Author Archive

Federal Government Prioritizes Data Security

Posted by on Tuesday, 7 May, 2013

During the last State of the Union address, President Barack Obama included improving data security on his list of national priorities.

President Obama said, “America must also face the rapidly growing threat from cyberattacks… We cannot look back years from now and wonder why we did nothing in the face of real threats to our security and our economy.”

Including data security 0n the President’s agenda is significant because it first implies that our government is not yet accomplishing this goal, and second it compels us to put the pieces in place “to protect our national security, our jobs, and our privacy.”

Cyberattacks Not Always Sophisticated

Government Data Security Identified as Top PriorityWhile the list of companies who have suffered some form of data breach grows, the sad reality is that many cyberattacks (malicious or otherwise) are not “sophisticated” and could be prevented with off-the-shelf solutions. These first level attacks focus on corporate secrets, personal identity fraud, credit information, and private email.

The second level of attacks are those that attempt to disrupt our national security, financial institutions, and the backbone of our infrastructure. Internet providers, utility and transportation companies use communications to run switching stations, trucks, and trains, all of which would affect our livelihood if disrupted.

The President mentioned signing an Executive Order to work on this initiative (Executive Order 13636—Improving Critical Infrastructure Cybersecurity). The Executive Order calls for standards, processes and procedures to be proposed within 120 days of its signing (February 19, 2013).

Don’t Wait to Take Action

When trying to comply with all of the various data security regulations (like  PCI DSS or HIPAA), it is critical to have the right procedures and products in place.

A variety of government agencies have already implemented solutions such as the GoAnywhere managed file transfer solution.  GoAnywhere takes a standards-based approach to data security using proven FIPS 140-2 validated encryption, SSL, TLS and SSH protocols, along with role-based administration and detailed audit trails.  This comprehensive approach allows federal agencies to protect and automate their batch transmissions, perform ad-hoc transfers safely and provide a compliant alternative to email attachments.

Linoma Software will be demonstrating the GoAnywhere solution, which is now listed in the GSA Advantage Directory, at the upcoming FOSE Government Technology and IT Expo held in Washington DC, May 14-16.

In the State of the Union Address, the President encouraged Congress to pass laws to “give our government a greater capacity to secure our networks and deter attacks.”

Take a look at GoAnywhere today and learn how you can meet your security requirements and save costs through file transfer automation.

 

Dirk Zwart

Dirk Zwart writes Linoma Software’s User Guides for the GoAnywhere secure file transfer applications. Dirk’s writing topics have covered everything from hardware manuals, software guides, security policies for compliance projects and reviews of consumer electronics. Follow Dirk and Linoma Software on Linkedin or Facebook/Twitter.

More Posts - Website - Facebook

Latin American Bankers to Discuss Data Security

Posted by on Monday, 12 September, 2011

This week, bankers and banking security experts from the U.S. and Latin America will gather at the InterContinental Hotel in Miami for one of the largest annual bank security conferences for senior Latin American bankers. CELAES 2011, the 26th Annual Conference of Banking Safety takes place September 15-16.

Given that Latin America has one of the highest rates of users who access banking online through computers and mobile technology, bankers have plenty of reason to stay on top of the latest cyber threats and security measures.

The Florida International Bankers Association (FIBA) and the Federation of Latin American Banks (La Federación Latinoamericana de Bancos – FELABAN) are hosting this unique joint Spanish/English conference. Attendees can participate in a variety of educational sessions on best practices for banking security, as well as gain access to vendors offering the latest security hardware, software cloud computing strategies for the banking sector.

Cyber crime is not just Latin America’s concern

data security A large portion of this year’s conference is devoted to preventing data breaches through security management of data, cloud services, electronic fraud detection and risk mitigation.

What makes Latin America’s challenges relevant is that the tactics developed by the cyber criminals that thrive there can be used on any financial system in the world. Conferences like the  CELAES 2011 conference helps educate and present solutions to banking executives in Latin America and help close the doors on cyber criminals.

Cyber crime in Latin America’s financial industry remains a serious concern for a variety of reasons. The developing legal systems in many Latin American countries are adding laws to combat cyber crime, but enforcement is lacking. This is further compounded by the absence of the “personal privacy” notion within many of the governing entities in some Latin American countries. Another issue for the Latin American financial sector, according to Frost & Sullivan, is that 70% of people making online transactions believe that the bank or service provider is responsible for fraud and protecting their online security.

