Recent Blog Posts

Let?s examine the many variables associated with voice authentication to see how much promise it actually shows. First and Foremost, How Does Voice Authentication Work? It may help to specify how authentication in general works, just so we can get a full appreciation of how voice authentication would function. In any variety of authentication measures, the user provides some kind of proof of identity. If that proof matches the reference that the security system is comparing it to, the user is given access. In terms of voice authentication, the user?s voiceprint of a specific phrase would be compared to the stored copy of what that user?s voiceprint should resemble. So, if your passphrase was ?The rain in Spain falls mainly over the lazy dog,? the system would check for the correct phrase, but also check that the tones and inflections present in the user?s voice matched the patterns in that user?s voiceprint. As a result, voice authentication is typically classified under the ?something you are? subset of multi-factor authentication along with retinal scans, facial recognition, or palm scans. How Secure is Voice Authentication? Like any other authentication measure, there are already countless stories of voice recognition being bamboozled, meaning that more work is needed to keep your solutions secured. Hackers have already been able to fool voice authentication using recorded snippets, and have hidden malicious commands in white noise to gain control over voice-activated devices. Having said that, it is important that we also address that any form of identity authentication is inherently less secure when used exclusively, rather than as part of a multi-factor authentication strategy. Furthermore, voice authentication is now being developed with two fraud-fighting technologies built-in. The first, liveness detection, works to differentiate between a live voice and a recorded one. The second, continuous authentication, does what its name suggests and verifies the user throughout the time they are active. That way, an attacker that just switches back to themselves after using a recorded voice to log in would be caught regardless. Best Practices Concerning Voice Authentication We?ve referenced a few already, but here are a few essential functions that any voice-based authentication system should involve: Multi-Factor Authentication: We really can?t encourage the use of MFA enough. The more proof that a user has to provide to prove their identity, the less likely it is that an unauthorized individual will have what they need to access your resources. Pairing a PIN or password/passphrase with a secondary proof, like voice authentication, makes it much harder for this kind of access to be secured. This primary form of authentication should need to be reconfirmed regularly. Secure Storage: On your end, you need to keep your saved records of all authentication data extremely secure? including the biometric data. Otherwise, MFA could potentially be fooled and the whole system would topple. Obtain Consent: You also need proof that your users have agreed to use biometric data as an authentication measure, for privacy and legal reasons alike. So, would you consider implementing voice authentication as an option in your company?s protections?specifically as part of a multi-factor authentication requirement? Are you concerned about the protections you currently have in place? Give us a call, we?ll help ensure that your business is properly secured. Call (603) 889-0800 today.

To begin, let?s examine each of these two options to determine how they differ from one another. ?VPN? is Used to Describe More Than One Thing A large amount of the confusion surrounding VPNs is that the term refers to related concepts that are used very differently in common practice. These concepts are summed up as so many things in IT are, with the delineation appearing between ?public? and ?private? VPNs. What Does a Public VPN Do? A public VPN allows a user to access an ?anonymous? (more on this in a moment) network that they can use to browse. This kind of VPN is commonly used to sidestep geofiltering/geoblocking, or the process of blocking or allowing certain content based on the  user?s location, particularly where streaming services are involved. For example, if you are traveling abroad, you might not be able to access the same movies on Netflix. A VPN lets you access Netflix as if you were in some other country. Having said all this, this form of VPN is prone to numerous problems, primarily because many have been identified as a VPN and are therefore blocked? pretty much defeating the purpose. Furthermore, despite claiming to not maintain logs of the users? activities, a public VPN provider could hypothetically see all of your unencrypted online activity and do with it as they please? including private messages. ?Free? VPN services will often make their money by selling user activity to advertising networks. What Does a Private VPN Do? Comparatively, private VPNs are used to enable an organization?s users to securely access their materials and resources while working remotely. This is assuming that the VPN has been set up properly, of course. If it is, however, the VPN?s security is formidable, allowing a workforce to safely access the resources and files they have saved elsewhere (namely, your business? storage space) with relative ease. A private VPN can basically be described as a protected thoroughfare for your data to travel to between two locations, shielded by heavy-duty encryption. So, Which Of These Options Would You Rather Utilize for Your Business? Productivity? Obviously, the latter, private VPN connection is more suited for professional purposes?particularly with remote work remaining a common option for many businesses. We can help you set one up for your own use. Reach out to us for assistance with this, and any of your other IT needs.

