Mobile security is one of the top priorities for business organizations. With the increasing adoption of Bring Your Own Device (BYOD) culture, it becomes even more important that employees are familiar with the best security practices to safeguard the information they access or share through their device. However, there are many misconceptions when it comes to mobile security, which ultimately makes your corporate data vulnerable to hacking.

Given below are some of the common mobile security myths and why they need to be addressed cautiously:

iPhones are safe from viruses

It is a common fallacy that Apple devices are completely protected against viruses and malware but this is not completely true. Though Apple’s stringent policies minimize the threat to some extent, there is still need for proper security measures to ensure safety of your device. Malicious websites, spam links, fake websites and malware ridden email attachments pose a serious threat to your data.

It is safe to connect Wi-Fi if sensitive data is not accessed

Mobile users are familiar with the fact that conducting financial transactions and logging into personal accounts through open Wi-Fi networks is not safe. However, even if you are not accessing any sensitive information, connecting to an unsecure Wi-Fi hotspot can jeopardize your online security. Hackers may use packet sniffers to steal or modify the information you share. They may also infect your device with a malware and record keystrokes to collect your usernames as well as passwords, which may lead to identity theft.

Mobile apps from reliable vendors are safe

Renowned developers conduct extensive testing to ensure that the apps they release are secure and bug free. However, there are many fake and malicious versions of the popular applications available on the app stores. You should know which apps you should download and from where. The best way to check this is to read reviews posted by users who have already downloaded the app. You should also be careful while allowing any app to access your personal information.

Text messages are completely secure

In reality, text messages are one of the major vectors of malware to mobile devices. Hackers use phishing techniques by sending messages that claim to be from a bank or other legitimate source to extract sensitive information from the target user. SMSs may also contain links to a fake website that may download a malware to your mobile device.

Centex Technologies, a leading IT company in Dallas, TX, can help you improve mobile security practices in your organization. For more information, you can call us at (972) 375 – 9654.

Since inception of Virtual Private Network (VPN), the technology is widely used in business firms to provide a secure and convenient way to connect distant employees and remote offices. VPN makes it easy for the users to share files, folders and other important data over the internet, without any form of protocols or permissions required.

If you are planning to use virtual private network for your business, given below are some of the pros and cons that you should consider:

Security

• Pro: VPN offers a high level of security while accessing the internet. It uses advanced authentication and encryption protocols to safeguard your data from unauthorized access by the hackers.
• Con: Deployment of a VPN technology can be quite complex for any business. You need to hire a dedicated IT staff who has complete knowledge of VPN configuration, network or security issues that may arise and the best way to deal with them.

Scalability

• Pro: Virtual private networks are quite scalable when it comes to accommodating the growing demands of a company. As your business expands and opens offices in multiple locations, you do not need separate lines to connect all of them. You simply need to connect to the already configured VPN to access the corporate network.
• Con: If you need to add infrastructure to the VPN, it may lead to certain technical issues, particularly if you switch to another service provider. Combining VPN products from two different vendors may cause problems in compatibility while using equipment from the same provider may increase your expenses.

Remote Connectivity

• Pro: Virtual private networks allow employees and business partners to communicate easily over the internet, irrespective of their geographical location. Expenses related to international calling and long distance communication can be considerably reduced.
• Con: The use of improperly configured internet networks and unsecure devices to connect to the VPN can compromise security of all the connected computer systems. Employees may also connect through wireless hotspots which increases the risk for a potential data breach.

Despite these pros and cons, VPN offers the most viable solution for remote users to communicate securely. However, businesses need to focus on addressing the minor glitches in order to capitalize on this technology.

If you are planning to configure VPN in your company’s internal network, Centex Technologies can provide complete IT support. For more information, you can call us at (972) 375 – 9654.

Wi-Fi hotspots in airports, hotels, coffee shops, subways etc. may seem to be a convenient way to access the internet but these networks are not configured properly to safeguard your personal and financial information. Often, you do not even need a password to connect to these public networks, which makes them likely to be used by cybercriminals as well. Any information you send or receive through these networks may be altered, accessed or pilfered without your knowledge.

You should avoid using public Wi-Fi networks in the first place but in case it is absolutely necessary to do so, here are some security rules that should be followed:

Turn Off Sharing

When you are using a public network, make sure you disable sharing of files, printers and music library. This will prevent other users on the same network from accessing your personal information, particularly if it are not password protected. You should also turn off network discovery, so that your computer is not included in the list of connected devices, minimizing the risk of a potential attack.

Enable Firewall

Turn on your operating system’s firewall to prevent unauthorized access to your computer. Many windows devices automatically enable firewall during initial setup. However, you must check your computer’s settings to ensure that the firewall is turned on.