Phishing, fraud and malware are common

Crime organizations and cartels present in Latin America have contributed to or funded cybercrime networks, making Latin America a haven for illegal electronic activity. Not only are these organizations stealing money and account information through online phishing/fraud, Bloomberg reports that one Mexican cartel is openly selling their own pirated versions of Microsoft products. Sold for a fraction of the retail cost, who knows what Trojans and back doors are included as “features.”

The ESET Trends and monthly Threat Reports calculate that 1 in 20 computers in Latin America are infected and the spread of malware is gaining speed as USB devices and now gaming consoles account for 40% of malware propagation. The growing number of infected machines gives the attackers a strong network of resources for both direct and indirect attacks on the financial sector.

The same PCI Data Security Standards required for financial institutions in North America are making an impact in Latin America. Financial institutions are realizing that they are less susceptible to a breach during a cyber attack when they’ve spent the time and resources to implement even a few of the PCI requirements like network monitoring, complex passwords and data encryption of account and payment information (PCI DSS requirements now apply to International payment processing).

Linoma Software is part of the solution

data securityDuring the conference Linoma Software’s partner Green Light Technology, a conference sponsor and a respected solutions provider for  the Latin American banking industry, will present Crypto Complete for database encryption and the GoAnywhere secure managed file transfer solutions. Both products protect and encrypt sensitive data, reduce access to primary systems, provide data workflow automation and detailed audit features.

Thanks to the efforts of FIBA, FELABAN and cooperation among international agencies, Latin American banking and finance representatives have the opportunity to fight back against cyber criminals, and the lessons learned will benefit all of us.

Dirk Zwart

Dirk Zwart writes Linoma Software’s User Guides for the GoAnywhere secure file transfer applications. Dirk’s writing topics have covered everything from hardware manuals, software guides, security policies for compliance projects and reviews of consumer electronics. Follow Dirk and Linoma Software on Linkedin or Facebook/Twitter.

More Posts - Website - Facebook

Driving Securely Through “The Cloud ”

Posted by on Monday, 23 May, 2011

The Cloud“Cloud Computing” is not for everything and not for everyone, but it has made a permanent mark in the lexicon of technology services.

What is Cloud Computing?

In simplistic terms, the Cloud is any application, file host, or virtual computer that is accessed solely via the Internet. The hardware and software actually running those services could be anywhere and therefore is referred to as being in “the Cloud.” The Cloud originally was the graphic reference for the Internet in a corporation’s network diagram, but now it refers to the services available via the Internet.

Security Concerns in the Cloud

Security professionals have always had concerns over remote file hosting sites (FHSs) and the recent Tech News about services like RapidShare and Dropbox came to light this week confirmed some of those concerns. Data security in the cloud is like a verbal agreement – as good as the paper it’s written on. Yet the general public and some individuals in large corporations flock to these services daily – completely unaware of the security risks or understanding how “The Cloud” works. Personally Identifiable Information and other sensitive data is floating around and often falls out of the cloud, landing in the wrong hands.

Regardless of the encryption or security practices professed by a Cloud provider, once the data leaves your network, you no longer own, control, or are able to audit that data. In the case of a subpoena at a data center, a cyber attack or when a device is stolen from a Cloud host, that data has been compromised.

There are great advantages and cost-savings to using Cloud based options to accomplish certain business goals. Renting processing time and applications can work out to a lower Total Cost of Ownership, but beaware of the strings attached. I have taken many applications for test-drives in the Cloud, but when I am responsible for transferring sensitive data on which my employer’s integrity and liability are on the line, I prefer using a secure managed file transfer product to drive through the Cloud.

A Secure File Transfer Solution

Connections that are configured correctly will securely send and retrieve files that meet or exceed compliance requirements. The GoAnywhere managed file transfer solution easily encrypts, securely sends and processes data over your existing Internet connection. The GoAnywhere Director automated file transfer application also securely transforms data between platforms and provides native XML scripting.


