If you’ve been on the internet lately, you’ve probably seen pretty aggressive advertising for VPN services. On paper, they seem like something that can give you anything you would want in your online browsing in terms of security and access.

Continuing our Cyber Security Month series of articles, we’ll be covering this apparent modern miracle of internet browsing. As businesses increasingly move to a digital work environment, web security is more important than ever. With that in mind, is VPN security a true treat…or just a trick?

VPNs: As Sweet as Free Candy

Before we get into the benefits of VPNs, we should probably explain what they are. VPN stands for Virtual Private Network. They essentially create a tunnel for your web browsing by giving you a (usually) local server to log into. This then provides access and  directs your web traffic. Not only is the information to and from the server encrypted, it appears as though the server is browsing the sites, not you.

This can be beneficial for you as a browser. Even if someone were spying on your personal connection, they would only see you connecting to a single server, not the specific pages you visit. You can also make it appear like you’re browsing from another location by changing the IP address. Because of this, you can view sites like Netflix and see content not available in your own country. Additionally, you can avoid internet censorship in countries that tend to have more restrictive regulations, like China.

These services are generally low in cost, especially if you purchase longer subscriptions. Actually, there are several options that offer basic services for free and only charge for premium options. Wow! This all sounds great! So, is there any catch?

VPN Security: A Razor in Your Apple

Everyone wants digital security, but just like with anti-virus software, a single program will never keep you fully safe.  Many users  don’t understand the natural limitations of VPNs, putting too much faith in them, particularly free versions.

For starters, no matter what the ads tell you, VPNs do not give you 100% security on the web. While someone spying on your network may not be able to see what you’re doing, the websites you visit sure do! If the site uses cookies, they attach themselves to your computer, not your IP address, so they can still affect you. Also, you don’t know what sort of security protocols the sites you visit have. In fact, VPNs can give you a dangerous sense of security when you should always be vigilant. For example, if you visit a nefarious site and give them your credit card information, your VPN can’t help. Even if you send your information to a legitimate site, your VPN is  powerless if that site gets hacked.

Another issue is VPNs increase the size of a hacker’s target. In the past few years, hackers have put more energy into breaking into larger targets to increase the payoff. Why steal the fish when you can steal the fish market, so to speak? VPN services provide a juicy target since access to those servers means having the browsing information of many users. This exact scenario took place in 2019 when NordVPN servers were hacked, leaving any and all traffic accessible for a period of a few months! If that happened to one of the biggest names in the game, think about how safe you could be!

Stay Safe at Home

While VPNs are far from a perfect solution, the idea behind them has some merit, namely in that by hiding and encrypting your connection, it makes it that much more difficult to have your data compromised. There are still ways to improve on this technology, though.

One of the best ways is to use a virtual office. This entails a complete virtual desktop provided to anyone with the credentials to log in. This can include everything from productivity software (such as MS Office) to actual data storage. This is a much more secure option for a variety of reasons. First of all, you log into one specific, secure system versus going from website to website. Also, this is a dedicated solution, allowing you to login with full confidence knowing who is handling your connection and data. Lastly, virtual offices are often administered by actual human beings, not just software, allowing any and all threats to be addressed in real-time.

While VPNs make your internet browsing safer, that’s like saying eating five pieces of candy instead of six prevents diabetes. If your business plans on doing any sort of remote or virtual connection, take a look at a virtual office. Don’t leave the setup and administration to just anyone. Contact us today to see just how quickly and safely you can get your employees connected without relying solely on tricky VPN security.

In today’s age, we all must be cyber aware. The average American today has access to more than 10 Internet Connected Devices in their household. Most have at least 2 computers and 2 smartphones. Across the world, an estimated 30 billion+ devices connect to the Internet. This connectivity generates massive potential for advancement; but in turn, creates a paradise for hackers. This is nothing new. Hacking has been on the rise since the dawn of connected technology. And here’s the problem. Most businesses have maintained the same security protocols for just as long. The theory is that what they’ve done so far has worked, so why is there any reason for change? Here are the seven reasons why technology is more dangerous than ever before:

Side Note: Why focus on cybersecurity now? October is National Cybersecurity Awareness Month. For the past 17 years, during October CISA and partners have focused on cybersecurity. Follow us on Facebook and LinkedIn for more tips and tricks throughout the month. 

