Recent Blog Posts

For those who aren?t familiar with biometrics, they are the measurement and analysis of an individual’s physiological or behavioral traits by technology that uses these measurements for authentication. Physiological biometrics are things such as a person?s fingerprints, face shape, eye patterns, or hand shape. Behavioral biometrics include a person?s online behavior, the IP addresses they send and receive information from, voice recognition, and other ?behaviors?. The Pros of Biometric Authentication The first thing that should be said is that biometric authentication is all about enhancing security, whether that is a fingerprint scanner to let you access a device or a state-of-the-art retina scanner to let you into a secure location in a building. As far as keeping unauthorized people out, it has to be said that biometrics work.  That?s the first benefit.  Biometrics Work for Security They provide enhanced levels of security and privacy by increasing levels of assurance that the person looking for access is the person they say they are. Most accounts use passwords and PINs, and while they do offer some security benefits, biometrics present very real obstacles for hackers, scammers, and fraudsters. Fast and Convenient Another benefit is the sheer speed of biometric systems. They don?t take long for authentication as compared with other platforms such as pins and passwords with two-factor authentication that can take minutes rather than less-than-a-second to work.  Can?t Fake It One of the best parts of biometric authentication is that users can?t fake it. They will need authorization to gain access to the resources they are attempting to gain access to. Period. The Cons of Biometric Authentication Like any technology, businesses need to weigh the pros and cons of installing biometric technology. Despite being spoof-proof faster, and better at keeping out unauthorized people, there are some negatives that biometric implementation can bring. They include: Cost To say biometrics are more costly than traditional security methods is an understatement. In fact, if they were a comparable price and brought a relatively rapid ROI, you would see more businesses integrating biometric solutions. As it is, cost is cited as the number one detriment to biometric authentication. Need for Security Ironically, the most secure solution for authentication also carries the need for additional security. The biometric data that is used needs to be secured from outside threats as it is irreplaceable. If it were, it wouldn?t work to be secure. If a password or a PIN is compromised then you can change it, but if biometric identifiers are compromised, they are not usable again. Lack of Privacy Some biometric standards actually work to eliminate or marginalize user privacy to enhance the security of whatever is being secured. This has long been a trade off that people have had to make, but with biometric technology, privacy is all but negated. Whatever you may think about biometric technology, it is the future of security. If you would like to talk to one of our security professionals about biometrics and getting the security solutions you need to protect your most prized assets, call us today at (603) 889-0800.

The shifts in business over the past six months have really left some businesses in flux. Larger businesses, with more access to more resources and far more capital have more people in leadership positions that are better positioned to get through tough periods than smaller businesses do. That?s why it is so important to have strong leadership. Let?s look at a couple of questions that you should ask yourself to help you get through this stressful period.  What Direction Is Your Company Going In? One of the most important functions business leaders have is to give direction. Obviously, businesses are top-down structures with solid leaders setting a course?whether it is reasonable or aggressive?with goals and objectives that are designed to bring success. Typically, the more involved business leaders are in the decision-making process, the more engaged subordinates will be.  Good leadership isn?t just about setting a course, it is also about providing feedback. Most workers don?t like to be micromanaged, but some actually need the constant direction of decision makers in order to fit into the operational environment. Knowing how your managers work, and how they relate to their staff is an extremely important part of running a business. You don?t have to have your fingers in every pie, just the ones that need the most attention. More than that, for smaller companies, the way decision makers lead sets the tone for the entire business. The manner in which business is conducted takes on the personality of the people that are in charge. Some businesses have laid back administration and take on a more relaxed presence, while others are led by aggressive people and have strict procedures that set the tone for business delivery.  Are You Good or Are You a Goof? Business owners and decision makers are being asked to do more with less right now, and it is a difficult task. Keeping calm through tough times is the measure of a great leader, and right now many leaders? patience is being tested. Regardless of how stressed a business? decision makers are, there are some very definite variables that define a good leader. They include: Taking responsibility – Leadership in business is a responsibility. People depend on your ability to make decisions and set the tone for how the business will be run. This means being responsible with your investments, your project timelines, and your decorum. Today, workers are not going to continue working for people they don?t respect, so be a person that a majority of people can respect and you will cultivate positive relationships with your workers. Showing foresight – One of the most important parts of leading any team is the ability to see what is coming and making the requisite adjustments. This is more crucial in a small business where the buck typically stops with very few people. Being able to adjust to the ebbs and flows in business is important to keep it above water, even when the world seems to be working against you. Being receptive – Being a good communicator may be the best feature of any good leader. It is an invaluable quality, especially in a small business, where leaders will have to interact with customers, vendors, and staff. Since small business owners and decision makers need to handle a vast […]

Introducing Confidential Mode in Gmail We?re all familiar with the secret agent that has a mission briefing that will self-destruct when it finishes. Made popular recently by the Mission Impossible franchise of movies, Gmail now gives users the ability to essentially do this. Users that don?t want messages to disintegrate over time can also send a passcode via text message that the recipient must enter to read the contents of the email. Pretty useful stuff. Using Gmail?s Confidential Mode Once you have the Compose window up, you will want to click on the little icon of the padlock and clock next to the Send button. This will toggle confidential mode on/off. Clicking on it will bring up a compose window in Confidential mode. From here you can set the message?s expiration date if you so choose. It ranges from a day to five years, and you can select to provide a passcode for further security. If you do select to have a passcode, you will then be prompted to enter the phone numbers for both your phone and the recipient. On mobile, Gmail offers additional confidentiality, using a similar process. To compose a confidential email, open the three-dot menu and select Confidential mode, and then select the preferences you?d like for that particular message.  Obviously, this doesn?t guarantee security, but it will go above and beyond just sending a standard email.  If you would like more tips and tricks, subscribe to our blog and check back to our site regularly.