Look For Secure Browser Extensions

Many websites transmit information in plain text over the network you are connected to. This allows the hackers to easily steal the information and use it for malicious purposes. When you use websites that start with ‘HTTPS’, it means that all the data between your computer and the web server is end-to-end encrypted. Thus, even if a data breach occurs, the information will be of no use to the hacker unless he has the decryption key.

Use A Virtual Private Network

To increase your security on public Wi-Fi networks, you can consider using a virtual private network (VPN). It will encrypt your network connection and hide your IP address so that you can access the internet anonymously. By using a VPN, you can have the security of a private network, while protecting all your sensitive information from online attacks. You can also enable private browsing or incognito mode so that your browsing details are not stored on the network.

For more information on public Wi-Fi security, feel free to contact Centex Technologies. We can be reached at (972) 375 – 9654.

With the increased dependency on computers, smartphones and tablets, cyber security has gained considerable importance for business firms in Dallas, TX. Hackers are continually using viruses, spyware, phishing, malvertizing and other attack vectors to gain access to an organization’s sensitive information. Though implementing a cyber security policy is important, employees should also be proactive and comply with the company’s risk management strategy.

Listed below are some cyber security do’s and don’ts that need to be followed:

Do’s

• Follow Good Password Practices: Make sure you create strong and hard-to-guess passwords for all your official accounts. It should be of 6 to 10 characters comprising a combination of alphabets, numbers and symbols. Create different passwords for all your official accounts and do not share them with anyone.
• Stay Vigilant Against Phishing Scams: Do not open emails or download attachments you receive from unknown senders. Hackers often send spam emails, claiming to be from a legitimate source, with an aim of tricking users to execute a file or visit a fake URL. If you receive any such email, you must delete it and inform the IT division of your organization.
• Protect Your Information: Keep all the important data and files protected with regular backup on an external hard drive. Personal, financial as well as other sensitive information should be stored in an encrypted format. Thus, even in the event of a data breach, the hackers will not be able to decode the information.

Don’ts    

• Leave Your Computer Unlocked: You should lock your computer system whenever you leave your seat. This is important to make sure your files and email accounts are protected against unauthorized access.
• Download Unnecessary Software: Avoid downloading and installing unrequired software on your computer, particularly from third party sources. These may contain a malicious code to infect your system and can steal, modify or delete confidential information. Always download software that is licensed and released by legitimate vendors.
• Plug In Portable Devices: Do not plug in any removable media, such as hard disk, CD or pen drive, without the permission of the IT department. These devices may contain malware and infect your computer system upon connecting. Make sure you run a thorough scan to detect and remove any virus in these devices.

We, at Centex Technologies, provide cyber security solutions to business firms across Dallas, TX. For more information, feel free to call us at (972) 375 – 9654.

Considering the fact that an average user has to manage at least 4 to 5 online accounts, a lot of people end up setting the same or easy-to-remember passwords for all of them. The exasperation of remembering different passwords and ignorance about the consequences of a data breach are the main reasons behind a security attack. The ever increasing use of internet and poor password practices has created unlimited opportunities for the hackers to steal important data, tamper websites, gain access to financial information etc.

Listed below are some of the common types of password attacks:

• Brute Force Attack: In this attack, the hacker uses a computer program to try every possible password combination until the correct one is found. Using a list of some of the most common passwords, such as ‘123456’, ‘password’ or ‘Password1234’, the hacker attempts to gain access to the user’s account. Due to the endless combinations of letters, numbers and symbols, brute force attack may take a long time to be completed. 
• Guessing Game: This is another form of brute force attack that involves guessing a user’s password by trying the most obvious words, such as names of loved ones, pets, places, numbers, birth dates, phone numbers etc. Even combination passwords, such as ‘name123’ are quite trivial to guess.
• Keylogger Attack: It refers to a type of physical breach in which the hacker tracks the keystrokes to record the user name and password. Even a strong password or encrypted login credentials do not provide complete protection from this attack. Initially, the user may be tricked to install the keylogger software, either through phishing or in the form of a drive-by download. Whenever you login to your account, the software traces everything you have typed and transmits it to the hacker to gain easy access to your information.
• Intercepting: Passwords can also be captured when they are transmitted over the network in an unencrypted format. Packet sniffers and other network monitoring software may be used by the hackers to intercept your login details as well as online financial transactions. These types of attacks most commonly occur when users access their online accounts through unsecure wireless networks.

Centex Technologies is a leading IT security company serving the businesses in Dallas, TX. For more information on the common password attacks and the ways to prevent them, feel free to call us at (972) 375 – 9654.

