Paul Wallbank – Brilliant Communications

Category: Internet

  • Unprotected computing practices

    Unprotected computing practices

    A US study finding malware is rampant on medical equipment shouldn’t come as a surprise to those running industrial computer systems in their businesses.

    It’s notoriously difficult to update medical equipment or other sensitive systems as a security patch could have unintended consequences. Unlike a home or business computer, these patches have to be thoroughly tested beyond the precautions vendors take.

    So it isn’t surprising that these systems aren’t kept up to date although some equipment suppliers are more tardy than they should be in updating the servers they supply.

    A few years ago I came across CCTV systems running on the original version of Windows 2000 which were hopelessly compromised. This is an unacceptable situation for the customer and was more the result of vendor carelessness than any concern that customers could be affected by these unsecured machines.

    Not having the latest software patches creates a weakness in any computer device as most common way viruses find their way onto networks is through systems not being updated – Australia’s Defense Signals Directorate rates unpatched systems as being the number one cause of corporate security breaches.

    This is what caught out the Iranian nuclear program with the Stuxnet worm as the Siemens SCADA devices used by the Iranians were running older, unpatched versions of Windows. The designers of Stuxnet took advantage of a number of known weaknesses in the software and were able to damage the equipment being controlled by the systems.

    Obviously systems should be patched wherever they can be and there’s no excuse for not patching most office and home computers. It’s also worthwhile carrying out a number of other security steps to ensure an infected computer can’t damage your network or catch a virus through your Internet connection.

    The survey looking at these medical systems is a good wake up call to all of us that we need to take computer security seriously in our businesses.

    Similar posts:

  • ABC Nightlife: Apps down the farm

    ABC Nightlife: Apps down the farm

    If you missed this program where we covered a wide range of subjects, you can listen to the ABC Nightlife podcast of the show.

    Paul Wallbank joins Tony Delroy to discuss how technology affects your business and life.

    This week we’re talking about how the agricultural industry are using smartphone apps and the web. A list of apps for farmers is available from the NSW Department of Primary Industry website.

    We’ll also be looking at how machines are talking – in agriculture, the next generation of farm equipment will be sending data straight to the farmers’ tablet or laptop computer using the technologies we’re seeing in jet engines and other high tech equipment.

    Connecting everything does come with risks. A US report found that networked medical equipment is rife with malware and the Defense Signals Directorate points out that out-of-date computer systems are one of the main causes of data breaches.

    One of the things driving the apps world is cloud computing and Google have given a rare glimpse into the data centres that run their services.

    Social media is one of the things that are driving cloud computing, but there’s traps for businesses in posting information about customers and staff. We’ll be looking at those as well.

    We’d love to hear your views and comments so join the conversation with your on-air questions, ideas or comments; phone in on the night on 1300 800 222 within Australia or +61 2 8333 1000 from outside Australia.

    Tune in on your local ABC radio station or listen online at www.abc.net.au/nightlife.

    You can SMS Nightlife’s talkback on 19922702, or through twitter to @paulwallbank using the #abcnightlife hashtag or visit the Nightlife Facebook page.

    Similar posts:

  • Free content’s shaky foundations

    Free content’s shaky foundations

    Musician’s rights advocate David Lowrie has a takedown on his Trichordist of Pandora’s campaign to change the US music royalty payment system through the Internet Radio Fairness Act.

    Pandora and other online streaming services claim the current arrangement is unfair and puts them at a disadvantage to terrestrial AM and FM radio stations. Artists and record labels claim this is just a way to cut rights payments.

    David suggests that Pandora’s founders either lied about the sustainability of their business at the time of their IPO last year or are just being plain greedy.

    Regardless of what is true, or whether David is overstating the case against the IRFA, a truth remains that many Internet business models are unsustainable and Pandora’s may be one of them.

    Most unsustainable of all are those who rely on free content.

    Eventually the market works to filter out those who won’t pay for content – the good writers and artists move onto something more profitable, like driving buses or serving hamburgers, or they figure out they may as well control their own works rather than let some Internet company profit from their talents and labor.

    The website or service offering nothing in return for the contributor’s hard work eventually ends up distributing garbage – Demand Media or Ask are examples of this.

    In a marketplace where crap is everywhere, just pumping out more crap is not a way to make money.

    Those looking at investing in businesses which rely on free content need to remember this, if no-one values the product then you have no business.

    Sadly too many internet entrepreneurs, and corporate managers, believe the road to their wealth is through not paying artists, musicians or writers. They are the modern robber barons.

    Similar posts:

  • Securing your online passwords

    Securing your online passwords

    Every Internet user has to struggle with the burden of passwords as we’re expected to remember dozens of log in details for various websites and computer networks.

    As we’re seeing though, passwords aren’t that effective with universities and private companies being hacked on a regular basis. The problem is so bad banks are considering moving to fingerprints to replace PIN and password logins.

    Even if passwords are going to become irrelevant as we move to biometric logins like fingerprints and iris scans they aren’t going away quickly, so how do we protect our important online accounts?

    Use different passwords

    One of the key ways to protect yourself is not to use the same passwords for every site. Some critical sites, like your online banking and email, need protecting with strong passwords while others like social media sites don’t require such tough security.

