Introduction to The internet of things – by Bernard Collin, CEO

Introduction to The internet of things - by Bernard Collin, CEO
Safecoms can be your trusted advisor in all aspects of IT security (including cyber security) for your organization and we'll provide constant protection and innovation to give you continuous peace of mind.

The internet of things – by Bernard Collin

September 2017

Article by Bernard Collin, CEO of SafeComs Network Security Consulting Co., Ltd. in the magazine “EXPAT LIFE in Thailand” about the Internet of Thing (IoT).

Conversation on the IoT (internet of things) is rising as it becomes a more broad and social consideration. It has a wide reach and it also shows that people need to be more aware of their personal impact. What might look like a minor problem hides a greater trouble.

The internet of things is any and every device connected in some way to a network and open to the internet. A home system designed to allow you to set the house to wake up the lights and run the heating/air conditioning ready for your arrival home. A sound system connected wirelessly through your home wifi, a baby monitor you can check from the office. But the term simply applies to any and every device meant to automatically connect to the internet and accomplish a task with little to no oversight.

This is where the problems start, these devices are crafted for simple use and convenience which then become points of weakness. Not designed for high security but simply task completion, many of the devices have now been breached and exploited. The activity isn’t specifically because it targets you, in fact,
that the device is “yours” is incidental, it’s just another bot to them. The devices are not breached to spy on you and aren’t designed to break down and try to ransom the device back to you (See the previous article on Ransomware).

Internet of ThingsWithout your knowledge or consent, any device connected to your internet connection can be used by criminal organisations and general mischief makers against networks and websites. Shutting down a business ability to connect to the internet or simply wielded as a hammer against single uses they have found offends them. People are selling time and activity on your home devices against others, a device you paid for and pay to keep running, on an internet connection you pay for upkeep.

What can we do to combat this new botnet problem?
For one, we should make sure that device creators take their responsibility on creating secure devices more seriously, but on a more personal angle, anyone who likes to add gadgets and devices to their own home should either consider adding security layers to their connection to the internet.

Security is a personal responsibility these days, and being aware of how your devices are being used and exploited is something each household should be concerned about. These are your devices and you should be certain they aren’t being exploited by others for their own ends.

Download the article here

Want to know more?

Key Takeaways from our IT Security Seminar in October

Key Takeaways from our IT Security Seminar in October

Key Takeaways from our IT Security Seminar in October

October 18, 2016

Two weeks ago, we held a talk in cooperation with AustCham Thailand at the Banyan Tree, about the latest threats and dangers in the world of IT security.

We were really happy to have a roomful of people coming and listening to what Bernard Collin, our CEO and Founder, had to say. It turns out that many companies suffer from some of the latest IT threats around, perhaps most of all the very annoying and potentially devastating threat that is ransomware.

 

SafeComs CEO greeting a guest.

SafeComs CEO greeting a guest.

A few takeaways if you missed the talk

Ransomware is on the rise. Even though the search for ransomware on Google has dropped a bit the last month or so, the general trend of 2016 is that it’s indeed a very hot topic, and it poses a real danger to any company these days. Since a frightening amount of companies don’t have a proper data backup system, the consequences of getting struck by a ransomware attack can be financially severe.

 

Ransomware Google Trends

Relatedly, the Google search for data recovery is constantly a hot topic, which means that a lot of people suffer from their data being lost, stolen or encrypted, be it due to ransomware or other evil forces.

 

google-trends-data-recovery

Further, in 59% of the times, ransomware enters your organisation via email. To compare, in 24% of the times a company is hit by ransomware, it’s from a website or web application. Email is losing face – embarrassingly.

It’s highly important that you’re aware of what you click on in your emails, and that you’re 100% sure an email from a person that looks like someone you know, is legit. We’re all very busy these days, so it’s not easy to find time to double-check these things – but it can be crucial to your firm.

Real-life cases

This is a slide from our talk. As we can see, several major companies have suffered from hacks only in the last couple of years. They all had their – and in turn your – data hacked, stolen or leaked. Not good. Not good at all.

 

screen-shot-2016-10-11-at-18-09-16

 

If it can happen to Yahoo, it can happen to you.”

Yes, that’s an incredibly cheesy thing to say, but it doesn’t make it less true. You can’t be too safe these days. As they use to say in the movies, better to be safe than sorry.

So how can you prevent it?

Come to our talk next time, and we’ll tell you.

But we’ll be nice here and give you three key points:

  1. Educate your staff. Your people are your first line of defence against cybercrime.
  2. Enforce procedures. Knowing what to do when things go south can mitigate risks and reduce severe damage.
  3. Get good technology. A proper Antivirus, Anti-Spam/Anti-Malware, and a WAF (Web Application Firewall).

