Resources Archives - ISG Technology

Why cloud computing is safe

August 8, 2018/0 Comments/in Blog, Cloud Hosting, Compute, Infrastructure, Professional Services, Resources, Security, Services, Storage /by ISG Tech

Cloud computing has been gaining popularity in the business space over the last couple years. Organizations are abandoning server-based data centers in favor of a third-party-provided solutions. Yet as more data is stored digitally, the danger of hacking grows. Companies are losing significant income to data breaches, and cybercriminals are developing new, sophisticated ways to steal data.

So why are companies taking their information to the cloud? Many executives want to push their businesses to the cloud but don’t fully understand how it works. As such, they may be wary over the idea of removing confidential information from complete corporate oversight. However, the cloud is not as penetrable as its name might imply.

Three factors driving cloud safety
According to Forbes, there are three principal factors helping to keep data secure when it is in a cloud platform. The first is redundancy. Losing data can be almost as harmful as having it stolen. When a server fails or a hacker gains access to a corporate network and deletes or attempts to ransom vital information, companies can lose months of productivity. Most cloud networks, however, typically keep data in at least three locations.

This means that lost data at one location, such as data loss caused by a server failure, will not have the disastrous impact that it could in an organization relying on an on-premise data center. By keep copies of each file, cloud solutions are making sure mission-critical data is accessible until the user no longer wants it.

The second factor is the safe sharing policy. Anyone who has ever used the popular Google Docs knows how file sharing works. Rather than making a copy, the user must enter the email address of anyone they want to see the file. These extra users can’t share the file on their own (unless given express permission), they simply have access to the information. This is how safe sharing works. It prevents any unauthorized copies from being created or distributed. Users have access to their own data and can control exactly who sees it.

The last factor driving cloud safety is encryption. Provided a user keeps track of their password, it is very difficult for a hacker to gain access to the files. They are being stored either entirely in the cloud or at a secure, remote facility in an unknown location. Since the user’s connection to this information is encrypted, following it to gain access would be difficult, if not impossible for a human hacker.

“Cybersecurity today is more about controlling access than managing data storage.”

It’s all about access
As TechTarget pointed out, cybersecurity today is more about controlling access than managing data storage. When hackers breach data, they typically do so because they have access to sensitive information. This can be a password or even a corporate email address. Cybercriminals infiltrate and steal information based on the access they’ve gained, typically from an unknowing authorized user.

Cloud solutions help monitor this access, keeping secure data under control. The providers offering these platforms have the expertise and the resources to keep cybersecurity evolving alongside the threats. In most cases, they have more resources than the client companies using their solutions.

The cybersecurity arms race
One popular cloud vendor is Microsoft. Each year the company invests over $1 billion into cybersecurity initiatives for its Azure platform. The money, explained Azure Government CISO Matthew Rathbun in an interview with TechRepublic, isn’t just about maintenance, it is about innovation:

“Ninety percent of my threat landscape starts with a human, either maliciously or inadvertently, making a mistake that somehow compromises security,” said Rathbun. “In an ideal state, we’re going eventually end up in a world where there’ll be zero human touch to an Azure production environment.”

Overseen by talented specialists with ample resources, cloud solutions are a safe form of data protection in today’s digital business space.

Google joins the empowered edge with Cloud IoT Edge

July 31, 2018/0 Comments/in Blog, Cloud Hosting, Infrastructure, Networking, Professional Services, Resources, Services /by ISG Tech

The internet of things has been a rapidly growing segment of technology over the past decade. Ever since Apple took made the smartphone a consumer success with its first iPhone, users have grown comfortable carrying technology in their hands and pockets. This IoT-filled world has created new opportunities and challenges.

According to IDC, connected devices will generate over 40 trillion gigabytes of data by 2025. This is too much of a good thing, especially if IoT devices remain only collectors and not processors. To help speed up data collection, Google has announced its Cloud IoT Edge platform, as well as a new hardware chip called the Edge tensor processing unit.

What are Google’s new announcements?
Google described its decision to move forward on the Cloud IoT Edge platform as “bringing machine learning to the edge.” Essentially, current edge devices, such as drones and sensors currently transmit most of their data collection back for internal processing. This procedure uses a lot of bandwidth and reduces the speed at which decisions can be drawn from the data. It also places a lot of stress on constant network connectivity, as any downtime can result in lost information.

