The Lowdown on Good Passwords and How They Work

Best Practices, Cyber Security, Ophtek, Password Security, Security, , ,
25
Jun 2019

We all use passwords on a daily basis, but do we know how they work? And how do you go about creating the best and most secure passwords?

Every day, in our home and business lives, we use an assortment of passwords to gain access to systems that are important to us. Entering passwords is such a regular occurrence that it soon becomes automatic. This regularity means that we pay little attention to the process. But we should. Passwords, after all, are what protect our data. And, in an age of huge data breaches, it needs protecting.

This protection can be enhanced with good passwords. For a good password to provide security, however, you need to understand how a password works.

What is a Password?

Passwords have been used since the dawn of time to gain access to secure areas. In ancient times, a visitor to a king’s palace would have gained access in exchange for a password. Fast forward several hundred years and very little has changed. Accessing a king’s palace may not be a major requirement in your life, but passwords are crucial in the digital age. Using a series of numbers, letters and symbols, a password helps you to gain access to computer networks, databases and social media.

How Does a Password Work?

It’s easy to enter passwords all day long, but understanding the process is another matter. What is it that allows a series of characters to grant you access to shielded content? Let’s take a look.

When you set up a password it’s not stored in the same form as it’s typed. Instead it’s stored as a hash. Using advanced cryptography, a hash takes your password and converts it into a number. These hashes tend to be 128 or 256 digits long depending on the encryption method. Either way they’re more complex than a 10-character password. These hashes are then stored in a file as a reference guide to verify the password entered. If the password matches the corresponding hash then access is approved. Otherwise, access is denied.

What Makes a Good Password?

Now you know how a password works you need to make sure you have a good password. The stronger your password is the less chance there is of a hack taking place. To strengthen your passwords make sure you:

  • Keep it Long: A longer password adds complexity. Hackers tend to target passwords through brute force attacks, so a longer password is more time consuming. Aim for around 15 characters as this isn’t too difficult to remember, but it also provides complexity.
  • Avoid Obvious Passwords: Many IT users go for simple passwords such as PASSWORD. And when that expires they add a number on the end. While these passwords are very easy to remember they’re as easy to guess. These types of passwords will be the first ones that hackers try. More often than not they’ll pay off. And that’s why you need to create a unique password.
  • Don’t Use Personal Information: Another common mistake with passwords is to use personal information such as your name or date of birth. This may feel unique, but it’s information that is researchable. Hackers are cunning and it won’t take them more than a few minutes to get this data. So, make sure that nothing contained within your password can be connected to yourself.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More

The Very Basics of Good IT Security

anti malware, disable employee access, email security, IT Best Practices, Ophtek, Password Security, Safety, Security, Security Threats, two factor, , , , ,
18
Jun 2019

Cyber-crime remains a major threat to any organization that works with IT, but the basics of IT security are often the best way to counter this threat.

It’s difficult to avoid the fact that cyber-attacks are reaching record levels. IT systems are less secure than ever and need protecting. And that’s where your organization needs to take up the baton. Protecting these systems may sound like a monumental task, but it’s a lot easier than you think. Key to success is following the basics of IT security. The simplicity behind these processes is remarkable and can make a significant difference.

It’s crucial that you know what these are, so let’s take a look at the very basics of good IT security

Understanding the Basics

The complexity of IT systems often means they’re difficult to work with. And from this complexity comes flaws in security. The good thing is that IT security doesn’t have to be difficult. The best way you can help protect your IT system is by following these basics:

  • IT Inductions: You should never assume that new employees have a solid understanding of IT security. And that’s why your staff should always have to complete an IT induction. Not only will this familiarize them with the technology you use, but it allows you to run through the basics of cyber threats. This knowledge can make a real difference in strengthening your defenses. 
  • Disable USB Ports: The level of damage that USB devices can cause is shocking and unbelievable. Your employees are unlikely to be aware of this threat. To them, a USB port is simply a handy device for charging their mobile device. The truth is much different. This threat can be extinguished by disabling the USB ports. This can be achieved by adjusting the USB settings for your employees. 
  • Use Antivirus Software: It may feel like a simplistic step in IT security but antivirus software remains essential. Good antivirus software can recognize malware within milliseconds and flag it. A manual scan will never be able to match this. And your employees wouldn’t know what they were looking for. The vast databases in use and the speed in which they operate ensures that antivirus software is a must have in business. 
  • Assign Privileges Accordingly: Different employees will need different network privileges. These variations arise from the different tasks they perform within your IT system. Certain departments, for example, will need access to one drive whilst another department will not. Understanding these differences is critical. Once the necessary privileges have been identified then you can minimize the risk of cyber-attacks spreading through the entire system.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More

5 Warning Signs that Your Network Has Been Hacked

Cyber Security, Hackers, Hacking, Network, Ophtek, Security Threats, , , ,
11
Jun 2019

A hacked network spells trouble for any organization, so it’s crucial that you understand the warning signs which indicate your network has been hacked.

