Adobe XI Products Security Update Released
Adobe recently delayed the fix for a severe vulnerability that could allow access to users systems leaving almost all users vulnerable. The security fix has now been released and we strongly suggest customers update their Adobe XI series products.
OneDrive Update for Android, coming to iOS and WP8
We recommend using OneDrive to most clients as it is available on every platform for free and includes a generous amount of space. Previously clients employees who connected OneDrive to their personal account (For files, pictures etc.) were unable to attach to OneDrive for Business included in their companies Office365 subscriptions. A recent update allows you to connect your Android client to both personal and business accounts simultaneously with a clear distinction between personal and business folders ensuring you are aware of which files you are accessing.
The Android app for OneDrive also now includes support for a security PIN. As many users still do not PIN their smartphones this is a must if users are connecting to OneDrive for Business.
Symantec retiring some Antivirus Products
Symantec will be streamlining there product lineup. While our clients use various Symantec products which will be retired you should expect them to be available for some time as the new Cloud based solution is in Beta.
While do have clients using the existing Symantec.cloud product and results have been overwhelmingly positive, we have doubts about the “No virus 100% virus-free money-back guarantee” they mention here.
Ebola fears being used in Malware / Phishing
While we have not had any clients reporting emails mentioning Ebola, Symantec is reporting Malware and phishing campaigns reaching customers. It is only a matter of time until these attacks spread to most mail systems.
Phishing is the attempt to acquire information such as usernames and password by masquerading as a trustworthy entity in an email or popup. Communications purporting to be from popular social web sites, auction sites, banks, online payment processors or IT administrators are commonly used to lure unsuspecting public
Password Best Practices
Usually not a day goes by where we do not see at least one client machine with a password written on a post-it note or labeled to the bottom a keyboard. While never a good idea these practices are potentially far more harmful than the user suspects.
The reason for this is that a significant number of people still use one or a few passwords for multiple sites. So by basically making your password available to the office you could be making the password to your banking or online shopping sites available as well. (Adding a few numbers to the end does not make it a “new” password either!)
A few suggestions for better password security:
- Don’t write down your passwords. You would be surprised to find out how many networks have been compromised because of passwords that were written down. If you must write your passwords down, either because they are difficult to remember or change frequently, make sure you keep the list in a very secure place.
- Don’t use plain words for passwords. If it’s in the dictionary, it’s not a password. Crackers can use software that automatically tries every word in a dictionary file. If you use a plain word, such as horse, they can easily crack it.
- Don’t use personal information as passwords. In the modern world of social media someone can easily acquire the names of friends, kids, pets, and other personal information.
- Consider using computer-generated passwords that consist of random strings of letters and numbers. These are harder to remember, but they are more secure.
- Never tell someone your password over the phone. Companies never contact their customers and ask for passwords over the phone.
- Change your passwords periodically. Monthly or as often as you can.
- Finally consider a password manager such as LastPass or OnePassword. These allow you to use incredibly complex passwords without the burden of needing to remember each and every one.
capitalregionit 