You can think of Software as a Service like renting a house. Sure, you could go all-in and buy it in one go, but it would be an immensely expensive up-front cost. In order to make it more affordable, those purchasing a home acquire a mortgage, or simply rent the home rather than attempting to purchase it outright. These smaller, more affordable payments provide shelter in a similar manner while making it more accessible for those on a limited budget. Here are four ways your business can take advantage of Software as a Service: CommunicationsCloud-hosted software solutions can be used to keep your organization connected via video or voice chat. Voice over Internet Protocol (VoIP) is a perfect example. You can add new users and make changes to your service plan as your business grows, and you can access your telephone solution on any connected device with the application installed on it. Cloud-based messaging apps can also be used to similar effect. Cloud-Based EmailYour business can use software as a service for your email solution, as well. Using a cloud-based email provider like Gmail or Microsoft Outlook allows you to add or remove users to your email server quickly and efficiently. Furthermore, you can expand the service at any time to accommodate growth. Productivity SuitesThe most notable use of software as a service comes from productivity suites. You might notice how services like Microsoft Office 365 and Google?s G-Suite are designed specifically ?as a service.? In Microsoft?s case, you can purchase the entire Office suite at once, or you can purchase its individual parts. Better yet, you can pay for access to a cloud-based version of productivity software like Microsoft Word, Excel, and PowerPoint, that is always up-to-date. This saves you plenty of money in the long run by providing continuous access to software solutions, without needing to update your license or take on additional capital expenses. VirtualizationBasically, software as a service is a great way to virtualize and turn just about any software solution into a more efficient, scalable, consumable, and affordable form. The sky’s the limit. How can your business benefit from Software as a Service offerings? To find out, reach out to White Mountain IT Services at (603) 889-0800.
In the last few months, there have been several high-profile data security breaches that resulted in the theft of millions upon millions of non-public information records. Though much of the focus in the aftermath of the breaches was on personal identity theft and prevention, it?s important to keep in mind that not all the stolen data records target individuals. Business entities are also at risk. Vendors and partners that you do business with regularly will probably have record of your company?s non-public information, payment information, or tax ID number. In the wake of the major breach of Equifax that resulted in 143 million records stolen, there have been many questions raised about data security and breach notification laws. One of the most concerning issues was the long delay between when the breach was discovered by Equifax and when the public was notified of the breach. To help clarify how data breach notifications work and why it was technically acceptable for Equifax to wait as long as they did before notifying their customers, there are a few things you should know. State LawsOnly 47 out of 50 states currently have data breach laws. Alabama and New Mexico have proposed bills regarding data security and notification that are before their state legislature. The lone holdout on data breach laws is South Dakota, who has yet to propose a bill of any kind. Since each state has its own laws on data security, there are no unified standards, and laws vary in each state. For example, New York law requires that notification of a breach should be given in the most expedient time possible and without unreasonable delay. In Wyoming, however, notice of a breach must be reported within a reasonable time that is not to exceed 45 days after the entity learns of the acquisition of personal information. Florida requires notification within 30 days. However, these notification deadlines aren?t ironclad. Nearly all of the policies indicate that they will allow the entity to delay notification for cause. Reasons for delay vary from state to state, however, criminal investigations or national security are both common reasons that a delay in notification would be allowed. Federal Laws At the present, there are no comprehensive data breach laws on the federal level. While the Health Insurance Portability and Accountability Act (HIPAA) and Gramm-Leach-Bliley Act (GLBA) are federally mandated regulations that do have data breach policies enforced by the federal government, they are industry-specific. There is no federal law that encompasses a general data security policy. Since Equifax is a financial institution, it?s required that they adhere to the standards set forth by the GLBA. Unfortunately for about half of American adults, the GLBA does not have a deadline for disclosure. The act merely says that the financial organization should notify the affected party ?as soon as possible?. Despite waiting 40 days before disclosing the breach, Equifax was following the regulations as outlined by the GLBA. In addition to having different notification laws for each state, other aspects of data security laws are just as diverse. Each state has different policies on who the law applies to, what constitutes a breach, who must be notified, how they must be notified, enforcement and penalties, and entities exempt from the law. Are you familiar with data breach notification […]
Have you ever used Google Maps as a GPS system to help you navigate a trip you are taking? In a lot of ways, Google Maps is even more dynamic than other dedicated online applications, and it?s certainly a better alternative than trying to decipher the lines of an atlas. Google Maps even lets you chart the distance between your location and your destination, which is a great way to get the total distance of your upcoming trip. Before we get started, we just want to make sure that you have the most up-to-date version of the Google Maps for your iOS or Android device. To do so, go to the Play store or iTunes store to update the application. First, open up your app and navigate to where you want to measure distance from. Just drop a pin on the location to find out how far it is. Next, expand the menu at the bottom and tap Measure distance. You?ll see the location in a set of crosshairs on the screen. You?ll next need to add another point–like, say, the nearest bend in the road. You?ll see the distance between the two points. For each point you place on the map, the distance between your points will be updated. Once you?ve done this, you can just tap the Measure Distance bar at the top. However, one thing to keep in mind is that the app will only tell you the distance between your destination and your current location if you drove there in a straight line. Chances are that you?re not going to be traveling in a straight line to your destination due to the lack of direct travel. You?ll be taking roads and pathways that wind around natural obstructions. Carefully place points on your map on streets you plan on driving. This will allow you to calculate the exact distance to your location. For more great tips and tricks, subscribe to White Mountain IT Services?s blog.