ZCryptor is a malicious software that infects removable devices and network drives to encrypt files stored on a computer. It mainly spreads through spam emails, macro malware or fake installers. ZCryptor was first discovered by a security researcher named Jack, after which Microsoft also investigated the potential threats caused by the ransomware. The company issued an alert for the users stating:

“We are alerting Windows users of a new type of ransomware that exhibits worm-like behavior. It leverages removable and network drives to replicate itself and infect more systems. We detect this ransomware as Ransom:Win32/ZCryptor.A.”

According to the researchers, the ransomware was initially designed to target systems with Windows XP 64 bit, but computers having the latest version of the operating system can also be infected.

How Does ZCryptor Work?

To infect a computer system, ZCryptor uses the common phishing techniques, such as camouflaging an executable file as a known software, usually Adobe Flash Player, or through macro files in Microsoft Office. Once executed on the system, the ransomware starts encrypting the files stored in it. It creates a registry key to ensure auto-execution on every start-up. Next, an ‘autorun.inf’ file is installed on the removable drives so that the malware spreads to all computer systems that these devices connect to. It replicates by creating copies in different network drives and using multiple file attributes in order to avoid detection by the users.

ZCryptor is known to encrypt a wide range of file formats including documents, audio, video, image, archive, database, APK, Java source code etc. and change their extension to ‘.zcrypt’. Upon encryption of all the files, a pop-up appears on the computer screen, asking the user to pay a ransom amount to get access to the unique decryption key.

How To Protect Against ZCryptor?

• Keep your operating system and other software updated to stay protected against the known vulnerabilities.
• Avoid visiting suspicious websites, opening unknown email attachments and downloading software from unidentified developers.
• Use a reliable anti-virus software to prevent and detect malware infections.
• Disable macro files in Microsoft Office.
• Keep a backup of your files on a removable media device to minimize the consequences of a ZCryptor attack.
• Format the infected removable drives before you connect them to other computer systems.

For more information about ZCryptor ransomware, you can contact Centex Technologies at (972) 375-9654.

With more than 300 million users, LinkedIn provides a networking opportunity for business professionals across the world. However, just like other social media platforms, LinkedIn also has its own set of security issues. It is important that you protect your account in order to safeguard your information and avoid spoiling your online reputation.

Given below are some tips to protect your LinkedIn profile:

• Update Your Privacy Settings: Make sure you review your privacy settings to keep a check on the information you want to share with your connections. For instance, you should turn off your activity broadcasts if you do not want to display updates about the changes you made to your profile. You can also change the visibility settings for your profile picture, connections and other professional details.
• Opt For Two Step Verification: LinkedIn allows its users to activate two step verification for their accounts. This offers a higher level of protection and prevents the incidence of identity theft and unauthorized account access by the cybercriminals. When you choose two step verification, you will be required to enter the password, along with a numeric code sent to your phone when logging in from an unrecognized device.
• Verify Your Connections: You should connect only with the people you know. Adding unknown connections or merely acquaintances puts your account information at risk. Cybercriminals use fake accounts to connect to entrepreneurs and gain access to their business information that can be further used for malicious purposes. Therefore, if you receive a connection request on LinkedIn, make sure you verify the profile to check if anything seems to be suspicious.
• Change Your Password Frequently: It is recommended to follow the best password practices to safeguard your LinkedIn account from unauthorized access. Create a strong password that includes random letters, numbers and symbols. You should use different passwords for all your online accounts and change them after every few months.
• Check Third Party Apps Connected To Your Account: Be watchful about the apps you have authorized to connect with your LinkedIn account. These can access all your confidential data and hence, you must review the apps that you have permitted. Deactivate all the apps that you do not recognize or use anymore.

For more information on LinkedIn and social media security tips, feel free to contact Centex Technologies at (972) 375 – 9654.

Cloud computing is an essential part of every business’ IT infrastructure. Regardless of the service model (IaaS, PaaS or SaaS) or deployment (public, private, community or hybrid), a large number of businesses are moving to the cloud to streamline their operations and minimize investment in IT resources. Though cloud computing offers a wide range of advantages, storing your data in a virtual space also poses certain security risks.
Listed below are some benefits and risks associated with cloud computing for businesses:

Benefits

• Cost Savings: Perhaps the biggest saving with cloud computing is in the form of reduced IT expenditure. You do not need to spend on expensive server storage and equipment. You also do not need to hire specialized IT staff for the maintenance and upgradation of these systems. Cloud offers a subscription based program that allows you to pay-as-you-go, i.e. businesses are charged according to their infrastructure requirements.
• Flexibility: Cloud computing allows employees to work more efficiently, irrespective of their location. They can access important files and documents from their home, during a vacation or while traveling. All they need is an internet connection and a compatible device to easily connect to their virtual office. This, in turn, helps to boost productivity while allowing you to increase profits.
• Reliability: With cloud computing, employees do not have to worry about the maintenance and security of the data. Your cloud service provider will offer round the clock technical support to implement any security upgrades required in the applications.

