Continuous network monitoring is one of the core elements of maintaining a secure and efficient IT infrastructure within an organization. As network systems have evolved over the past few years, it is essential to manage the configuration of all the network devices, servers and services to ensure timely detection as well as removal of the potential threats.

Given below are some of the tips for implementing a successful network monitoring strategy:

Note the baseline network performance

In order to identify any problems in the network infrastructure, it is important that you have an idea about its normal performance. Documenting network functionality over a period of time can help you to set accurate thresholds and receive alerts when the network is not performing up to the mark. Base-lining also facilitates proactive troubleshooting and prevention of downtime before it causes problems to the users.

Inventory management

You need to have an in-depth understanding of the IP devices, routers, switches and servers that make up your network. Make a detailed inventory of all the items you need to manage and add them in your network monitoring software. Categorize all devices on the basis of usage, vendor, location, data center and other parameters. Create a map and form connections between the system so that it represents your network architecture. This will give you a visual idea about how the inventory should be maintained.  

Monitor and report at every level

Every element in diverse corporate network operates on a separate layer to contribute to its overall functionality. In the event of a system failure, it is critical to identify the layer at which the data connection has been interrupted. Therefore, your network monitoring system should focus on observing and reporting problems at all layers. This will make it easy for you to detect if the issue has been caused due to malfunctioning of hardware, router, bandwidth or any other component.

Prepare for network expansion

With the expansion of your organization, your network also needs to evolve and incorporate new technological upgrades. This, in turn, will also increase the number of devices, network bandwidth and storage space required. Therefore, make sure you choose a scalable monitoring system that allows you to include more devices and interfaces as and when they are added to the network.

We, at Centex Technologies, provide comprehensive network security solutions to the business firms in Dallas, TX. For more information, you can call us at (972) 375 – 9654.

Software as a Service (SaaS) cloud storage solutions have offered numerous benefits for the business owners. By simplifying access to technological resources, reducing delivery times to clients and giving employees the freedom to work from anywhere, cloud applications play a major role in increasing business productivity. However, with all critical information stored off-premise, data loss remains a constant concern.

Here are some of the common causes of SaaS data loss:

• User Deletion: This is one of the biggest reasons of data loss in the cloud. The registered users may accidentally overwrite a shared file or delete a scrapped document, just to realize later that the data was important.
• Phishing And Hacking Attacks: Cyber criminals may launch a hacking or phishing attack to gain unauthorized access to data stored in the cloud. By tricking the users to click on a spam link or download a file, the hackers may be successful in stealing their cloud login credentials and manipulating the data stored therein.
• Data Corruption: At times, the data center of the SaaS cloud provider may be unable to retrieve the stored data. Without proper backup solution, important information may become inaccessible or corrupted.
• Third Party Applications: Using a third party application can put SaaS data at risk. These apps may contain viruses that overwrite or delete the information stored in the cloud. There are higher chances of data loss if emails, documents, contacts etc. are stored in multiple devices.
• Closed Accounts: Considering the employee turnover in a company, the SaaS accounts may also be closed or deleted. This may lead to the loss of important data stored by the former employee.

Tips To Prevent SaaS Data Loss

• Identify Important Information: Firstly, you need to identify the sensitive information stored on all the computers connected to the cloud. The data may include client names, personal details of employees, salary information, credit card information, social security numbers etc.
• Prevent Document Sharing: You should implement strict policies that prevent accidental or intentional sharing of files outside the organization. Restrict access to the sensitive information and block file transmission to email addresses that do not have your company’s domain.
• Backup Your Data: There are many cloud backup applications that allow you to store a secure and easily retrievable copy of your data. The information is stored in an encrypted form and can be accessed only by the authorized users.

For more tips on preventing SaaS data loss, you can contact Centex Technologies at (972) 375 – 9654.

ImageGate is a recent form of ransomware that attempts to spread malware through images and graphic files on social media websites. It has been discovered by two security researchers at Check Point Software Technologies Ltd., Roman Ziskin and Dikla Barda. The ransomware works in the same way as Locky virus that automatically encrypts the victim’s files and demands a ransom in order to reveal the decryption key.

Considering the massive increase in the use of social media platforms, such as Facebook and LinkedIn, hackers are directing their focus on breaching the security of these websites. They are continually looking for ways to use these platforms as hosts to carry out their malicious activities.

How Does ImageGate Work?

According to the security researchers, ImageGate works by embedding malicious code into the image files and posting them on ‘white listed’ social media websites. The targeted image files usually have extensions other than ‘.jpg’ or ‘.jpeg’. The malware aims at manipulating the misconfigurations in the social media platforms to purposely compel the users to click on the image. Once the file has been downloaded and the user clicks to open it, all the files on the computer system are encrypted. In order to regain access to the locked files, the user is required to pay the hackers a certain amount as ransom in bitcoins.