Back in April, security researchers laid the blame for the SolarWinds attack on the Russian Foreign Intelligence Service. Microsoft has discovered that there are various modules used by the attack group, a collective referred to as Nobelium. Nobelium includes other malware such as GoldMax, GoldFinder, and Sibot. Other types of malware that were previously known to researchers include Sunburst/Solorigate, Teardrop, and Sunspot. In the case of FoggyWeb, it is a malware which installs a backdoor on an already compromised server. Backdoors themselves allow hackers to pull off all sorts of nasty tricks. Hackers can use the backdoor to access a network at any given time in the future, and they can use the backdoor to install malware, access sensitive data, spy on users, and so much more. It?s safe to say that backdoors are dangerous for businesses to contend with. As for FoggyWeb, the backdoor itself is used to steal credentials and configurations from compromised servers. With these credentials in hand, hackers can remain on the infrastructure even after they have been purged from it. Hackers can also use these credentials to control access to important assets or other tasks that demand authentication. As with other backdoor threats, FoggyWeb can also receive commands remotely to pull off even more dangerous stunts. To ensure that your business does not fall victim to these types of threats, you should take a multi-faceted approach to your network security. This includes monitoring your network for suspicious activity, ensuring that user access controls are in effect, and deploying comprehensive security solutions that can keep your infrastructure safe. Thankfully, these solutions are more accessible than ever with the help of managed service providers like White Mountain IT Services. We can help arm you with the tools to protect your business from any type of threat. To keep your business secure from all sorts of threats, reach out to White Mountain IT Services at (603) 889-0800.

To get started, the private cloud is one that is hosted and maintained by your company rather than through a third-party provider. Compared to the public cloud offerings you might be more used to seeing recommended for SMBs, the private cloud has several benefits and advantages that make it a standout solution. More Flexibility Oftentimes companies that take advantage of public cloud services have a limited amount of flexibility in terms of services offered or rendered. This means that they don?t have as much control over the solution and how it works for them. Naturally, the private cloud offers you more advanced features that grant greater flexibility in this regard, allowing you to customize your cloud solution to your heart?s content. Greater Security With a public cloud infrastructure, it makes sense that your company has limited control over what the provider does to secure your data. Unfortunately, this can often come to the detriment of public cloud users who want greater security measures in place for sensitive data. If you use a private cloud, however, since you are directly in control of the hardware and software used to host the cloud, you can secure it in any way you deem necessary. Better Compliance As you can imagine, the limited control over security for public cloud solutions can complicate your organization?s compliance needs, especially with so many types of data now being governed by data privacy regulations. If your data is stored in-house on its own computing infrastructure, you will have more control over how you comply with these regulations, and thus be less likely to be in violation of them. There Are No Excuses With the advent of managed IT services, there is no longer any excuse to not, at the very least, consider a private cloud solution for your company?s needs. Managed services make the private cloud easier and more affordable than ever to take full advantage of, so why not consider it for your business? While it does, of course, depend on your organization?s specific needs and challenges, we think that a private cloud might be a potential solution for your company. We would be happy to help you make this determination with one of our comprehensive network assessments. Furthermore, deployment and management will not be an issue, as we can take care of this for you. Our technicians are ready and capable of taking care of your technology solutions, including a potential private cloud. To learn more, reach out to us at (603) 889-0800.

Cloud Solutions Given the scale that enterprise solutions need to operate in, the cloud is a no-brainer for them to adopt? but why shouldn?t your business emulate them in this regard? The cloud is inherently scalable. This means that the solutions provided via the cloud can be sized to fit a business? needs and budget very precisely. It is also worth mentioning the variety of uses the cloud can provide. Cloud platforms can fulfill many different needs, from storage to application delivery to platform hosting. This, again, is all made easily budgetable and exceptionally available. Wireless Upgrades Wireless connectivity is critically important in the modern business environment, which is why so many companies focus so strongly on providing their employees with fully available Internet throughout their location. Part of this is accomplished by strategizing not only where access points will be placed, but how this connection will be delivered. Different versions of Wi-Fi can be made available for different purposes. While enterprise companies have these kinds of adjustments made, smaller businesses can (and in some cases should) do the same. Network Security As time has passed, security has become more and more prescient to businesses of all sizes. One way that this is reflected in modern enterprises is the way that security tools are now deployed via a cloud solution, as mentioned above, helping to integrate them into their processes. Much like the cloud solutions referenced, this approach has proven scalable to smaller businesses as well. While the tools and defenses used by the enterprise may feel out of reach for many small or medium-sized businesses, a lot of what supports an enterprise can in fact prove beneficial and accessible to the average SMB. We can help you to accomplish a lot of what can be done by the enterprise at a scale that works for your needs. Interested in finding out more about our IT services? Give us a call at (603) 889-0800.