Webinar: Supporting your journey to compliance and beyond

The financial implications of not being compliant are enormous let alone the reputational damage that comes with a data breach! Data moves throughout your organisation at an alarming rate and data privacy will affect all parts of your business.

We can provide you with practical, pragmatic advice on meeting and maintaining regulations such as GDPR and the incoming ePrivacy regulation enabling organisations like yours to meet regulatory obligations and business goals.

Watch our on demand webinar and get some key questions answered:

  • Will there be a grace period?
  • Who owns the risk when it comes to data in your organisation?
  • What is data portability?
  • What is a data protection officer?
  • Is it mandatory to have a data protection officer?
  • How and when do you obtain consent?
  • Will you need a Privacy Impact Assessment?
  • What actions should you take next?

Register here to join our next webinar in the series on the 12th September – Network Utilities Managed Security Services.

Webinar: Prepare for tomorrow’s cyber threats today!

Watch our on demand webinar and take a dive into today’s data and cyber security threat landscape with our Principle Technology Strategist; Malcolm Orekoya and hear about:

  • The evolution of ransomware
  • How to boost cyber security awareness within your organisation
  • Data portability in your organisation
  • The importance of encrypted data visibility
  • How to prepare for the impact these cyber threats will have on your organisation

Network Utilities’ Services puts your business first, reduces your risk and helps you ensure your network is safe, secure, fast and compliant.

Network Utilities and EfficientIP partner to help customers become GDPR compliant

In July 2016 Network Utilities and EfficientIP announced their partnership agreement to provide UK based customers with EfficientIP DDI solutions and draw on Network Utilities’ recognised expertise in the market and expand EfficientIP’s existing partner network in the UK region. Both company’s solutions will help organisations in a variety of public and private industries – particularly telecom – to protect their critical applications from growing threats, as well as integrate advanced network infrastructure.

With new legislation coming into effect in May 2018, this is a critical time for all organisations to focus on the strength, resiliency, and intelligence of their networks to avoid data breaches and ensure GDPR compliance. Now is the time to start building a GDPR-compliant infrastructure and providing sufficient security at the DNS level can save companies huge amounts of money and help avoid unnecessary GDPR proceedings.

David Silsby, Network Utilities Sales Director, believes this continued partnership will be beneficial to prospects and customers: “This new GDPR legislation puts the responsibility on companies to make sure their networks are as secure as possible, which will mean much more than just protecting the companies data it means protecting the whole infrastructure. No one can afford to ignore GDPR and working together with EfficientIP, Network Utilities will be able to offer customers a more enhanced security offering.”

David Williamson, EfficientIP CEO, is also looking forward to a continued partnership: “The addition of Network Utilities to our partner group is key to bringing new adaptive security solutions to their customers. The past two years have seen a dramatic increase in cyber security attacks, and DNS has been confirmed as being a weak point of the network infrastructure. We have the solution for this in our 360° DNS Security, and Network Utilities has the expertise to apply it as part of their offering.”

Network Utilities will be hosting a webinar with Martin Wellsted from EfficientIP on the 3rd May.  Register here and find out more about DNS exfiltration and how to prevent the unauthorised transfer of data from your organization.

EfficientIP webinar Twitter v2

 

Webinar – GDPR It’s coming, and it will impact your business

Are you confident in how to use and process your customer information in the light of GDPR?

  • Will your data processing involve the collection of new information about individuals?
  • Will your data processing compel individuals to provide information about themselves?
  • Are you using information about individuals for a purpose it is not currently used for, or in a way it is not currently used?
  • Will the processing require you to contact individuals in ways, which they may find intrusive?

If you answered YES to any of the above questions then you should take the time to watch our on demand webinar and find out about your obligations and how GDPR will affect you and your organisation.

Register your interest to attend our GDPR workshop – If you would like to join our GDPR workshop on the 19th April, please fill in your details below to register your interest and I will be in touch with an invitation and full agenda.

Thank you
Kara

Securing Your Network & Keeping You Compliant in 2017

Happy New YearWishing you a very Happy New Year and a warm welcome back to the office after the Christmas break.

We’ve been working hard to continue to make sure that we offer you the best IT networking & security solutions the industry has to offer. This short update will give you links to valuable resources you may find useful at the start of this year to help you keep your networks secure, fast & compliant. So please take a look and sign up for (and share!) the webinars & events coming up over the next few weeks some of the topics include; cloud security, AI and machine learning, endpoint security, threat prevention and the GDPR.