Tips To Protect Against ImageGate Ransomware

• Make sure you do not click on any unidentified file downloaded to your computer system.
• If a file gets forcibly downloaded, do not open or execute it. You should carefully delete the file so that the ransomware is not able to infect the files stored on the device.
• You should avoid clicking and downloading images as well as graphic files from social media websites.
• Do not open image files that have unknown file extensions, particularly ‘.svg’, ‘.hta’ and ‘.js’.
• The anti-virus and anti-malware software on your computer should be regularly updated to stay protected against latest forms of ransomware.
• It is recommended to be vigilant while accessing your social networking accounts. Even a single malicious download can make you lose access to your device and all the files stored within it.

Centex Technologies provides complete cyber security solutions to the business organizations in Dallas, TX. For more information on ImageGate and other forms of malware, feel free to contact us at (972) 375 – 9654.

Wearable devices have provided a tremendous opportunity for business organizations to keep the employees connected to work and improve their efficiency. The use of smart glasses, watches, headgear etc. facilitate better data collection and better customer service abilities. However, just like every other technology, security risks are bound to come along. The extensive functionality served by these devices can sometimes magnify the threat surface, thereby introducing many new ways in which data can be compromised.

Here are some of the common security risks posed by wearable devices:

Lack Of Data Encryption

Wearable devices do not use encryption protocols to store the information securely. There is no sophisticated PIN or password required to gain access to the data. They also do not have any biometric or other authentication methods to validate the identity of the users. As a result, there is a serious risk of data theft if the device is lost or stolen.

Difficulty In Patch Management

Most wearable devices function on a completely different operating system and run several third party applications. Hence, frequent software updates and patches are not readily available for these devices. This makes them an easy target for the hackers to carry out malicious attacks in order to exploit the vulnerabilities and intercept information shared through the wireless networks.

Insecure Wireless Connectivity

In order to function efficiently, wearable devices need to be connected to your mobile device through Wi-Fi, Bluetooth or Near Field Communication (NFC) technologies. However, when you keep the connectivity options enabled, you may inadvertently allow hackers to download malware or malicious programs to your device. They may also launch a brute force attack to breach the password of your device’s wireless network.

Recording Sensitive Information Through Photos, Videos and Audio

Wearable devices come along with a very discreet ability to record the important information about your company in the form of audio, video and images. Smartwatches and smart glasses can easily be used to capture and transmit confidential data to the hackers, without leaving any trace. This type of data breach cannot be prevented by anti-malware, anti-spyware and any other form of security software.

We, at Centex Technologies, can help to improve the IT security of your business firm in Dallas, TX. For more information on protecting the wearable devices at your workplace, feel free to call us at (972) 375 – 9654.

Identity theft is a quite prevalent form of online crime that has become more sophisticated and complex these days. When a hacker gets access to your personal information, such as name, password, social security number (SSN), credit card or bank account details, he can use it for a myriad of malicious purposes. These may include breaching your online banking account, committing online frauds in your name or selling your credentials further.

In order to protect yourself from identity theft, it is important to understand the different ways in which the attack is generally carried out.

• Keylogging: This type of identity theft involves installing a malware on the target user’s computer system. Whenever the user logs into an online account or carries out financial transactions, the malware records the keystrokes and transmits them to the hacker.
• Phishing: The hacker may send a fake email to the user or display pop-up advertizements while browsing the internet. The email is spoofed to have come from a credible organization, such as a bank, and requires the user to take an immediate action. This may include downloading a software, visiting a website or filling out an online form.
• Data Breach: Identity theft may also occur when hacker gains unauthorized access to the sensitive information while it is being shared over the internet, particularly unsecure networks. Packet sniffers may be used to view and steal the user’s financial information. Apart from this, spying, denial-of-service attacks, man-in-the-middle attacks and other such techniques may be used. 

Tips To Prevent Identity Theft

• Install Security Software: Make sure you install anti-malware, anti-spyware and other security software in your computer as well as mobile devices. These will help to identify and delete the malicious programs or files from the system. You should also enable firewall to monitor and block any suspicious traffic from accessing your network.
• Follow Proper Security Measures: You should follow the best security practices while accessing the internet, particularly on public Wi-Fi networks. Do not log in to your banking and email accounts or shop online when connected to an unsecure network.
• Guard Against Phishing Attempts: Do not open or download attachments from emails that come from an unknown sender. Also, you should not share your personal or financial information or click on a link embedded in such emails.

For more tips on protecting yourself against online identity theft, you can contact Centex Technologies at (972) 375 – 9654.

