Bring on the Passkeys

Passwords are porous, and so are some forms of two-factor authentication (2FA), such as those numeric codes sent to your phone or email to verify your identity. Known as one-time passwords (OTPs), they’re relatively safe, but hackers are getting better at breaching that defense. Passkeys are coming into their own as a stronger cybersecurity tool.

OTPs are typically provided in a text message, which is vulnerable to attacks in several ways. A hacker who intercepts the text to your phone might not get the password directly, but they could launch a smishing attack (it’s like an email phishing attack) and wait for you to make a mistake (responding to the text) to get into your account. More sophisticated hackers engage in SIM swapping or a more effective means of message interception to take over your phone and account. With those latter two forms of intrusion, it may take a while for you to discover the hack. Even if it’s less than an hour, it could be too late.

Risky as they are, OTPs by text are likely to remain in use for a while. Some companies are reluctant to change because they fear it will cost them customers who are not tech-savvy enough to adapt to more sophisticated verification tools. Most of you can reduce the risk somewhat by using a password manager. Reputable providers keep your master password secure – sometimes allowing you to bypass using it (as you’ll read shortly) – and add a strong layer of protection by generating long, complex passwords that are hard to crack.

As a smartphone and password manager user, you’re likely to be using a passkey already. For iPhone users, it’s facial recognition. For Android users, it’s a fingerprint. These and other passkeys work in the background to assemble a mathematical puzzle. The numbers are always changing, and they are not tied to anything that’s unique to you as a person. It doesn’t care about your mother’s maiden name or your first-grade teacher.

Most password managers use biometrics to authenticate you and your device, and you don’t need to be a tech wizard to set up and use it. For facial recognition, you just need to let the authentication app see several views of your face. For fingerprints, you just need to roll a finger over a sensor. In most cases, when using your smartphone, tapping on the app for a website automatically starts the authentication sequence.

Authenticator apps such as Microsoft Authenticator and Google Authenticator can work with website visits from a computer or mobile device. We like to set up our Microsoft OneDrive clients using Microsoft Authenticator to access files securely from any device from any internet connection.

For mobile devices, you can use a mobile app push for even more security. It works with mobile apps on your phone. When you log in to a website, you get a notification in the corresponding app on your phone that prompts you to verify your identity through that notification. This verification method is independent of the device you are logging in on and better than SMS or authenticator OTPs. However, you still need to pay attention. A hacker could repeatedly try to log in to your account using a stolen password, and you would get multiple messages on your phone to verify. If you click to verify, you could give the hacker account access.

We can help you move to a stronger authentication process. Call us – 973-433-6676 – or email us to see what authentication could work best for you. We can help you install and configure the necessary software and get you started on using it.

Red Light, Green Light, Warning Signs

How many of you ignore red or amber warning lights when they appear on your car’s dashboard? Based on what we see in IT, most of you probably ignore them. When you see a red warning on your computer screen, it could be a security alert or a malfunction.

I recently got a red warning when I tried to print a document. When I looked, the system was objecting to my print parameters. I was trying to eliminate the margins so that I could fit everything I wanted on the piece. In this case, I was able to add some instructions to override the printer’s setting; it’s something I’d bet a lot of you have done.

Other types of warnings can’t be circumvented. In our next example, a client got a new computer but didn’t pay close attention to a OneDrive warning about synching files between his old computer and OneDrive. Typical OneDrive accounts provide a terabyte (1 TB) of storage space. It sounds like a lot of room, and we keep throwing stuff there. However, there is a finite limit on how much you can store. And just as with your hard drive, you need to have space available to be able to manage files. That’s one reason OneDrive and your computer’s hard drive can’t sync.

Microsoft is pretty good about giving you a heads-up on problems, but you need to be proactive, too. In the lower right corner of your computer screen, OneDrive users can see an icon for their drive on their service tray; it should be a blue cloud, and you should monitor that corner of your screen – just like you check your dashboard and mirrors when driving your car. When there’s a problem with OneDrive, you’ll see a red indicator. You can right click on the icon to see what the problem is.

In this client’s case, they missed the warning as they were transitioning to a new computer. When they started to use it, they were missing six months’ worth of files because unbeknownst to them, the synching stopped. Fortunately, they were able to recreate the lost files, but it cost considerable time and money.

It goes without saying that the earlier you catch a problem, the faster and easier it is to fix. Sometimes, it’s an administrative issue, such as a problem with your account. Signing in to your account may point you to a few steps. Sometimes, it can be as simple as just signing in.

But other times, you may have run into a complicated technical issue, and that’s where you need an IT professional’s help. We have seen just about all OneDrive problems known to the world, and we have tools to get to the heart of your issue. Depending on the problem and your comfort/skill level with technology, we get you started on the solution, work with you at various stages of the solution, or fix it for you.

