5 Advantages of SIEM-as-a-Service

It’s no surprise that data рrоteсtiоn and сyberseсurity have become an essential part of every соmраny. Security Information and Event Management (SIEM) is а set of integrated log mаnаgement and mоnitоring tооls thаt help оrgаnizаtiоns detect targeted аttасks and data breасhes. 

SIEM systems aggregate аnd examine log event information from devices, infrastructure, systems, and аррliсаtiоns to detect susрiсiоus асtivity inside networks. When SIEM identifies аnоmаlоus behavior, it will generate an alert for investigation. This аrtiсle seeks to highlight some аdvаntаges of SIEM-as-a-service.

Threat Detection

SIEM-as-а-service helps to detect any threat or mаlfunсtiоn. SIEMs have а variety of features and funсtiоnаlity that includes seсurity monitoring: the basic collection, nоrmаlizаtiоn, соrrelаtiоn, and аnаlysis of logs. 

You can tune the SIEM to alert security analysts when someone violates your роliсies, whether inside or outside the соmраny, or it has identified threats.

Increased Efficiency

Additionally, SIEM has increased efficiency соmраred tо older tools. Аs SIEM systems саn соllаte event logs from multiple deviсes асrоss networks, staff members саn use these to identify роtentiаl issues. 

This саn also рrоvide an easier way of сheсking асtivity and саn speed up аnаlysis of files, аllоwing employees to саrry out tasks with ease and spend more time on other аsрeсts of their job. In this way, SIEM systems can also improve reporting processes across the business.

Management of Security Events

The other benefit of using SIEM is better handling of seсurity breасhes and events. By providing a fast resроnse to any seсurity events detected, software саn drаmаtiсаlly reduсe the imрасt of а security breach on your business.

А quick resроnse from SIEM software and IT staff саn drаstiсаlly reduсe nоt only the finаnсiаl соst of а breасh but the amount of damage caused to your business and any IT systems in рlасe. Саtсhing а breach in the early stages, or detecting a security event before it can take рlасе, соuld also prevent any damage at all. 

Ultimately, while SIEM software is nоt а brand new аdditiоn to the IT seсurity market, it remains an excellent way of рrоteсting your business and is certainly worth соnsidering when revamping cybersecurity measures.

Соmрrehensive Reроrting

Сomprehensive reporting is another advantage that you will enjoy by using SIEM-as-а-service. With many software tооls used to secure different аsрeсts of а network, it саn be а challenge to obtain comprehensive reports detailing the state of security of the entire network. 

This is because eасh software tool generates its reроrts based оn its designated task. For example, firewall seсurity logs are different from network intrusion рreventiоn system logs. 

SIEM collects and stores the logs from the different security tools centrally and generates cоmрrehensive reроrts detailing the state of the entire network, and nоt just one fragment. After all, the рurроse of SIEM is to manage your infоrmаtiоn and subsequent events.

Соst Efficiency

With a huge chunk of work рerfоrmed by SIEM, your соmраny can reduce human IT-роwer, which also reduces costs. You aren’t losing any security measures. In fact, your cybersecurity will be even more manageable and cost-effective.

Try SIEM-as-a-Service

Is SIEM the cybersecurity solution your organization is missing? If so, let us help. Contact us today for more information.

How Web Filtering Increases Productivity and Security

In 2021, remote working will not just be a temporary solution for global enterprises. It is already the new normal. 

With everyone using the internet for a wide range of daily activities and communication, are you aware of how susceptible to attacks you and the rest of your team may be? Do you have a handle on your business’ cybersecurity? Web filtering technology is a good solution to ensuring you are safely guarded online.

As malware becomes more sophisticated, it’s critical that you stay aware of threats. ESG research reports that 85% of respondents believe roaming users violate VPN policy, 78% believe remote or roaming users are most vulnerable to attack, and 46% report it is very difficult to find and recruit qualified security professionals with advanced skills.

It’s possible that, like many others today, you’ve slacked off from using the surest protection available. It’s also common to feel overwhelmed with the management side of remote teams. You may not have time to thoroughly check that your employees are operating in a secure and guarded manner.

Guard Against the Threats of Cyber Attacks

However, in this day and age, we aren’t “inside the gates” anymore. The threat of attack and security pitfalls is greater than ever. Your goals for this coming year should include updating your system’s security across all devices.

