Maestro Innovations

Maestro Innovations we are here to provide our clients and customers with the best cyber-security, most ideal measures and standard computer solutions .

HIKVISION
28/10/2021

HIKVISION

CCTV camera is a fundamental tool that keeps your property secure, along with maintaining the well-fare of your company'...
04/10/2021

CCTV camera is a fundamental tool that keeps your property secure, along with maintaining the well-fare of your company's employees and operations. It promotes the safety of the space, reduces crime rates, as well as deters potential smash-and-grabbers from damaging your property.

27/05/2016

1. Hacks of mobile payments and other non-traditional payment systems. As smartphones continues to become the preferred source of authentication for many financial transactions, malware authors will increase their efforts to steal funds from consumers' Apple Pay, Google Wallet and other mobile payment systems.

CIOs listen up: once attackers have learned to infiltrate consumer’s mobile wallet they may tap into your corporate networks for those smartphone owner’s work. "Emails, contacts, authentication measures and apps that access the corporate network from the phone can become a phenomenal source of intellectual property, insider information and other confidential business materials become easily obtainable and can net an attacker sizable treasure."

CIO May 2016 digital magazine cover
Download the May digital magazine
Cover story: How analytics transforms IoT data into business intelligence
READ NOW
2. From Heartbleed to heartache. Open source vulnerabilities, including Heartbleed, Shellshock and Poodle, struck fear into the hearts of Akamai and other companies in 2015. Expect more attacks on the creaky Internet infrastructure. Leonard notes that a significant number of the Alexa 1000 top websites are not up-to-date on certificates. "We observed certificate issues related to older hashing schemes such as SHA-1, as well as problems related to the version of ciphers supported. If some of the “big names” on the Internet are struggling to keep up, how can smaller vendors cope?"

Additional problems include old and broken Javascript versions; end-of-life challenges for core software such as Windows XP; and new applications built on recycled code with old vulnerabilities. "It's very difficult for systems to be migrated because you risk losing functionality or introducing new bugs."

3. New top level domains pose phishing pitfalls. Emerging general TLDs, which number more than 800 and may expand another 1,300 in the next few years, will be used in active spam and other malicious campaigns. Leonard says criminals and nation-state attackers will lure, via social media, email and other tools, unsuspecting users toward malware and data theft. For example, criminals could steer unsuspecting consumers towards shop.apple, apple.macintosh or apple.computer to try to steal their information. In a Raytheon Websense sample set of several TLDs, millions of different URLs hosted malicious content. "These TLDs will also make it significantly harder for defenders to protect, as many are unprepared for the new landscape."

16/05/2016

1. Facebook’s User Terms
Reading the Terms for Facebook users will not only inform you of what you are allowed and not allowed to do on their site, but also tells you of your rights. This statement of Rights and Responsibilities is also translated in different languages, though only the English is the version is in command.

2. Privacy Policy
When using Facebook it is imperative that you read its policies. Understand the term ‘privacy’ and its boundaries as they are viewed by this or any other social networking site. You may find that your view and their view don’t necessarily correlate. Be curious about who sees your information, how and how the site will use it. Only then will you learn to figure out how to have control.
http://www.facebook.com/policy.php

3. Privacy Explanation
At the bottom of this page are some excellent tutorials explaining some of the privacy settings. Watching them will help you to understand further how you can fine-tune your account settings for maximum security. If you’re a User mainly on your cell phone, applications can be a little bit different or you may not have access to your settings the way you would on a computer. http://www.facebook.com/home.php? #!/privacy/explanation.php

4. Privacy FAQ
Questions from users are answered in a comprehensive list. Read it, because there may be things here that you wouldn’t think to ask.
http://www.facebook.com/home.php? #!/help/?topic=privacyupdate

5. What are personal details?
Keep the personal details that you post on your Facebook wall or in your profile to the bare minimum. This becomes more important the more lax your security settings are. Future employers have been known to do searches on applicants. Think about how much you want people to really know about you!

6. What is revealing media?
Any photographs or film footage that shows your street and/or house number, giving people who don’t necessarily need to know a clue as to where you live is one of the biggest “don’ts” on Facebook or other social networking sites. Also, when posting a picture of yourself, don’t use your latest passport picture.

7. What is friendship?
Please consider what friendship really means to you and apply that same emotion to your virtual network. Do you play Maffia Wars or Farmville on Facebook and consequently accept every ‘friend request’ you receive through these applications? Do you have a healthy amount of skepticism? Do you really know those people? Have you ever met them? Do you know their values? With these questions in mind, go through your friends list. Be prepared to ‘unfriend’.