IT security is a pre-requisite for successful business operations. The present day online attacks are very sophisticated, hard to detect and can cause serious damage to the computers on your corporate network. Besides malware and virus infection, there are many other security threats, such as Denial of Service (DoS), spyware, ransomware, man-in-the-middle attack etc. Therefore, regardless of the size and type of your organization, it is important to take the necessary network security steps to protect your data from cybercriminals.

Discussed below are a few fundamental tips to keep your network safe:

Delete Unused Accounts

Email or social networking accounts that are not active should be deleted. Since these accounts do not have updated security settings, they are quite easy to be hacked. Make sure you timely review all your official accounts and identify as well as delete the ones that are no longer required. You can either perform this task manually or use a software to remove unused accounts.

Keep VPN Secured

If you use a virtual private network (VPN), you should keep it completely secure to prevent unauthorized access to your company’s internal network. Use the most advanced authentication and encryption protocols to monitor as well as regulate the network’s usage. You can even consider accessing the internet remotely so that your browsing details are not saved.

Be Proactive With System Updates

Cybercriminals are always on the lookout for security flaws in obsolete web browsers, plug-ins, software applications and operating systems that can be exploited for malicious purposes. It is therefore, important to update all the computer systems on your network on a regular basis. Software vendors frequently release patches and updates to fix the bugs as well as improve functionality of the applications. The IT staff should either enable automatic updates or download and install the latest versions from trusted sources.

Secure Your Router

Make sure that you change the default name and password of your router. The default credentials are quite common and can easily be decoded by the hackers. Create a strong and lengthy password as well as a unique username. Also, change the security level from WEP (Wired Equivalent Privacy) to WPA (Wi-Fi Protected Access) or WPA2 so that only the authorized users have access to the corporate network.

We, at Centex Technologies, offer complete network security solutions to business firms in Dallas, TX. For more information, feel free to call us at (972) 375 – 9654.

Malvertizing, or malicious advertizing, is a cyber-threat that involves disguising spam code into online advertizements that seem to be legitimate. When a user hovers or clicks on any of these ads, it leads to downloading malicious software that can damage data, steal confidential information or even get complete remote access of the infected computer. Malvertizing attempts to exploit the unpatched software vulnerabilities in a computer without any need to compel the user to visit a malicious website.

How Does Malvertizing Work?

Malvertizements can appear on a website in any of the following ways:

• Legitimate Ads: The cybercriminal initially places a number of malware free advertizements on a credible website that allows third party ads. Eventually, he may inject a malicious code into the advertizement to infect maximum computers before it is banned or removed.
• Pop-Ups: Pop-ups can infect a user’s computer the moment the ad appears on the web page. In some cases, the malware may also be installed when the views clicks on ‘X’ to close the pop-up.

How To Protect Against Malvertizing?

• Disable Auto Play For Plug-ins: When you choose auto play for plug-ins, all Java and Flash elements will automatically run when you visit a web page. As most malvertizing attacks involve the use of malicious plug-ins, make sure you have complete control over the ones that you need to run.
• Remove Unused Plug-Ins: You should disable or uninstall all the browser plug-ins that you do not use, including Java. This will reduce the probability of a malvertizing attack by limiting the number of vulnerable software that can be exploited by the cybercriminals.
• Update Your Web Browser: Your web browser should be regularly updated to fix any security flaws. You can enable automatic updates to keep your browser protected against malvertizing attacks. If you have a plug-in installed, make sure they are frequently updated with the latest versions.
• Stay Informed: You should always be cautious of pop-ups that claim to remove malware or increase the speed of your computer. Do not click on any of these links as they may inject a malicious code or download spam software to your computer. Anti-virus, anti-malware software and browser toolbars should also not be installed through an advertizement or pop-up link. 

We, at Centex Technologies, provide complete cybersecurity solutions to the businesses in Dallas, TX. For more information, you can call us at (972) 375 – 9654.

Domain hijacking or theft, can be defined as a security breach in which the hacker steals the target organization’s domain name and transfers its ownership to himself. Once successful, the hacker gains access to the control panel from where he points the domain name to another web server. Thus, whenever a user visits the website, he gets redirected to the hacker’s website. In most instances, the attack is carried out by falsifying a domain transfer authorization code or by using phishing techniques.

Given below are a few common methods that the hackers use for domain hijacking:

Spear Phishing

This is one of the easiest ways to steal the login details of the target website’s admin account. The hacker may send a fake email, claiming be to be from a genuine source, to extract information. The email may also contain a link that redirects the user to a phishing website that looks similar to the original one. When the user logs in to the admin account, the credentials are recorded by the hacker.

