What you need to know about the OneLogin Breach

OneLogin, a single sign-on service that allows users to access multiple sites and applications using just one password confirmed on June 1st that its systems had been breached and login information had been exposed. According to the firm, this breach affects “all customers served by our US data centre” and the hackers had “the ability to decrypt encrypted data”1. This is the second time within the past year that the firm had its security breached.1

So, how can you protect your data from a breach? One way is to have two-factor authentication, which is a method used to confirm a user’s claimed identity by utilizing a combination of two different components, generally something you know with something you have. For example, when you withdraw money from an ATM, only the correct combination of a PIN (something you know) with the bank card (something you have), will grant the transaction to take place.

One of the safest ways to ensure your data is protected is to encrypt it before placing it in the Cloud or with a single sign-on provider, such as OneLogin. Provided your encryption key has not been generated from a simple password, your data will be protected from any breach to your provider, as the provider does not have the password to gain access to your information.

It is vital that one stays vigilant when it comes to protecting your passwords and data. Even the most difficult password can be deciphered if given enough time. Therefore, it is important to regularly change your passwords and ensure they are strong. We have more information on the Do’s and Don’ts of Password management on our blog.

For more information on password and security, connect with Bryley’s cybersecurity experts by emailing us at ITExperts@Bryley.com.

 

1 Fiveash, Kelly. Ars Technica. “OneLogin Suffers Breach – Customer Data Said To Be Exposed, Decrypted” – arstechnica.com. June 2017.

BBC News. “Password Manager OneLogin Hit By Data Breach” – bbc.com. June 2017

 

How and Why Is Cloud Computing Beneficial for Small and Medium Organizations?

Cloud computing is not just for large organizations. That’s a fact.

Many small businesses are migrating to the cloud and experiencing benefits that were never possible before. Cloud computing allows people access to a wide range of applications via the Internet. Prior to the advent of cloud computing, software had to be downloaded and installed on physical computers or servers in brick and mortar offices. Those days are gone.

The cloud is becoming more popular because:

  • Cloud-based applications and services can be accessed anytime from anywhere. All you need is a device with an Internet connection.
  • The time, effort and cost of managing your systems goes away
  • The cloud is effectively infinite in size; you need not worry about running out of capacity

Here are some top reasons why organizations are choosing the cloud…

Work from Anywhere If you have an Internet connection, you can work. Most cloud services are accessible from any device. Organizations can now offer more flexible work schedules to their employees, thereby increasing productivity.

Disaster Recovery Organizations of all sizes should be investing in robust disaster recovery. For smaller, budget-conscious organizations, cloud-based disaster recovery is ideal. It saves time and money by eliminating high, up-front costs, and internal IT teams are no longer tasked with the complexity of maintaining a best-in-class disaster recovery system.

No Hardware Costs Cloud computing eliminates the high cost of hardware. You “pay as you go” using a subscription-based model that’s easier to budget.

Security When your data is stored in the cloud, you can access it anytime from anywhere. You can even remotely wipe data from lost or stolen laptops so it doesn’t get into the wrong hands.

Automatic Software Updates Servers are off-premise so you don’t have to worry about maintaining them. Software updates are performed as they’re released.

Flexibility Cloud-based services are ideal for organizations with growing or fluctuating bandwidth demands. If your needs increase, it’s easy to scale up your cloud capacity. If you need to scale down, you can easily do that, too.

Collaboration Employees can access, edit and share documents anytime from anywhere. Cloud-based file sharing apps are updated in real-time, giving everyone full visibility into current content. Prior to the cloud, workers had to send files back and forth as email attachments to be worked on by one user at a time. That method often led to conflicting document versions.

Greater visibility means improved collaboration, which ultimately translates into a better practices and a healthier bottom line. If you’re still relying on old methodologies, it’s time to move into the 21st century and explore new, reliable cloud-based options that will streamline the way you conduct your business.