Google’s new software solution would allow this data processing to happen right at the data source. It will also enable advanced technology, such as machine learning and artificial intelligence, to operate on these edge devices. Enter the Edge TPU: This chip is designed to maximize performance per watt. According to Google, the Edge TPU can run TensorFlow Lite machine learning models at the edge, accelerating the “learning” process and making software more efficient faster.

Google is seen as one of the big three when it comes to cloud infrastructure solutions.

How does this compare with the greater market?
In this announcement, Google is following in the path of Microsoft. Released globally in July, Azure IoT Edge accomplished many of the same tasks that the Cloud IoT Edge solution intends to. The two aim to empower edge devices with greater machine learning performance and reduce the amount of data that must be transmitted to be understood.

However, as Microsoft has been in the hardware space much longer than Google, no TPU chip needed to accompany the Azure IoT Edge release. It is possible that Google may gain an advantage by releasing hardware designed to optimize its new platform performance.

Amazon’s AWS Greengrass also brings machine learning capabilities to IoT devices. However, unlike the other two, this platform has existed for a while and seen modular updates and improvements (rather than a dedicated new release).

The presence of all three cloud platform giants in edge space signifies a shift to at-location data processing. Cloud networks have already been enjoying success for their heightened security features and intuitive resource sharing. As these networks become more common, it has yet to be fully seen how Microsoft, Amazon and Google deal with the increased vulnerabilities of many edge devices. However, with all three organizations making a sizeable effort to enter this market space, businesses should prepare to unlock the full potential of their edge devices and examine how this technology will affect workflows and productivity.

Why companies must change their infrastructure for optimal data visualization

July 26, 2018/0 Comments/in Blog, Compute, Continuity, Infrastructure, Professional Services, Resources, Services, Storage /by ISG Tech

The digital revolution has brought a host of new opportunity and challenges for enterprises in every sector of business. While some organizations have embraced the wave of change and made efforts to be at its forefront, others have held back. These institutions may not have sufficient staff to implement the changes or may be waiting for a proven added-value proposition.

In other words: No technology upgrades until the innovation is proven useful. There is some wisdom in this caution. Several reports have noticed that productivity and efficiency are not rising at expected levels alongside this technology boom. However, as Project Syndicate noted, this lag may be a case of outgrowing the traditional productivity model, meaning that not every employee action is measured in the old system.

However, there is another reason to explain why more technology does not automatically equal greater efficiency and higher profits. If a company buys some new software, it will see a minor boost. However, it will reap the full rewards only if staff properly learn to use said platforms.

Part of this problem stems from the misunderstanding that technology can only improve current work processes. This is not true. When looking at a basic enterprise operation like data visualization, technology has created an entirely new workflow.

Examining the traditional business model
In the traditional business model, all data visualization was manual. Employees would gather data from various endpoints and then input it into a visual model. Common examples of this process included pie charts and bar graphs. The employee would then present the data to the executive, who would use it to make information-based decisions.

While acceptable, this process is far from optimized. Most data had to be generated in spreadsheets before it was collected, using formulas made by staff. Collecting and framing the information is a time-consuming process that will absorb at least one individual. As employees are involved at every step of this workflow, there is a potential for human error.

The time involved prevented companies from acting on real time information. In the interim, intuition and "gut feeling" were used as substitutes for data-backed decisions. The people involved raised the level of risk that the data in question may be inaccurate or misleading.

Charts work because the human mind can understand pictures so much faster than words.

Unlocking data analytics
Of course, with the arrival of the internet of things, companies have a lot more data collection at their disposal. Connected devices have provided a whole new network of information. This gold mine, also known as big data, has one downside: There is too much of it. A human cannot hope to categorize and analyze the information in any acceptable timeframe.

Enter data analytics. Using advanced technology like machine learning, companies can create and implement this software to study their data, creating automatic visualizations based on trends and prevalent patterns. According to Fingent, these software solutions employ mining algorithms to filter out irrelevant information, focusing instead on only what is important.

However, companies cannot simply go from a traditional system to a fully fledged data analytics solution for one reason: data segmentation. Many enterprises divide their information based on different departments and specializations. Each group works internally, communicating primarily with itself. While this method is helpful for organization, it greatly impedes data analytics potential.

