Category Archives: Business

The what and why of pen testing (no, not the bic ones)

Category : Business

Example of a port scan using nmap on the Kali Linux OS

Do you ever lock your door but still try open it after “just to make sure it’s definitely locked?” We as people are paranoid and clumsy beyond belief. We constantly check if we’ve done something right or that everything is how it should be. Penetration testing is exactly that.

When you set up a new computer or configure a network, there are bound to be flaws somewhere. This is increasingly true the larger the network is. A penetration tester or ‘Ethical hacker’ aims to exploit those flaws to see what kind of damage could be done if a malicious hacker did the same. This usually leads to many shocked faces when you have screenshots full of company accounts and HR data. The key is, we got to the data first, now we can fix it.

Once a penetration test is carried out, we have a decently sized report of any potential or impending risks to your company. It may take some time and money to work our way through these problems depending on what was found, what the solution is and how much downtime there will be. However, this will always be cheaper than recovering from a real security breach (the average cost of which is around £3 million according to a 2018 study).

Some industry standards also require you to regularly perform pen tests to be compliant. Some examples are PCI DSS, HIPAA and ISO 27001. Having compliance to these standards are crucial to set yourself apart from the competition and ensuring client data is safe and secure.

In conclusion, it’s worth making sure your IT door is locked. Get in touch if you’d like to learn more on the penetration testing process and what options there are for you.


You need a cloud solution, here’s why.

Category : Business

In recent years we have seen an increase in the amount of cloud utilisation by small to medium businesses. With constant growth and a need to ‘keep up with the times’ it is not uncommon to see these small local businesses throwing out their old hardware and moving to a mostly cloud based solution. This is because of three main reasons:

  • Scalability
  • Flexibility
  • Affordability

With cloud services, it is quick and easy to set up storage, archiving, emails and many other features that a growing company needs. Traditionally, you would buy hardware to improve onsite systems to meet the demands of your workforce. With cloud systems this is not the case. You pay monthly and can easily scale hardware as and when you require. Running out of storage space on your main file server? Now you can easily increase the storage limit in minutes. This will raise your monthly cost. However, this can be easier to manage than paying out a large sum for all these upgrades at once (in this case the cost of buying X amount of hard drives).

With the classical workplace era slowly coming to an end (An office and a desk from 9am-5pm) in favour of working remotely and via your own devices, the utilisation of cloud services has followed. Whether these cloud solutions have directly caused this shift in the working environment or have merely been a product of its demand I’m unsure of, but we can implement them regardless. Employees can now complete tasks at home or onsite, the number of workstations needed in the office are reduced and productivity skyrockets due to this increased flexibility. From a management perspective this saves costs even further.

There are several other reasons making the switch to a purely cloud infrastructure is beneficial even if it is just for your storage. Files stored in a correctly configured cloud are more secure due to the physical data centres they are kept in. These contain highly sophisticated hardware with increased levels of redundancy and security.

I hope this helps you understand a few of the reasons we recommend the big move over to a cloud system. There are many different options out there and they are all designed to accommodate to a different type of business. Get in touch if you wish to learn more.


GDPR

Tags :

Category : Business

GDPR is here. Have you done everything you need to?

In the run up to the GDPR implementation we saw thousands of privacy policy emails flying about, but what do you actually need to do on your website?

So far, since GDPR is now in place, we’ve been helping clients update cookie settings, and cookie notification banners, as well as adding new terms & conditions and privacy policies to client’s websites.

If you need help getting up to date, get in touch and we’ll create a custom plan to get your business compliant. You can also check the ICO website for further information.