Lest you think the tech giant missed having a finger in this particular pie, Google surprised no one by debuting their own wireless carrier service earlier this week. Though the service is invite-only at the moment and only offered on Google’s own Nexus 6, they’ve negotiated a deal with both Sprint and T-Mobile to piggy back on their existing, nation-wide infrastructure to create a coverage area without having to build it. According to Google, the limited launch of this service is more of an experiment as opposed to a direct challenge of reigning champs ATT and Verizon. The major differentiator to their service? A low-cost, pay as you use it, data plan with data tethering, wi-fi calling that can also be used from other mobile devices such as tablets and laptops.
What this means for you:
Unless you have an invite in hand, you can’t jump onto the Google Wireless bandwagon yet, and if Google stays true to the “we’re just testing the waters” mantra, maybe not ever. But if Google can deliver a solid service for a fraction of the price that the big 4 carriers are charging now, it’s going to have repercussions on the entire mobile landscape. As they’ve done with Google Fiber, this particular foray into the bloody wireless markets is an exercise in forcing a change in the status quo where major carriers are squabbling over how to charge consumers more for less service. However, Google surely has an agenda that includes profit (they are publicy held), and you musn’t forget that the largest revenue stream for them is advertising and data mining. The mad scramble for dominance in the mobile data market is about as close as we’ll ever get to seeing a modern gold rush, and you can bet Google has been preparing to stake a claim since before you and I even knew there was “gold in them thar hills!”
Though it may sound enticing to some, “Mobilegeddon” is not the sudden annihilation of all mobile devices. Rather, Google is releasing a new search algorithm that will impact how mobile users find websites. For those of you who aren’t up on your search engine technology, Google uses a complex, closely-guarded formula to calculate its search result rankings for all the websites it indexes. The last major update to the algorithm, entitled “Panda“, was released in 2011, and was designed to reduce the impact of gaming search engine ranking through content manipulation, a specialty of many less-than-honest SEO companies that sprang into existence in the last decade. Panda impacted about 12% of existing websites, most of them content farms designed to leverage popular content and other nefarious SEO methods to get to the top of search results.
What this means for you:
This time around, Google is focusing on providing better results for smartphone users by favoring mobile-friendly websites over those that display poorly on small screens. If you don’t drive business through your website, this may not be a high priority for you, but it may surprise you to know that over half of all internet traffic is from mobile devices, and nearly 40% of search is done on smartphones. Having a website is essentially a must-have for any ongoing business or organization, and if your website makes a poor showing to over half of your visitors, it will have an impact on your brand. How do you know if your website is ready for Mobilegeddon? You can punch in your URL to a website developed by Google to determine whether your website is mobile-friendly. Unlike Google’s last algorithm change, this one should start impacting rankings as soon as 72 hours from launch. Lest you think you are the only one caught out in the cold with this change, there are several internationally recognized brands whose sites do not pass Google’s mobile “sniff test.” One advantage you may have over corporate behemoths: less red tape and meetings will be necessary to make the required changes to your website, also you happen to know someone who can provide strategic advice in this area as well as assist in the website redesign. Give us a call if you need to “mobilize” your website!
Image courtesy of Stuart Miles at FreeDigitalPhotos.net
If you are one of the many folks who work for a company that doesn’t have full-time IT staff on hand to keep your technology running smoothly, you might feel like your options for troubleshooting or resolving tech problems are limited. Depending on the severity of the issue, you may be able to rectify many minor/transient issues with some simple practices that we “experts” use on a regular basis. Obviously these techniques won’t work for things like a crashed hard drive, malware infection, or security breach, but they are useful to know, and can save you time and money.
- Reboot – It may sound clichéd, but more often than not, many of my clients forget about rebooting. Even though Windows 7 and 8 are supposedly designed to work without needing frequent reboots, if your computer is acting sluggish or abnormally, try a reboot to see if the problem goes away.
- Check Task Manager – On any Windows machine, XP and up, hitting Ctrl-Alt-Del and checking out the list of running applications in Task Manager may be an eye-opener. From there, you can see your Memory and CPU usage. If a program seems to be hogging one or the other (or both), try closing that application to see if performance returns to expected levels. Recent versions of Google Chrome are notorious for being memory hogs, and will hold at least one process open for each tab you have open on your computer. If something says “Not Responding” it’s possible the app itself has crashed. “End task” on apps that are not responding may return your computer to temporary usability. Save what data you can and reboot. If CPU and/or Memory usage remains high after a reboot and closing all applications, you might have a malware infection. Skip immediately to #5 or call a professional.