If you run any business, you likely spend most of your time online. And so will your employees. How can you ensure that they are using their time wisely, only on the websites that pertain to work? It seems nearly possible to monitor everyone’s time and output.

Web filtering stops stop threats before they reach your network or endpoints and defends you against online attacks. You could ensure that your employees are performing at their highest level.

Web Filtering Technology

Ensure security and safety with a web filtering solution. Web filtering technology prevents your browser from loading pages from certain URLs. Depending on your needs, there are various web filters available online.

A good web filter should reduce malware by 75%, provide you with sure protection both on and off networks, and reduce remediation time by 50% or more.

Another thing to consider when choosing a web filtering solution for your business is whether the web filter is cloud-based. There are many advantages to this, including agility, flexibility, ease of access for all your team, and leveraging resources on a global scale.

Productivity is also your greatest advantage with web filtering security. With a cloud solution, you can focus on your business goals and leave the troubleshooting to the IT maintenance partners. Eliminate the need for redundancy and multiple appliances, getting your work done faster and more efficiently.

The Cisco Umbrella Advantage

Cisco Umbrella is committed to delivering the most secure, reliable, and fastest internet experience to over 100 million users. They are a leading provider of network security and recursive DNS services.

This way, you can still stay connected to your teams, plus have complete confidence that no matter what device they are on, you benefit from powerful protection.

It’s time to defend your business against threats on the internet. Stop threats before they reach your network or endpoints and have 100% reassurance that you are using the best technology available.

Once you have the right systems in place, you won’t have to worry about productivity. Your workflows will be smoother and faster, your teams’ communications more reliable.

If this is your first time using web filtering technology, we’re happy to help you get set up! Contact us today to consult with our experts, and we’ll walk you through every step of the process.

Understanding Endpoint Protection

Cybersecurity threats have become complex and sophisticated. Organizations are at risk of attacks from hackers, malicious threats, and even insider attacks. According to Forbes, 70% of all threats occur at the endpoint. Endpoint protection has advanced to cushion organizations from cyberattacks and safeguard data.

Endpoint protection is the act of securing networks from all points of access. Endpoints may include mobile phones, laptops, storage devices, or any components that enter your network. By protecting the endpoints, organizations achieve control over their netEndpoint protection is the act of securing networks from all points of access. Endpoints may include mobile phones, laptops, storage devices, or any components that enter your network. By protecting the endpoints, organizations achieve control over their networks.works.

Why is Endpoint Protection Critical?

Have you ever thought about what a single breach could do to your organization? According to CNBC, the average cyberattack costs $200,000. Companies lose millions of money, with some having no option but to shut down.

Endpoint protection is critical for the following reasons:

Data Is at Risk

Data is inarguably the most essential part of any organization. Losing critical business data may cripple your organization, regardless of how large it is.

Malicious attacks target mobile devices and PCs on your networks, as they are the most vulnerable. Without adequate protection, you may lose all your critical data. Endpoint protection strengthens the overall network. It enhances data security, reduces network downtime, and safeguards your reputation.

Employee Training Isn’t Enough

The scope of the workplace has changed significantly. Organizations have had to consider remote working, meaning employees log into networks using personal devices. Remote working and BYOD policies expose your organization to the risk of cyberattacks.

Organizations should train employees on phishing emails, threats, and cybersecurity in general. However, relying on employee training to safeguard your data may increase the risk of attacks. There is no guarantee that all users will observe the guidelines put in place. Even with proper training programs in place, your organization can be at risk.

Endpoint provides cover for users who may ignore device policies or become vulnerable to attacks. It provides multiple defense layers to fend off any threats.

What Does Good Endpoint Protection Do?

Having reliable endpoint protection is imperative to robust cybersecurity. Ideally, good endpoint protection should do the following;

Offer Multi-Shield Protection

First, your endpoint protection should prevent a security breach from occurring. It should offer the following;

  • Phishing protection
  • Web threats protection
  • Identity theft protection
  • Offline protection

With endpoint protection, your business remains secure against all zero-day threats. Multi-shield protection leverages several shields to prevent attacks in all stages.

Layered User and Device Defenses

Good endpoint protection shields your network from user-vulnerabilities. In case a user does not follow all endpoint policies, your protection comes in handy. In case a user logs into your system insecurely, endpoint protection should prevent access until the threat is over.