Dirk Zwart

Dirk Zwart writes Linoma Software’s User Guides for the GoAnywhere secure file transfer applications. Dirk’s writing topics have covered everything from hardware manuals, software guides, security policies for compliance projects and reviews of consumer electronics. Follow Dirk and Linoma Software on Linkedin or Facebook/Twitter.

More Posts - Website - Facebook

The Culture of Data Security

Posted by on Monday, 21 March, 2011

Data SecurityWe hear a lot of buzz about protecting both customer and company data, but it is alarming how few IT departments and enterprise users are protecting their data correctly. A recent survey conducted for Oracle reveals that fewer than 30 percent of their respondents are encrypting personally identifiable information.

Data and network security should be the basis for every IT decision, but it is typically an afterthought. The Oracle report also concludes that half of companies surveyed profess a strong commitment to data security, but only 17 percent of them have begun to scratch the surface.

Lack of data security is often due to corporate culture and the fear of change. Most companies at the corporate level agree they are committed to data security and protecting customer records. If a company’s official stance is to protect their data, where are the security holes?

In my experience, the largest security holes exist in the departments outside the core IT organization. They don’t place the same value on the data as the IT Security team. Many companies still allow their employees to perform file transfers directly from their desktops and laptops using FTP or other unsecure tools. Not only are these ad-hoc methods unsecure and capable of exposing passwords or entire databases, they do not all function alike and do not provide centralized logs.

Educating employees about the dangers of unsecured and/or unnecessary data transfer is more business-friendly than preventing it altogether. Part of this process should be moving everyone to a managed file transfer methodology, like Linoma Software’s GoAnywhere Director. This not only secures your data transfers, but it creates a digital paper trail showing where assets are going – something which is of particular importance when you consider all the data security compliance regulations in effect today.

Data security for the millions of files sent over the Internet or within “the cloud” is of great importance to all industries, including health care, retail, banking and finance. Internet transfers include the critical data needed to conduct business, such as customer and order information, EDI documents, financial data, payment information, and employee- and health-related information. Many of these information transfers relate to compliance regulations such as PCI, SOX, HIPAA and HITECH, state privacy laws, or other mandates.

We need to grow a data security culture that includes securing file transfers.

Dirk Zwart

Dirk Zwart writes Linoma Software’s User Guides for the GoAnywhere secure file transfer applications. Dirk’s writing topics have covered everything from hardware manuals, software guides, security policies for compliance projects and reviews of consumer electronics. Follow Dirk and Linoma Software on Linkedin or Facebook/Twitter.

More Posts - Website - Facebook

Linoma Renews IBM Advanced Business Partner Level

Posted by on Monday, 20 December, 2010

IBM Advanced Business PartnerAchieving and maintaining the IBM Advanced Business Partner level is completely based on product quality and customer satisfaction. IBM assigns their partner levels for ISV’s (independent software vendors), like Linoma Software, on customer feedback.

Linoma Software actively produces five products that run natively on the IBM i (iSeries).

What is the benefit of Advanced Partnership? Quite simply, Advanced Partners have direct access to resources within IBM. Linoma Software has a direct connection to IBM support, labs and knowledge-base. The Advanced Partnership also provides Linoma Software the ability to test against upcoming software, like the recent i7.1 operating system for IBM i and p systems, before it is released to the public.

Linoma Software is a long-time IBM Advanced Business Partner and is well known for its dedication to high quality software, user-friendly applications, and outstanding technical support. With over 3000 satisfied business customers ranging from small business to Fortune 100, government entities and not-for-profit organizations – Linoma Software provides the same level of expertise to all.

“We work with thirty-plus vendors for all our ‘Power System’ related software, and no one has better technical support staff than Linoma Software. When I call other vendors, I anticipate multiple levels of call routing, and if I’m lucky the person may be able to research a solution. With Linoma’s support team, it’s always been the first person, and they’ve handled the issue with the feel of a practiced hand who recognized my problem and had a solution ready immediately.” Shaun Skelton – Berry Plastics

Dirk Zwart

Dirk Zwart writes Linoma Software’s User Guides for the GoAnywhere secure file transfer applications. Dirk’s writing topics have covered everything from hardware manuals, software guides, security policies for compliance projects and reviews of consumer electronics. Follow Dirk and Linoma Software on Linkedin or Facebook/Twitter.

More Posts - Website - Facebook