The latest Cybersecurity news, tips and trends

Sophos MTR vs Security as a Service. What’s the difference?

sophos MTR vs Security

What is Sophos MTR?

Sophos MTR Standard or Managed Threat Response, provides 24/7 threat hunting, detection, and response capabilities delivered by an expert team as a fully managed service. What that means is a dedicated team at Sophos will monitor your environment and act on any threat detections using the EDR technology that we are a massive fan of here at Planet.

IT is offered as an optional service add-on with Sophos Intercept X Advanced with EDR.

Sophos MTR Advanced goes one step further and will actively go looking for potential threats. It proactively improves your security by recommending configuration changes and reporting on vulnerabilities.

How does Planet IT’s Security as a Service (SECaaS) compare with Sophos MTR?

Let me start off by saying that Sophos MTR is a fantastic service, there is no denying that. But you do have options should you want this protection but want to explore different avenues.

Here at Planet IT, we offer an alternative service that will give you the peace of mind of MTR, while being more aware of the fact that many of you will have technologies outside of the Sophos stack.

Alongside this we know that for many of our customers the biggest risk is always the recovery and with Sophos MTR there is quite rightly an end to where Sophos can provide services. With SECaaS we stick with you and can support you to the bitter end.

I have compared the offerings of Sophos MTR with Planet IT’s Security as a Service (SECaaS) in the table below:

 

Feature Sophos MTR Planet IT SECaaS
24/7 support Office Hours
Dedicated Account Manager
Direct Call-In Support
Asset Discovery via Endpoints X
Enhanced Telemetry via Endpoints X
Activity Reporting Sophos Only All Security Vendors
Periodical Health Checks Sophos Only All Security Vendors
Vulnerability Scanning Sophos Only All Security Vendors
Firewall Support Sophos Only All Security Vendors
Completely mitigate through to completion Sophos Only All Security Vendors
Penetration Testing X
Windows Updates X
Phishing Training & Testing X
Email Protection X
Cyber Essentials / Plus X

 

Verdict

Sophos MTR is a great service if you are a large organisation with the requirement for 24/7 support and have the resources to afford it. If you have an internal IT team in place to work in collaboration with Sophos to completely remediate any threats, it really is a top solution.

However, as you can see above Planet IT’s SECaaS offering is more than sufficient to give you the peace of mind you need. We will work with you to recommend and provide the solutions right for your business and support you until any threat is mitigated, no matter what security products you use.

Add in our other services such as Windows Updates as a Service, Vulnerability Scanning (not just for Sophos products) / Penetration Testing and Cyber Essentials as a Service, you can rest assured that SECaaS will keep you safe and updated as much as possible!

About Adam Harrison

My name is Adam, and I am a security-focused Technical Architect. It is my job to provide expert advice on security solutions and assist our customers with protecting their environment from viruses, ransomware, and other nasty attack vectors! My background is in Security as a Service, Infrastructure and Helpdesk Support; I keep myself up to date with the latest threats and security products, so you don’t have to!

If you want to talk to me about how Sophos Intercept X with EDR would fit into your business then please call 01235 433900 or you can reach out to me via DM or at architecture@planet-it.net

What are the benefits of Sophos Intercept X Advanced with EDR?

sophos edr

Over the last few months, you may have heard the word EDR (Endpoint Detection and Response) banded around when talking about security products, but what does EDR really mean for you and your business? In this article I am going to explore EDR and the tangible benefits that you would see from having this product in place.

What is EDR?

Sophos Intercept X Advanced with Endpoint Detection and Response (or EDR) is an award-winning security solution that is built upon the framework of the Sophos product that so many of you use and know.

One of the simplest ways to look at it is like a cake made up of three layers. You may already have two of these in place:

Endpoint Protection – traditional anti-virus that detects and blocks threats in real-time. This is the signature-based piece of the puzzle something that every business should already have even if it’s from another vendor. It is looking at what is happening and checking it off against a list of known attacks.

Intercept X – anti-ransomware protection. This comes in the form of AI and Machine Learning driven technology which knows what your device should look like if you are working as normal. When you’re not, it uses a technology called CryptoGuard and detects any encryption attempt, reversing any encryption that has already taken place. This is your backstop and a way to protect yourself from unwanted changes. This is a technology many of our customers have and saw the value in having after the WannaCry outbreak of 2015.