If you have these, you’ve actually come a long way.

 

Ransomware success

Has my email been compromised in any data breach?

That’s certainly the question.

A tremendously good way to find out if your email address has been pwned (that means compromised) in a data breach at any site you have it registered on, pay a visit to havibeenpwned.com, and find out.

If you find that it’s indeed been pwned, you have to do these things – immediately:

  1. Change your password on that site
  2. Go to all other sites where you have that password, and change it
  3. Go for a strong password; minimum 8 character, special signs (!@%), both BIG and small letters, and a number

As of the date of writing this, the recent Yahoo hack is not included in the database.

How can I stay up-to-date of all that’s going on in IT Security?

We’re glad you asked.

On our front page, if you scroll down a bit, you can sign up for our non-commercial, purely educational newsletter. We would never misuse your trust by spamming you or trying to sell you anything if you sign up for it. You have our word.

We would post an update when something noteworthy happens in the industry, but you can expect one email at least every other month.

What’d you get out of it?

  • You’d get valuable, must-have insights from inside the world of IT Security
  • Learn about the latest trends and threats that could potentially make or break your business
  • You’ll get expert advice for free. Come on, who doesn’t like freebies?

Want to know more?

Follow us on

          

6 Burning Questions for the CEO and Founder of SafeComs

6 Burning Questions for the CEO and Founder of SafeComs

6 Burning Questions about the cyber security latest threats for the CEO and Founder of SafeComs

October 13, 2016

cybercrime

These days, companies getting hacked and their data being leaked, stolen or encrypted seems to happen more often than not.

In 2014, it happened to the Japanese conglomerate otherwise known as Sony. A year prior to that, it happened to Target, the US’ second largest retailer, when they had 40 million credit cards stolen. To complete the hattrick, Yahoo had more than 500 million account hacked in 2014, only that it was made known to the public a few weeks ago, in September, 2016. And these cases are far from the only ones.

These are crazy days – but there’s hope.

It turns out, there are ways of staying secure, avoiding financial and image-harming damage in the process. We have turned to our very own IT Security expert, Bernard Collin, CEO and Founder of SafeComs, for the latest trends and threats in the world of cybersecurity.

SafeComs CEO greeting a guest.

Our CEO, Bernard Collin, greeting a guest at a talk we hosted last week with AustCham Thailand. All image rights belong to AustCham Thailand.


1.
 Bernard, you’ve been in this industry for 39 years. What are the hottest cyber security latest threats right now?

Well, we’ve seen two main challenges recently – one being ransomware, and the other one being ID theft.

  • Ransomware is especially dangerous to suffer from for a company, as it totally damages your hard drives and servers, leaving you paralysed without any data until you pay the demanded ransom and get the decryption key – which, by the way, only happens in 30% of the times.
  • The scary thing about ID Theft is that you can be on the damaging end of an incident without actually being compromised or hacked yourself. Today, these types of crimes are so well done and the methods incredibly sophisticated that it’s very easy to be fooled. Their goal is to trick you to pay money to a fake bank account, making it look like it’s to your own bank account, a friend’s bank account, your employer’s bank account, and so on – only that it isn’t. It’s someone else’s – and before you know it, your money is gone.

We at SafeComs always use to say that “people are the first line of defence”, and it’s certainly true. By being completely aware of  the risks, the common methods, and how to spot them, you can rest assured that the chances of you suffering from any of these threats is minimal.

2. What challenges have you helped customers overcome recently?

Recently, we saw an increase in companies who had lost data due to a hard drive crash without proper backup. We helped them recover their data from the damaged drive – and they were very lucky that the drive plates were not damaged. Thanks to that, we could successfully restore their data. 

Also, we are extremely happy to have been able to help a charity organisation that builds bridges to help remote populations in the mountains of Myanmar. These bridges are their only chance of communicating with other people and tribes without spending days hiking in the mountains. The charity organisation had lost data from one of their operations, containing crucial information to these projects. This was a data retrieval we were very happy with.

The other challenge is to make sure our customers understand that technology should never be their first line of defence – awareness is. You can deploy just about any sophisticated technology, if a person replies to an email asking them for their password, or rework a money transfer to another bank account, you will lose money, and you will be compromised.

CEO Bernard and Sales Manager Isak talking shop with a guest.

CEO Bernard and Sales Manager Isak talking shop with a guest. All image rights belong to AustCham Thailand.