    As we’ve seen with various security breaches, most notably the continual Sony hacks of 2011 and the deeply embarrassing Stratfor leaks, even the strongest passwords are useless if some dill leaves them on an unprotected server.

    Use strong passwords

    For the sites that matter, make sure the passwords are strong. You’ll find how to make memorable, easy to use and strong passwords on the Netsmarts site.

    You don’t need to use strong passwords on every site, for some websites that require registration to access you might want to fall back on the much maligned password or 12345 for those publications.

    Change default passwords

    Most of the hacks on university and corporate networks happen because the default passwords on servers aren’t changed. This was also how News International workers broke into British mobile phone message banks.  When you get a new phone or tablet computer, make sure you change the basic passwords that have come with the device and any associated service.

    Update your systems

    One of the biggest vulnerabilities for home and business computer systems is unpatched systems. Malicious websites, viruses and various tricks use known weaknesses in computer systems to bypass security measures. This applies to Apple Mac users as well.

    Consider two factor authentication

    Two factor authentication involves having double security, this could be a password linked to a SMS or a special one-off code. Services like Gmail offer this as do many corporate networks and banks.

    Be careful linking social media services

    A bigger risk than hackers is phishing where someone tricks you into giving away your password. This has become very common in hijacking social media accounts.

    If you’ve linked various social media services together then one being compromised can mean bad guys have access to all of your accounts, so be cautious about what applications you allow to connect with your Facebook page or Twitter account.

    For businesses

    Cyber security is critical for business, it’s been estimated that one in six companies who’ve been compromised will fail as a result of the breach and a credit card lapse can be expensive as well as embarrassing.

    The Australian government’s Defense Signals Directorate has an excellent guide to securing computer networks. The DSD’s research shows that just following four basic rules will prevent 85% of attacks.

    We should also keep in mind no security system is perfect. Just as your car doors or home can be broken into by a determined thief, the same is also true with computer networks, a skilled operator with enough time and resources can beat even the toughest cyber security regime.

    Similar posts:

  • Today’s business Neanderthals

    Today’s business Neanderthals

    “Bringing a knife to a gunfight” describes showing up hopelessly ill-equipped for the task at hand.

    Two recent conferences, the massive Dreamforce in San Francisco and the smaller, but still fascinating, Australian Xerocon in Melbourne illustrate just how radically the commercial world is changing and how many business leaders are poorly equipped for today’s times.

    In July, the Melbourne Xero Convention bought together 400 Australian partners of the cloud accounting service which showed how how one New Zealand based company is building it’s business through engaging other suppliers who add features to the basic service.

    Vend, a Point Of Sale cloud service provider, was one of the companies exhibiting at XeroCon. In the past POS systems have been a pain for retail businesses with most suppliers’ business models being about locking customers into expensive contracts.

    With cloud services, the old vendor lock in model dies as stores can use any device they like such as a PC, tablet computer or a smartphone so a business is no longer locked into using an overpriced and often antiquated piece of equipment.

    Making the cloud offering even more attractive is that Vend, and many of their competitors, also take advantage of APIs – Application Program Interfaces – built into other services so they can seamlessly change records.

    So a shop can make a sale in their physical store and inventory levels will automatically change in the online stores and on services like eBay. If an item is now of stock, the websites are automatically updated to reflect this.

    This business automation makes it easier and cheaper to run a business. It’s everything that computer have promised for the last thirty years and is now being delivered through cloud computing services.

    At Dreamforce in San Francisco last week, Salesforce.com CEO Marc Benioff showed the 90,000 attendees how these services work on a corporate level with demonstrations from companies as diverse as General Electricski company Rossignol, and Australia’s own Commonwealth Bank.

    What really stood out with all of these presentations was how each business had made major technology investments that in turn allowed them to deploy modern tools.

    The Virgin America Dreamforce presentation was particularly telling. Having just endured a 13 hour United Airlines flight in a plane that had been barely refurbished since 1988 it was clear that the older airline simply didn’t have the hardware to compete with the upstart even if management and staff wanted to.

    From both Dreamforce and XeroCon the message has been clear, those legacy managers who won’t invest in new technologies or re-organise their businesses to meet the realities of the 21st Century are simply doomed.

    In Australia this sense of doom in the business community is confirmed when MYOB and Google missed their target of giving away 50,000 free business websites as part of their Getting Aussie Business Online program.

    Depending on whose figures you use, between 50 and 65 percent of Australia’s 1.7 million small businesses don’t have a website – and websites are last decade’s technology.

    Business has moved onto mobile and social platforms, those 800,000 businesses who are yet to move into the new century are roadkill – the competition are just going to run over them.

    If you are still struggling with the idea of a website – let alone a mobile site, mobile phone app or social media strategy – then you haven’t bought a knife to a gunfight, you’ve bought a sharpened stick. It’s time to figure out whether you still want to be in business.

    Disclaimer: Paul travelled to XeroCon in Melbourne courtesy of Xero and to Dreamforce in San Francisco as a guest of Salesforce.com

    Similar posts: