Email Security – The biggest scope for an attack

email protection

There is no bigger scope for attack on your organisation than e-mail.

We all use it. We all have stacks of it. And we have all fallen for some gimmick or promise. Or not even that, spoofing, where you thought Stuart in Product Development was genuinely asking you out for dinner and so needing you to send back you phone number! Only to then get inundated with phone calls as you’ve given your number out to the bad guys. (Yes, ready meal for one coming up).

Our very own dreamboat Adrian Sweeney was spoofed recently (thankfully, we’ve done our training!)”.

There is no off switch. I wish there was. It’s my most asked about security concern, and so it should be!

Even the Mimecasts or Barracudas of this world can’t catch everything, it’s a constant game of cat and mouse, and sometimes the mouse wins!

What WILL help against this constant barrage of spam, is Email protection. (It is scary how many companies out there still don’t have ANY). And in fact, if you don’t have it, you are either crazy or bonkers. There are SO many vendors out there. Ones I like, Mimecast, Barracuda and Censornet, (less known but works well).

And……..

So you’ve got the security guards checking the e-mails, if your names not down, you’re not coming in……Well what happens if it still gets in?

Yes – This big cost you have just forked out has still let spam in. As mentioned before the mouse won….

A solution – Simulated fishing campaigns… One company name that stands out for me on this one, market leader KnowBe4.

It’s easy to use and set-up, and you can safely send simulated email phishing attacks to your staff AND if they fail, they get sent the correct training to help them not do it again.

It’s easy to keep track of who is having issues, and it helps you tailor the campaigns to better suit the business you run. This only helps you get the best from the product.

Sorry, that one went a bit salesy. But only because it’s important and we can help you. If you would like a proof of concept at no charge, or discuss how Planet can just take care of all this for you contact: SecurityServices@Planet-IT.net

macOS the big change with Big Sur

About a month ago I wrote an article ” This might sound controversial, but resist that big MacOS update, for now!” In that article I warned about the changes that Apple where bringing to the operating system of macOS with the move from 10.15 to 11, one of the biggest of these is the removal of direct access to the system kernel.

While from a purely security centric point of view this sounds like a great idea, as you are restricting the ability of any software to jump onto the system and access machine changing instructions, it poses a serious implication to the world of vendor support for macOS.

At the time I warned of this impending change, however when writing that article, it was difficult to really clarify how big an impact Big Sur was going to have on 3rd Party software. However, in the last few days it is starting to become a lot clearer.

Since initially testing the Beta on a development machine, as we do every year at Planet IT to ensure we can successful support for our client’s businesses, we initially noticed that a number of software products stopped;

  • Antivirus
  • Encryption Management software
  • Virtualisation Applications
  • Container Applications
  • And the list goes on….

When this initially happened, as an Authorised Apple Reseller, we were already a few weeks into testing, ahead of the companies who make the software

Because of this, when writing my previous article warning of the risk, I wasn’t too harsh on any single software vendor, just in case they got their act together and updated the software to move from direct kernel access to the now Apple approved API access.

Late last week along with many customers I received the below from Sophos;

“Dear Sophos Customer/Partner,

Please note that the current version of Sophos SafeGuard is not compatible with the upcoming release of Apple macOS 11 (Big Sur) and will not function correctly. We strongly recommend that customers do not upgrade any macOS clients running Sophos SafeGuard to macOS 11 (Big Sur) at this point. Doing so may have undesirable effects including:

1.

Device Encryption – SafeGuard may in some cases not be able to retrieve FileVault recovery keys, meaning that machines might not be recovered if users forget their password

2.

File Encryption – SafeGuard may in some cases not be able to encrypt and decrypt files transparently. Please note that no data is at risk of being lost as manual encryption and decryption of files will still be available

We intend to issue a Service Release of Sophos SafeGuard that will resolve these incompatibilities. In the meantime, we recommend you do not upgrade the operating system and wait for this Service Release instead.

For the latest information, please see this article. This article will be regularly updated with the latest information.

Best Regards,

Your Sophos Team

This began to answer a question that had been burning in my mind, are these vendors ready?

The answer is no!

Sophos is not alone in having issues with macOS 11, but they are, to their credit, the first to publicly admit it. Their suggested action is to not upgrade to macOS 11 Big Sur when it becomes publicly available (expected in the next 10 days), however that is easier said than done as Apple will force you to update with-in a matter of weeks anyway.

We expect to see a number of issues with additional software as a wider group of user uptakes the new software and unfortunately this year more than ever software vendors are slow to resolve the issues and adjust to the new way of working.

So our advice remains simple, HOLD OFF! 

I know we usually recommend keeping all devices up to date, but please don’t rush to upgrade your device this time. If you use it for work in any way, you are going to want to stay on the latest secure update of 10.15 MacOS Catalina for a while.

As with this update we are going to continue to monitor the situation and we will let you know as soon as it’s safe to make the jump and we hope to publish a granular list of unsupported major applications as soon as the public release of Big Sur occurs.

We know this goes against the usual advice you might hear from us or other IT experts, so in the meantime if you would like to discuss with myself or any of the highly skilled team here at Planet IT about how to keep your business operating, secure and safe in the changing world of the Mac you can reach us using the contact details below;

Contact me at – LinkedIn Message James Dell or Email : james.dell@planet-it.net

Talk to the rest of the team – Call 01235 433900 or Email : enquires@planet-it.net

This might sound controversial, but resist that big MacOS update, for now!

MacOS is changing with BigSur. Not only does the OS X era really end at 10.15 as we are introduced to BigSur (11.0) around late September, but the fundamentals of the operating system will change too. But why is this important to me, you ask?

Well as your average Mac user, as soon as Apple press the big red “Go Live” button on BigSur, you will see little red icon appear on your system preferences, as well as a nice little banner on both your notifications and App Store telling you to upgrade now to the future with MacOS BigSur. Believe me, I understand the excitement of a new update! And with all of this the temptation, it will be really easy to simply press the button and see what the future holds.

However the reason for writing this article is to implore you to wait…. BigSur will be the start of what ushers in the ARM based Mac era. However, with this a number of your current business applications will have to be altered or may not even work at all, this is the big unknown with a change of this magnitude. While Apple and 3rd Parties can try their best to work together to ensure functionality there is an inherent risk that, at launch, a number of your key applications won’t work as expected.

This apprehension is born from initial findings and decisions by Apple to change the way that the OS functions, the biggest impact will be seen to 3rd Party Security software or Anti-viruses. As they will no longer be able to directly talk in the way they have previously to the Mac, this means for many vendors a rush to produce a whole new Antivirus solution that works on the new MacOS BigSur.

So our advice is simple, HOLD OFF! 

I know we usually recommend to keep all devices up to date, but please don’t rush to upgrade your device this time. If you use it for work in anyway you are going to want to stay on the latest secure update of 10.15 MacOS Catalina for a while. We intend to notify our customers and followers once we have been able to establish that it is in fact now a safe time to migrate. This will be in the form of another blog just like this so keep your eyes peeled.

I know this goes against the usual advice you might hear from us or other IT experts, so in the meantime if you would like to discuss with myself or any of the highly skilled team here at Planet IT about how to keep your business operating, secure and safe in the changing world of the Mac you can reach us using the contact details below;

Contact me at – LinkedIn Message James Dell or Email : james.dell@planet-it.net

Talk to the rest of the team – Call 01235 433900 or Email : enquires@planet-it.net

Looking for a technology partner?
Let’s talk