Cyberjacking has become a major problem for networks around the world. It is currently one of the top cybersecurity problems existing today. The term cyberjacking means hackers access your servers or workstations like parasites. They use your processing power to mine cryptocurrency. This exploit can be detrimental to your network and production. Because it uses your processing power, it slows down your network. A slow network decreases your productivity.  

This hack is difficult to detect and even more difficult to eradicate. It rewrites your server software and deeply embeds itself into your network. The best way to combat this type of malware is to wipe your server clean and restore from your image backups. That takes time and money.  

In one instance, I saw this attack come in through an email inside a PDF-looking document. When we investigated, the software was embedded inside a font. When an employee clicked and opened the file, the malware downloaded to the company’s network. Once running inside their system, it used the processor as part of their bitcoin mining operation. Servers keep logs of incoming and outgoing traffic. The cyberjacking malware erased these logs every minute to cover its tracks. It took over 2 ½ days to stop the attack and mitigate the damage. 

Protect your business from cyberjacking

It is important to protect your business from these kinds of parasitic attacks.

1. Keep your firewall up to date with the latest virus and malware signatures.  

2. Protect your email with filters either in Microsoft 365 or with another filtering service before it hits your onsite exchange.  

3. Train your employees not to click on items originating from an unknown source. 

4. Train them to validate even a trusted source to make sure requests for financial or confidential data transfers are genuine. 

Your due diligence is what keeps you safe. Give us a call for a network security checkup. Our service engineers are well versed on keeping your network secure.

This article on achieving PCI Compliance is also about increasing your cybersecurity in general: So You Want To Achieve PCI Compliance? Shields Up!

If your company accepts credit card payments, you know about PCI Compliance. Your network and system shields need to be up and secure when you handle your clients’ credit card information. Cybercriminals are always looking for ways to get past your shields.

The COVID-19 pandemic has pushed many businesses into increasing online and over-the-phone payment systems. While the virus is infiltrating our physical shields, criminals are seeking to infiltrate our digital shields. The pandemic has triggered the largest cybersecurity threat that we have ever experienced.*

When Shields Are Compromised

Just like we’re all putting our shields up by wearing masks and trying to social distance, we need to make sure we are shielding our systems and valuable data from the 4.57 billion people on the Internet (statista.com). (Can you see how this makes doing business with each other so difficult?)

These stats show why it is important to make sure your business is cyber-safe. Here are a few PCI DSS (Payment Card Industry Data Security Standards) tips to strengthen your shields and business continuity.

Achieve PCI Compliance by using strong passwords

Just like we have locks and keys to our homes, we need to have locks and keys on our network and systems. Create longer passwords with a mix of letters, numbers, and other characters (%$*&!@(). And change them often.

Read more about passwords and MFA

Patch your software

Make sure your IT service company keeps your software patched and up to date. Patching is fixing, improving, or updating a program with bugs or other security issues. Just like we strengthen our bodies with eating and exercise to prevent disease, your IT company strengthens your software applications with patches to prevent data breaches.

Encrypt all payment card data

Encryption creates another type of shield between the billions of people on the Internet and our data. Digitally scrambling data creates barriers that cannot be penetrated unless a user has the key. Selective shields, boundaries, locked doors, barriers, and walls are good. Sometimes they are a pain, but they are needed to sustain our physical and digital lives. And they are needed for PCI Compliance.

Remote access to your systems should be secure

Shields up! Our bodies stay healthy by having selective boundaries that keep some things out but allow other things in. Similarly, your business needs boundaries around your network. You want your vendors, employees, and customers to access your system from their businesses, homes, and mobile devices. Viruses and cybercriminals target these access points. Your IT service company should make sure your associates are using strong passwords and multi-factor authentication before your system lets them in.

Firewalls Are A Big Part of PCI Compliance

Shields up! Make sure your IT company has a firewall shielding your network from the Internet. This is like a cell wall that monitors all incoming and outgoing substances. Many of these substances have to have special keys to get in. A competent IT company will configure a strong firewall for your business among multiple other layers of shields.