If companies have siloed their data, the program will have to reach into every source, work with every relevant software and bypass every network design. In short, it will have to work harder to communicate. While modern data analytics solutions are "smart," they cannot navigate barriers like this easily. They are designed to optimally read only the information that is readily available.

For organizations to fully capitalize on the potential of internal data analytics, infrastructure overhaul is needed. Departments – or at least their data – must be able to freely communicate with one another. This process entails implementing a common software solution that is in use across the entire company.

The good news is that many modern solutions fit this need. Solutions like cloud platforms store relevant data in accessible locations and train employees to not segment their work. By creating an infrastructure that is open to the data analytics program, organizations can start to act on information, rather than relying solely on their gut.

Data analytics can give companies real time answers to their challenges.

5 things every employee in your company needs to know about phishing attacks

July 19, 2018/in Blog, Industries, Resources, Security /by ISG Tech

First things first, just to make sure we’re all on the same page.

Phishing is a type of cybersecurity attack. Someone impersonates a legitimate entity to try to persuade the recipient to hand over sensitive information. Most phishing happens via email.

Compared to other forms of hacking, phishing is quite easy to execute. In fact, the first “phishers” used AOL in the 1990s to get information from unsuspecting AOL users. These attacks were painfully simple. But here’s the kicker. They didn’t differ much from phishing attacks of today!

The attackers simply pretended to be AOL employees. Even if only a few victims believed their ruse, the attack was worth it. That’s because if even one person falls for a phishing tactic, the results can be devastating.

Here are the fundamental things all your employees need to know to protect your company from phishing attacks.

1. Phishing can happen anywhere

While most people think of phishing as occurring exclusively via email, it can also happen on social media sites, in messaging apps, and through any method of online communication.

If your employees are communicating anywhere online, they need to make sure they really know who is at the other end.

2. Phishing can get complex

Some phishing attempts are just hackers sending out emails to a random group of people and hoping one of them will bite. But an increasing number of phishing attacks are getting more sophisticated.

In some cases, hackers will spend months or more building a relationship with the target through false social media profiles and frequent communications. This combines catfishing and phishing, forming a dangerous combination.

After a while, the target grows comfortable with the hacker and trusts them enough to share personal information.

3. Phishing costs businesses a lot

Some sources estimate that phishing attacks may cost American businesses up to $500 million per year, with thousands of businesses targeted and more personal consumers attacked at home.

That figure comes only from the attacks that were investigated by the FBI over a period of three years, so it is likely that the total cost to US businesses is more than that.

4. There are multiple types of phishing attacks

There are a few major types of phishing attacks. The most basic is when attackers email a random group of people and hope that a few of them will fall prey to the scam.

“Spear phishing” is a targeted attack that centers on one organization or a group of individuals. Attackers pretend to be someone from within the organization—a client or vendor—in order to infiltrate and get access to sensitive information. Some spear phishers are able to hack into organizational communication systems so the messages really do appear to be coming from the inside.

“Whaling” is when a spear phisher goes after a huge target.

5. Here’s how you can recognize phishing

There are many trademarks of a phishing attack. Educating employees about these signs can save your business a whole lot of money. Some of these may seem a bit obvious, but to those who are not as savvy, it’s important information that could stop an attack.

Phishing emails often come from addresses that seem like they could be legit. But if you examine the address more closely you’ll notice that it’s a little off. Perhaps it’s one letter off from the company’s actual name or the email address doesn’t follow the convention of other people you have met from that organization. You will find a similar situation with URLs in phishing messages.

Many phishing emails have bad spelling and improper grammar, typically due to poor translations. If it was coming from a legitimate organization, typos are possible, but not usually at the magnitude seen in phishing emails.

Finally, if a message seems too good to be true, it probably is!

Use these tips to avoid harmful phishing attacks. For more information on how to protect your business, be sure to contact your IT support partner.

Should companies embrace Microsoft’s Azure IoT Edge?

July 5, 2018/0 Comments/in Blog, Cloud Hosting, Communications, Compute, Infrastructure, Networking, Professional Services, Resources, Security, Services /by ISG Tech

As of late June 2018, one of Microsoft's newest software platforms, Azure IoT Edge, is generally available. This means that commercial enterprises and independent consumers now have access to it and, thanks to Microsoft's decision to take the platform open source, can begin modifying the technology to fit specific needs.

Every innovation brings new opportunity and unforeseen challenges, and there is no reason to suspect that Azure IoT Edge will be any different. Even programs created by technology industry leaders like Microsoft have their potential disadvantages.

What exactly is Azure IoT Edge?
Simply put, Azure IoT Edge represents Microsoft's plan to move data analytics from processing centers to internet of things enabled devices. This sophisticated edge computing technology can equip IoT hardware with cognitive computing technologies such as machine learning and computer vision. It will also free up enormous bandwidth by moving the data processing location to the device and allow IoT devices to perform more sophisticated tasks without constant human monitoring.

According to Microsoft, there are three primary components at play:

A cloud-based interface will allow the user to remotely manage and oversee any and all Azure IoT Edge devices.
IoT Edge runtime operates on every IoT Edge device and controls the modules deployed to each piece of IoT hardware.
Every IoT Edge module is a container that operates on Azure services, third-party software or a user's personalized code. The modules are dispersed to IoT Edge machines and locally operate on said hardware.

Overall, Azure IoT Edge represents a significant step forward in cloud computing and IoT operations, empowering devices with functionality that wasn't before possible.

Devices like drones will be able to carry out more sophisticated tasks using Azure IoT Edge.

The cybersecurity concerns of Azure IoT Edge
It is worth remembering that IoT hardware has a long and complicated history with cybersecurity standards. Considering the bulk of IoT technology adoption has been driven by consumer, rather than enterprise, products – issues like security and privacy were placed second to interface design and price point.

Research firm Gartner found that 20 percent of organizations had already reported at least one IoT-centered data breach within the three years leading up to 2018. This risk has led to IoT security spending that is expected to cost $1.5 billion globally in 2018. Some companies scrambling to make their IoT hardware more secure may want to leave this problem as a priority over incorporating Microsoft's newest software platform.

Another potential issue is Microsoft's decision to make the platform open source. The original code is public knowledge and now available to all to modify for personal use. While this flexibility will greatly help the product's user base expand, open source programs have not historically been the most secure from cybercriminals.

Many ecommerce websites ran on the Magento platform, an open source solution that became the target of a brute force password attack in 2018, which ultimately proved successful. The resulting data breach led to thousands of compromised accounts and stolen credit information.

A Black Duck Software report tracked open source programs as they have become more widespread. While the overall quality of open source code is improving, the study found that many organizations do not properly monitor and protect the code once it has been put in place, leaving it vulnerable to exploitation from outside sources.

"Microsoft annually invests $1 billion in cybersecurity research."

The Microsoft advantage
However, Microsoft is arguably in position to address the major security concerns with its Azure IoT Edge platform. The company invests over $1 billion in cybersecurity research each year. According to Azure Government CISO Matthew Rathbun, a lot of this money is spent with Azure in mind:

"Ninety percent of my threat landscape starts with a human, either maliciously or inadvertently, making a mistake that somehow compromises security," Rathbun told TechRepublic. "In an ideal state, we're going eventually end up in a world where there'll be zero human touch to an Azure production environment."

Azure IoT Edge represents a bold step forward in empowering IoT technology and improving automated productivity. While there are risks associated with every innovation, Microsoft remains committed to staying at the forefront and protecting its platforms. Companies should be willing to invest in Azure IoT Edge while remaining vigilant about the possible risks.

5 reasons why you need a backup service, even if you’re using Office 365

Protection against internal accidents and threats

Protection against external security threats

Retention and recovery management

Legal and compliance obligations

Managing the migration process

Client Testimonial: Freddy’s Frozen Custard

Technology partnership helps fuel the growth of Freddy’s Frozen Custard

THE CHALLENGE

THE SOLUTION

RESULTS

Webinar: Going Beyond Backup To Ensure Zero Downtime

Webinar: Everything You Need to Know About Backup for Office 365

1. Phishing can happen anywhere

2. Phishing can get complex

3. Phishing costs businesses a lot

4. There are multiple types of phishing attacks

5. Here’s how you can recognize phishing