- Check your network connection – so many apps rely on the internet that unpredictable things may happen if your network connection is unreliable. Check your physical Ethernet connections, Wi-fi signal strength, bandwidth speed, etc. If something is wonky with your internet, your computer may manifest that problem in unexpected ways. If bandwidth seems unusually slow and you aren’t the only one using it, someone else on the network may be hogging it up, either intentionally (Game of Thrones stream?) or unintentionally due to a malware infection.
- Reboot your router or access point – depending on who’s impacted, and whether you are feeling confident on which thing is the router, AP or switch, cycling the power on your core infrastructure may clear up a lot of strange behavior. That’s right, even your home office has a “core infrastructure”! Just make sure you warn everyone affected (officemates, employees, family, etc.) that you are taking the “reboot mantra” to the next level. Not sure which one is which? Make a call to your ISP help desk or your local, friendly technician at C2 for some guidance.
- Run a malware scan -assuming you are not a managed services client of C2 (we take care of this part for you!), fire up your anti-malware software and run a full scan. Didn’t find anything? Get a second opinion and run Malwarebytes. Want a third opinion? Try herdProtect. Not sure if you have anti-malware software installed? Might be a good time to call us for a checkup.
Many garden-variety Windows issues can usually be nipped in the bud with the above 5 practices. Practicing safe-computing will keep you out of harm’s way for everything else. As always, avoid attachments, don’t click strange links or popups and practice constant vigilance to keep your data safe!
Several clients learned some hard lessons this week. First and foremost, no one is immune from malware, no matter how much money and time is invested in security. If you still don’t believe this, you might be surprised to know that the White House was hacked recently. Granted, I made fun of government-run websites and their pitiful security, but one has to imagine that the Secret Service takes POTUS security very seriously, and yet Russian hackers seemed to be able to access sensitive information by fooling someone through a phishing email. Yes, email. That indispensable tool that we can’t live with and can’t live without. While we are frequently the agents of our own demise (surely this email from this overseas lawyer about a long lost inheritance is real this time), we can also be the agents of our own salvation as well.
Let me testify!
Above all, stop opening attachments sent via email, and likewise, look for ways to stop sending attachments via email. There are tons of secure file sharing options out there (keep in mind we don’t consider the free Dropbox among them…yet), but as long as the business world continues to rely on attachments to get things done, cyber criminals will exploit your willingness to open things sent to you via email. Resist the urge to open attachments even if you recognize the sender, and verify via phone if they indeed sent the attachment. Here’s an important clue: financial institutions, law enforcement, government agencies and just about any large consumer-serving company will not send you an attachment in order to get you do something or notify you of important information. FedEx nor UPS do not send you delivery confirmations as attachments. Neither your bank or credit card company will send you an attachment asking you to open them. If you receive what you believe to be a legitimate attachment from a company with which you do business, call them to verify they sent you that file. Ninety-nine times out of one hundred, they did not send that file. I guarantee that you will receive emails that look and read 100% legitimate, but will in fact be clever attempts to trick you into nasty malware infection. Even the best anti-malware software won’t be 100% effective all the time. The criminals who send you attachments anticipate you have some form of protection installed, and their payloads are designed to turn that “foot in the door” into a full-scale home invasion, anti-malware or no.
The best management coaches say to always pair a “stop doing this” with a “start doing this”. Are you backing up your data? If not, you need to start, right now. If you are, have you checked your backups lately? Tried restoring a file? Are your backups stored offsite? One of the clients mentioned above was thoroughly decimated by the infamous cryptolocker malware. Not only did it take out a principle workstation and all data, it also kidnapped their server data and mangled their backups, primarily because they were onsite and not designed to go back more than a week before being overwritten. Cryptolocker is infamous for hiding out for days before making its presence known, precisely to destroy local backups in this fashion. If you are using proper offsite backups, either through rotating media offsite manually or by using a cloud-based platform, this form of infection is annoying but survivable. Do yourself a favor and review your backup strategies immediately!