Beware of phishing email

True to viruses in nature, hackers are evolving. Their attacks are more deceptive. They send emails that appear completely legit. If you haven’t expected a request for confidential data or information, don’t hand it over until you call and verify first. Your ability to differentiate is another layer of security.

For Compliance, Your partners should also be secure

We all know how easily the COVID-19 virus has spread. The same thing is true of digital viruses. If they are hacked, you could be too. The hackers can get into your system via the same portal your partners entered it.

Cybercriminals are always looking for ways to get past your shields. If you work with e-commerce, your shields need to be strong and secure to achieve PCI Compliance. But whatever your business, let’s work together to keep our clients, partners, and businesses safe.

Schedule a free security risk assessment with either Joe Nice in Utah or Fred Bauerfeld in Idaho

*Stats from: PCI Security Standards Council & U.S. Security, Exchange Commission, and Panda Security

As a Managed Services Provider, we know that your business runs on information. We also know that you need top-notch cybersecurity to protect it. While you’re busy growing your business, you need someone to manage your technology. And you’ve got a lot to manage – cloud services, software applications, vendors, network, multiple computing devices, servers, switches, and storage. Without someone keeping a 24/7 watch on these assets, your business is vulnerable to security breaches.

The following image is a screenshot of the SonicWall Security Center. This website monitors real-time cyberattacks. Click on the link to see how many attacks are happening right now. Security breaches are constantly bombarding organizations like yours. Bad actors are always searching for a chink in your armor.

A Reliable Managed Services Provider’s (MSP’s) goal is to keep your business and data secure while maintaining an efficient technology environment. MSPs do this by managing your cloud services and overseeing your daily IT needs. They provide you with the technical support and security you rely on to keep up with the fast-paced, automated business world.

IT Management is a full-time job

You may have a difficult time effectively managing your business IT operations and cloud services on your own. Computer technology is an industry that is constantly iterating to increase speed and safety while minimizing cost. Consequently, many companies hire a variety of third-party services to run their business operations. These services should work together compatibly, but that’s hard to accomplish when they are constantly evolving.

A Managed IT Services Provider manages your interconnected web of services for you. Certified technicians work full-time overseeing your IT ecosystem to ensure it runs optimally. They free you up to focus on what you do best. An optimized technology environment maintains the highest degree of protection against security breaches.

If you are thinking about hiring an MSP, consider how the following benefits increase your cybersecurity:

1. A Managed Services Provider reduces costs & prevents security breaches

For small- to medium-sized businesses, it is less expensive to hire an MSP than staff a full-time IT department. When your IT services are affordable, you can maintain the network optimization required for cybersecurity.

2. A Managed Services Provider offers predictable, recurring monthly costs

An MSP has the flexibility to adapt their services to your business needs. You don’t pay for more or less than you need. Once the right fit is found, you pay a consistent monthly bill. When you know how much to budget for, your IT services are a no brainer. You don’t have to constantly worry about a new and unexpected bill when something happens. With consistent service, your productivity and cybersecurity remain optimal.

3. Choosing an MSP maximizes hardware & software life

MSPs work to keep your technology current. They monitor the age of your computer devices and software applications. Most of us don’t like having to pay for new equipment when what we have is still perfectly functional. But when our computers and software cross into the land of the dinosaurs, they become inefficient. Outdated machines and software are a security risk.

A trustworthy MSP knows when to patch and maintain what you already have, and when it’s time to upgrade. Keeping your technology up to date keeps your defenses strong against cyberattacks.

As a Managed Services Provider, we know that you primarily need us to keep your network securely running at peak efficiency. Lagging computer and internet speeds are your nemesis. Our goal is to maximize your cybersecurity while increasing your productivity. We strive to do that at reasonable costs. Schedule a free consultation with Joe if you’re in Utah or Fred if you’re in Idaho.