Malware Protection

Your endpoint protection should detect, prevent, and protect your network from all forms of malware. It performs real-time monitoring to detect any phishing messages, spyware, and Trojans that may lead to security breaches. Once a threat is detected, endpoint protection should prevent it from attacking your system and chip in to offer extra protection.

Secure Architecture

Your endpoint protection provider should have a secure and reliable cloud architecture to offer support. Having a resilient architecture solves the challenges presented by distributed systems seamlessly. Endpoint protection should be scalable and have the ability to withstand stress and avoid loss of data.

Choosing Endpoint Protection

Good endpoint protection should be secure and resilient to allow robust performance. It should take little time to install, have lower boot and scan times for better performance, and use little memory

At ISG Technology, we recommend Webroot for endpoint protection. Check out this comparison of Webroot and eight competitors to see the differences in performance metrics.

And if you have more questions or want to implement endpoint protection technology, contact us!

Secure RPC: The Windows Server Vulnerability You Must Address Before February 9th

Earlier in 2020, a security bug was discovered in Microsoft Windows Systems that the US Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency order to all federal departments to address the issue. In this article, we’ll help you understand why this vulnerability warrants emergency status, the potential impact to your business and what you can do to avoid issues when February 9th rolls around.

Secure RPC Overview

In August Microsoft patched a very interesting vulnerability that would allow an attacker with a foothold on your internal network to essentially become Domain Admin with one click. This is according to security firm, Secura, which discovered the bug. All that is required is for a connection to the Domain Controller to be possible from the attacker’s viewpoint.
Since then, IT administrators have been urged to prioritize the installation of this security patch for Windows Server. In September, Microsoft reported that it is seeing the vulnerability exploited by hackers.

Fixing the Vulnerability

Microsoft is addressing the vulnerability in a phased two-part rollout. These updates address the vulnerability by modifying how Netlogon handles the usage of Netlogon secure channels.

Phase 1 – Initial Deployment Phase (Began in August 11, 2020)
In August, Microsoft released the first phase of a two-phase fix to force secure RPC with Netlogon.

Phase 2 – Enforcement Phase (Begins February 9, 2021)
The second phase activates an enforcement mode. “The DCs will now be in enforcement mode regardless of the enforcement mode registry key. This requires all Windows and non-Windows devices to use secure RPC with Netlogon secure channel or explicitly allow the account by adding an exception for the non-compliant device.” Specifically, the policy will;

  • Enforce secure RPC usage for machine accounts on Windows-based devices.
  • Enforce secure RPC usage for trust accounts.
  • Enforce secure RPC usage for all Windows and non-Windows DCs.

How Can This Impact My Business?

Devices that are non-compliant with secure RPC will not be able to connect to the domain. This will include any non-supported Microsoft operating systems including Server 2003, 2008, 2008r2, W7.

This will also include Non-Windows devices that connect to Microsoft Active Directory Domain Services such as Storage Area Network/Network Attached Storage devices, Linux Operating Systems and non-Windows based products that do not support connecting via Secured RPC connection.

Devices that cannot connect to a patched Microsoft Active Directory Domain Controller will not be able to authenticate with or share resources with any Microsoft Active Directory domain that has been patched.

Examples could include the inability to connect to a file server or get security settings from the domain or login network devices such as switches and routers that use Microsoft Active Directory Domain controllers for AAA/Radius Authentication.

What Should I Do?

The critical nature of this vulnerability warrants that action be taken. Here are the four steps to take:

Assess the Situation
Review the information within this article and the resources listed below to fully understand the issue.

Identify & Plan
Identify the devices that are not compliant within your environment and develop a plan.

Address the Issues
Replace non-compliant devices or follow the Microsoft options to allow non-secure RPC.

Seek Advice
If you need any assistance, contact us and we’ll help ensure you’re covered.

Resources

DHS Emergency Directive
Mitigate Netlogon Elevation of Privilege Vulnerability from August 2020 Patch Tuesday

Microsoft Resources
How to manage the changes in Netlogon secure channel connections
Netlogon Elevation of Privilege Vulnerability

Other Resources / Overviews
Admins urged to patch Windows Server immediately to close vulnerability
Zerologon (CVE-2020-1472): Critical Active Directory Vulnerability

Overcoming Alert Fatigue

The major challenge in cybersecurity protection isn’t the lack of capable tools. It’s actually the human element. Cybersecurity teams experience alert fatigue, which hinders their ability to deal with threats.