Let’s Be Cyber Aware About Ransomware

The first computer virus was introduced in the 1970s. It took over systems by replicating on the hard drive until the user didn’t have system space to operate. It was actually built as an experiment and had no malicious intent/implications. Today, viruses aren’t child’s play or experiments, and the most dangerous one takes over the hard drive completely, encrypting every piece of data.

If you’re connected to a network, it can then infiltrate the servers and start encrypting there. If your data backups are also on that network, you lose all access to a clean backup.  The only way to get this data back is paying the ransom (not recommended under the vast majority of cases), or working with an IT company to revert back to a clean data/decrypt the files based on the specific ransomware in play. Either way, you’re spending a lot of money and time to get back what’s yours to begin with, your precious data.

Part of Being Cyber Aware is Knowledge of Phishing

Phishing emails at one time were super easy to spot. The Nigerian prince desperately needed to send you money if you inputted all of your personal information. Since then we have become more cyber aware, but phishing attempts have improved. Today, phishing attempts are a whole lot smoother. The perpetrator researches enough to identify your boss, then sends an email under his/her name asking you to discretely transfer money or send identifying financial information. Unless you’re looking at the exact email address it’s coming from (typically spoofed by one or two letters in the domain), all of a sudden you’ve transferred $40,000 into an unknown person’s account thinking it’s your CEO.

You won’t think anything of it until you speak with your CEO later and realize that is wasn’t really them. These honest mistakes cost companies hundreds of thousands of dollars every year with very little recourse to get the money back where it belongs. Some experts say that employee mistakes cause nearly 92% of breaches.

Insider Threats

As more people work remote, particularly with the urgency of the past six months, businesses have lost tight control on their data, increasing the threat of malicious insiders. While we want to trust every person working for us, that one disgruntled employee who decides to store a copy of the customer data before putting in his two-week notice, could wreak havoc on your business when they decide to work for your closest competitor. Virtual Office solutions can alleviate a lot of the pain this could cause and allow you to keep every piece of data exactly where it belongs.

Data Leaks and Password Practices

Malicious insiders can cause these leaks, but they’re also the password leaks from major players that you hear about frequently. You may be wondering how a LinkedIn password breach can really hurt you in the long run (after all they really just gain access to your professional resume). 53% of people admit to reusing their password on multiple accounts. Hackers rely on this. They can sell the password or utilize that password to hack much more dangerous things, like your banking institution. Our best recommendations: use complex passwords, don’t reuse passwords, use a password vault to keep track of all your passwords, and implement two-factor authentication wherever you can.

Become Cyber Aware About Cryptojacking

Cryptocurrency is a hackers’ favorite payment method. It is untraceable and extremely valuable. Beyond requiring cryptocurrency for the vast majority of ransomware attempts, some hackers infiltrate a system and use it to mine cryptocurrency without the user’s knowledge. They get in utilizing a malicious email link or through malvertising (advertising that carries nefarious code). A user may recognize slightly slower performance, but they more than likely never know that someone is using their system to mine cryptocurrency. Some codes also spread throughout networks, so that hackers can maximize their financial gain using someone else’s resources.

IoT Hacks

As we connect more devices to the Internet, particularly those items in our homes – stoves, cars, Alexa or Google – we open another target for hackers to infiltrate our lives. They may canvas homes through your connected camera system or baby monitor, install viruses on your stove or vehicle that impact performance, or begin speaking to y0u randomly from your device. IoT can be safe, but you must make sure you’re utilizing as many security precautions as humanely possible.