Taking a few steps back from the crisis stage, you can prevent a number of problems by properly setting up OneDrive on a new computer. We can verify all systems are working as they are supposed to. We can do this in one of two ways: 1.) access your new computer remotely once you take it out of the box and get it online; or 2.) take delivery of your new computer, start the setup with you on the phone, ship it to you, and finish the setup remotely.

No matter what we do for you or how we do it, we will remind you: red light, green light. If you can get into the habit of checking the status of apps on your service tray, you need our services a lot less often. Call us – 973-433-6676 – or email us if you have a problem or want to take a step to avoid one.

A Tip to Speedup OneDrive

For the most part, the cloud is a safe place to store your files, but we have clients who prefer to have the files they’re working on stored on their hard drives. OneDrive is good for up to 150,000 files, but it can take longer than we like to retrieve files after you blast through that storage level. Here’s a tip to speedup retrieval: Use the Add Shortcut to OneDrive.

The Add Shortcut to OneDrive option does not sync anything to your computer; it just creates a link or bookmark to the document library or folder in your OneDrive for Business. This way, you can access the content from any device using the OneDrive app or website. You can also share the content with others more easily using OneDrive. However, you need to have an internet connection to access the content, and you cannot work offline.

The Sync option syncs the entire document library or folder to your computer using the OneDrive sync app. This way, you can access the content from your File Explorer or Finder, and you can work offline. Any changes you make will be synced automatically when you go online.

Just be aware that synching large libraries or folders can take up a lot of storage space on your computer and affect performance.

Microsoft recommends using the “Add Shortcut to OneDrive” option over the “Sync” option in certain scenarios. They include:

  • The document library contains a large number of files that would take up too much space on your computer’s hard drive.
  • You need to access the files from a device with limited storage space.
  • You need to access the files from a device that is not owned by you.

Just to recap, the “Sync” option downloads the entire document library to your local machine, while the “Add Shortcut to OneDrive” option adds a shortcut to the library to your OneDrive folder on your local machine. The option you choose depends on your specific needs and circumstances.

If you’re synching all your data now and want to set up the OneDrive shortcut, talk to us. If you don’t set up the shortcut properly, it could be the technology equivalent of following GPS directions off the road and into a swamp. You risk losing all your data, and that can be more expensive than just trying to fix a computer.

Call us – 973-433-6675 – or email us to set up an appointment to set up your OneDrive shortcut.

The New Outlook for 2024

Windows Mail is going away. Let us all say “hallelujah” and give thanks. And let us all start moving to the New Outlook, which is web-based and adds speed, more functionality and additional security features to the old Classic Outlook.

Beginning in 2024, new Windows 11 devices will be shipped with the new Outlook for Windows as the default mailbox application, free for all to use. The Mail and Calendar applications will remain available via download in the Microsoft Store through the end of 2024. Users can switch to the new Outlook for Windows from a toggle in the Mail and Calendar applications on existing devices. If you still want to use Classic Outlook, simply toggle it back. New Windows is part of Microsoft 365 and takes advantage of OneDrive and SharePoint.

While many of us are reluctant to leave our comfort zones, where the old Outlook or Outlook Email might reside, there are several reasons why you should make the switch.

The new Outlook will have a much longer shelf life than the old version. That’s because it’s part of the transition from desktop- or computer-based to web-based apps. Once you get used to it as an individual user or have your employees trained, everyone can settle into a more productive routine.

You’ll first notice how quickly it loads and updates email messages. We found it faster than the classic Outlook, and it streamlines how you can handle email messages and coordinate email and your calendar. You can pin emails to the top of your inbox so they are easy to find later, snooze emails to temporarily hide them, and then have them reappear when you’re ready to respond and get reminders to follow up on important conversations. You can time the schedule for sending emails so they are delivered at the best time for the recipient or undo a sent email within 10 seconds, and you can use the sweep function to clean up your inbox quickly by setting advanced inbox rules for incoming mail. With My Day view, you can see your upcoming calendar events and tasks anywhere in Outlook. Package delivery and upcoming travel dates are also automatically added to your calendar from your email confirmations, and you can view the weather forecast in your calendar at any time.

Aesthetically, you have hundreds of customization options and several key functional options. You can save attachments to OneDrive while in Outlook and open them without leaving Outlook to open your Word, Excel, or PowerPoint.

For security, the New Outlook has beefed up its spam and malware filters, and those with a Microsoft 365 subscription can also access other security features, such as encryption.

Finally, the New Outlook has much more robust search capabilities, which we’ll explain in more detail next month.