EDR (Endpoint Detection and Response) – This enhances the ability to analyse an attack and see what happened, whether the threat has spread to other devices and if any data has been lost. This is new and this is less about what is happening and stopping it and more about the validation of how safe you were following an attack. Now this may sound counter intuitive, if the product is protecting you, why would you need to know what happened in an attack? To answer that simply we need to look at GDPR and the requirement to report breaches.

These components combined provide you with the whole protection cake. You have the ability to protect your data (these are the sponge top and bottom made up of Endpoint Protection and Intercept X) and then you have the knowledge that if something happens you can clearly report on what took place (this is the jam filling that completes your cake). Protection like this is second to none when coming up against today’s attackers, in a threat landscape that is every changing.

Sophos Planet IT

How does it work?

Sophos Intercept X Advanced with EDR combines proven endpoint threat protection with the power of advanced machine learning to identify and block malicious processes. Intercept X uses AI that detects malware without relying on signatures and monitors system behaviour for any changes that could mean a malware attack. SophosLabs then provides the knowledge to back it up.

Take a targeted ransomware attack as an example. Bad actors will try to brute force their way into a externally facing RDP server. Once in they will drop an encryption package onto the system and start to encrypt files. Intercept X will detect the behaviour, CryptoGuard will stop the encryption and EDR will be able to fully report on the events chain (source, root cause, beacon, when it was detected and if it has been cleaned) providing complete analysis. Additionally, EDR customers will have access to a SophosLabs Threat Intelligence report that further aids you in your decision whether to allow the suspicious file or not.

How does this benefit you?

Sophos Intercept X Advanced with EDR will increase your security footprint without the need for additional resources to look after the solution. You can be safe in the knowledge that the solution you have chosen is the best in the business. With EDR you will have all the tools you need to make sure that any detected threat has been stopped in its tracks!

I’m sure you know that if there is a breach and data is compromised, the Information Commissioner’s Office (ICO) have to be informed. As a result of this, if your security solution is deemed to be inadequate you will be subject to a substantial fine! Throw GDPR into the mix and you have the potential to be in serious trouble. With Sophos Intercept X accompanied by EDR, not only will you have an industry-leading security product, but also EDR ensures all details are captured for reference later.

So, should you become a target you will be able to prove where exactly the threat has come from, where it has been and if it has been dealt with completely.

From a resourcing view, investigating all detected threats and tracing their actions to ensure nothing has been compromised is a full-time role; EDR does this automatically and comprehensively so you don’t have to. You can search through 90 days so even if you have only been made aware of a threat you can wind back the clock and quickly see how it was dealt with.

How good is Sophos compare to the competition?

As you can see, Sophos Intercept X with EDR is industry-leading when put up against the competition:

sophos comparison

Security as a Service (SECaaS)

Now sometimes it is all well and good having the tools yourself, but you may not have the inhouse skills or the time to make proper use of them, this is where our Security as a Service offering comes in – with SECaaS we will provide further peace of mind by monitoring your Sophos solution and remediating any alerts within an agreed timeframe. We will also provide you with periodical reports at an interval of your choosing showing the health status of your estate, complete with our recommendations to make sure you are as protected as you can be.

 

About Adam Harrison

My name is Adam, and I am a security-focused Technical Architect. It is my job to provide expert advice on security solutions and assist our customers with protecting their environment from viruses, ransomware, and other nasty attack vectors! My background is in Security as a Service, Infrastructure and Helpdesk Support; I keep myself up to date with the latest threats and security products, so you don’t have to!

If you want to talk to me about how Sophos Intercept X with EDR would fit into your business then please call 01235 433900 or you can reach out to me via DM or at architecture@planet-it.net

Be Internet Safety Awesome … Start Them Young!

Internet Awesome

I, like many others, am currently home schooling. I have two gorgeous boys, but my god it’s tough working, especially with it just being the three of us…

In the muddled, jumbled up world of working and schooling, security (funnily enough) is still high up on my list. And something I thought I would share, to not only keep the small ones entertained, but also secure is a fantastic online tool that yours will love!

Interland is a game from Be Internet Awesome and Google. It helps make the most of the Internet, where kids need to be prepared to make smart decisions. It teaches the fundamentals of digital citizenship and safety so they can explore the online world with confidence.