3. How has the big Yahoo hack affected the industry?

We have not yet seen the effect of it on hacking statistics, and it will take a little while before anything is known, if ever. The most damaging element is a blow to the credibility of these large data-handling organisations. They are constant targets of hackers; they try hard to protect their data silo, and in the end, someone gets in through a small undiscovered vulnerability. I am eagerly awaiting the results of the forensics to see whether people got in through a technical vulnerability, or as before with LinkedIn or Dropbox, they got in through a staff error.

4. What could’ve been done to prevent hacks like those from happening? Is there anything at all? 

Like I said, it is too early to make a comment, as we still don’t know how they got in. But you need to understand that the game is very unfair. Companies are under pressure to reach their business goals and requirements, there are needs to be cost-effective, all employees need fast access to data wherever they are, and the security team needs to secure every single entry point in the organisation. On the other end, the hacker has plenty of time and automated resources to try every possibility relentlessly. The worst thing is, he (or she) only needs one little entry point to gain access to your systems.

Security is a real challenge.

5. According to Google Trends, ransomware is a very popular search word these days. What are your thoughts about it?

Ransomware Google Trends

I believe it is the most profitable criminal activity around with the least amount of risk. Which is why it’s not going anywhere – it’ll continue to do harm.

On the internet today, you can actually purchase all the tools you need to start a ransomware campaign of your own. There are cloud tools to perform ransomware attacks and exploit existing technology. The bright programmers who have developed the tools are too scared to use them and perform the crime themselves, so they have made their tools available online for others to use.

Although, if you look on the bright side, it’s pretty easy to protect yourself from it, because all that’s required is:

  • Awareness of phishing baits (education, know what signs to look for)
  • Technical protection (regular backups stored remotely with history, and good Antivirus/Anti-SPAM technology

If you have those two, you’ve come a long way in protecting yourself.

Bernard Talking about Cybersecurity

Bernard spreading the word. All image rights belong to AustCham Thailand.

6. What is on the plate right now for SafeComs? 

We are continuing our mission to help all our customers be as secure and safe as possible by bringing the best technology available to them, and by educating them on risk avoidance and mitigation.

These coming months, we are going to host a series of presentations in cooperation with various Chambers of Commerce in Thailand. For instance, last week, we had a really insightful – tooting my own horn here – talk  in cooperation with AustCham Thailand at the Banyan Tree. 

It was a really good turnout and a lot of people had a lot of questions and testified that it’s indeed a dangerous, risky time in the cybersecurity world.

It’s certainly not only large corporations that’s being hacked.


Make sure you never miss a post! Sign up for our non-commercial newsletter, and also don’t forget to follow us on Facebook and LinkedIn.

Want to know more?

Why a Discovery Audit is a Must-Have for Your Company [Infographic]

Why a Discovery Audit is a Must-Have for Your Company [Infographic]
Latest news about IT security from Safecoms
Blog
Why a Discovery Audit is a Must-Have for Your Company [Infographic]
September 27, 2016

SafeComs Discovery Audit

What is a Discovery Audit?

A Discovery Audit is the ultimate way for you to find out the exact status of all things related to your company’s IT.

Ideally, you’d want your IT to support your long-term business goals in the best possible, most efficient way. You’d also want value for money – to know how much you spend, how much value it brings you, and to see if it’s simply worth it. But how can you know? When was the last time you checked – the day it was installed or set up in the first place, years ago?

In Asia, there’s a disturbing amount of companies that (mostly) unknowingly run on illegal software. We usually joke that Copyright is too easily confused with The Right to Copy. To make things worse, the BSA offers incredible amounts of money to people (usually ex-staff) who can point at companies using counterfeit licenses – often exceeding 500,000 THB! Again, how would you know you’re in the clear?

It’s not easy to stay on top of these things, especially if IT is not within your core objectives as a company. Luckily, that’s where SafeComs comes in.

What’s in it for me?

You’d get an unbiased, independent report clearly showing the full status of your IT setup, showing where you are strong and where you are weak. You’d see which areas of your company that might be critically prone to disasters. By finding out if your IT is aligned to your business optimally, your productivity would increase, allowing you to get more done with less effort, saving you money in the process. The benefits of having a Discovery Audit could go on and on.

The bottom line

In essence, the question you must ask yourself is: 

Can my company survive without knowing if it runs any devastating risks linked to its IT?

Want to know more?