WPA2 has been the standard for securing a Wi-Fi access point, especially for businesses. However, WPA2 has a newly discovered flaw that allows a cybercriminal to reuse the encryption keys that are generated when a device and a router connect, which in turn allows them to intercept the data being communicated between the router and the device. This data could include credit card numbers, passwords, and any other information one would input online. Some networks could even allow data to be introduced from outside, for example, a website being infected with ransomware. Details about the vulnerability will be released on November 1st, which means there is potential that they will fall into the wrong hands if they haven?t already. This gives businesses about two weeks to make sure they are prepared. Currently, the biggest Achilles? heel is on the client-side, which means the computers, laptops, and mobile devices are the first priority to update, but network hardware such as access points and routers are important as well. Fortunately, Microsoft has already released an update to attend to this vulnerability, and Android devices will be rolling out updates during the coming weeks. Anyone running Windows 10 with automatic updates or has recently installed updates should have the fix. Other devices, including smartphones, tablets, and even your network routers and Wi-Fi access points should also be checked for updates. How to Tell if Your Business is Safe from the KRACK WPA2 Vulnerability For businesses, the most straightforward answer is if you are paying someone to monitor and maintain your entire network, they should be checking all devices to make sure they are patched to prevent this vulnerability. If you don?t have an agreement with an IT company such as White Mountain IT Services, or you don?t have someone on staff who is aware and knowledgeable about the potential threats to your network, it?s more than likely this vulnerability exists (along with many others). If you aren?t sure, reach out to us as soon as possible. White Mountain IT Services can help you keep your network patched and up-to-date. For more information, call us at (603) 889-0800.
Would you be surprised to hear that there are at least 1.4 million phishing websites set up each month? These numbers come from the Webroot Quarterly Threat Tread Reports, which estimate May 2017 as an all-time high for phishing website increase at over 2.3 million websites being set up during that month. This makes phishing one of the most prevalent methods of fraud in the world–in fact, phishing scams are the number one reason for data breaches all over the world. Here are three of the most notable phishing scams from 2017 that you may have missed. Amazon Shipping Phishing SchemeEarlier this year, there was a massive phishing scam which disguised emails as coming from Amazon. The emails appear to be legitimate, but when you click on the link located in the email, you?ll be directed to a domain that either has nothing to do with Amazon, or closely resembles it, but isn?t quite the genuine article. The emails try to convince users to confirm their login credentials by logging into a portal that looks like the actual login screen. Google Docs HackIf you?ve ever used Google Docs to share text documents with others, you know that you?ll receive an email with a link to the document. You should never click on links in unsolicited emails, but you?d think you can trust something supposedly coming from a big company like Google. The truth of the matter is that the phishing scheme was notable because it tricked users into granting permissions to third-party apps rather than hand over personal credentials. It?s part of a growing trend that sees phishing malware growing more sophisticated, which should be cause for concern for just about anyone–particularly business owners. IRS W-2 Tax Season Phishing ScamsYour business deals with employee W-2 forms and other information that?s important during tax season. In particular, tax season is a very popular time for phishing attacks, as users are expecting emails to confirm the submission of their tax forms. Recent phishing attacks targeting businesses asking for W-2 forms or other personal information can safely be regarded as phishing scams, and they only get worse during tax season. For more information about how to avoid phishing scams and other issues, reach out to us at (603) 889-0800.