Modern threat protection solutions generate many alerts, but not all received alerts pose threats. According to a study by McAfee, over 40% of IT experts say the majority of alerts lack actionable insights. Differentiating between the real threats and false ones can be a challenge.

The overwhelming number of alerts cause ‘alert fatigue,’ something that many IT personnel find hard to cope with. This is why many alerts end up being ignored.

Why Do IT Security Professionals Ignore Alerts?

With enterprises recording over 2 billion transactions monthly, lots of unnecessary alerts occur in the process. This huge number of alerts tend to be overwhelming. Due to a large number of false positives, 31.9% of IT experts said that the high frequency of alerts lead to some of them being ignored, according to McAfee.

While many of the alerts may be benign, ignoring them can be detrimental to any business. A 2014 data breach at Target cost $252 million. The IT personnel admitted to having seen the alert, but they ignored it because of the large number of false alerts.

How to Overcome Alert Fatigue

In a 2020 survey, 99% of IT professionals complained that high volumes of alerts made work harder. These alarming statistics show that despite having high-end solutions, your IT environment isn’t secure yet. As long security professionals experience alert fatigue, they’ll always ignore some alerts.

Successful cyber attacks and data breaches can lead to a diminished brand reputation, loss of customers, and huge financial losses. Overcoming alert fatigue is an important aspect of your security. Here are a few ways to do it.

Automating the Security Stack

To effectively minimize the risk of ignored alerts, you should look for automated solutions. They provide real-time analysis of security threats and help differentiate between high- and low-risk alerts. With automated solutions, it will be easier to detect and solve threats in real-time.

66% of teams that use high levels of automation in their IT resolve threats the same day. Those with low levels of automation find it hard to deal with security threats. 94% of IT teams say automation is the best method when faced with high-frequency alerts. 

Cloud Monitoring

Since most of the transactions that send alerts are in the cloud, there is a need for real-time cloud monitoring. As more businesses adopt cloud services and applications, more hackers will seek to occupy that gap.

With cloud monitoring, it’s easier to detect threats that might lead to attacks. You can easily detect the source of the attack, contain the damage, and prepare for similar attacks in the future.

Follow a Security Framework

A cybersecurity framework acts as the blueprint to a safe business. Depending on your business, you should have a security framework for data protection and compliance. At ISG, we follow the NIST Security Framework, which consists of 5 elements:

  • Identification

The first step should be to identify the potential risk facing your business. This involves classifying risks from high to low.

  • Detection

You should always monitor your systems so you can detect any vulnerabilities and threats.

  • Protection

You need to invest in the right protective technologies. This includes system patching and employee training.

  • Response

How do you respond to threats? Ideally, you should have a plan to evaluate and mitigate security breaches and a way to communicate with customers and staff.

  • Recovery

After an event, you’ll need to build your business back up with a recovery plan, including contingency plans.

Working With an IT Managed Service Provider to Overcome Alert Fatigue

Today’s attackers are smart, capable, and adaptable. That’s why, even with high-end solutions, detecting threats is a challenge. 

There are many tools that should be a part of your multi-layered cybersecurity approach, but they aren’t always enough on their own. You shouldn’t neglect the human element of cybersecurity.

If you’re concerned about alert fatigue with your IT team, or your cybersecurity posture in general, consider consulting with our IT professionals. We can help you identify where your systems and security can be strengthened and how to solve any IT problems you may be facing, including alert fatigue.

The Role of Firewalls in Defending Your Data

A firewall is an essential part of your cybersecurity. It serves an integral part in your organization’s defense against threats and cyber attacks.

A firewall protects many vulnerable programs on your systems. It forms one of the crucial layers in a company’s layered security strategy. If you want a layered security architecture, you need a stable firewall.

Besides the firewall, your layered security should also include the following;

  • Regular assessments
  • Endpoint protection
  • Employee training and awareness
  • Web and email filtering
  • User access control
  • Patch management
  • Data backups

These elements constitute multi-layer cybersecurity. With these multiple security layers, your risk of a security breach is minimized.

What is a Firewall?

A firewall is a security firmware or software that forms a barrier between networks to allow and block certain traffic. It inspects traffic so that it can block threats that might harm your systems.