Check it out HERE

Internet SafetyI mean, it’s an awesome training game by Google, hats off. And Eddie, the one with the Nerf gun in the pic, loved doing it. So, now, pride of place on the fridge sits this certificate. You can’t start them too young!

With the many different balls I need to juggle to try and keep ahead of the curve in security, ensuring the end user is tested and trained on their cyber security knowledge is key.

Something that is a little more for the grown-ups is the KnowBe4 training platform. The market leader in cybersecurity training. It has millions of training videos, tests, articles and advice… the list could go on.

And then there are the phishing campaigns….. All in one central portal, and easy enough to set-up yourself, or if you prefer some more guidance and assurance, we can do it for you.

Training is key to any company, please speak to me if you have any requirements – kelly.ilbery@planet-it.net

Quick Thoughts – Information Security – WhatsApp Data Sharing 2021

Whatsapp Facebook

There are lots of social media commentary this week around the changes in the WhatsApp privacy policy.

First of all yes this privacy policy is scary and moves WhatsApp ever closer to Facebook in terms of their approach to who has the right to user data and what its worth to the business. However should you worry about it as a U.K or EU citizen? No. And the reason for that is simple, WhatsApp has to adhere to the guidance as laid out in the articles which form GDPR, therefore they cannot use the data or share this data with it’s parent company Facebook for the purposes of remarketing as it would be outside the fair use of the data.

Whatsapp Privacy

That said, Facebook are looking to move Facebook access for UK users away from their Facebook Ireland entity to being governed by Facebook Inc. This would therefore change their obligations as your account would sit outside of the GDPR region. Furthermore, following the U.K. leaving the EU they would be able to do this and therefore WhatsApp would fall under the privacy policy of the U.S.

So in short, don’t panic right now. There is no need to leave WhatsApp or not accept the terms in February. However, when Facebook moves the U.K. to be governed and controlled by the U.S., then if you want your data from being used for a number of questionable activities you need to leave and delete your Facebook account and do the same for WhatsApp.

I hope this quick thought helped you demystify the current situation.

If you want to talk to me about information security and data protection then please call 01235 433900 or you can reach out to me via DM or at james.dell@planet-it.net.

Technology that SHOULD shape your business in 2021

Tech business trends

While the world continues to turn day to day life upside down and “normal” is more of a relative word than ever before, I wanted to take this opportunity at the start of the year to look at the technology trends your business should be looking into and adopting in order to ensure that whatever the global or national situation, your business is safe secure and up to date.

Cloud Services

If 2020 didn’t already do this for your business you should be looking at moving services to the cloud, now this is bigger than just moving your email to Office 365 or G Suite. When we talk about cloud services in 2021 this is about moving as much of the infrastructure, it’s management and the associated risks away from your physical business location.

If we take a traditional office where you have your servers, storage, back-ups and user data onsite close to where your users where working, in 2021 this approach is illogical with staff working from home and in the office suddenly you have a single point of failure in your office environment as well as needing the equipment maintained , monitored and managed in a location which may be shut due to local restrictions.

With the move to Cloud services the aim is to push as many of these services to diverse, secure and robust providers which removes the inherent risks and reduces any downtime you might face. If done in the right way you can do this with the same level of latency that you would get in your office environment but accessible quickly for your users working from home.

With businesses that implemented cloud services in 2020, they saw an decrease in running costs of up to 50% and an increase in uptime and productivity up to 99.99% which is beyond what any onsite system can deliver and this is due to the scale and depth of the product line of some of the cloud services on the market.

work from home

The Human Firewall

The trends we saw in 2020 made it very clear that we need to invest as much time into training our staff to be safe and secure as we do into finding the right technology to support them. That is why in 2021 one of the key areas of development we believe all business should be looking at is the human firewall. By this we mean training your staff to know what is safe and is not safe in the digital world and how to prevent risks to the business.

We saw the effect that phishing can have on business with an increase of 667% in March last year when COVID first became a major issue for the U.K. and scammers took in their waves to try and use peoples vulnerabilities against the businesses they work for. These attacks continue today following trends of presenting vaccination options and emails about furlough schemes all designed to capture business information and defraud businesses.

