Password Policies Getting Update From Microsoft

Industry experts have been predicting the death of the humble password for decades.  To date, those predictions have amounted to nothing.

Passwords are still with us, and still serve as the cornerstone of security, even as other measures have arisen alongside them to help better secure your all-important data.

Even though passwords aren't gone, the security landscape is changing. Recently, Microsoft has announced another step down that path of change.  They're doing away with the notion of forced password changes.

The logic is hard to argue with.  The policy of forced password changes really doesn't offer all that much in the way of protection. It often creates as many headaches and problems as it solves, because users tend to make small, virtually meaningless and easy to predict changes to their passwords. Or, they often forget their new ones anyway.

While Microsoft is no longer forcing password changes at periodic intervals, they are leaving the option available for Enterprise users to establish their own forced password change thresholds if they choose to do so.  In tandem with the coming change, they're also recommending that security professionals perform a periodic review of passwords to ensure that the passwords in use aren't on the list of the UK National Cyber Security Centre's list of the 100,000 worst passwords.

One important thing to note is the fact that the company isn't making any changes to its requirements for minimum password length, complexity, or history. That is essential in terms of keeping users from simply recycling the same two or three passwords, switching endlessly back and forth between them.
It's also worth mentioning that these changes could benefit companies that are currently under audit. That is if the auditing agency is using Microsoft's security baseline as a guideline. That makes this seem like a small , but it is more significant than it may first appear.

Call SpartanTec, Inc. if you wish to know how to secure your online information.

SpartanTec, Inc.
Wilmington, NC 28412
(910) 218-9255

https://spartantec-wilmingtonnc.business.site/

Cities Served:
Wilmington, Silver Lake, Sea Breeze, Carolina Beach, Eagle Island, Leland, Wrightsboro

Millions Of Toyota Customers Possibly Affected By Data Breach

In recent months, Japan is a nation under cyber-siege, with several high-profile attacks having been made against the country.  The most recent attack targeted Toyota.  If you own a Toyota or Lexus, it's possible that at least some of the information you gave to the company has been compromised. A data breach on such a huge company signals the need for businesses to have managed IT services looking over their data, ensuring no critical information leaks out.

Although an investigation into the matter is ongoing, Toyota wasted no time letting its massive customer base know.

Their official statement reads in part, as follows:

"We have not confirmed the fact that customer information has been leaked at this time, but we will continue to conduct detailed surveys, placing top priority on customer safety and security."

Later in the statement the company stressed that if customer information was, in fact compromised, that information did not contain credit card or other payment numbers. Although no sensitive information was stolen, it is always a good thing for companies to ensure that managed IT services Wilmington are in place.

Early indications point to a well-organized hacking group calling themselves the OceanLotus Group. Although even this cannot be confirmed at this point.

The details surrounding the attack are murky at this point. What we do know with certainty is that on March 21st, the company detected an unauthorized intrusion into its corporate networks across a staggering 8 company divisions, marking it as an extremely well organized and sophisticated attack. With this in hand, information security has never been more important.

Considering the other attacks made against Japanese companies and government agencies, it seems that for reasons that are not yet clear, one or more big hacker organizations filled with top-tier talent has decided to put the nation under the virtual gun.

Only time will tell exactly who's behind the attacks and what their ultimate purpose might be. For now, the key thing to know is that if you own a Toyota or Lexus, it's possible that at least some of your personally identifiable information was compromised.  Be on the lookout for additional information from Toyota as it becomes available.

Call SpartanTec, Inc. if you are looking for a reliable and reputable IT consultant to help make sure that your computers are safe and secure.

SpartanTec, Inc.
Wilmington, NC 28412
(910) 218-9255

https://spartantec-wilmingtonnc.business.site/

Cities Served:
Wilmington, Silver Lake, Sea Breeze, Carolina Beach, Eagle Island, Leland, Wrightsboro

Developer Of Popular Kids App Slapped With Hefty Fine

The FTC or Federal Trade Commission has recently slapped a hefty fine on a popular app developer for violating the privacy of its users. The Chinese app developer who created Tik Tok, a popular mobile app, was handed a $5.7 million fine when the FTC filed a complaint against it after it was found to have violated the COPPA or Children's Online Privacy Protection Act. When it comes to privacy, private individuals must always take some time to understand the nature of the apps they are installing. As for businesses, it is a must to have managed IT services in place for better data protection.

The main problem with the app was that it did not require parental consent for users below the age of 13, which should be a must for apps that target such an audience. A wide range of data was recorded from user names to biographical information and more. What’s even more alarming was that user account details of the app users were available to the general public. This meant that anyone who can gain access to the apps can get hold of as much information they want on other users. The apparent mistake on the developer’s side has certainly put user’s information security at risk.

McAfee Cyber Investigations head, John Fokker, commended the move by the FTC. However, he cautioned that parents must also be active in ensuring that their kids are only using the apps designed for certain age brackets. While it holds true that parents should own up and do their part, apps must also come clean with their practices and turn a new leaf. Regardless, companies must always have managed IT services Wilmington to ensure that employee data are kept safe and that no company data will be compromised.

Are you looking for a complete technology solution provider? Call SpartanTec, Inc. today.

SpartanTec, Inc.
Wilmington, NC 28412
(910) 218-9255

https://spartantec-wilmingtonnc.business.site/

Cities Served:
Wilmington, Silver Lake, Sea Breeze, Carolina Beach, Eagle Island, Leland, Wrightsboro

Hackers Steal User Credentials At Alarming Rates With Malware

It is a known fact that malware has infected more online users over the last few years. It’s also good to note the increasing complexity of malware code that hackers deploy over the internet. However, complex malware code isn’t the only thing that users need to worry about. Some malware are hiding in plain sight and are deceivingly simple. And it’s even simple enough that most users won’t be able to detect that it is a piece of malicious software. That’s where managed IT Services come into play. It’s just safer to do business online if you and your business’ information is protected.

For instance, Separ, the credential-siphoning malware that was detected more than a year ago. And unlike other malware that evolves into a more complex malicious code, Separ is the exact opposite. Simplicity in its code was part of its success.

Surprisingly, Separ was quite slick at avoiding detection. It utilized a bunch of code and executable files that are commonly used and are deemed safe. This allows it to simply blend in and avoid detection.

The most recent version of the malware was embedded in a PDF that triggers a chain of other apps when users clicked on them. The initial user interaction runs a simple script then escalates into a batch file that issues other commands into the computer that hijacks the protection protocol of the system. This is one of the many reasons why businesses should take advantage of managed IT Services Wilmington to secure the data of their business.  

According to experts, despite the simplicity of these malware, they can still wreak havoc and can equally be capable of stealing information. This is why experts insist that companies use at least one type of security protocol to increase their information security.

Keep your data protected with professional IT services. Call SpartanTec, Inc. today.

SpartanTec, Inc.
Wilmington, NC 28412
(910) 218-9255

https://spartantec-wilmingtonnc.business.site/

Cities Served:
Wilmington, Silver Lake, Sea Breeze, Carolina Beach, Eagle Island, Leland, Wrightsboro