8. Beware of the ‘Like’ Button!
Becoming a fan of your favorite television show or band is fun but being aware that the security setting on their page is likely to be “public” is important. That means anything you post on their walls is public. Anybody who Google’s your name can see what you said. When you ‘unlike’ the page, the comments are still out there in cyber space.

9. Keep those defenses up to date!
Beware that it is possible for links spread via Facebook to contain malware. Again the ‘Like’ button enters the picture because it’s an ideal way for scammers to get you on the internet. If you have not heard about “clickjacking”, now is the opportunity for you to learn more! Here is an article on BBC news from 6/3/2010 http://www.bbc.co.uk/news/10224434 and Wikipedia has this to say about it http://en.wikipedia.org/wiki/Clickjacking

10. Keep your children safe online
Parents should enforce that their minor’s profiles remain private, should be their child’s friend and should have the password to their account. For UWG parents who are interested in staying informed on how to keep their kids safe, the following link offers very good information: http://onguardonline.gov/socialnetworking.html

11. Facebook Apps
Even having the strictest privacy setting doesn’t help if you are tempted by one or more of the many Facebook Apps. They explain sharing your information with 3rd party Websites/ Applications as bringing you a more ‘useful’ experience in the Privacy Policy. Agreed that some of the little quizzes are a lot of fun but know that it sends (at the very minimum) your profile information around Cyber Space.

12. Respect your Friends!
Along the same lines as explained in Facebook Apps … using these may also send your friends’ information around. In addition, before posting pictures of your friends online or tagging them, be respectful and ask them if it is okay e.g. if something is not on Facebook (or if you don’t know whether they are or not), then it would be the courteous thing to do. After all, they may not be on Facebook because they wish to remain as private as possible. It is a choice that should be respected.

13. To be Continued …
If you have a best practices tip that we should add to this list, please contact ITS via [email protected]


Brought to you by the Office of Information Security at UWG …
Compute Wisely!

13/05/2016

While the calculus of each business will be different, there are several steps companies should take now, before a threat occurs. Considering these factors before an attack will not only aid in response but also show customers, stakeholders and the public that the enterprise has a well-reasoned strategy for dealing with ransomware incidents.

When creating a plan and considering whether to pay ransoms, enterprises should consider the following items:

1. Back-up and Imaging of Data – With the exponential growth of corporate data, it’s difficult for enterprises to know what information they have and where it’s stored. However, this knowledge is critical to determine whether to pay a ransom. If a company has a solid backup of the data taken hostage, it may be able to revert to spinning up a new copy with backup restoration without needing to pay the criminals.

2. Importance of the Data – Organizations should take inventory of their data and systems, identifying the operational-critical pieces and then deciding how much they can spend to release the data given an attack. Determining specific criteria beforehand will make responding to a ransom request easier should an attack occur.

3. Reputational Damage – It’s never good when criminals take an organization’s data hostage, but it can be particularly bad for an organization devoted to protecting and serving communities, like law enforcement departments and hospitals. In addition to the importance of compromised data, enterprises should consider how their response to a ransomware attack will affect their reputation with customers, partners and shareholders.

4. Consider the Liability – While paying a ransom may be the easiest way to release compromised data, there’s never a guarantee that criminals will release the information – you are dealing with professional thieves, after all. But according to the FBI, most organizations that pay the ransom do get their data back. Another argument may say that paying ransoms only encourages criminals and enables them to refine their attacks. However, it’s equally possible that your organization may become a less attractive target, because the company will be more aware and harden the systems against attacks.

Once a ransom is paid and an enterprise’s data unlocked, regular business functions can resume. But it’s important for the company to address potential fallout from an attack and the company’s reaction. Enterprises should consider how best to communicate their decision to customers and their industry, engage stakeholders and strengthen security to prevent another attack.

It’s important for organizations to think through these hypotheticals before an incident rather than during an attack. Having a clear response plan to help determine whether to pay to unlock compromised data will help organizations deal with an attack rationally and come to the best possible decision.

03/05/2016

Mobile devices are an open gate to our privacy, secrets, and money (mobile banking).

Be very careful what apps you choose to install and pay special attention to what permissions each app is requesting. For instance, it doesn’t quite make sense for a weather app to demand access to your photos, does it?

Ask loudly for your right to privacy.

Don’t ever say I have nothing to hide, because that’s equivalent to I don’t care about this right.

21/10/2014
morning
07/10/2014

morning

Morning
24/09/2014

Morning

STOP-THINK-CONNECT
21/09/2014

STOP-THINK-CONNECT

Address

Lusaka
10101

Telephone

+260977910353

Website

Alerts

Be the first to know and let us send you an email when Maestro Innovations posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to Maestro Innovations:

Shortcuts

Share