When it comes to reducing the damage caused by a hacked network then speed is of the essence. Hackers work quickly and even if you only shave a few minutes off the time taken to recognize an attack it can make a huge difference. However, the warning signs that accompany a network breach aren’t necessarily obvious due to the technology at play and the stealth tactics adopted by hackers. Thankfully, these indicators can easily be learned and it doesn’t have to be by going down the tough road of experience.

That’s why we’re going to help you get prepared a for damage limitation strategy by discussing five warning signs that your network has been hacked.

The 5 Signs of a Hacked Network

Vigilance is an essential part of keeping your network secure, but due to the complexities of IT it’s difficult to keep an eye on everything at all times. However, by understanding the following warning signs you’re putting yourself in a much better position to protect your network:

  1. Mouse Cursors Moving On Their Own: With a breached network comes the possibility that remote hackers will take control of your PC. Therefore, it’s possible for them to assume control of a desktop and being interacting with it. The most obvious sign of this is a mouse cursor moving around on its own and clicking on files/folders.
  1. Encrypted Files: Ransomware is a major problem for businesses due to the obstacles it throws up by encrypting files. And that’s why if you’re suddenly unable to open files or they’re displaying an unusual filename extension it’s quite possible you’ve been hacked. Naturally, due to the infectious nature of ransomware, you’ll want to identify this network hack before it spreads further into your organization and locks up even more files.
  1. Reports of Unusual Emails Being Sent: One of the most popular methods for spreading malware is through email. Taking advantage of contact lists in email clients, malware can soon spread itself around the world with relative ease. So, if you receive reports from contacts that your organization has been sending suspicious emails from genuine addresses then it’s time to investigate. 
  1. Increased Network Traffic: The amount of traffic that your network experiences will tend to ebb and flow depending on the time of day, but it should average itself out most days. However, when you’ve been hacked then there’s a good chance that your network traffic will skyrocket as your resources are used to power other hacks such as DDoS attacks. Therefore, keeping a close eye on your network traffic and identifying any unusual activity should be an integral part of your network security. 
  1. Security Software Disabled: Hackers like to make their attacks as easy as possible, so one of their first moves upon gaining access to a network is to disable any security software in place. This allows them to operate freely and reduce the chance of getting caught. If you notice that your anti-malware software, or indeed any application has become disabled, then it needs reporting immediately to identify who has done this and why.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More

Why Are USB Flash Drives So Dangerous?

Ophtek, Safety, Security, Thumb Drive, , ,
04
Jun 2019

USB flash drives have been in use for two decades now and have proven highly popular due to their accessibility, but do you know how dangerous they can be?

Perfect for people on the move, flash drives allow people to carry data with them and, if necessary, they can be used to boot up PCs. As a result, even 20 years on from their initial launch, millions upon millions of flash drives are sold every year. However, this popularity has made them a target for hackers and allowed them to add yet another weapon to their arsenal.

Due to the debilitating effect that a rogue flash drive can have on your organization, we’re going to run through the dangers of USB flash drives.

Understanding the Danger

As we’ve already stated, USB flash drives can be used by hackers to help spread their chaotic attacks and that’s why you need to be aware of exactly how they do this. Here are some of the major ways they can utilize flash drives in their attacks:

  • Installing Malware: A USB flash drive is more than capable of holding various strains of the most dangerous malware currently available. Naturally, it only takes one of these to take down your IT infrastructure, so you need to be exceptionally careful when plugging a flash drive into your network. This threat is made much worse by the fact that flash drives are capable of automatically running their contents once plugged into a USB port, so proceeding with caution (and the advice of an IT professional) is crucial. 
  • Stealing Data: Although a flash drive may look insignificant, it’s still capable of running applications that can log keystrokes. While this may sound relatively simple, when you look a little deeper you’ll realize that this means everything you type is recorded. This includes login details, secure communications and customer data. This can either be saved back to the flash drive or transmitted to a remote server. Either way, the impact of data theft can have severe ramifications for your organization. 
  • Malicious Damage: Not every hacker is out to steal data or take over the processing power of your PC, but you can rest assured that they want to cause some form of damage to your business. And, sometimes, this can be as simple as damaging your PCs beyond all repair. Achieving this may sound dramatic, but the means are rather simple. It’s possible to buy devices such as the USB Killer which essentially fry the electrics of any PC it’s plugged into.

 

Are USB Flash Drives Safe to Use?

You’d be forgiven for thinking that flash drives are to be avoided at all costs, but the truth is that they are safe to use. However, it’s important that you always treat them as a potential security risk. Therefore, make sure that you only ever use trusted flash drives and, ideally, get these checked before installing them to your network. And, most importantly, if you find a flash drive out in the car park, make sure that it never goes anywhere near your network!

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More