Risks

• Data Availability: When you centralize your data and applications to a cloud provider, one of the major risks involved is the loss of internet connectivity. If the server goes down, all your business activities will be affected. The quality of cloud services can also be hampered on a low bandwidth internet, making it difficult to download or print large files.
• Security And Privacy: Storing your business’ confidential data with an external service provider poses a lot of security risks. Make sure your data is stored in an encrypted format to prevent the hackers from getting access to it.
• Limited Control: Since the cloud services are completely outsourced, it does not provide any control to the clients. Except for the basic data and applications management, you cannot monitor or alter the backend administrative settings or functioning of the hardware/software.

For more information on cloud computing, you can contact Centex Technologies at (972) 375 – 9654.

Adware, or ad supported software, refers to any form of software that displays or downloads unwanted advertizements while browsing the internet. It may also be programmed to redirect the users to advertizing websites or track browsing patterns so that customized ads can be displayed. In most cases, adware is a legitimate software that comes as a drive-by download with a freeware program. A visit to a malicious website can also lead to unapproved installation of adware on your computer. However, the advertizements can be annoying, distracting and intrude the user’s privacy in the online space.

Here are some signs that your computer has been infected with adware:

• Pop-up advertizements on the desktop or within applications
• Unidentified changes in browser home page, bookmarks and favorites
• New toolbars installed in the internet browser
• Slow computer start-up and shut down
• Pop-up ads related to websites being browsed or keywords typed in the search engine
• Desktop may be slow to load or refresh
• Unexpected system shut down or restart
• Sluggish internet connection
• Software crashes
• New programs installed on the computer

How Does Adware Work?

When adware is downloaded onto a computer system, it may begin to show pop-up ads according to your web browsing habits. The software may also install tracking cookies and keyloggers or conduct an unauthorized hard drive scan. Some of the common consequences of an adware infection are:

• Infinite Pop-Ups: The user may view an endless series of pop-up advertizements over the current program window. At times, closing one pop-up ad may lead to opening of another one.
• Man-In-The-Middle Attacks: Some adware programs are designed to redirect your network activity through a proxy server to display ads over the web pages being visited.
• Spying: This adware tracks your online browsing habits, websites you visit and even records your keystrokes to figure out the type of advertizements that would catch your interest.
• Data Consumption: The adware may download unrequired add-on program to your computer, thus consuming the bandwidth on your internet connection.
• Device Slowdown: Running too many ads may hamper your device’s performance, making it slow to respond to user commands.

It is important to detect and remove adware from your computer system at the earliest. If not, it may transmit sensitive information, such as credit card numbers, passwords, important files, photos and videos to the cyber criminals who may use it for malicious purposes.

For more information on adware and cyber security, you can contact Centex Technologies at  (972) 375 – 9654.

Internet browsing has become an important part of our daily lives but various security risks may arise if proper measures are not followed. Exposing your financial information, being a victim of malware infection or losing access to the files stored on your computer, all these are some of the common threats that a user may have to deal with. Following safe web browsing practices can help to avoid all these risks and protect your personal data online.

Here are some tips to stay safe while browsing the internet.

• Keep Your Browser Updated: Make sure your web browser is constantly updated to the latest version. Security patches are often released to fix any vulnerabilities that may be present in the previous version. You can turn on automatic updates or regularly check for the newer version available. Besides the browser, the operating system and software installed on your computer should also be up-to-date.

• Improve Computer Security: Install and use an anti-virus software, spyware as well as malware detection program to improve the security of your computer. This will help to detect and remove any potentially dangerous program from your system. Also enable the firewall to avoid hackers from getting unauthorized access to your computer.

• Be Careful Of Phishing: Phishing attacks involve the use of spam emails, which appear to be from a legitimate source, and aim at acquiring sensitive information from the users. Make sure you do not click any link or download any attachment from an email received from unknown sender.

• Be Cautious When Using Wi-Fi: You should be extremely cautious when accessing the internet through a wireless connection as information shared over these networks is not usually encrypted. Do not log in to any of your online accounts, make financial transactions or access your social media profiles on a Wi-Fi connection. Your information can be easily intercepted by hackers and used for malicious purposes.

• Look For HTTPS: When accessing any website that requires you to enter important information, such as password, credit card details, bank account number etc., make sure that the website’s URL starts with an ‘HTTPS’ instead of ‘HTTP’. There should also be a padlock icon in the address bar, verifying that the website you are visiting is secure.

• Do Not Reuse Passwords: Using the same passwords for all your online activities makes it easier for the hackers to gain access to multiple accounts. Hence, you should create complex and unique passwords for different accounts, including internet banking, email, social media, online shopping etc.

For more internet safety tips, feel free to contact Centex Technologies at (972) 375 – 9654.