Limbtec Limited > Blog > 2024

Cyber security training once a year isn’t working

6th May 2024
Cyber security training once a year isn’t working

We all know how important it is to keep our people up-to-date on the latest cyber threats. After all, with cyber attacks on the rise, staying one step ahead is crucial to protect your business from potential breaches.

But here’s the thing – annual cyber security training just isn’t cutting it anymore.

Sure, it’s become a routine part of the calendar for many organisations. And it’s great that it’s happening at all. But ask any security leader, and they’ll tell you… employees find it time-consuming and uninspiring. From clicking through slides to skimming through videos at double-speed, it’s usually seen as just another box to tick.

And let’s be honest, even for those who do engage with the training, there’s little evidence it leads to real behaviour change.

That’s because the traditional approach lacks interactivity and doesn’t connect with employees on a personal level. It’s more about ticking boxes than building a culture of cyber security vigilance.

Guess what? There’s a better way. It’s all about small, regular, human-centric interventions. Think of it like the speed signs you see when you’re driving. They remind people to stop and think before they engage in risky behaviour. Just as the signs work for driving, this kind of training makes your employees more aware of what they’re clicking.

By nudging employees toward safer decisions in real-time, we can help them develop better cyber hygiene habits without overwhelming them with information overload. It’s about empowering them to make smarter choices every day.

And with the amount of Generative AI and third-party tools we’re surrounded with right now, it’s more important than ever to give employees the guidance they need to navigate potential risks. Whether it’s through real-time coaching or policy reminders, we can help employees understand the importance of safeguarding sensitive data.

So, while there may be a place for annual training, it’s time to think about using a more proactive approach to cyber security education.

This is something we can help you with. If you want to learn more, get in touch.

Read more

Content and DNS Filtering

1st May 2024

What is it

  • DNS filtering involves using the DNS to block malicious websites and filter out harmful or inappropriate content.
  • Content filtering is a software-based approach that prevents domains from resolving altogether.

What do they do and why is it important.

Lets start with content filtering. Content filtering prevents websites from being accessed. Most solutions will use website categories that are then either blocked or allowed. But most solutions will allow you to allow certain groups of people to access certain category of website (Marketing could acccess Social Media). However you might also allow everyone to access social media over their lunch break.

By doing this you are achieving 2 things, firstly you are preventing employees from wasting time, doing stuff they shouldn’t. But it is also helping you to protect employees from stuff online they shouldn’t really be accessing.

DNS Filtering, unlike content filtering where websites are blocked based on the categorisation of the content, this is blocking the site, because of the DNS (The Domain Name) for instance with our solution we block all new domains, and restrict access to domains upto 30 days from registration. We do this because it helps prevent phishing attacks. Imagine you receive a phishing email, and you click on the link, but instead of getting a webpage that looks like something you should sign in to, you end up with a blocked page site.

If you want to know more please contact us

Read more

Copilot is bringing another productivity boost to Teams

29th April 2024
Copilot is bringing another productivity boost to Teams

If you’re all about doing everything you can to help your team max their productivity (who wouldn’t want that, right?), then you’re going to love what Microsoft Teams has in store for us with its latest Copilot upgrades.

Imagine, you’re mid-Teams meeting, brainstorming like there’s no tomorrow. Ideas are flying all over the place! Even the quickest note-taker among you isn’t going to remember it all.

Never mind. Copilot’s got it. It can transcribe your conversation and understand your live chat, then summarise the most valuable insights.

It doesn’t stop there. Ever wish you could hit “undo” on a chat message and reword your response? Copilot can help with that too. In fact, it can come up with a fresh message suggestion right there in the chat. That could save you lots of time – and brain power.

Copilot’s call recap tool can help with normal phone calls too. Teams Premium subscribers will benefit from handy recaps. It’s like having that personal assistant you always wished for (but you still have to make your own coffee).

Microsoft’s also made IntelliFrame the default setting for video calls. What’s that, you ask? It uses AI to identify the individual video feeds of all participants so that everyone gets their moment in the spotlight during Teams Rooms calls. It also means no more awkwardly cropped faces or disappearing attendees.