Image courtesy of Stuart Miles at FreeDigitalPhotos.net
In 1986, Ronald Reagan is quoted as saying, “The nine most terrifying words in the English language are, ‘I’m from the government. I’m here to help you.'” As relevant as that sentiment was in his day, it’s still ringing true, this time with at least three government websites that are doing you no favors in terms of protecting your identity. Krebs on Security has an alarming report of identity theft and fraud via the IRS.gov website wherein he shares the story of a taxpayer who discovers someone has already filed a fake tax return under his name, for the purposes of stealing his tax refund. At fault is a identity authentication standard known as KBA, or “knowledge-based authentication” which is pretty widely used in the credit reporting and finance industries. Basically, you prove you are you by answering questions that supposedly only you would know, including former addresses, loan amounts or payments, and other personal data that is – surprise, surprise – readily found on the internet. By anyone.
What this means for you:
Ironically, people avoid creating accounts on websites because they are afraid of their data being leaked. And now you get to be afraid of NOT creating an account on a website for fear of someone else creating it for you, with the added “bonus” of this fake account further decreasing the probability of you being able to prove you are actually who you say you are. “Invasion of the Body Snatchers” anyone? What makes this situation alternately terrifying and ludicrous is that it’s our own government creating this mess in an effort to provide better reporting, accountability, and accessibility. The other two sites that are also potentially weak to this “account snatching”? How about the Congress-created AnnualCreditReport.com and another federal behemoth: the Social Security Administration website. Brian Krebs’ recommendation is to make sure you get an account established for these three website pronto, if only to prevent someone else from pretending to be you and creating accounts that will be used to commit fraud and money laundering. Unfortunately for most of us, the surge of interest created by this article (and blogs like this one) have essentially paralyzed (are you surprised?) the account creation process of these websites, but keep trying, if only to let them know we actually care about our identities enough to want properly secured government websites.
On April 24, Apple’s latest gadget will be available for sale. Their smartwatch will put the hurt on your wallet to the tune of at least $349, and if you happen to be made of money, you can buy the solid gold version for a cool $10,000. While the Apple faithful have already set aside their regular tithe to their silvery master, many, many more have yet to see a need to invest in this bit of technology. Believe it or not, smartwatches have existed in some form for decades but essentially have languished in relative obscurity until 2013, when most major consumer electronics companies began to openly develop and market wearable technology. Even still, most Americans scorned the earliest progenitors of today’s smartwatch, primarily because of clunky design and poor integration with existing phones. But can Apple turn nerd fashion into the new hotness? If anyone can, Apple can, but they still have some hurdles to clear.
Before you buy one, ask yourself a hard question: Do you need one, or do you want one?
Make no mistake, even the $10k Apple watch is no Rolex. In terms of long-lasting value, it may not even measure up to a more humble Seiko or Timex. Whereas a decent quality “regular ole watch” will continue to function for decades or more, your smartwatch is likely to be much less useful in less than 2-3 years, and might actually be end of life in five, much like today’s smartphones. And let’s “face” it, smartwatches are huge on the average wrist, and if you have delicate bone structure, your wrist is going to look like this millennium’s Flavor Flav. For most folks, this is a fashion don’t, Apple shiny or no.
For reasons why you might “need” a smartwatch, consider how you use your smartphone. For the on the go professional, especially those that keep their smartphone in a bag or deep pocket, being able to see who’s calling or texting without having to dig for your phone could be very useful. For someone like me who frequently has both hands tied up with handfuls of computer guts (figuratively and sometimes literally), being able to quickly glance at my wrist is infinitely more convenient than stopping what I’m doing to fetch my phone. For the physically active among us, Apple’s fitness tracking capabilities have some promise, especially if it means eliminating a less versatile device from our daily carry. To top it off, the promise of Siri literally being your right hand (or left) may be sufficient to cement this deal.
If the promises of this last paragraph overshadow the drawbacks of the preceding one, you may be able to graduate your “want” to “need” with minimal guilt. Don’t kid yourself – you are doubling your technology gadget tax by investing in this latest trend. At best, you may be able to alternate upgrading your smartphone and smartwatch each year, but until they can figure out how to cram everything we’ve come to love about our smartphones into an elegant watch or snazzy (and surreptitious) sunglasses, you’ll need both to take your geek chic to the next level. And here’s the real gotcha of nerd high-fashion: last year’s models are soooo passé.
The internet revolutionized the way we shop for things. Whether it’s researching cars, travel, homes, technology or just our next meal, many of us pull out our smartphone before we pull out the wallet. While this can sometimes lead to superb deals and fantastic discounts for many useful things, it’s also contributing to the “commoditization” of technology goods, which can be a double-edged sword. On the one hand, this trend helps drive down prices on useful and powerful technologies. Remember when you bought that 5GB hard drive for $500? That same amount of money can buy you 3000 times the storage space today. Remember when only certain staff were allowed access to the internet and email? When only Wall Street traders and big time drug dealers had car phones? Today I see grade school children with mobile devices that are orders of magnitude more powerful than the devices we used 10 years ago. On the flip side of this is a more subtle, negative effect, where costs become the primary determining factor in making technology choices, often to our detriment.