Stand Up to Ransomware with Cloud Backup

Stand Up to Ransomware with Cloud Backup
Latest news about IT security from Safecoms
Blog

Stand Up to Ransomware with Cloud Backup

cryptolocker ransomwareImagine you are an IT administrator at a small company of 30 people or so. You juggle hardware, software, the network – and even phone systems and the occasional electrical failure or power outage on any given day. So, when your CEO calls you and says, “I cannot open my sales forecast file,” you rush into action. You check your CEO’s PC and find that the file is somehow corrupted. Then you notice a small red icon at the bottom corner of the desktop with a prompt reading: “Your files have been encrypted. Pay $500 for a decryption key within 10 days or your data will be deleted — click here for payment instructions.”

 

 

After the initial shock, you realize that you have been infected by Ransomware a type of malware that blocks access to files or your systems until the ransom is paid. There are many types of Ransomware, including Reveton, Cryptolocker, Winlocker, and Cryptowall, and for many the antidote may not be available yet. According to McAfee Labs Threats Report (March 2016), each quarter the number of new Ransomware reach in average 40,000,000 of new malicious hashes discovered.  Moreover, the threat of Mobile Malware is increasing especially since the last quarter (reaching 13 Million new malware).

 

What Would You Do?

Think about what you would do if Ransomware hits your company. Would you pay? Unless you can find an antidote out there – you may have no way to restore your data. Remember, even if you did pay, there is no guarantee that the attacker would decrypt your data and not just disappear.

However, what may come as a surprise to you is that the universal solution against Ransomware has existed for years. In fact, it has existed even longer than Ransomware itself:

It’s called Backup!

Now, some things have changed since backup first came onto the scene years ago. Today, cloud backup is the best way to protect your data and systems from Ransomware – and more and more companies can take advantage of it through local service providers, hosts, and resellers.

Cloud backup creates copies of all your files, and even your entire operating system – and keeps it safe, away from attackers and the threats of Ransomware. If an attack happens, you can quickly restore the affected files and keep your business up and running. You can even restore an entire system to the previous, clean state – and you would not need to pay a penny in ransom.

Note that traditional local backup may not be sufficient – as the backup files on your local USB HDD or NAS can also be affected by Ransomware.

The only ultimate way to stand up to Ransomware is to use professional-grade data protection solution to back up your data and systems to the cloud on a regular, consistent schedule.

SafeComs Backup Service can help protect your entire environment from Ransomware.  By using Cloud Backup solution, your data will be safe and accessible at any time. For more security, we can as well encrypt your data. Read more about our backup solutions here.

Want to know more?

Ransomware Risk… did you get caught?

Ransomware Risk... did you get caught?
Latest news about IT security from Safecoms
News and Events

Ransomware… did you get caught?

My enduring advice on computer security:

Do not solely rely on technology or systems to resist hackers, your first and best line of defense should always be your employee awareness and education program! Technology will assist and can also help in the recovery after a case of damage but first make sure your employees are trained to react appropriately.

Ransomware is the act of using malware to penetrate a computer and encrypts its hard drive, and then, requesting a payment (ransom) from the owner to decrypt his data.

But in fact, how bad is it and what are the Ransomware risks?

PhishingThis past year has seen some of the most devastating cyber-attacks and highly profitable ransomware for the perpetrators. They added up to astronomical costs for the companies that got caught. Despite the resistance to give in to the threat, some had no choice but pay extremely high value ransoms.

The health care business was particularly targeted with ransoms in the thousands of US Dollars, paid in bitcoins to recover access to their patient data, which in some cases were vital as their life could have been at risk.

Despite the increase in monitoring software and serious deployment of sophisticated automated technology with the latest generation of firewalls, anti-virus, intrusion detection, web traffic filtering and so on, specially crafted spear phishing attacks ultimately reached their high value target.

But low value targets were also in the line of fire. Automated phishing targets anyone and the ransom is proportional to the size of the business. Some small companies got away with paying 0.99 bitcoin, some with a couple more, but it is always costly, a serious waste of time and energy, lots of frustration and stress, and
you never know if you will get your data back, even if you pay. Moreover, even if you think you are clean there is no guarantee they haven’t left a backdoor and won’t be coming back for more…

In many cases, we have to admit the failure of the legacy perimeter defenses to identify and stop the most basic phishing attacks, and there is a serious risk that sooner or later one unprepared employee will click on a tempting email link that will bypass the lines of defense. Hackers are now adapting their email subject lines making it impossible to preemptively block them.

Is Ransomware slowing down?