Hacker Advancement

The greatest advantage for hackers is they have become more sophisticated and educated overtime, and the good guys haven’t been able to keep up. If you’re relying on internal IT or an MSP without security expertise, your team is most likely behind on the threats and not implementing everything they need to keep your staff safe. They should implement things like phishing tests, employee education, dark web scanning, hosted back-up solutions, crisis planning, multi-factor authentication, and professional-grade permissions control for administrative privileges to keep you safe. If you’re unsure of your security level with your current IT solution, contact us.

In our last article, we discussed the security benefits of using a virtual office. In this blog, we’ll cover how a virtual office can help to make your job easier and more enjoyable.

Let’s face it, you can have a beautiful corner office — but it’s still an office. Very few normal human beings enjoy being stuck in an office let alone commuting to one everyday. Thankfully, it seems that physical offices are becoming sparser these days for a wide variety of reasons.

Virtual Office: Why Consider Mobility?

Many of you reading this might have been skeptical about the idea of a mobile office. Back in the 1980s, mobile working meant having a giant word processor, dot matrix printer and wired car phone. Compared to what we have available today, that seems more like a nightmare than progress. Today, you may be concerned about how you can effectively manage your employees in a remote environment.

For the past decade or so, more businesses have been moving to mobile workers. This allows for flexibility, creates an always-on (or always-accessible) workforce, and eases national recruiting. Once the recent pandemic hit, much of their day to day operations continued without consequence. Those that hadn’t considered mobility were quickly forced into finding a way to send employees remote. Since we don’t know how long the current crisis will continue or what the future may present, the current COVID-19 pandemic is an excellent example of why it’s best to consider creating a virtual office.

If you can work from home or on the go, you’re free from the office and can work wherever, whenever. Have a doctor’s appointment? Keep up with your clients, so you don’t have to take personal time. Did last night’s weather make the roads unsafe? Run your reports from your home office while not putting your life at risk. It’s no secret that employees who have the option to work from anywhere are happier employees who often stay at their company longer.

Virtual Office: An Office In Your Pocket

Here’s an important question: why do you go into work all? Some people have to be at a location to do a specific task. For example, you won’t find too many jobs as a carpenter working remotely. If a particular job requires that a person be on location, there isn’t much you can change.

However, many of us come into the office every day just to sit at a computer and use commonly available software to do our job. Other than meetings (that can usually be an email) or for workplace gossip at lunch, there’s no reason you have to go to that office to sit at that computer. If a portion or all of your workforce fits into that category, why bother wasting all that money on a large workspace? Many companies find that even if a few employees have to be in the office, they can still cut down the size and location of facilities significantly. It’s not uncommon to see a company with 100+ employees using an office with less than a dozen offices or workstations.

A Real Solution

Up to this point, we’ve only talked about this concept of a mobile office in the abstract. What exactly is a mobile/virtual office?

You can log on to any system mobile, desktop, laptop or otherwise and have the same exact experience as you would have on your desktop computer. All of the apps are there, in full functionality, all with single sign-on and secure multi-factor authentication.

Besides being as secure as a bank vault, this style of a virtual office gives you the ability to work at any location on any device. Just a generation ago, no one could have dreamed of this kind of freedom or flexibility! Start your day off on your desktop, run a quick errand while connecting to your smartphone, sit on the back porch with your laptop, then end your workday lounging on your tablet—all while connected to the “office.” What happens if your device gets lost, damaged, or stolen? Nothing. Your data isn’t stored on the device itself and logging in requires multi-level authentication, which we routinely monitor.

While it’s true that other types of systems have existed in the past that allowed remote access to systems, they were rather clunky, slow and nonsecure.

Bring your operation into the 21^st century! If you can move some or all of your workforce into virtual offices, now is the perfect time. Contact us today to see how we can quickly get your operation virtualized and running at peak efficiency—anytime, anywhere!