For more information about cloud computing, or to inquire about Bryley’s full array of Managed IT Services and Managed Cloud Services, please contact us at 978.562.6077 or by email at ITExperts@Bryley.com. We’re here for you.

Brief Review of Cloud Trends in 2016 and Beyond

Cloud trends include1:

  • Options – Switching Public Cloud platforms and Private Cloud compliance
  • Familiarity – Greater understanding leads to refinement in selections
  • Growth – Cloud tends to be the primary engine for IT growth
  • Benefits – Reduction in costs leads all other benefits

Options

Approximately 43% of companies using Public Cloud services that were surveyed in CompTIA’s “Trends in Cloud Computing”2 switched to a different Public Cloud platform (i.e.: from Google G Suite to Microsoft Office 365). Of these, 46% noted that this secondary migration was more difficult than the initial migration to the Cloud.

The top Public Cloud implementations – email, web presence, and business productivity suites – were used by 51%, 46%, and 45% of the survey respondents, respectively.

Familiarity

Most Cloud-using organizations have a one-to-five year history with Cloud services; they have been through the process before, which simplifies the selection and procurement of new options.

Cloud options, “Public”, “Private”, and “Hybrid”, also are better understood, leading to greater refinement in the cloud-selection process. However, Private Cloud is likely the least-understood option, often being used to refer to a hosted datacenter solution, which is becoming the norm.

Growth

“The Gartner Group” forecast Cloud revenues of $204B in 2016, a 16.5% growth over 2015.3 Gartner’s 2017 forecast is continued, double-digit growth of 17.3%.

Benefits

Of the CompTIA respondents, over 40% of all organization types – large, medium, and small – cite “Ability to cut costs” as the primary motivation in Cloud computing. Small and medium organizations were also likely to emphasize “Reduce capital expenditures” as a primary motivator.

1Please see ClikCloud “Technology Trends For 2017”.

2See CompTIA “Trends In Cloud Computing” from September 2016.

3Visit Gartner Group “Gartner Says Worldwide Public Cloud Services Market Forecast To Reach $204B In 2016” from January 25, 2016.

Pros and Cons of Private Cloud versus Public Cloud

Cloud computing is the grouping of Internet-based computing resources to provide efficient, effective, agile access at a pre-defined price; it has been compared to a utility, where costs are metered against usage.  (Visit Wikipedia’s definition.)

Organizations turning to the Cloud can select from these deployment options:

  • Public Cloud – Available to all paying users (public)
  • Private Cloud – Restricted to a single organization
  • Hybrid Cloud – A combination of Public and Private

A Public Cloud deployment is based on a publicly-available infrastructure like Microsoft Azure or Amazon Web Services (AWS); it could include a pre-configured service, like Microsoft Office 365 or Google Apps for Business, which are deployed on publicly-rendered networks at Microsoft and Google data centers respectively.  Being public, they are also somewhat more vulnerable to outside intrusion.

A Private Cloud deployment can be internal or external, but is typically setup on separate infrastructure that is dedicated to one organization.  For example; 911 providers (Verizon, AT&T, etc.) usually locate this service in dedicated, company-owned data centers.  Private Cloud deployments require significant, upfront investment and lack some of the expandability of a Public Cloud.

A Hybrid Cloud contains characteristics of both Public Cloud and Private Cloudstructures; it is a binding of both environments to provide the best of both worlds.

For example; Bryley Systems’ Hosted Cloud Server is a Hybrid Cloud offering that is deployed on equipment owned and managed by Bryley Systems, but is located in a secure, professional, data-center environment with significant fail-over capabilities:  The primary equipment is separate and secure, but the location provides the connectivity advantages of a Public Cloud facility.

Dennis McCafferty of CIO Insight, in his 9/30/2014 article “Pros and Cons of the Private Cloud”, states that many large organizations have deployed a Private Cloud, but even more have tried a Public Cloud deployment.

Advantages of Hybrid Cloud and Private Cloud include:

  • Greater security
  • Customized control
  • Resource provisioning