Anti-Virus – Do we still need it or is it doomed?

With the advancements in technology the threat landscape is evolving too.

Malicious software is becoming harder to detect and remove – it is also starting to affect a wider range of devices because of the ‘Internet of Things’. There has been some cases that advance malicious software can even bypass the anti-virus software by changing its code!

In some ways there is truth behind what Brian Dye, senior vice president of Symantec famously said a few months ago ‘Antivirus is dead’ and it is ‘doomed to failure’ because Anti-Virus relies on a signature database to block out malicious behaviours so, if a particular piece of malicious code has never been seen before – you will probably be a victim to it.

However AV is not completely doomed as Eugene Kaspersky quite rightly said, it is still ‘very much alive and kicking’ because as threats evolved so has the traditional AV. It is about choosing a product that has a database that is continuously updated and have a good feature set.

Many vendors are now reinventing AV and changing it to ‘Endpoint Security’ which offers a wider range of features from your standard things like Anti-Virus, Anti-Spyware and Anti-Malware but, include features like application control, mobile device security, encryption and rule-based system behaviour blocking.

However security has become more complex and just because AV or ‘Endpoint Security’ has more features, we cannot just relying on it to be the sole system defences, it is not viable anymore. It will not provide an adequate level of protection for a modern day complex network.

Networks have developed into complex environments with multiple layers and a range of devices connected so, a layered approach to network security is key because it helps protect the different level within the infrastructure.

AV should just be seen as the first line of defence only, its aim is to protect users from things like spam emails, malicious attachments and websites. Occasionally some will get through but this approach is more secure and safer. Always keep in mind there is no 100% defence against the malicious cyber-attacks because the variables are always changing. Continuously network monitoring is also key to catching any abnormal behaviour.

For more information on network security please feel free to contact us on 0845 603 5552 or info@netshield.eu

Netshield Anti-Virus service – powered by BitDefender

Anti-Virus software is a necessary evil – it can take valuable time and energy to deploy, update and manage and they are not all the same! Netshield Anti-Virus is a comprehensive solution that acts as your first line of defence against malicious software.

Check out the video below for a quick summary…

Could being sociable online be dangerous to businesses?

‘Social Engineering is the technique of manipulating people into performing actions to divulge sensitive or confidential information’ – Cyber Security Guide 2013

 

Social media has grown considerably in recent years, not only it is a tool individuals use to interact, create, share or exchange information, it is also increasingly important fsocial mediaor businesses to have a social presence.

However, being sociable online can come at a cost, it can be a security risk otherwise known as ‘Social Engineering’ – ‘a non-technical intrusion that is reliant on human interaction and tends to involve trickery, causing individuals to break usual security protocols’.

Social Engineering is heavily reliant on personal information and social media is a goldmine for Social Engineers looking to do harm. It relies on individuals being careless with their information and the results can be harmful to individuals as well as businesses.

Many Viruses, Phishing and Malware email attacks are now are prime Social Engineering examples. This is because they are getting more personalised and often you have to look at it twice before you realise it is not legitimate. Like CryptoLocker that disguised itself as a delivery note from popular courier companies or phishing emails disguising themselves as well-known banks.

social engineeringSocial Engineers also take advantage of individuals natural inclination to choose passwords that are meaningful to them and using them for a number of logins. By using meaningful passwords, paired with personal information gained from peoples online presence – it can make them easy to guess. By uploading photos of your pet, comments about a restaurant or your daily activities, it can be used by a hacker to build a picture of you.

‘12% of social media users say someone has hacked into their social network account and pretended to be them according to the 2013 Norton Report’

It is not about censuring online activity but, individuals and businesses need to understand how valuable information is, how it can be used against us and how we should take precautions to minimise the risk of social engineering.

For more information on how to defend against Social Engineering contact one of our Netshield consultants today on 0845 603 5552.

Information Security isn’t just a Technology issue but, a Business one..

As the lines between work and play blurs due to the advances of technology, it becomes more apparent that ‘Information Security’ within the workplace is not just the IT department’s issue.

Information or data is a business enabler, it enables operations and productivity so, the security of it should be viewed as essential and promoted throughout the company – but, in most cases it is not.

Is this because we instinctively protect what we can see in front of us like buildings, personnel, hardware, the tangible assets but, we neglect the intangibles such as information because we struggle to see the physical value of it? Or is it the general attitude towards data security, the idea that we just need to do enough to meet regulations and compliance standards?

IT Security should be seen as a task to minimise risk for an organisation

This risk management is not just limited to the IT department or within the office because let’s face it, many of us do work a little when we get home even if its just checking our emails.

‘As many as 49% of individuals would use their personal device for work, found in a recent Norton Report’.

Employees use of unauthorised personal mobile devices can be a threat because it is an unknown object on the IT network. For example, if a user was to save business data onto an unauthorised device and then it was infected by malware, the data could end up in the wrong hands!

However, it is not about the IT department forbidding personal devices – if devices are approved then it is safe to have on the network. It’s all about having policies in place and training employees on how to access business data securely. The training should not be limited to the use of mobile devices but, general IT security practices i.e. always encrypt email containing sensitive data or never write login credentials on a piece of paper.

It is also important to ensure staff are aware of ‘Social Engineering’ because no matter how protected an IT Network is, there is always the possibility of external threats getting in, like CryptoWall which tricks users into opening infected attachments, exploit security gaps in Sliverlight, Flash and Java then, similar to CryptoLocker it will encrypt your files and demand a ransom.

Regular IT network assessments are recommended – not only will it help protect and minimise potential security risks, it can also be an opportunity to assess the efficiency levels of the network.

There will always be a possibility of a breach in security for every company, it could be due to a cyber attack, human error, social engineering etc but,if risk management is a common goal amongst every employee not just the IT department, it can help manage and minimise security risks in the long run.

To find out more about data protection or IT network security you can contact our consultants on 0845 603 5552 or drop us an email on info@netshield.co.uk

We are now on Facebook!

The team at Netshield have some exciting news to announce… we are now on Facebook! It will be filled with latest technology news, advice and much much more..

Although there is not much on our Facebook page at the moment but, watch this space as there will be some interesting news posted on there in the coming months 🙂

IT Services Netshield Facebook page

Check out the new Netshield Facebook page today!