Security Tips for What You Use or Recycle

Whether you’re activating new equipment or continuing to use equipment and websites, and whether you’re recycling old computers, peripherals and devices, there are a number of security steps you can take to avoid a variety of problems. Here’s how to cover your tracks.

Let’s start with passwords. Don’t raise your hands all at once. How many of you tape passwords to your monitor – at the office or at home? How many of you keep them in a file on your computer? How many write them on slips of paper? How many are frustrated by all the rules and by having to keep track of so many passwords?

Did anybody besides me not raise your hand?

Most security experts will tell you should have a separate, strong password for every place that requires one. In the real world, it’s a real pain and highly impractical.

Here’s what I recommend. Create one very secure password you really like and use it for everything. The same security experts will also tell that a very strong password will have three of the following characteristics:

  • Upper case letters
  • Lower case letters
  • Numbers
  • Symbols or special characters

My password has all four – and it’s long. According to the website How Secure Is My Password?, it will take 58 years for someone to crack my code. For perspective, if I would use just my name, it could be cracked immediately. If I add an exclamation point (!), it jumps to 48 seconds. If I add an initial capital letter to the exclamation point, it jumps to 25 minutes. Adding a number increases the time to an hour. Adding another symbol or number gets you up to 58 years.

To give you a better idea of passwords to avoid, SplashData, provider of the SplashID Safe line of password management applications, just released its annual list of the past year’s worst passwords. If you see something familiar in the list, you might want to make a change or two.

So, give your password some thought and some length, and you should be in good shape.  Just be aware that some sites may have some special rules about password creation, but you get the idea. Some sites also have two-factor identification requirements, so make sure you follow the rules. If you use Dropbox to store or share files, we can help you set up a two-factor identification for your protection.

Another area of concern, which is largely out of our individual control, is the theft of information from major retailers’ systems. Target and Nordstrom are the ones that come to mind. I believe the biggest threat to systems such as those is somebody inside stealing information – just like somebody in a company embezzling money.

However, it does raise a question that we, as consumers, need to answer. How much convenience do we want? We’ve all returned products without a receipt, and it’s possible when the retailer retains the transaction and your credit card information. We are trading privacy for convenience.

The newer credit card technology, which is widely used in Europe, uses a chip that the retailer scans. On the backend, no information is stored once the transaction is completed.

Finally, let’s talk about protecting your data – or more accurately erasing and eradicating your data – when you recycle a computer, smartphone, tablet, fax machine, copier or printer. All of them can hold data.

When you go to a reputable recycler, you can be confident they will erase all hard drives and chips. It’s always a good idea to verify that. You can also remove a hard drive from a desktop or laptop computer, and with a laptop, it’s pretty effective to wreck the hard drive by hitting it with a hammer. Desktop hard drives have a steel undercarriage, which makes destruction more difficult.

There are ways to erase or eradicate the data, but we recommend you let us take care of it for you. We can make sure all the data and files you want to keep are backed up so you can restore them for use on other computers and devices. We also can use tools that wipe everything clean and can test to make sure we took off everything.

We are also happy to take any electronics you want to get rid of to GreenVision. State and local laws that affect most of our customers require recycling for all electronics to protect the environment. We take your old stuff there when we install new equipment. Please feel free to call us – 973-433-6676 – or email us to answer your questions, wipe out your data and/or help with your recycling. You can also call us or email us about your password and data security questions.

This article was published in Technology Update, the monthly newsletter from Sterling Rose LLC.

Update for Security, Performance and ROI

Simply having the latest operating system or software for your apps and browsers doesn’t guarantee top performance and tight security. You have to keep all of your programs updated from the day you install them.

Everything starts with the Internet. Whether you’re setting up a new computer or installing a new application, you’re almost always prompted to connect and download all the updates required to bring your programs up to date. Begin your installation by calling up your browser of choice and updating it. (Firefox usually sends out updates automatically as its default configuration.) As we discuss in the article When They Pull the Plug on XP, your browser is the first door hackers try to get into your computer, so make sure you have all the security updates and bug fixes.

When you begin to install the program or application from a website or a disk, you likely will be prompted to check for software updates. If the installation process doesn’t take you there automatically, answer “yes” when prompted. It’s especially true when installing from a disk. Even a disk that comes with a new computer is likely to be several months old.

In general, your rule of thumb should be to check for updates as second nature – and it doesn’t take much effort. You can set Windows Update to check for and install updates on a regular basis, even specifying days and times. For example, you can designate every Monday at 3 a.m. as your update time. Just go to your Control Panel, click on Windows Update and select Change Settings from the menu on the left. Just remember to have all of your files saved and backed up because updates can require you to restart your computer.

Here are some things to keep in mind when putting programs on a computer.

