Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Small Businesses Turn to Managed Service Providers for Security
Newest First  |  Oldest First  |  Threaded View
tdsan
50%
50%
tdsan,
User Rank: Ninja
7/27/2019 | 4:18:33 PM
Solutions that are inexpensive
There are four solutions that I think every Windows user should have that is free to the end-user.
  • Comodo - Antivirus, Firewall, IPS, File Mgmt and Executable mgmt
  • AVG - Antivirus, Browser protection
  • Firefox with Ghostery, NoScript installed
  • IOBit - Advanced System Care - downloads patches, configure services and improves performance

With Comodo, it comes with an IPS, Firewall system that blocks the use of applications that starts up, it is a warning system that informs the user that there is something that could be considered problematic or intrusive.  AVG provides another level of protection at the browser level and filesystem. Firefox with Ghostery stops tracking, NoScript (the one that looks like the snake) does not give outside users the ability to download files with scripting capability unless you tell it is ok.

All of the programs are free to use, of course, there are Pro/Prem editions but this is a good start for a small business.

Try it out, it works pretty well.

T
SanDiegoManagedIT
50%
50%
SanDiegoManagedIT,
User Rank: Apprentice
7/25/2019 | 3:45:44 PM
Re: Take action now
I agress 100% I wish they realized ransomware is the biggest threat to small and mid-sized businesses. Cisco even states this. https://hyphenet.com/ransomware-is-the-biggest-cyber-threat-to-small-and-mid-sized-businesses/
REISEN1955
100%
0%
REISEN1955,
User Rank: Ninja
4/24/2019 | 8:41:16 AM
Re: Take action now
True - it is  no longer a question of IF you get hacked but WHEN HAVE YOU been hacked (past-tense) and what ARE you doing about it today?
MarkSindone
50%
50%
MarkSindone,
User Rank: Moderator
4/24/2019 | 2:11:14 AM
Take action now
Today, every single business needs security assurance. Of late, data breaches are almost becoming a worrying norm. This situation has asserted business owners to take action before they get hit badly.


Commentary
Ransomware Is Not the Problem
Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  6/9/2021
Edge-DRsplash-11-edge-ask-the-experts
How Can I Test the Security of My Home-Office Employees' Routers?
John Bock, Senior Research Scientist,  6/7/2021
News
New Ransomware Group Claiming Connection to REvil Gang Surfaces
Jai Vijayan, Contributing Writer,  6/10/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: Zero Trust doesn't have to break your budget!
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-32243
PUBLISHED: 2021-06-16
FOGProject v1.5.9 is affected by a File Upload RCE (Authenticated).
CVE-2021-32244
PUBLISHED: 2021-06-16
Cross Site Scripting (XSS) in Moodle 3.10.3 allows remote attackers to execute arbitrary web script or HTML via the "Description" field.
CVE-2021-32245
PUBLISHED: 2021-06-16
In PageKit v1.0.18, a user can upload SVG files in the file upload portion of the CMS. These SVG files can contain malicious scripts. This file will be uploaded to the system and it will not be stripped or filtered. The user can create a link on the website pointing to "/storage/exp.svg" t...
CVE-2021-34201
PUBLISHED: 2021-06-16
D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640). Local ordinary users can overwrite the global variables in the .bss section, causing the process crashes or changes.
CVE-2021-34203
PUBLISHED: 2021-06-16
D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. An attacker can easily use telnet to log in, modify ...