Now with this there is no one size fits all approach but there is a logical approach which will prevent your business being open to risks that exist on your doorstep. If we can teach our staff in 2021 to stop, deal with and report these problems then we increase the ability of a business to be robust and secure and remove the guess work from the technology we need to ensure a business is safe, for me 2021 is the year of the Human Firewall.

human firewall

Zero Trust Networking

As we move to a more dynamic way of working, both now and post COVID, we need to think about how the new fleet of devices we operate as businesses are managed, controlled and protected. The physical borders of your office space are no longer 4 brick walls but unlimited by the connectivity we have in place. Because of this we need to look at how we secure and control our devices, users and data across such a wide spectrum of use cases.

Now this can start with the simple steps of Mobile Device Management, Cloud based anti-virus technology but very quickly we need to be thinking about virtual connections to datacentres, home broadband and wireless security and cloud access control.

This is why in 2021 I believe all businesses need to review their approach and look to embed a zero-trust approach into all aspects, and while some people will see this approach as intrusive and over the top, it has been proven time and time again to not be. You only have to look at the speed in which a home wireless network can be broken into to realise that you are not safe trusting peoples home set ups.

In conclusion 2021, like 2020, is going to be a very different year, with the cyber criminals and the threat landscape changing everyday. However as business owners, technical professionals or employees we need to switch our approach and ensure we are using these changes to make our business ready for this continually changing landscape as we move forward.

 

If you want to talk to one of our experts about how we can help you in 2021 then please call 01235 433900 or you can email enquires@planet-it.net or if you would like to speak to me directly you can reach out to me via DM or at james.dell@planet-it.net.

Again, big changes coming with macOS Big Sur – be careful for now

macos big sur

macOS Big Sur is about to release to the public and as we have highlighted across several of our blog posts in the last few months, this brings large scale changes.

If you are running any of the following on your macOS device;

  • Antivirus or Antimalware software
  • Encryption Management software (File Vault Management)
  • Virtualization Applications
  • Dual Booting / Boot Camp
  • Containerized Applications

The we strongly recommend you hold off updating when the update is released, this follows several press statements from major software vendors like this one from Sophos. In which they detail the challenges of the short time frame and moving to Apples new API approach.

If you have any concerns of about your business software or upgrading we recommend that you speak to your Planet IT account manager who will be able to assist you with compatibility guides and information from the vendors specific to your business. If you’re not already a Planet IT client, then feel free to reach out to me directly on james.dell@planet-it.net

The landscape and support for macOS Big Sur WILL improve. We do not expect this to happen in the next few weeks but do expect most vendors to have support by the end of 2020.

To read more on this story you can see our previous blog posts on the subject here:

This might sound controversial, but resist that big MacOS update, for now!

macOS the big change with Big Sur

We know this goes against the usual advice you might hear from us or other IT experts, so in the meantime if you would like to discuss with myself or any of the highly skilled team here at Planet IT about how to keep your business operating, secure and safe in the changing world of the Mac you can reach us using the contact details below;

Contact me at – LinkedIn Message James Dell or Email : james.dell@planet-it.net

Talk to the rest of the team – Call 01235 433900 or Email : enquires@planet-it.net

Email Security – The biggest scope for an attack

email protection

There is no bigger scope for attack on your organisation than e-mail.

We all use it. We all have stacks of it. And we have all fallen for some gimmick or promise. Or not even that, spoofing, where you thought Stuart in Product Development was genuinely asking you out for dinner and so needing you to send back you phone number! Only to then get inundated with phone calls as you’ve given your number out to the bad guys. (Yes, ready meal for one coming up).

Our very own dreamboat Adrian Sweeney was spoofed recently (thankfully, we’ve done our training!)”.

There is no off switch. I wish there was. It’s my most asked about security concern, and so it should be!

Even the Mimecasts or Barracudas of this world can’t catch everything, it’s a constant game of cat and mouse, and sometimes the mouse wins!

What WILL help against this constant barrage of spam, is Email protection. (It is scary how many companies out there still don’t have ANY). And in fact, if you don’t have it, you are either crazy or bonkers. There are SO many vendors out there. Ones I like, Mimecast, Barracuda and Censornet, (less known but works well).

And……..

So you’ve got the security guards checking the e-mails, if your names not down, you’re not coming in……Well what happens if it still gets in?