Let me ‘splain:
Apple’s iPhone line, from the start, required a proprietary cable to sync and charge itself. As one would expect of Apple products, it was priced accordingly (ie. high), and as one would expect of things that are small, and plugged into awkward corners under desks and behind furniture, frequently replaced. Enter the third party manufacturers who produce replacement chargers and cables at a fraction of the price of Apple’s. “I just bought this $5 charger and cable for my ($800) iPhone. Look! It’s charging just fine!” Maybe it is, and maybe you bought a product from someone who just won a race to the bottom, and it’s a safe bet they didn’t get there by innovating.
There’s nothing wrong with being a smart shopper, nor with saving some money, especially on technology, but make sure you weigh the value the technology delivers for you or your business against your budget requirements. When purchasing computers for your business, do you really want to buy the cheapest available? When considering a monitor, do you value screen size and quality against the fact that you’ll probably be staring at this device for hundreds, if not thousands of hours? When it comes to technology, low cost does not always equate to the best value, and in many cases it may lead to longer term headaches. Remember the low-cost iPhone chargers I mentioned earlier? What if that $5 charger shorted out the battery in your shiny iPhone, something that might end up costing you 20 times the cost of the charger to rectify, not to mention a rather large inconvenience. I’m not saying that great bargains don’t exist in the technology world, but just be prepared to make some lemonade along the way.
Image courtesy of Stuart Miles at FreeDigitalPhotos.net
I get this question frequently: “Is Wi-Fi dangerous to my health? Am I putting my employees/customers/family at risk?” The short answer is “no” but most folks immediately follow up with, “But I heard it’s on the same frequency as microwaves! Aren’t those things shielded so we don’t irradiate ourselves when heating something up?” This fact is true, but Wi-Fi access points and microwave ovens have very little in common past the fact that they both use radio waves that oscillate at 2.4GHz, as do many other things in your house, including cordless phones, baby monitors, remote controlled toys and bluetooth devices. The primary difference between dangerous and harmless is the amount of energy the radio wave is able to transmit from source to target.
Let me ‘splain:
Microwave ovens use high voltages and short distances to transmit a large amount of energy via the 2.4 GHz radio wave. The same radio wave broadcast by a Wi-Fi device is approximately 100,000 times weaker than the microwave oven, primarily because it’s using very low voltages, and it is affected by a physical principle known as the inverse square law, which states that energy rapidly dissipates the further it gets from the source. Even if your Wi-Fi router were to get hit by a freak power surge, the components would burn out long before it could emit anything approaching microwave oven-strength signals.
Numerous (25,000 in the past 30 years) studies on radiation, including waves in the 2.4GHz range, indicate that there is no reason to believe that constant exposure to low-level electromagnetic fields contribute significantly to health issues. You might be surprised to know that even if you were to move somewhere completely free of electronics, you’d still be bathed in a constant 2.4GHz field of cosmic radiation. The only way to completely block this form of electromagnetic energy would be to live in an aluminum foil suit deep underground in a lead-lined cave.
This being said, there is still some grumblings about cellphones and bluetooth headsets, both of which are held close to the head. In the case of your average cell phone, it’s 20X more powerful than a Wi-Fi device. As I linked earlier, there’s still no evidence that the radio waves cellphones emit contribute in any statistically meaningful way to health issues. You are actually more likely to be hurt or killed from using your mobile devices in situations where divided attentions can lead to accidents. In this way, just like commuter dining and drive-time makeup application, Wi-Fi might be dangerous to your health, but not from the electrical fields that it uses to get its job done.
Last word: I am not a doctor, but I’m pretty certain you’ve more to worry about from exploding smartphone batteries and careless drivers than Wi-fi devices. Heck, you are more likely to be killed by a cow than Wi-Fi radiation.