Smoother team collaboration, more insightful meetings, and video calls that look like they’re straight out of Hollywood… who doesn’t want that?!

If you’re not already maxing Teams in your business, we can help. Get in touch.

Read more

Uh oh! You’re at greater risk of malware than ever before

22nd April 2024
Uh oh! You’re at greater risk of malware than ever before

Here’s something not-so-fun but incredibly important to talk about: Malware attacks.

And it’s bad news. These scary cyber threats are hitting small and medium-sized businesses (SMBs) harder than ever before. That means you need to know how you can defend your business.

First things first, what exactly is malware?

Think of it as the digital equivalent of the germs that make you sick. Malware, short for malicious software, is like the flu virus of the cyber world. It’s designed to sneak into your computer systems or network and wreak havoc in all sorts of ways.

So, what kinds of malware are we talking about here?

Well, according to a recent report, there are a few major troublemakers: Information-stealing malware, ransomware, and business email compromise (BEC).

You might be wondering why you should care about malware. Let me set the scene. You’re running your business smoothly, minding your own business, when BAM! A malware attack hits.

Suddenly, your files are encrypted, your systems are locked down, and you’re being held hostage for ransom.

Sounds like a nightmare, right?

That’s the reality for many SMBs facing malware attacks. It’s not just about losing money – it’s about the potential damage to your reputation, your operations, and your customers’ trust.

But there are plenty of ways to fight back against malware and keep your business safe and sound:

Educate your team

Teach your employees to spot phishing emails (an email pretending to be from someone you trust), suspicious links, and other sneaky tactics used by cyber criminals. A little awareness goes a long way.

Armour up your devices

Make sure all your computers and devices are equipped with the best software to prevent attacks.

Back up, back up, back up

Regularly back up your data to secure offsite locations. That way, if you are attacked, you’ll have a backup plan (literally) to restore your files.

Fortify your network

Improve your network security with firewalls, encryption, and other powerful weapons. We can help with all of that.

Stay sceptical

Be cautious of suspicious emails or requests for sensitive information. When in doubt, double-check the sender’s identity and never click on risky links or attachments.

Have a plan

Prepare an incident response plan for dealing with malware attacks. Think of it as your emergency playbook, complete with steps for containing the threat, recovering your data, and reporting the incident.

That’s a lot to take in, but remember, knowledge is power. These are all things we help our clients with, so they don’t have to worry about it. If we can help you too, get in touch.

Read more

Be more productive with these Microsoft Edge features

15th April 2024
Be more productive with these Microsoft Edge features

Improving productivity is a never-ending mission for most business owners and managers.

Whether it’s speeding up tasks or improving communication, every little helps. So it’s crucial to make the most of the tools you already have.

And while you might think of your web browser as just a means to access the internet, it can be so much more than that. Especially if you use Microsoft Edge in Windows 11. It has loads of features that can help supercharge your productivity.

Here are five of our favourites.

1. Split Screen for multitasking

Multitasking is a skill every business owner needs, and Microsoft Edge’s split screen feature makes it easier than ever. Whether you’re comparing web pages, researching multiple topics, or simply keeping an eye on different sites simultaneously, split screen lets you view two pages side-by-side within the same tab. It’s like having two windows open at once, but without the clutter.

2. Vertical Tabs for streamlined navigation

Too many tabs? Yeah… we understand that. Microsoft Edge’s vertical tabs offer a fresh perspective on tab management. By stacking tabs vertically along the side of the browser window, you can easily navigate between open tabs and access essential controls like close and mute.

3. Workspaces for seamless collaboration

Collaboration is key in any business, and Microsoft Edge’s Workspaces feature makes it easier than ever to work well with colleagues or clients. Create a workspace with a collection of open tabs, then share it with others via a simple link. It means they can open multiple tabs with one click. It’s perfect for brainstorming sessions, project management, or team presentations.

4. Collections for organised research

Gathering information from the web is a common task. Microsoft Edge’s Collections feature makes this easier, allowing you to easily save and organise text, images, and videos from web pages into custom collections. Stay organised, focused, and productive.