Yes – This big cost you have just forked out has still let spam in. As mentioned before the mouse won….

A solution – Simulated fishing campaigns… One company name that stands out for me on this one, market leader KnowBe4.

It’s easy to use and set-up, and you can safely send simulated email phishing attacks to your staff AND if they fail, they get sent the correct training to help them not do it again.

It’s easy to keep track of who is having issues, and it helps you tailor the campaigns to better suit the business you run. This only helps you get the best from the product.

Sorry, that one went a bit salesy. But only because it’s important and we can help you. If you would like a proof of concept at no charge, or discuss how Planet can just take care of all this for you contact: SecurityServices@Planet-IT.net

macOS the big change with Big Sur

macos big sur

About a month ago I wrote an article ” This might sound controversial, but resist that big MacOS update, for now!” In that article I warned about the changes that Apple where bringing to the operating system of macOS with the move from 10.15 to 11, one of the biggest of these is the removal of direct access to the system kernel.

While from a purely security centric point of view this sounds like a great idea, as you are restricting the ability of any software to jump onto the system and access machine changing instructions, it poses a serious implication to the world of vendor support for macOS.

At the time I warned of this impending change, however when writing that article, it was difficult to really clarify how big an impact Big Sur was going to have on 3rd Party software. However, in the last few days it is starting to become a lot clearer.

Since initially testing the Beta on a development machine, as we do every year at Planet IT to ensure we can successful support for our client’s businesses, we initially noticed that a number of software products stopped;

  • Antivirus
  • Encryption Management software
  • Virtualisation Applications
  • Container Applications
  • And the list goes on….

When this initially happened, as an Authorised Apple Reseller, we were already a few weeks into testing, ahead of the companies who make the software

Because of this, when writing my previous article warning of the risk, I wasn’t too harsh on any single software vendor, just in case they got their act together and updated the software to move from direct kernel access to the now Apple approved API access.

Late last week along with many customers I received the below from Sophos;

“Dear Sophos Customer/Partner,

Please note that the current version of Sophos SafeGuard is not compatible with the upcoming release of Apple macOS 11 (Big Sur) and will not function correctly. We strongly recommend that customers do not upgrade any macOS clients running Sophos SafeGuard to macOS 11 (Big Sur) at this point. Doing so may have undesirable effects including:

1.

Device Encryption – SafeGuard may in some cases not be able to retrieve FileVault recovery keys, meaning that machines might not be recovered if users forget their password

2.

File Encryption – SafeGuard may in some cases not be able to encrypt and decrypt files transparently. Please note that no data is at risk of being lost as manual encryption and decryption of files will still be available

We intend to issue a Service Release of Sophos SafeGuard that will resolve these incompatibilities. In the meantime, we recommend you do not upgrade the operating system and wait for this Service Release instead.

For the latest information, please see this article. This article will be regularly updated with the latest information.

Best Regards,

Your Sophos Team

This began to answer a question that had been burning in my mind, are these vendors ready?

The answer is no!

Sophos is not alone in having issues with macOS 11, but they are, to their credit, the first to publicly admit it. Their suggested action is to not upgrade to macOS 11 Big Sur when it becomes publicly available (expected in the next 10 days), however that is easier said than done as Apple will force you to update with-in a matter of weeks anyway.

We expect to see a number of issues with additional software as a wider group of user uptakes the new software and unfortunately this year more than ever software vendors are slow to resolve the issues and adjust to the new way of working.

So our advice remains simple, HOLD OFF! 

I know we usually recommend keeping all devices up to date, but please don’t rush to upgrade your device this time. If you use it for work in any way, you are going to want to stay on the latest secure update of 10.15 MacOS Catalina for a while.

As with this update we are going to continue to monitor the situation and we will let you know as soon as it’s safe to make the jump and we hope to publish a granular list of unsupported major applications as soon as the public release of Big Sur occurs.

We know this goes against the usual advice you might hear from us or other IT experts, so in the meantime if you would like to discuss with myself or any of the highly skilled team here at Planet IT about how to keep your business operating, secure and safe in the changing world of the Mac you can reach us using the contact details below;

Contact me at – LinkedIn Message James Dell or Email : james.dell@planet-it.net

Talk to the rest of the team – Call 01235 433900 or Email : enquires@planet-it.net

How to spot Phishing and prevent being a victim

The Coronavirus pandemic and the resulting changes in the way we now work and live has lead to a feeding frenzy among Cybercriminals.