Domain Registrar Vulnerabilities

The hacker may also look for unidentified vulnerabilities in the domain name registration system. For instance, in the absence of any restriction on the number of invalid login attempts, the hacker may initiate a brute force attack. Through this, he may employ the trial and error method to use multiple password combinations till the login is successful.

Web Server Vulnerabilities

Security flaws in the target organization’s web server can also be exploited to gain access to the website admin account credentials. In the absence of proper security measures, there are high chances that vulnerabilities in the hosting server provide a backdoor for the hacker to gain access to your website.

Tips To Prevent Domain Hijacking

• Use Two Factor Authentication: Many domain registrars provide an additional security layer to the users by allowing two factor authentication. With this, each time you log in to the admin account, you will have to enter your user name and password, along with a numeric code sent through a text message.
• Request DNSSEC From Your Domain Registrar: Domain Name System Security Extensions (DNSSEC) is a technology that can prevent a domain hijacking attack. It allows the website admin to monitor traffic and use digital signatures to verify the legitimacy of the DNS responses.
• Change Default Password: Make sure you change the default password of your admin account. If you retain the same login credentials provided by your registrar, your domain security may be at risk.

For more information about domain hijacking, contact Centex Technologies at (972) 375 – 9654.

Since inception of Virtual Private Network (VPN), the technology is widely used in business firms to provide a secure and convenient way to connect distant employees and remote offices. VPN makes it easy for the users to share files, folders and other important data over the internet, without any form of protocols or permissions required.

If you are planning to use virtual private network for your business, given below are some of the pros and cons that you should consider:

Security

• Pro: VPN offers a high level of security while accessing the internet. It uses advanced authentication and encryption protocols to safeguard your data from unauthorized access by the hackers.
• Con: Deployment of a VPN technology can be quite complex for any business. You need to hire a dedicated IT staff who has complete knowledge of VPN configuration, network or security issues that may arise and the best way to deal with them.

Scalability

• Pro: Virtual private networks are quite scalable when it comes to accommodating the growing demands of a company. As your business expands and opens offices in multiple locations, you do not need separate lines to connect all of them. You simply need to connect to the already configured VPN to access the corporate network.
• Con: If you need to add infrastructure to the VPN, it may lead to certain technical issues, particularly if you switch to another service provider. Combining VPN products from two different vendors may cause problems in compatibility while using equipment from the same provider may increase your expenses.

Remote Connectivity

• Pro: Virtual private networks allow employees and business partners to communicate easily over the internet, irrespective of their geographical location. Expenses related to international calling and long distance communication can be considerably reduced.
• Con: The use of improperly configured internet networks and unsecure devices to connect to the VPN can compromise security of all the connected computer systems. Employees may also connect through wireless hotspots which increases the risk for a potential data breach.

Despite these pros and cons, VPN offers the most viable solution for remote users to communicate securely. However, businesses need to focus on addressing the minor glitches in order to capitalize on this technology.

If you are planning to configure VPN in your company’s internal network, Centex Technologies can provide complete IT support. For more information, you can call us at (972) 375 – 9654.

Wi-Fi hotspots in airports, hotels, coffee shops, subways etc. may seem to be a convenient way to access the internet but these networks are not configured properly to safeguard your personal and financial information. Often, you do not even need a password to connect to these public networks, which makes them likely to be used by cybercriminals as well. Any information you send or receive through these networks may be altered, accessed or pilfered without your knowledge.

You should avoid using public Wi-Fi networks in the first place but in case it is absolutely necessary to do so, here are some security rules that should be followed:

Turn Off Sharing

When you are using a public network, make sure you disable sharing of files, printers and music library. This will prevent other users on the same network from accessing your personal information, particularly if it are not password protected. You should also turn off network discovery, so that your computer is not included in the list of connected devices, minimizing the risk of a potential attack.

Enable Firewall

Turn on your operating system’s firewall to prevent unauthorized access to your computer. Many windows devices automatically enable firewall during initial setup. However, you must check your computer’s settings to ensure that the firewall is turned on.

Look For Secure Browser Extensions

Many websites transmit information in plain text over the network you are connected to. This allows the hackers to easily steal the information and use it for malicious purposes. When you use websites that start with ‘HTTPS’, it means that all the data between your computer and the web server is end-to-end encrypted. Thus, even if a data breach occurs, the information will be of no use to the hacker unless he has the decryption key.

Use A Virtual Private Network

To increase your security on public Wi-Fi networks, you can consider using a virtual private network (VPN). It will encrypt your network connection and hide your IP address so that you can access the internet anonymously. By using a VPN, you can have the security of a private network, while protecting all your sensitive information from online attacks. You can also enable private browsing or incognito mode so that your browsing details are not stored on the network.

For more information on public Wi-Fi security, feel free to contact Centex Technologies. We can be reached at (972) 375 – 9654.