Cato Networks logo

Security in the Cloud – Are you ready to join the revolution?
Webinar – 25th January

We are delighted to announce our partnership with Cato Networks. Cato Networks is rethinking network security from the ground up and bringing it into the Cloud. Cato connects your branch locations, mobile users, physical and Cloud infrastructure into a secure and optimised global network in the Cloud. Intrigued? Join our webinar on the 25th January to find out more.

Register here for the Cato Networks webinar.

Blackfoot UK logo

GDPR – What you need to do NOW to make sure you are compliant in 2018
Webinar – 22nd February

One of our best attended webinars at the end of last year was around GDPR, so here’s another chance for you to get up to speed. Your customers are more and more aware of their entitlements around data protection; they want privacy rights and strong protections. But are you confident in how to process your customer information in the light of GDPR? Join our webinar for invaluable hints and tips on how to get GDPR compliant NOW.

Register here to attend our GDPR webinar.

Palo Alto Networks logo

Threat Prevention & Advanced Endpoint Protection
Workshop – 8th March

We continue our strong partnership with Palo Alto Networks in 2017 and are pleased to announce our first Ultimate Test Drive workshops for 2017 will be taking place on Wednesday 8th March at Palo Alto Networks, 140 Leadenhall Street, London, EC3V 4Q.

We will be running 2 free sessions on this day, you are welcome to register for one or both sessions.

Session 1: 09.30 – 13:30
Threat Prevention, Ultimate Test Drive

Session 2: 14:00 – 16:00
Advanced Endpoint Protection, Ultimate Test Drive

Register here to attend one or both Ultimate Test Drive sessions.

Cylance logo

Know the Truth
Workshop – 23rd March

Another partnership we are keen to announce is with Cylance. Cylance protects your endpoints against advanced malware with the world’s first antivirus built on artificial intelligence and machine learning. It’s AI and machine learning-based tools prevent threat execution, before the damage is done. It doesn’t simply protect against known threats, it identifies and defuses never-before-seen attacks.  Join our ‘Know the Truth’ workshop on Thursday 23rd March 2017 in central London to find out more.

Register here to join our Cylance endpoint protection workshop.

That’s it for now. If you would like further information on any of the above – and you just can’t WAIT until the dates listed – please get in touch. We’ll be on the case.

Happy January,
Network Utilities Team

Looking Behind The Attacks: The Top 3 Attack Vectors to Understand in 2015

We saw an unprecedented number of high profile cyber-attacks and malware infections reported in 2014 – Target, Snapchat, eBay and Adobe (to name a few). This has brought cyber security much more into focus, not only for c-level executives and cyber security analysts, but also for world leaders. The complexity of these attacks and the frequency that we saw in 2014, begs the question what does 2015 hold?

In this whitepaper our security experts look behind the attacks and highlight the key elements that malware, advanced persistent threats (APT) and other cyber-attacks typically use to infiltrate networks and how businesses like yours, can protect their valuable assets and data.

Download it hereWhitePaperImage

The Best Data Protection Advice You’re Not Taking – Part 1

dave_h_colourBy David Hone, Security Specialist, Netutils

Views expressed in this post are original thoughts posted by David Hone. These views are his own and in no way do they represent the views of the company.

Some mind boggling stats for you.

There’s a lot of data out there being created and shared and in amongst all that data are huge volumes of valuable personal and corporate information. By valuable I mean hackers want to nick it, sell it and exploit it.

Let’s take a second to think about the widespread proliferation of our personal data. Consider this. In the past the typical household bill cycle would start by a gas/electric representative knocking at the door to read the meters, 2 weeks later a bill would arrive directly from the supplier on the doorstep, typically that bill would be paid with a cheque in the post direct to the supplier or in cash at the local post office, both methods being secure in so far as a very limited amount of personal data was collected, processed or stored.

Roll forward to today’s Software as a Service (SaaS) dominated world and we have a very different picture. No-longer are our meters read by official employees of the gas or electric companies. Most likely the person reading the meter is subcontracted and employed by a different company. This instantly means a certain amount of your data is already being shared and these organisations are likely to have your account reference, house number, address and postcode. While this may appear a trivial amount of data it’s probably enough for someone to match this up with the electoral role to acquire your household name in order to request a copy of your electricity bill. Armed with a copy of your bill they could easily apply for some instant shop credit in your name. Scary stuff.