Phishing attacks have ramped-up by over 667% in March alone and scammers are finding more and more creative ways to prey on vulnerable victims.

In the UK, we have all received a text from the NHS or government, urging us to follow the guidelines, stay home and stay safe. Many of us have also received a very similar text or email, telling us exactly the same, but with a suspicious link promising a monetary rebate or extra tips on how to stay protected. If you’re reading this, you already know what I’m going to tell you – this is a scam and somewhere there’s a hacker attempting to steal from you.

But how do you spot these threats? How can you be sure what is genuine or what is a scam?

I’ve put together some pointers for you to help spot the warning signs.

1. If there is ANY uncertainty, don’t open. 

If it’s that urgent, they will chase you. If it’s genuine, you will either be expecting the email or message to arrive. You’ll also get a reminder or a phone call from the real person or organisation when they don’t hear from you. If you don’t, and you still think it might be genuine. Go to their website, find their contact phone number and call to ask

2. Sounds too good to be true, it probably is.

Come on… be real… nobody wants to just give you free money. And you didn’t enter a competition to win a Ferrari, so why would you think that you’ve won one? Be sensible and think if it could be someone trying to take advantage you.

3. Looks legitimate? Check the details

Look at the senders name, their e-mail address and any links. It’s easy to change a letter to a number. My email address for example; Kelly.Ilbery@planet-it.net could be changed to Kelly.Ilbery@p1anet-it.net (1 instead of l).

Is the email addressed to you? e.g. “Dear Kelly”. Or is it addressed “Dear Client”. If you are a customer, they’ll know your name. If it’s a scam sent to thousands of people, they may use client or customer in place of your name.

Here’s a real world example that’s very relevant at the moment and one that has been received by thousands in the UK over the last few weeks. Many people have had their working circumstances change recently. People are on furlough, small business owners are due grants and many are unlucky enough to find themselves unemployed. There’s a lot of change and it’s confusing to know exactly what you might be due and when. A text like this might be exactly what you’re waiting for.

However, look at the link. Genuine texts from the government come from gov.uk. And their official website for the crisis is: https://www.gov.uk/coronavirus. This text tries to mimic that in some way with https://uk.covid-19.

However they are using this as a subdomain of webdirect.org – not an official website. If you clicked on the link, you would have been redirected to a website that even looks like an official gov.uk website asking for details. This is exactly the thing they do and what you need to look out for. As you become more vigilant, you will get better and better at spotting this.

In general terms, big organisations, banks or the government tend not to include links because they’re told that it’s exactly what hackers will do. They’re more likely to tell you to log into your account, encouraging you to separately go to their website, not linking form an email or text. so if you get an email from your back asking for details and not encouraging you to “Log-on to your online account”, it’s probably a phishing attack.

4. And if you still really want to click it, go directly to the web address instead. 

If it’s a link that states it will take you to the WHO website, and you’re interested in seeing what the WHO are saying, go to it yourself by googling WHO, don’t use the link! If it’s important enough for them to email or text, then you’ll be able to find details on their website. Can’t find the details on their website and you still think it’s real – call them using the number on the website.

5. Ask

If all else fails, and you’re still not sure – just ask. My team and I are on the side of the good guys (Yeah I know the bad guys might say that too!). Our careers are based on fighting scammers and helping protect people from being tricked. So if you’re in doubt, or if you think you might already be a victim, give us a call and we’d be more than happy to guide you in the right direction – 01235 433 900 or email SecurityServices@Planet-IT.net

The 6 Tech Trends of COVID-19

Since the start of lockdown in March, the business landscape has dramatically changed, the pull to virtual spaces, new technologies and accelerated upgrade plans. As an IT service provider we have been inundated with requests, projects and new developments, and it now seems the time to look at these changes and talk about the top trends that COVID-19 has brought upon the business world.

1) The office is dead. Long live the virtual space!