What Are the Key Parts of Data Backup? The ideal data backup solution consists of three major parts, all of which have important roles to play in its eventual success. These three variables are: Incremental backups: Backups that are taken periodically throughout the workday are your best bet to minimize data lost to disasters. The more data you can protect, the better, after all. These backups should be taken as often as every fifteen minutes to guarantee minimal data loss. Quick data recovery: Your ideal backup solution needs to have rapid data recovery that can be implemented within a moment?s notice. This is to minimize downtime, which can be devastating to a business? bottom line if it is left unresolved for any amount of time. Testing to ensure proper backups: Your organization should periodically test backups to make sure they are working effectively.  Why Testing is Important Testing any system for problems is a good practice, but this goes double for data backup. Your business relies on its IT and its data, and there are dozens upon dozens of potential situations that could lead to data loss. Something as simple as a power surge can fry the components of a system, creating a scramble to get the data off of the device. Sure, there are steps you can take to protect all of your IT infrastructure against threats, but the BDR (backup and disaster recovery) service gives you a chance to protect your assets with one solution.  If you don?t test your backup system, you could think that you are protected when you aren?t. When a circumstance comes where you need to recover data–and it will come–if you don?t have a properly functioning backup system in place, you are going to lose assets. It?s that simple. Testing your backup ensures that your backup platform is working as intended. Not only does it give you the peace of mind that you are protected should something happen, it actually works to find functionality problems that can literally save your business. At White Mountain IT Services, our technicians want all of our clients to have a backup platform that makes data backup and recovery simple. If you want to protect your company?s assets to ensure that, should something happen with your data, your organization has the resources in place to be back in action fast, call us today at (603) 889-0800.

For your business? data and operations to remain secure, you will need to take a two-pronged approach?both teaching your team to avoid phishing and evaluating them on their overall preparedness through simulated attacks. How a Phishing Attack is Carried Out To start, let?s review the overall process that the average phishing attack tends to follow: Posing as someone else, an attacker sends a message. This message can be written in a few different ways, framed as an enticing offer, a very unremarkable email, or a serious alert. Whatever the case may be, the user is encouraged to react by opening an attachment or following a link. Because these elements are what introduces the actual threat, these emails can often bypass security protocols and reach the unsuspecting target. This?and the fact that a phishing attack against you is practically guaranteed to happen at some point?is precisely why it is so important that your team is prepared to spot them as they come in. Elements to Identifying a Potential Phishing Attack Have Your Team Think Like a Hacker Hackers and scammers are unfortunately very crafty when it comes to their schemes, often tying in current events to add some perceived legitimacy. The past year has seen no shortage of COVID-19-themed phishing attacks, seeming to offer updates and information. Hackers rely on user panic and impulsive reactions, so reinforce the importance that your users take an extended look at them before acting on them. Demonstrate Risky Links Hackers will also commonly use spoofed links to fool their targets. A spoofed link can take a few forms, but regardless of how it looks, it will direct a user to a website different from the one they expected to go to. Spotting these links can be tricky, so here are a few best practices to follow. Let?s assume that the spoofed link is meant to look like one that directs to the payment application Venmo as we go through some examples: If the email is from Venmo, a link should lead back to venmo.com or accounts.venmo.com. If there is anything strange between ?venmo? and the ?.com? then something is suspicious. There should also be a forward slash (/) after the ?.com.? If the URL was something like venmo.com.mailru382.co/something, then you are being spoofed. Everyone handles their domains a little differently, but use this as a rule of thumb: venmo.com – Safe venmo.com/activatecard – Safe business.venmo.com – Safe business.venmo.com/retail – Safe venmo.com.activatecard.net – Suspicious! (notice the dot immediately after Venmo?s domain name) venmo.com.activatecard.net/secure – Suspicious! venmo.com/activatecard/tinyurl.com/retail – Suspicious! Don?t trust dots after the domain! vemno.com ? Suspicious! Be careful to pay attention to the spelling! As you can imagine, some of these tricks are easier to spot than others, so extra diligence will be called for here. Provide Your Team with Approved Links To be particularly cautious, you could also consider giving your team the safe versions of the URLs they are to use. That way, they can seriously investigate the validity of an email without exposing themselves to risk. Maintain Secure Password Standards Finally, you need to ensure that your team?s passwords are secure enough that your business isn?t vulnerable that way?because if passwords are too easy to deduce, there isn?t going to be any need for phishing in the first place. Your team should […]