Many businesses have a mix of old and new technologies; it’s an economic reality. That means they’ll be installing some older (but still mostly serviceable) applications on new machines, recognizing that they won’t get full performance out of the new technology.

Therefore, it’s important to note that installing an old program, such as Office 2007, on a new computer will require you to get a series of updates in a specific order. That’s because each update, such as Service Pack 2 or Service Pack 3, builds on previous updates.  So, make sure you give yourself enough time to download and install them. The time will vary, depending on your Internet connection and network speed and capacity.

If you’re migrating from an XP machine to a new Windows 7 machine (which we implore you to do if you still have XP), you’ll need to go back to Service Pack 1 and download all the critical updates that Office will require. You should also note that you may have been using a 32-bit computer and now have a 64-bit computer. In that case, make sure you install all the updates for your new technology.

It’s the same with your Internet browser – whichever one you use. With the Internet such a presence for handling commercial transactions as well as for conducting business operations, programming becomes like its own ecosystem. It constantly responds to new hardware, new software and the ideas that lead to new applications. The continuing growth of cloud-based applications and the integration of mobile device into business demands more adaptability.

Because of that, we highly recommend that you and your employees and family members update browsers on a regular basis. You’ll get more efficiency, which can translate into better business profitability at the office and more learning opportunities for students at home.

Updated browsers also will be more secure, preventing more hackers from getting into your systems and stealing information they can use to take business and personal assets.

Keep in mind, too, that at some point, hanging on to old software or an old computer will put you past the point of diminishing economic returns. The investment in new technology – and new infrastructure for your networks, too – can pay for itself faster when you take advantage of all that technology can offer.

Contact us – 973-433-6676 or [email protected] – to set up an appointment to evaluate your current technology, your needs and available options to make your systems more cost-effective. The solutions may be less expensive than you think.

This article was published in Technology Update, the monthly newsletter from Sterling Rose LLC.

Credit Cards: Small Businesses are Big Targets

Accepting credit cards is a way of life for many small businesses, and most owners don’t give a second thought to extra layers of data security. After all, what can a small mom-and-pop store have that would be attractive to hackers? Well, as it turns out, small businesses are big targets because they’re pretty easy to hack – and a valid credit card number is a treasure.

The Wall Street Journal a year ago chronicled the tale of a newsstand owner with two stores who was victimized. And even though he thought he was taking precautions to protect his customers’ data, cyber thieves planted a software program on the cash registers at his shops that sent customer credit-card numbers to Russia. At the time the story was written, he was out about $22,000 because the credit-card company said he didn’t do enough. They said his weak password for his cash-register software, pos, was easy for hackers to try.

But a weak password is only part of the problem for most small businesses. Too many small businesses store passwords to sensitive data in Outlook or other email clients, and the data can frequently be found easily hacked Excel spreadsheets. Even if you have antivirus and antimalware software, there are numerous ways that hackers can find their way into your system. For some, it’s like taking candy from a baby.

However, you can put up some protective fences around your data. The measures may cost a little more money than you’d like, but those costs are smaller than the liability you could face from a breach of your data.

  • Get “business-grade” antivirus and antimalware software. We offer it for $4.25/mo/computer, and we set it up and monitor your threat activity. In addition, we assist you on any software changes you make to ensure that your virus and malware protection remain at your expected level of performance. Why is this important? You need to protect yourself against somebody installing a Trojan horse that can turn up years later. The newsstand owner’s system was compromised two years before anything happened. You can have the same protection that big corporations buy.
  • Don’t keep user names and passwords in Outlook folders or Excel files. To be honest, they shouldn’t be on a computer. You should write them down on a piece of paper and store them under lock-and-key. Having your data compromised through an email backdoor is a growing problem. (See Lowdown on Hijacked Email, the next article in this newsletter issue.) If you get an email from your bank, credit-card processor or PayPal, don’t just click and reply. Hover over any link or email address and see where it’s really going. Better still, go to your provider’s website independently of the email or pick up the phone and call customer service.
  • Use strong passwords. If I had a nickel for every a-b-c or 1-2-3 password I’ve seen, I’d be managing a large investment portfolio instead of IT systems. Make your passwords long or complex or both. Use uppercase and lowercase letters, numbers and special characters.
  • Keep your Wi-Fi network secure. Networks are all over the place in commercial and residential areas. Just take out your smartphone and see how many networks are in your range. If your network is unprotected, anyone can sit in range unnoticed for as long as they need to find a pathway to your valuables

We would welcome the opportunity to provide a free risk-management assessment of your practices and systems. Call us at 973-433-6676 or send us an email and feel more secure.

This article was published in Technology Update, the monthly newsletter from Sterling Rose LLC.