Not really and we are trying to predict what’s cooking for this year. Analysts are observing the skyline as the demise of Dyre malware in 2015 seems to indicate a preparation of something far more dangerous. The next wave will probably propagate through worms crawling from site to site and disk to disk, and stay dormant for a long time before emerging. Which indicates that the last line of defense, the backup needs to seriously increase to keep data history unaffected. History of Backup allows you to go back in time to a version of the data without malware… but how much recent development will you have lost?

A serious preparation for all companies is paramount, and it is not really clear how the next attack will develop.

It is certain that mobile technology is the prime target as it is so pervasive in everyone’s life. Some employees don’t even have a PC any more and manage their e-life on their phone with a bigger screen. As a result, most IT managers have lost total control and are desperate in their attempt to protect the company’s network and assets (see our article on EMM –Enterprise Mobility Management to see the difficulty)

ransomware

New tools are being developed, new defenses are being crafted and it is a race with time to get a response as quickly as possible when the next threat emerges. Companies must deploy the latest technology for their peripheral protection and sharpen their intrusion detection tools, with a strong emphasis on behavioral analysis. However, is it available to all? And at what cost?

Your chances of surviving an attack will increase with the amount of sophistication you can afford for your periphery but the first line of defense remains the education of your staff.

The most disturbing trends are now:

  • Phishing emails are smarter with adaptive subject lines
  • Phishing emails use fake company names targeting those close to you
  • Worms will stay dormant for longer limiting the capacity to recover

What you need to do:

Train your staff, show them what phishing is, explain Trojans and worms, and consult with a competent security company to reduce the risks. Be prepared if you get hit, so the damage is limited and you can recover without paying up.

Always be aware of the threat and expect the worse so you are prepared to survive any incident. The government is not close to catching the bad guys, they are potentially far away and extremely well organised, so you need to take your security very seriously.

The Author:

Bernard Collin is the CEO of SafeComs, a security firm based in Bangkok Thailand, with offices in Myanmar. Bernard started his IT career with Apple in 1997 in Paris, then moved to Digital Equipment in Geneva and specialised in IT security in 1987 with the evolution of DECnet network and later on the Internet. Bernard Started SafeComs in 1999 in Australia and throughout his life consulted with large businesses in Europe and in Australia. His expertise includes office automation and network security, and he is a regular speaker at Security events and at Chambers of Commerce. His company SafeComs has been awarded numerous prizes including SIPA (Software Industry Promotion Agency) in Thailand for creative software development.

Want to know more?

Ransomware and phishing – increasing in big proportion

Ransomware and phishing - increasing in big proportion

Ransomware and Phishing – increasing in large proportion

April 4, 2016

In the past few months, we have seen a serious increase in the number of companies affected by Ransomware and the encryption virus.

The encryption virus (Locky, WinPlock, Cryptolock …) is a virus that you catch through reading a phishing email or following a link to a website that is infected. Ransomware is a type of malware that prevents or limits users from accessing their system. This type of malware forces its victims to pay the ransom through certain online payment methods in order to grant access to their systems, or to get their data back.

cryptolocker ransomware

As a general precaution, if you get an email from an unknown or known address, suggestion you to click on a link to get access to an order, or an invoice or anything else that you are not expecting, it is better not to click on it.
If you have an email from a bank or email server or anything asking you to type your username and password to regenerate or unlock your account, you should not type anything and simply delete the email.

You should as a rule never follow a link to a URL and then type a user name and password to gain access, if you need any access to any website, you type the UR yourself and click on a shortcut or a bookmark in your browser but not from a link you received in email or a link on internet.

To prevent ransomware infections, keep these things in mind:

  • Backup your files regularly and keep a history, we suggest at least 30 days.
  • Apply software patches as soon as they become available. Some ransomware arrive via vulnerability exploits.
  • Bookmark trusted websites and access these websites via bookmarks.
  • Download email attachments only from trusted sources.
  • Scan your system regularly with anti-malware.

Read here to learn more

Want to know more?

Are you encrypting your emails?

ProtonMail – a free and open source encrypted email service

March 21, 2016

If you don’t use encrypted email but are interested in having them and don’t want to spend much time to set up this complex environment, you can use the new free, open source and end-to-end encrypted email service ProtonMail.

Sourced from: The Hacker News

secure encrypted email service

Want to know more?

Kaspersky extends Android security app to smartwatches

Kapersky Lab is launching its Internet Security on watches.

March 11, 2016

Kaspersky Lab this week extended its Google Android phone security software onto wristwatches.

The upgraded software notifies users about their phone security, and lets them respond from Android smartwatches. It also opens the door to discussion about the security of smartwatches.

source: http://www.techrepublic.com/article/kaspersky-extends-android-security-app-to-smartwatches/

Want to know more?