Image courtesy of Stuart Miles at FreeDigitalPhotos.net
Over the past twenty-plus years that I’ve been working in the industry, the “personal computer” has gone from from obscurity to commonplace. Some of you may have been in the workforce long enough to remember when your organization first started using email, desktop publishing, and spreadsheets. At the time, everyone needed training, and often it was requirement before anyone was allowed to use or even requisition a computer. On top of this, they were very expensive, and justifying the ROI often meant they were only used for very specialized parts of the business. Today, having PCs in the workplace is taken for granted. Likewise, I’ve seen an increasing expectation that all employees know how to use a computer, and in some cases, a high level of proficiency is just assumed, regardless of training, background, experience or industry.
While it’s largely true that computers have become much easier to use than in decades previous, they have also become much more complex – both in functionality and in how intertwined they have become with modern life. Remember the “golden days” of automobiles where any red-blooded American could roll up their sleeves and work on their own cars? Nowadays even professional mechanics rely heavily on computers to figure out what’s wrong with your car. Most people were never even presented with the opportunity to “pop the hood” of their computers, and despite the prevalence of modern technology everywhere we look, only a miniscule percentage of us ever go beyond cracking the case of our computer to blow out the dust bunnies with canned air.
Why this is important to business owners and leaders:
Do you remember when being proficient in computers was considered “geeky” or “nerdy”? Now the opposite is true – we joke about folks that struggle with their smartphones and computers. The assumption that “everyone” knows how to use a computer can lead to other more dangerous assumptions about your organization’s security. In today’s technology security environment, humans remain the weakest link, and the bad guys know this.
Do you assume your employees know to not use work email for personal use?
When email was new to the workplace, this rule was strictly enforced, but times and workplace culture has changed. Now that everyone has email, computers and smartphones, enforcing this practice has often been de-emphasized in the pursuit of “work-life balance” or outright dismissed by companies attempting to shed “uptight” business culture roots. Unfortunately, co-mingling personal and business technology can result in significant security risks for both the business and the individual.
Do you assume your employees know what do when they get a virus infection?
Depending on your company’s culture, the employee might be too scared or ashamed to admit they’ve been compromised, even if you have an IT person or department ready and waiting to help them. An unreported security breach can lead to Sony-sized hacks on your organization.
Do you have a technology usage and/or security policy for your company? If yes, do your employees understand and adhere to this policy? How do you know?
The most dangerous assumption here is that making your employees sign an agreement acknowledging this policy equates to enforcement. Proficient technology use requires training, and using this same technology securely requires regular training and checks. Just like technology itself, the practices and office culture surrounding its use are constantly changing, and both the company policy and the employee’s knowledge should be updated regularly.
Image courtesy of pakorn at FreeDigitalPhotos.net
Chinese computer manufacturer Lenovo (IBM’s former hardware division) is making headlines this month, but not the kind that most companies covet. Until as recently as January 2015, Lenovo has shipped a large number of computers with pre-installed software from adware company Superfish. In and of itself, this isn’t an uncommon practice – hardware manufacturers commonly reduce manufacturing costs for their consumer products by striking deals with various companies who pay to have their software installed on brand-new computers. As initially reported by security researcher Marc Rogers, the Superfish partnership was a bad one for Lenovo, not only because the software itself was already notorious for being adware, but also because it compromises the built-in security of your computer’s SSL protocols to do its dirty work. Lenovo initially tried to downplay the problem, but pressure from the security community and the resulting media attention has since caused Lenovo to reverse its position 180 degrees. The CTO apologized in an open letter, and the company has issued a fix that completely removes the vulnerable software.
What this means for you:
Unless you are really into the technical details, the “what” and “how” of the Superfish vulnerability is much less important than the “why” and the “who”. In this case, we know why Lenovo installed Superfish – presumably they benefitted financially in some fashion. The real problem behind this fiasco is that Lenovo (a “trusted” brand – I use a Yoga 3 while I’m out seeing clients) missed the security flaws in this arguably useless piece of software and endangered thousands of its customers for no other reason than to make a buck. Can any hardware manufacturer be trusted to have our security in mind when making and selling their products? If the most recent NSA hard drive firmware scandal is to be believed, I’d say the answer is a resounding “no”. As we’ve seen with numerous other industries, when a company is held more accountable to shareholder profit (or “patriotic” duty?) than to consumer wellbeing, the only person we can trust is ourselves.
Unfortunately, manufacturers like Lenovo, Dell and HP have made a bed that is now very uncomfortable in which to lie. Their practice of installing “bloatware” on their equipment have driven prices down to a level that may be very difficult to maintain if they can’t lean on the dollars gained by these pre-installed software deals. At minimum, they’ll have to be much more discerning on what they pre-install, which, in turn, will drive up costs and narrow their margins even further.