In the meantime, we invite everyone to try the New Outlook. We believe you’ll find it a more productive tool once you learn its basics. We’re available if you have any questions about its new features. Just give us a call – 973-433-6676 – or email us if you have any questions.

Azure – Always at Work in the Background

Microsoft’s Azure platform has been our backup program of choice for clients since Office 365 became a product for small businesses and home offices/users. We like that it’s a living system – one that continues to evolve and grow.

If you read the article Microsoft ‘Ignites’ Tech Initiatives, you couldn’t help but notice that Microsoft is throwing massive resources behind Azure as a technology platform. As we see it, Azure will become an even stronger backup resource as it helps you use your data files and apps more efficiently. That said, you need to make it your backup program – or at least one of your backup programs – if you want to take advantage of advancing technologies.

Backup is a misunderstood term in the context of IT services. We define a backup as an extra copy of data from a computer. Simply putting data in the cloud – even with OneDrive through Office 365 – is not a backup; it’s storage. Now, it can be useful – even vital – to store data in at least one cloud and on some sort of external device that’s separate from a computer or office server. But it’s not backup.

Why is backup critical? Two scenarios come to mind: 1.) a catastrophe that wipes out your computer or cloud-based server and 2.) a rogue employee or hacker getting into your account and deleting files. The big issue in both scenarios is recovery.

Azure solves the recovery issue for us because it works seamlessly with Office 365, including Outlook and its PST files for your email. For some, backing up email may be more important than backing up files.

As an IT professional, I like Azure’s ability to generate reports – with more capabilities coming online all the time. Microsoft constantly uses customer feedback to add more power to the platform. That gives us the ability to go back into our clients’ backup records to trace incidents and to restore files after a catastrophic event. That’s critical because it can be 90 days – sometimes longer – before a hack or data loss is discovered by a client. When that happens, we can go back in time through the power of Azure to find data files that help us help you recover.

As a set of powerful tools, Azure needs to have respect from users. Yes, you can go into Azure, but you can also create havoc with your systems and our work if those tools are misused. One of the things that drives me crazy is when we look like we don’t know what we’re doing when restoring files because somebody messed with the system.

That being said, we believe in educating our clients. If you want to learn more about how your Azure backup is set up and see what it can and can’t do, we’ll be more than happy to give you a remote tour. Call us – 973-433-6676 – or email us to book your tour of your system.

Be Aware of Backup Terms & Conditions

If you’re one of our many clients using Office 365, we’ve likely put you on OneDrive, which essentially backs up some or most of your files. You also likely have another backup option or two that includes data storage in the cloud. But do you know what gets backed up to each cloud? Or how long it’s kept on a server? Or what happens in a catastrophic failure? Here’s what to be aware of.

For this article, we’ll focus on Office 365, Dropbox and Google Business Services. And while we believe the cloud is safe for data storage, the question is: How safe is it? There’s a lot we don’t know.

For example, what happens if something goes drastically wrong, such as an employee of the service going rogue, a hacker getting into the server, or a catastrophic system failure?

What happens if you lose your mind and delete a whole bunch of files – and then realize two months later that you need them?

In broad, general terms, the terms and conditions you agree to absolve them from any responsibility for any error that could possibly connected to you or your actions. None of the cloud providers covers your disasters; they only cover theirs. If there is a complete “nuclear meltdown” on the part of your service provider, they’re only required to restore data to the last point where they backed it up. If you back up your system on Wednesdays and the meltdown happens on Tuesday, you’re out six days of data.

One other problem that many small businesses and individuals face is knowing where all of their data is. They may have stored data in some account and haven’t accessed it for years. They may not even remember having the account. In many of the terms and conditions you agree to, a data storage company may have limits on how long they keep data, but let’s assume it’s unlimited. In cases where you forgot all of your access info – or maybe now use a different email address as your user name, it can be tedious, if not impossible, to verify you own the data and retrieve it.

To cover a reasonable number of contingencies, you should answer the following questions:

  • Do you know where all your data is and how to access it?
  • How much data do I need to keep? The amount of data we keep tends to expand as we acquire more storage capacity, and today’s technology makes that capacity virtually unlimited. Only you know what’s important, but your storage decision doesn’t need to be an all-or-nothing proposition. You can prioritize your data and put it in different places.
  • How are you backing up your data? You can do it automatically to a cloud and/or a portable hard drive connected to your computer or server. You can also do it manually. And, you can use any timeframe from real time to once a week – or even less often, though we’d always recommend real time as the first choice.
  • To what extent do you backup your data? You may be backing up only data files, or you may be backing up application software – or both. If you have employees who work remotely, you may have a system in place that backs up their work files or any changes that they may make while using certain applications.