Firewalls are designed to authorize low-risk traffic that might not harm your network. If it detects harmful traffic, either from a virus or a hacker trying to gain entry, it blocks it immediately.

Just like a guard in your gates, a firewall prevents what’s coming in and going out. It uses pre-set commands to filter suspicious and unsecured sources. It guards traffic from a computer’s entry point.

Why is a Firewall Important?

It is vital to have a stable and reliable firewall in your company’s network. It plays a crucial role in protecting it from intruders. Ideally, it acts as a guard to your perimeter, performing the following tasks:

Preventing Hacks

With businesses taking a digital approach, hacking activities continue to rise significantly. A firewall defends you from unauthorized connections, potentially from hackers. Firewalls have become an essential part of any company that wants to protect its data. It can deter a hacker from accessing your network entirely.

Monitoring Network Traffic

A firewall monitors traffic at all times to safeguard your network. Your IT team can rely on the information gained from continuous monitoring to create advanced security layers.

Promoting Privacy

Since firewalls proactively keep your network safe, they promote brand reputation. Clients know they can trust your company with their data since all systems are secure and inaccessible by hackers. With a strong firewall, no data can be stolen whatsoever.

Different Types of Firewalls

There are multiple types of firewalls that help block malicious traffic, including proxy service, stateful inspection, and packet filtering. These firewalls limit network entry based on different criteria. Each has their own advantages and disadvantages, which is why firewall technology has produced something more well-rounded: next-generation firewalls.

Next-Generation Firewalls

A next-generation firewall (NGFW) combines all the strengths of past firewall technologies into one tool. This bundle of security measures includes elements such as:

  • Antivirus
  • Intrusion prevention
  • Encrypted traffic inspection
  • Deep packet inspection

NGFWs are more advanced than traditional firewalls and help forge your cybersecurity. They move beyond port/protocol, blocking to a more advanced protection system.

The Benefits of an NGFW  

A NGFW is a threat-focused approach that provides advanced risk detection. It’s the gold standard of firewall protection. If you have not implemented an NGFW, then you are doing your business a disservice.

Advanced Policy Control

Thanks to deep packet inspection, next-generation firewalls enable the use of internet applications that allow more productivity while blocking less desirable applications. Unlike the traditional firewalls that only allow or block traffic, NGFWs deny access to all applications considered insecure.

Content and User Identification

NGFWs monitor and scan content in real-time, so no data can leak. This includes filtering and files and threat identification. Also, these firewalls easily detect specific users responsible for traffic that poses threats.

Firewalls Reinforce a Layered Security Approach

Cybersecurty is crucial in today’s world. Threats are constantly evolving, and defenses must continuously improve to stay ahead. 

Securing your network should be a top priority for all businesses. The best way to remain secure is to implement a layered approach to your cybersecurity

At ISG Technology, we are committed to helping businesses improve their network security. Get in touch with us today to consult with our experts.

ISG CEO, Ben Foster, Named to Family Business CEOs to Watch 2020

ISG Technology CEO, Ben Foster, was recently named to the Family Business CEOs to Watch 2020, a publication that recognizes family and non-family chief executives who are leading their businesses with a view toward long-term success.

According to Family Business Magazine, a family business chief executive must have the talent to steer the business to growth and profitability while maintaining family engagement and harmony, ideally promoting good governance to help smooth the way. Family business CEOs in 2020 have had to emphasize resilience in communicating with a stakeholder group that includes family members not employed in the family company.

Here’s what they wrote…

“The Twin Valley family of companies operates in two ultra-competitive spaces, telecommunications (voice/internet/video and business services) via the Twin Valley companies in north central Kansas, and IT technology/managed services via ISG Technology, operating in Kansas, Missouri and Oklahoma,” notes Scott Leitzel, chief operating officer at Twin Valley and human resources executive at ISG Technology.

“In order to remain competitive in these spaces, a CEO must be forward-thinking, bold and willing to push him/herself and team outside traditional comfort zones, time and time again,” says Leitzel, who has reported directly to Foster for 10 years. “Ben operates in this manner on a consistent basis, and in partnership with previous generations has led [the business] to growth that would not otherwise have occurred.”

Foster joined Twin Valley Telephone in 2004 as vice president of operations. He rose to chief operating officer and was named CEO in 2014. Prior to Twin Valley he was the director of consumer support centers and chief of staff at SBC, now AT&T.

