22. Shadow IT. Where does your data live?

It's not just about downloading unauthorized software, but also about where your data lives. Everything is riding on the line!

UPDATE to last week's Headlines:
Exchange server Mass-hack – timeline and scope:
  • Early January Microsoft was made aware of active exploits; patch available in March
  • Made free patch available to Exchange Server 2010, both showing flaw is in base code 10yrs old, and how prevalent this is
  • Confirmed 30,000+ US servers, 100's of thousands worldwide have active backdoors.
  • CISA announces “widespread domestic and international exploitation of Microsoft Exchange Server flaws.” campaign blaming China, saying it's a China state-run exploit.  Security researchers confirm at least 4 other state actors currently exploiting, including Russia and North Korea
  • 82k US servers still not patched as of Friday, backdoors still in patched servers
  • Concern that second wave of backdoor use still to come
This Week's Security Tip:
So you have a big file you need to get over to your printer YESTERDAY and you can’t get it to “send” via e-mail because the file is too big. What should you do? The right thing to do is contact your IT department (us!) so we can assist by installing a secure, commercial-grade file-sharing application. What you shouldn’t do is download a free copy of Dropbox or some other file-sharing software without telling us. Dropbox and other free apps come with a price: SECURITY. These applications are known for security vulnerabilities and hacks. Plus, if we don’t know about it, we can’t manage it or secure it; so the golden rule is this: NEVER download any software or application without checking with your IT department first!

Today's Headlines:
  • US DOJ indicted CEO of Sky Global (Sky ECC encrypted messaging app) for allegedly aiding criminal enterprises avoid detection by law enforcement."According to the indictment, Sky Global’s devices are specifically designed to prevent law enforcement from actively monitoring the communications between members of transnational criminal organizations involved in drug trafficking and money laundering. "As part of its services, Sky Global guarantees that messages stored on its devices can and will be remotely deleted by the company if the device is seized by law enforcement or otherwise compromised,"
  • Latest Windows 10 update causes BSOD when trying to print for all versions (1803, 1809, 1909, 2004, 20H2)
  • Molson Coors (Coors light, Miller Lite, Blue Moon, Killians, Foster's) March 11 ransomware attack, causing signifigant disruption to operations.
Next Week's Teaser:
It’s disturbing but very real. It’s creepy.

Call to Action:
We talk a lot about stupid (nothing bad ever happens to me; head in the sand; too busy; I’ll do it later). So what’s smart? Taking this seriously TODAY. Book a 10-minute Discovery Call right now. I’ll ask some key questions and give you a quick score. If you’re doing everything right, you can sleep better at night. If there’s room for improvement, we’ll discuss options. NO PRESSURE, NO STRINGS. JUST BOOK THE CALL!

www.mastercomputing.com/discovery