So, you may be wondering why the break-fix model doesn’t work. Grandpa always said, if it ain’t broke, don’t fix it. While we love Grandpa, that truism isn’t always true. Just like the customer is always right and other similar expressions, simply because people have been saying something forever doesn’t make it correct.

Still wondering why the break-fix model doesn’t work?

Break-fix fails: waiting to take action when something breaks before you fix it can end up being costly and disastrous in the long run. Where do we find the balance between upgrading routinely and only replacing when you have no choice? Also, what does this have to do with this series’ theme of hiring an IT tech?

Break-fix Model: Let’s Break the Cycle

When a company grows and gets larger, certain things that used to seem important get pushed to the back burner. Some companies may even change their model and service style after rapid growth and incorporate the break-fix model. The break-fix model is also sometimes used due to having lower resources. These are usually issues that don’t have immediate ramifications. Unfortunately, this often includes technology, such as computers, servers or copiers, as well as software. While there’s no built-in self-destruct date on these machines or programs, just because you can use something doesn’t mean that you should use it.

Many of us have computers that we may have used for close to a decade. But have you ever had a computer suddenly die on you? Or what about needing a software upgrade, but your hardware can’t handle it? These have happened to all of us at some point. While it might be an inconvenience on a personal level, it can be devastating for a business. Equipment going down unexpectedly can mean a massive loss of productivity or worse, loss of precious data.

Despite this, many still choose to rely on replacing equipment only when it breaks. This puts you at the mercy of whatever the items costs the moment you need it. You might be able to find a sale, but more than likely, you’ll end up paying the full retail price. If you choose to replace all equipment of a regular schedule, you can end up getting volume discounts.

Let’s use some general numbers here. Suppose a workstation costs $1000 per employee.If you have 25 employees that $25,000 to replace all the workstations. If you buy everything at once, you’ll end up getting a volume discount. In this case, we’ll go with a 20% discount. That would be a savings of $5,000 to replace equipment that you would already have to replace anyway — or $5,000 wasted in purchasing one by one. Not only that, but you would have no idea how much you would be paying on a monthly or yearly basis if you replace one by one. One month you could be paying $0 and the next $5,000.

Not So Easy Break-fix!

Naturally, there’s a lot more involved in replacing equipment that signing a check. For starters, when would you need to replace the hardware? Where would you purchase it? How are you going to negotiate the volume pricing? What kind of equipment do you actually need? How do you budget this out? Who’s going to go to swap out the equipment? What do you do with the old equipment once it’s replaced?

Your IT department or outsourced MSP typically handles these concerns. While the equipment in question is crucial to operations, you most likely don’t have someone with the qualifications or bandwidth to figure all of this out. That’s what an IT professional does. This is a reason that it doesn’t make financial sense not to have some sort of IT tech.

Spending Dollars Can Make Sense

As we’ve already mentioned, holding out to make purchases only when they’re absolutely necessary can end up costing you a ton in the long run. It’s logical to make sure you have someone consistently addressing your IT needs before there are issues. In the first article in this series, though, we showed how it makes the most financial sense to consider using an MSPcc over an in-house IT tech or a whole department.

Beyond the factors of salary, insurance and other expenses related to that employee, you also have to consider how an MSP can save you money in different ways. For example, you wouldn’t be their only customer, which means that their purchasing power is much stronger, giving you a better volume pricing. While you may only need 25 computers, that MSP might be purchasing 100 between you and their other customers, so they can negotiate a much better discount.

Also, a good MSP will replace all hardware and software not up to standard at the beginning of your contract. While this might seem like a financial shock at first, it saves you in the long run. If your MSP knows every single piece of your equipment, then future upgrades or repairs will be fast and within budget.

Another great advantage is being able to budget. Replacing your equipment only as it breaks can lead to extreme un-budgeted fluctuations in your IT expenses. When you hire an MSP, you know what you’ll be paying monthly and yearly.