At Twin Valley Telephone, he managed the integration and subsequent upgrade of 13 exchanges and 6,000 customers, which tripled the size of the company. He brought in the company’s first two non-family executives and led the acquisition of ISG Technology as a diversification strategy.

Five of the seven fourth-generation members work in the business, Leitzel notes. “This presents a unique responsibility in which Ben serves as CEO of the Twin Valley family of companies while representing the collective ownership and heritage of the company, which dates to 1947.

“Ben has done this while serving on multiple boards, including currently serving as chairman of KsFiberNet and ESPi.”

“I am passionate about being a positive steward of the business that we inherited from previous generations,” Foster says. “I do this by living by the values that we were taught and talking about those values with our team. I wish to leave the next generation a family asset that is more resilient and larger than what we received. Improving ownership cohesion, hiring professional board members and mentoring key executives with expertise that goes beyond my own are three ways of ensuring that my skillset improves and is never the limiting factor to my family achieving our goals for the company.

“Family businesses are important to the economy and broader society because we put the heart behind the capital, as well as a longer-term horizon that helps solve bigger problems. I find tremendous purpose in being a small part of the positive impact our companies make.”

ISG Technology Awarded “Oklahoma’s Best IT Firm 2020”

ISG Technology is proud to announce that it has been awarded Oklahoma’s Best IT Firm by The Oklahoma Journal Record newspaper, The Journal Record. The award was featured in the publication’s 2020 Reader Ranking Awards, which compiles the best organizations across 84 categories including technology, finance/accounting/insurance, health care, legal services, as well as many others. 

To obtain the results, readers were notified of the ballot through direct emails and print advertisements linking to the ballot and were encouraged to share the link with their colleagues. More than 1,400 businesses were nominated during the open nomination process from January 20th to February 28th. The ballot was open from March 2nd through April 20th and garnered more than 58,000 votes from business professionals across Oklahoma. The results were tallied to come up with the list of award-winning businesses. 

“We’re honored to be a part of such a great list of businesses here in the Oklahoma City area,” said Walter Hirsekorn, General Manager of ISG’s South Region. “Winning this award this year is especially meaningful as I know our team has worked tirelessly to help clients through the business and technology challenges created by the pandemic.”

ISG Technology manages the IT systems of business in Oklahoma City and throughout the United States. 2020 has been a challenging year for business across the globe, and managed services providers (MSPs) like ISG Technology have been essential in keeping businesses operational during stay at home orders, and a number business disruptions caused by the spread of COVID-19. 

For more information on The Journal Record’s 2020 Reader Ranking Awards, visit The Journal Records website. For more information on ISG Technology, please visit www.isgtech.com or contact them at (877) 334-4474.

ISG Technology and Twin Valley Communications Aligning Services to Help Businesses Adapt to Pandemic

Twin Valley Management, an Overland Park, Kansas-based holding company for Twin Valley and ISG Technology, is announcing its plan to improve the technological capabilities of organizations in underserved areas of North Central Kansas. Twin Valley Communications is among the largest privately-held telecommunications companies in Kansas and ISG Technology is a leader in IT cloud & managed services in Kansas, Oklahoma, and Missouri.

This comes on the heels of Twin Valley being awarded $1.3 million of CARES Act and Connectivity Emergency Response grant dollars. Additional investment by Twin Valley of almost $900,000 has been committed to deploy a combination of fiber to the premise & fixed wireless broadband services. Twin Valley Communications will also utilize the CBRS spectrum that it won at auction.

President and CEO of ISG and Twin Valley, Ben Foster stated, “There are so many businesses, schools, hospitals and local governments in these areas that simply don’t have access to the broadband needed to enable things like remote work, virtual healthcare and distance learning. We’re trying to fix that.”

Foster continued to talk about their strategy to combine Twin Valley’s broadband services with ISG’s suite of managed IT services and its data center offering to provide a complete technology solution for organizations in rural areas. “Unfortunately, many businesses spend countless hours stuck in the middle of a blame game when issues arise. The ISP points the finger at the IT provider and vice versa. When we deliver bundled connectivity and IT, the client knows who to call. We see a massive opportunity to create new value in the fiber-optic broadband, managed IT & cloud services space.”