5: Immersive Reader for distraction-free reading

When you need to focus on reading an article or document online, distractions on the page can be a pain. Microsoft Edge’s Immersive Reader feature provides a clutter-free reading experience by removing ads, links, and other interruptions. Customise the text size, spacing, and colour scheme to suit your preferences, and even have the content read aloud for hands-free reading.

If your business doesn’t already use Microsoft Edge on Windows 11, this could be the perfect time to switch. Can we help you move over? Get in touch.

Read more

Firewalls

10th April 2024
Perimeter and device firewalls

This week, we turn our attention to the subject of firewalls, both at the perimeter and on your local computer.

Perimeter

A perimeter firewall serves as the first line of defence in network security. Acting as a gatekeeper between internal networks and external threats. It scrutinises incoming and outgoing traffic based on predetermined security rules, blocking unauthorised access while allowing legitimate communication. By monitoring for malicious activities, it prevents attacks such as intrusions, hacking, and data breaches. Implementing a robust perimeter firewall is crucial for safeguarding sensitive data and maintaining the integrity of IT infrastructure, making it an indispensable tool for businesses in the digital age. Its strategic placement on the network edge ensures a secure perimeter, fortifying an organisation’s cyber defences.

Modern perimeter firewalls will also be able to run add on software. To provide a range of additional features. Whilst for many with cloud based email, having anti-spam module enabled is probably a waste of time. Utilising the anti-virus module is always a good idea to try and prevent a virus right at the gateway.

Device firewall

It is important to have a firewall enabled on any device, even if your device is sat behind a perimeter firewall! This is to make sure that it is on if you take your device out and about

Read more

Is this the most dangerous phishing scam yet?

7th April 2024
Is this the most dangerous phishing scam yet?

Picture this: You’re going about your day, checking your emails, when suddenly you see a message from a company you trust.

You think, “Great! That’s safe to read”. But hold on just one minute… this email is not what it seems.

It’s part of yet another scam created by cyber criminals to trick you into clicking malicious links or giving up sensitive info. It’s called “SubdoMailing,” and it’s as dangerous as it sounds.

What’s the deal?

Just like regular phishing attacks, cyber criminals pretend to be trusted brands.

But here’s how it works: These cyber criminals scour the internet for subdomains of reputable companies. You know those extra bits in a web address that come before the main domain? Such as experience.trustedbrand.com. That ‘experience’ bit is the subdomain.

They find a subdomain that the brand is no longer using and is still pointing to an external domain that’s no longer registered.

Then they buy the domain and set up the scam website.

So, you believe you’re clicking on experience.trustedbrand.com… but you have no idea it automatically redirects to scamwebsite.com.

The criminals are sending out five million emails a day targeting people in businesses just like yours.

And because these emails are coming from what seems like a legit source, they often sail right past usual security checks and land in your inbox.

Here’s our advice to keep you and your data safe and sound:

  • Be wary of any emails that seem even remotely suspicious. If something looks fishy, it probably is.
  • Before clicking on any links or downloading any attachments, take a moment to verify the sender. Look for red flags like spelling mistakes or unusual email addresses.
  • Make sure your employees understand the latest phishing tactics and know how to spot a scam. A little knowledge goes a long way in keeping your company safe.
  • Consider investing in top-notch security software to keep the cyber criminals at bay. It might seem like an extra expense, but trust us, it’s worth it.

As always, if you need help with this or any other aspect of your email security, get in touch.

Read more

Advanced End Point Security

3rd April 2024
Advanced End Point Security

Whilst all out packages include Anti-Virus. We are the first to admit Anti-Virus alone is not enough anymore, and will never ever keep you completely safe.

We supplement the Anti-Virus with some advanced end point (Computer) tools.

The first security measure is to make sure you aren’t an administrator on your computer.  Most people when creating their account will select the account to be an administrator account.  This in the main is not needed, and without the administrator permissions, then it is slightly harder for bad actors to do things with your computer.