February this year feels like a long time ago and for most businesses it was unimaginable that less that 6 months later nearly all businesses would be working from home, with flexible working relying so much on virtual meeting technologies like Zoom, Microsoft Teams and Cisco WebEx – and not to only operate but to socialise, keep in touch and continue to build that company ethos. For some businesses this was a challenge. For others they have adapted and grown with the change. One thing is certain for many senior managers and business owners however: the future looks like one where less people visit the office and more are working from home.

2) Do I really want my servers in my office?

With the trend of moving over to virtual spaces another question that has seen itself thrust into the forefront of IT management is server locales. Previously IT managers and senior management would strive to keep their data close to them, with spaces from corners of offices, cupboards and full-blown data center rooms being constructed, powered and cooled with-in businesses existing spaces. However, when the tables turned and staff where out of the office connecting back to critical data via VPN technology, it became very clear that this set up may not be optimum. As such we have seen a huge increase in business interest for private cloud datacenters like our PlanetCloud service, or customers looking at public cloud or even a hybrid solution. The main driver being to remove that single point of failure and connectivity and drive performance and the ability to work anywhere.

3) The device refresh is here and we need it now. 

Just as many businesses where not prepared for the move to virtual working, many where sitting on legacy IT equipment which was either due a refresh this year or the business was trying to extend into 2021, however with the need for equipment that can support your users while working at home it has become critical that they are working on fast, safe and secure devices. As such we have seen many business moving forward their device refreshes opting for Device as a Service offerings which allow them to spread the cost over the term of the product and turns CapEX into OpEX expenditure.

4) Cyber criminals don’t care about pandemics 

One thing this pandemic has taught us is that cyber criminals have no morals and they will use any situation to manipulate and scam you. This has never been more apparent. During this crisis phishing attacks have gone up 400% and all of these attacks in some way link back to COVID-19, either posing as HMRC, the WHO or informing you that you have COVID-19 and to ring a premium rate number. The level of villainy and lack of humanity these criminals have never ceases to amaze me and my colleagues in the cyber security world.

This also raises the question of how we protect against these attacks and the honest answer is training. No product will be 100% perfect every time but if you invest in your human firewall then you can overcome the ever changing threat of these criminals and protect your business.

5) Broadband is key, but why is my home wifi so slow? 

If like me you have been working from home while your family consume Netflix, Amazon Prime and Disney + . You will have no doubt been dealing with slow connections, overload and sometimes even calls dropping out on Teams, Zoom etc. Well this is for a good reason, aside from the fact the whole broadband infrastructure has been heavily loaded, home broadband circuits are not designed with the same level of protected overhead as business lines. This is in part due to the contention ratios that are allowed on home circuits vs the guaranteed head room on business lines. With this we have seen a number of business purchasing broadband for their staff and having them put into their homes as dedicated business lines, the cost is low and the service is guaranteed. This allowing your family to stream away without effecting your meetings.

6) Board room procrastination has to stop, and businesses need to upgrade, adapt and move forward now. 

From experience I know that the boardroom is often where IT projects go to die. Long have the powers that be, procrastinated on an upgrade for it to never see the light of day. This was a common theme in businesses across the U.K with senior management favoring investments elsewhere to IT for their perceived value. In the last 4 months this has changed dramatically with the focus being more on IT now than ever before.

With companies choosing to invest now and heavily, knowing that it iss IT that has kept them operating over the last few months. Directors now realize that technology is critical to the business long term success. We have worked with a number of business who have revived, accelerated or even created IT projects that were previously on the long finger but now urgently brought into a 2020 timeframe on the request of the board.

With all of this said, it is important to remember the positives that we have gained from this experience and the level of transformation this has forced upon businesses, it is by no coincidence that many attribute COVID-19 as the biggest driver of change in their business over, IT managers, CTO and Technical Directors.

The reason for this is simple, businesses have been forced to adapt or disappear from the business world. The importance now is to ride the tsunami of change and not be washed away by it. If you continue to drive forward and innovate you won’t be left behind and you won’t be left vulnerable to cyber criminals and technology weakness that comes from standing still.

If you would like to discuss with myself or any of the 60 IT experts here at Planet IT about how you can better protect your business, should that be with new technology, strategies or even better backups, you can reach us using the contact details below;

Contact me at – LinkedIn Message James Dell or Email: james.dell@planet-it.net

Call 01235 433900 or Email: enquires@planet-it.net

Looking for a technology partner?
Let’s talk