The companies are focused on helping businesses in these areas adapt to the changing work environment the pandemic has created. Bringing together broadband and managed IT services allows companies to stay connected and focus on their core business.

In addition to providing Gigabit service to businesses and households in cities that are covered by the 15-mile fiber optic cable build-out – hundreds of households will have fixed wireless broadband speeds up to 100 megabits/second. This infrastructure will pass through multiple cities and will provide the foundation for future investment and even faster connections.

10 Simple Ways to Boost End User Cybersecurity

October is National Cybersecurity Awareness Month. It’s a great opportunity to review the basics of cybersecurity with your employees. 

Cybersecurity is a complex and ever-evolving field. To many people, it can seem daunting and confusing. Fortunately, there are many simple ways to boost cybersecurity on a user level. 

We’ve collected ten of the most simple and effective ways to boost your cybersecurity. Sharing these simple security measures with your team will help boost the security of your business by minimizing the risk of human error.

Strengthen Your Passwords

Your passwords are the first barrier protecting your confidential information from hackers, so practice using strong ones. Get creative with the passwords you choose by replacing letters with punctuations marks, deliberately misspelling words, and using long passphrases. The greater mixture of letters, numbers, and special characters you use, the harder it is for hackers to crack.

You should also use a different password for each account you have. The more you reuse passwords, the weaker your security will be. Proofpoint offers great training programs to help employees understand and implement effective password security.

Use A Password Manager

Passwords that are easy to remember are often easier to hack. A password manager can be very helpful in keeping all your passwords memorized so that you don’t have to. It can even suggest strong passwords for you!

There are lots of password manager platforms and services available. To get started, here is a roundup of some of the best password managers out there.

Avoid Oversharing On Social Media

Even simple information that you post on social media, like your favorite coffee shop, can be used against you. Names, addresses, and even vacation plans can give criminals the information they need to target you. If someone posts personal information without your consent, ask them to remove it promptly.

Another dangerous aspect of social media is location sharing services that allow people to see where you are at any time. Always disable these services in your apps, and be mindful of what someone can learn about you based on your social media.

Update Your Software

Your software is important and is always being improved, whether on your computer or mobile devices. Don’t delay recommended updates! They contain important patches to fix security issues. Not updating software leaves you vulnerable to cyberattacks. 

Secure Your Network

Your personal network is rarely going to be as secure as the one you use when you’re at work. It’s essential that you’re securing your network as much as possible. Get in touch with your network provider and ask if there’s anything you can do in order to strengthen and protect your network from harm.

Use Multi-Factor Authentication

Multi-factor authentication requires multiple steps to access an account. Often, this means you need a password and authentication via your phone. It can help take your security to the next level.

Multi-factor authentication has definitely helped many people and organizations strengthen their security. Many businesses, such as banks, now require it.

Watch For Phishing Emails

Many cyber criminals send fraudulent emails that imitate those from well-respected sites. These phishing attempts try to get you to reveal personal information by clicking on links, opening attachments, and responding to requests. If you aren’t sure if the message is truly from the company (or individual) it expresses to represent, call the company directly and ask.

ISG Technology partners with Proofpoint for security awareness training. They have many resources available to help teams identify phishing emails.

Check Emails For Suspicious Hyperlinks

One aspect of phishing prevention is to always double-check links in emails, especially those in unexpected messages. Always be wary of what you click on. Before clicking on a link in an email, hover over the link to see where it directs to. If it looks suspicious, don’t click.

Install Antivirus Software

The antivirus software that you have on your devices is going to add that extra layer of security and highlight any potential dangers before you encounter them. They can scan your devices routinely and alert you to any suspicious activity or threats when they occur. 

It’s a good idea to choose an antivirus that is both effective and lightweight. That way, it will be able to combat modern threats without bogging down your computer as it scans. For this aspect of security, ISG Technology recommends Webroot.

Be Deliberate About App Privileges

Apps on your mobile device often ask for permission to access aspects of your data, such as the device’s location. But you shouldn’t grant the permissions without considering it first. If the request doesn’t make sense, or is for more information that seems reasonable, don’t grant it. This is especially true with less reputable apps.

As the rate of cybercrime is rising, your personal cybersecurity is something you should always be proactive about. These ten tools and habits will prevent the loss of your personal data, as well as minimize the risk of a breach for your company.