Secondly we use a tool, that locks down the computer, and the software installed.  Most applications have a wide range of permissions and can do stuff it just doesn’t need to be able to do.  This is then used to make sure any compromise is fully utilised. Bad actors will do this, by making sure they can always access your network (persistence), as well as spread through the network searching for your data.

By locking everything down this should ensure your physical device is safe, and whilst all this means there are a few steps to go through if you want to install something new. The delay is normally less than 10 minutes, we firmly believe this is well worth waiting for. Achieving a safe cyber secure environment.

Of course the biggest issue for most businesses is a compromise of cloud accounts. And so we monitor the log in for unusual behaviour, like:

  • logging in from somewhere you aren’t
  • multiple logins from different locations. 
  • Multiple unsuccessful logins

This along with measures taken to help the computer user, should help keep you safe. But to make sure we also back it up (more to come in few weeks’ time).

For more info give us a call to arrange a complimentry Cyber Security Check

Read more

Is Wi-Fi 7 worth the investment?

1st April 2024
Is Wi-Fi 7 worth the investment?

You know that staying ahead of the technology curve is vital for all businesses in a highly competitive marketplace. One innovation launched earlier this year is Wi-Fi 7, the next generation of wireless connection.

But what exactly does it offer, and is it worth the investment for your business?

  • Lightning-fast speeds: No more buffering and lagging. Wi-Fi 7 brings blazing-fast speeds to keep your business running smoothly.
  • Rock-solid connections: Forget all about dropped calls or lost connections. Wi-Fi 7 ensures reliable performance, even in busy environments.
  • Futureproofing: Wi-Fi 7 is built to handle the demands of tomorrow’s tech. It’s future-proofing your business’s internet.

Now, here’s the million-dollar question: Should you upgrade to Wi-Fi 7? Well, it depends. While Wi-Fi 7 offers some awesome benefits, it can be a bit pricey to upgrade.

The initial investment includes the expense of next-gen routers capable of supporting Wi-Fi 7, which can range from hundreds up to thousands. And there may also be ongoing operational costs, especially if you’re leasing routers from internet service providers.

If you’re not ready to dive into Wi-Fi 7 just yet, that’s ok. There are plenty of other ways to improve your business’s existing Wi-Fi. From optimising your current set-up to adding extenders or mesh networks, there are options to fit every budget.

We’re all about making sure you find the perfect tech solutions for your business to keep you and your team happy. If you’d like to go through your options, get in touch.

Read more

Patch management

27th March 2024
Patch Management

A lot of the time when systems are compromised in a Cyber Security Attack, it is because something that should have been updated hadn’t been! Patch Management.

So, this week we have a look at the various updates that need to be considered. Is your IT support company doing all of this!

Firstly, we will start with the Operating System.

No matter what flavour of system you are using they all need updating, this should include everything from your server, through to your mobile phone. Although manufacturers will rave about the improvements in updates, the biggest reason we think you should install these updates as soon as you can is that they patch critical security holes.

It is also worth bearing in mind that some of these may not be selected to be installed by default. Or your IT support provider may not automatically install them. On operating system updates one of the biggest things, we see is people not restarting their computer.  These updates if they require a restart, are not fully installed until the restart has happened.

Applications

Almost all applications have updates, and a good practice is to make sure these are up to date as well. Especially your web browser, a lot of attacks happen through web browsers this includes a method that bypasses MFA (2FA) So make sure you are updating all of your applications.

If you no longer need an application, then the best thing to do is to uninstall it

Lastly, something you probably have never considered is a piece of software that you won’t normally ever see.

FIRMWARE.

Firmware is software on many devices that control how the hardware operates, these should also be updated. You will find these not only on computers, and servers but switches wifi access points, telephones, printers – The list goes on, and on. You or your IT supplier should make sure these are kept up to date. They are available from the manufacturer, and the systems to keep these up to date have improved over the years. But some are still difficult to know when updates are available.

Whilst looking at the Firmware please remember that when a manufacturer stops updating the firmware this is normally because the device has reached end of life. And even if it is working properly, you should consider changing it,

If you want to make sure you are covered, please get in touch.

Read more
Recent Comments