVER EVER EVER EVER EVER EVER ask you in an email to confirm who you are; it is NOT them.  I don’t care if you have committed Tax Fraud according to that email.  If you have legitimately committed Tax Fraud, you can’t fix it through email.

 

I hope you enjoyed this message.

Is Your Email Safe & Secure?

I’ve had a couple of calls from people that still have Verizon.net email addresses, and I still notice that some businesses use verizon.net email domains as well.  With an announcement long on the books that Verizon was planned to stop managing and housing the email servers, personal users were told to migrate to AOL or Yahoo and they would be able to retain their verizon.net email.

 

If you succeeded in the migration, your mail is handled by one of these companies; if not, your email is likely on the rocks now.

 

When a business has a contact address, it is imperative that it work all the time, full time, not part time and it is managed efficiently.  What happens if you lose a big business deal, or if you are an attorney or government agency and need to produce a legal archive for court or other type request?

 

Email should be handled as a delicate record that will help you or hurt you if there is ever a question of communication or compliance.  There are several secure, compliant solutions to email from Microsoft O365 Exchange, Google Apps for Business and other self hosted solutions.

 

Currently we consult with clients across the United States and would welcome your call for assistance with a secure, reliable and legal supporting service that your professional business or government office can rely on.  Feel free to schedule a call at https://bookings.mainboardconsulting.com or call or text us at 276-865-1025.

Change YOUR Passwords!

Being “hacked” can be a nightmare.  Having your identity stolen because of being hacked is the salt on the wound especially because of weak password security.  Some of the major hacking cases that have made headline news ultimately stemmed back to default username and passwords or something completely silly as the password.  You should ALWAYS change the default username and make passwords more complicated than what someone taking wild guesses could crack; Hackers use dictionary attacks through computers and a typical “qwerty1” as a password would take only seconds to be broken in to. 

 

 

You would think computers, especially those with Federal Government or banking level use would have a fleet of armed ninjas at the door to protect them but they don’t.  The password is the biggest layer of defense.  Not saying it is the only layer of defense, but it is the first thing that pops up on screen asking for the user to authenticate.  Hackers rely on people being lax with their security, they are always searching for faster and stronger ways to hack so make sure you step up your game. An interesting concept is that the computer is not actually being hacked, it’s the end user’s lack of concern or antagonism towards computer security. 

 

 

If you need assistance with Passwords, understanding how you can better secure your network, Wi-Fi or wired and most importantly, your personal information, call or message MainBoard Consulting.  You can text our primary office number (276) 865-1025 or if you would like to schedule a discovery call visit https://bookings.mainboardconsulting.com

 

Can I Text Your Main Telephone Number?

Are you missing leads and customers reaching out to your business on a daily basis?  Many business owners do not know this but the primary telephone number for your business, in many cases can have TEXT Messaging Enabled, regardless of the provider you currently have.  Today’s generational divide brings those that TEXT instead of calling.  MainBoard Consulting can offer you research and case studies that are shocking to see how many businesses do not know when someone has tried connecting by sending a text to an expensively advertised number.

Plans, Plans and Plans to Plans

What is your plan?  Do you have a technology plan – 3 ring binder or bigger that you can put your hands on?  If you don’t, not only can we help you achieve proper planning, we can help implement operations reviews, audits, and other testing you probably are required to do under some compliance laws.

If you accept credit cards, you are subject to PCI-DSS compliance rules.  If you have, touch or can see Protected Health Information, you are either a Covered Entity or a Business Associate and you are fully responsible yourself for implementing policies to demonstrate HIPAA compliance.  If you are a financial institution, you are subject to GLB or SOX.  You should have an extensive plan, tested by outside experts and frequently updated with the latest threats.

It takes one wrong click by an employee or an executive to have an unscheduled test of your plan. Always be prepared is good advice to follow.