Once you answer those questions, we can help you design a backup and storage program that meets your needs. However, it’s far from simple, especially for small businesses. We constantly go back and forth with vendors and clients about where to back up data and whether it should be more than one cloud. We tend to put our stuff in the cloud because it’s safer, but no cloud can cover human failure (it’s in the terms and conditions).

Security is the biggest human failure. If you or one of your employees with access to data opens a security breach, there’s no cloud service provider who’ll take responsibility for that. That human error is compounded if you go two or three months or longer before you find that data is missing or compromised – and that’s almost always the case.

Our advice is to forget about terms and conditions from your provider and set a few of your own:

  • Look at the data you store and determine how much you really need to keep.
  • If you find data stored in places or accounts you no longer use, transfer everything to a place you use and close out old accounts.
  • Decide where to store your data. Ideally, if you want to cover all of your bases, you should use more than one cloud and have a physical device in your office or home, such as a server or portable hard drive.
  • Develop and institute an automated backup program.
  • Decide who has access to your data – and then institute a process to keep it safe and make sure everyone who uses the process is trained.

We can help you follow through on all the terms and conditions you set for yourself, your employees and your data. Our process includes helping you make sound decisions on what to store and where, closing up all your loose ends, designing and implementing a storage program, training employees and monitoring your storage program. Call us – 973-433-6676 – or email us to discuss your needs and set up an appointment to move forward.


Terms & Conditions and Apps

Many of the companies we do business with online, especially those for purchasing merchandise, like us to use their apps for phones and other devices. We accept their terms and conditions to get it done – and we never bother to find out what data those apps share and with whom. You can sidestep the issue by going to a company’s website for the transaction. And while you’re at it, you might want to delete those unused apps that may be tracking you and feeding info to…whomever. I recently cut my apps from something like 150 to 47 – and I still only use about half of them. I was prompted to do it initially because for years, I suspected an app was screwing up my phone. So now, my phone works better, and even though my data may be shared with unknown parties, there are fewer of them watching me.


More Companies Want Your Collaborative Efforts

Dropbox has entered the collaborative space by adding a host of new tools to help you and teams share files. We see it as a big leap for a company that started as a file-sharing provider, but we don’t see it as the equal to Microsoft OneDrive.

Two areas where we see OneDrive as far superior are cost and feature sets.

The cost of OneDrive is built into the cost of the monthly subscription of Office 365 for all but the most basic plans. For most of our clients, plans range from $5 to $12 per month, and the key benefits are access to the most widely used business and home applications, such as Word, Excel and PowerPoint. The subscription provides updates for security patches and bug fixes and performance and feature updates. OneDrive almost comes across as a throw-in, but Microsoft has recognized the value of keeping its massive user base in the family. What was an extra-cost feature set is now a way to provide tools and features, such as collaboration and file backup tools and useful apps from other providers. We covered some of them last month.

Depending on your plan, the cost of Office 365 with OneDrive includes the ability to store terabytes of files, which can be set up as shared files when needed. Collaborators can make changes, and the files are immediately updated, so everyone knows they are working with the most recent file. This capability has been available through Google Documents and Dropbox, but by keeping it all within Office 365, it’s about as seamless as a process can get.

Dropbox has always made a limited amount of file storage free, now 1 terabyte, but you need to be on a plan if you need more. The cost of the additional storage, for most of our clients, is roughly the same cost as having Office 365 without having the applications and tools included. In effect, you pay twice for the same capabilities.

As for capabilities – and features and tools, Dropbox can argue that by teaming up with Google, Slack and others, you can benefit from a broader range of ideas. Yes, that may be true, but here are two considerations:

  1. In the course of all the things you do, what are the tools and features that matter most to you? If you have Office 365 and it does all that you need it to do, you might be better off keeping it in the family.
  2. For a business or network of volunteers, how much training and retraining do you want to do? Learning a system is a lot like learning a language. The more you use it (or speak it), the better you become. That translates to better productivity.

Yes, Microsoft can be a big, plodding giant, but we believe its standardization works best for consistency, and that’s a huge advantage for businesses and volunteer networks. It’s easier to keep everyone together.

Finally, we like OneDrive’s file transfer capabilities better. Prices for cloud-based services can change at any time, and it can be difficult to move and verify the transfer of large volumes of files. We share a concern that this could make it difficult to migrate from Dropbox because the transfer process is too complex. Part of this may stem from changes made to a computer’s registry, where Microsoft, Dropbox and other applications are waging a war for the limited number of overlay icons to show file status. Each app changes its name to claim a spot in your Registry Editor, which Microsoft allots in alphabetical order. This could potentially create registry problems, which are all difficult to resolve.

We can help you set up OneDrive and transfer files from your computer and Dropbox. Call us – 973-433-6676 – or email us to discuss your options and begin the process.