But it doesn’t stop there. The gas/electric company want to save money by making you read your meters directly for them and by paying your bills directly online. So they commission a company to design, build and manage a site to aid this process. You are then encouraged / forced to use the new service and more importantly are required to identify yourself and signup to the process, in doing so your personal data has the potential of being exposed in a myriad of different ways:

  • Direct breaches of data by the employees of the companies involved in managing the online platform.
  • Without the right level of anti-virus, anti-malware and phishing awareness protection your personal data could be stolen at source when you sign-up for the SaaS without the gas/electric company knowing or even caring!
  • Call centres and data centres reside offshore, in places which likely do not have the same personal data protection regulations in place or enforced as we have here in the UK

So with the new age of SaaS we can clearly see that we, as individuals, can quickly lose control of our personal data and the possibilities of this data being leaked, lost or duplicated and then used for financial gain starts to become infinite. Multiply this by the number of SaaS platforms that you are compelled to subscribe to and use and you can quickly see that the potential for your personal data being leaked, lost or abused is extremely high.

Worried yet? Then think how easy it is for your personal information to end up in the wrong hands. For example simply typing the wrong email address could result in your email being sent to a number of unintended recipients across the world. If a cybercriminal setup a domain such as “HSCB” the chances are they could easily capture a certain amount of traffic intended for HSBC, such correspondence are likely to contain information cybercriminals would otherwise not know.

Here’s 4 simple tips to help protect your personal data both at home and in the office:

  1. Two (or more) steps are better than one

Protecting your data with just a password? Stop! The danger here is that a single password can easily be guessed. Most secure systems deploy 2 factor authentication. This involves a password that only you/ your employees should know and a token element that typically changes with time. The other weak area of any of these systems is the mechanism linked to single sign on and the use of the same email address with these single sign on systems. Single sign-on typically allows you to use one account (for example your Facebook account) to login to other services such as Amazon. The weak link being the interception of a live session for any of these services, this allows the hacker to change the account email address by spoofing the live session. Having changed the email address the hacker simply requests a password reset which is then sent to the new email address provided by the hacker, from this point onwards the hacker has complete control of all your accounts and personal data all linked to the same single sign-on information. Don’t link social media sign-on details with confidential services like online banking. Also consider keeping services separate by having a number of different email addresses linked to these services that are only used in isolation, for example myname-mytax@{yourdomain.com}, or myname-goingout@{mydomain.com}, by doing this you are limiting the damage that can be caused should any one service be compromised. Finally (and many of us are guilty of doing this) never use the same password for all services; this I know is difficult to do and remembering all the usernames/passwords can be a real challenge, so read on….

  1. One size should not fit all

It’s frustrating when you can’t remember your passwords. Let’s face it life is busy enough. However there are a number of solutions out there that can help. Most of these solutions take the pain out of trying to invent new passwords and then trying to remember them at a later date. Typically these systems store all your passwords in one centrally managed place. However there are some security issues with this you should be aware of. Maybe you’ve lost your device for example, and this contains all your passwords. You can protect against this by using the device’s own password access systems before the key password application can be accessed. What you are buying here is time to react and the ability to generate longer random password seeds that should be harder to crack, difficult to remember but easy to manage and use. Check out http://lifehacker.com/tag/password-managers for ideas.

  1. Clean up after yourself

You know that website you used to make a random purchase? They made you sign up for an account right? Delete it! You have no idea what these companies are doing with your data or how well they are protecting it. I refer to my point above on SaaS. With the proliferation of SaaS, we as individuals can quickly lose control of our personal data and the possibilities of this data being leaked, lost or duplicated and then used for financial gain starts to become infinite. Delete those dormant accounts.

  1. Run and hide (well not literally, you’ll see what I mean below)

So why did Facebook recently purchase WhatsApp? Our data, what we do, where we go, what we purchase, when we purchase it, what groups we belong too and our buying power is all information with a commercial value. By signing up and agreeing to use certain services we are agreeing to allow these companies to own our data. In some instances access our photos and know our locations. Is this really information you want corporations to have about you? Consider this; you don’t have to fill in your real name and address when signing up for these services, or you could encrypt the data you sign up with. One solution that can hide our surfing habits is a solution called TOR from the TOR-Project .The browser bundle provides a clean browser (i.e. free of any tracking cookies and plugins) that connects by way of a VPN connected network of global hosts, your traffic is routed through the global hosts and exits at different places at different times, thereby obscuring and masking who you are, where you are and what you are visiting.

Keep an eye out for part 2 of our blogging series on the ‘best data protection advice you’re not taking’ which will provide you with hints and tips on educating your employees on the dangers of phishing attacks.