Break Free from the Cycle

If you’re tired of being stuck in the same old break-fix cycle: contact us today! We pride ourselves on helping our customers not only spend less by preparing for the future, but making sure there aren’t any gaps in productivity. Our experienced staff will go over your current system in detail. Then, they’ll create a comprehensive plan that makes sense for your business. We’ll make sure that that the only cycle you’re involved with includes your success!

If your business is at the point where you’re thinking about hiring a fulltime IT tech, congratulations! Having enough consistent needs to fill this role means you’ve worked hard and made good decisions that drove business growth. Our best advice? Don’t stop now!

Moving forward with hiring requires a lot of analysis to avoid major consequences down the line, though. One of the biggest decisions whether you’ll hire someone directly or use a third-party MSP (Managed Service Provider). In this article, we’ll get into the specifics of both scenarios.

Why Do You Need an IT Tech at All?

In the past, business people and tech people were two different breeds. Over the years, the gap has gradually shrunk to the point that many people are tech-savvy enough to get by for the little things. As your business has grown, though, you likely have needed to delegate many of your previous duties, like IT — even if you feel perfectly capable of handling them yourself. After all, when do you think was the last time Jeff Bezos packaged a shipment? Your IT needs have also likely grown much more complex.

If you don’t choose to delegate now, you fall into a major pitfall of leaving IT duties unassigned. In our current landscape, leaving an IT post open could be a death wish. Cyber attacks of all types are on the rise, and the amount of damage each one could impose is ballooning. For example, in 2016, the average ransomware attacker demanded $522. In 2020, that average sits around $84,000! Sadly, many of these attacks take place as a result of not having someone the wheel.

In addition, there’s the issue of efficiency and cost-effectiveness. Being lax over time can make your systems out of date, making it harder for everyone to get their work done at a reasonable rate. In addition, only replacing equipment when it’s broken and not when it functionally obsolete can create situations where portions of or your entire workforce will be unable to do any work at all for a time.

An In-House Solution

So, let’s say you’re on board with having one or more people make up your IT team, and you make the decision to hire them directly. One certain benefit is that you can look through a collection of qualified candidates and pick just the right person(s) that you want! But then the other shoe drops.

Just like any other employee, before you hire someone for your IT needs, you have to consider the costs. For instance, the average price of an IT professional is $60,000 per year. Alright, so you budget out $60,000 — then you’re all set, right? Far from it!

Where is this person going to work? Maybe you already have space for them, but these professionals require more expensive hardware and monitor setups. Additionally, you need to factor in the network diagnostic software plus any industry-specific software. Since they’ll generally be on call, they’ll need a phone with a good plan so you can always reach them and possibly a company car (or at least some form of vehicle reimbursement) if you have multiple locations. Don’t forget that expense account!

Besides the specific expenses mentioned above, remember that this person is still an employee, so you have all the other general costs your other employees have associated with them. This can include health/life insurance, vacation time, sick time, 401K plus any bonuses or overtime pay they may rack up.

And what do you do if they leave? The implicit and explicit costs can be truly staggering when you take the time to add it all up.

A Safer Option

In the past, the above option was the only choice most employers had available to them. Based on the high costs (both known and unknown) associated with hiring an IT professional, it’s no surprise that companies have flocked to an alternative option: MSPs.

With an MSP, you have all the benefits of a fulltime employee without the downsides.

They will be consistently available, knowledgable in your network, and focused entirely on IT rather than other day job expectations. Need assistance when it’s time for regular upgrades or maintenance? Want someone to redesign your entire IT setup? Looking for someone to completely take over your IT operations, including telephone, so you can focus 100% on your core business? These are the sorts of services you can get out of an MSP.

Even better, the price you sign in the contract is the price you know you have to pay month after month, unlike the many unknown costs of an employee. There are no HR issues to worry about and the work is on the shoulders of a company, not an individual.

If your company is at the point where you know you need dedicated IT personnel but are unsure about which direction you’d like to go, contact us ASAP. We would be more than happy to go over your needs and discuss the best options.