Tag

Avoid

Browsing

Running a business without some cloud support is rare these days. Yet, when crafting a cloud strategy, companies seem to make some common mistakes. There are several of them here.

Making Your Cloud Strategy Only IT Strategy

Gartner said this week at its IT Infrastructure, Operations and Cloud Strategies conference that a successful cloud strategy requires support from IT outsiders.

“Business and IT leaders should avoid the mistake of building an IT-focused strategy and then trying to ‘sell’ it to the rest of the business,” Marco Minardi, vice president analyst at Gartner, said in a statement. “Business and IT must be equal partners in the definition of cloud strategy.”

“Technology for technology’s sake is generally not a good idea,” said David Smith, vice president analyst at Gartner.

“Anytime you do something, you want a clear vision of why you’re doing it, what the business reason is,” Smith told TechNewsWorld.

“People look at it and say, ‘It’s technology. Let the technologists deal with it,'” he continued. “What happens then is that people focus on the adoption phase – which is about how you do things and when – which is different from the strategy part, which focuses on whether you What are you doing and why are you doing it.”

Change in exit strategy

Organizations often do not have an exit strategy in place with a cloud provider because they do not envision leaving the cloud. Furthermore, formulating such a strategy can be difficult. “People don’t like the answers they’re going to get, so they avoid it,” Smith said.

During the early days of the cloud, vendor lock-in was a significant fear, but that’s less the case today, said Tracy Wu, an analyst at Forrester, a national market research company headquartered in Cambridge, Mass.

“Some companies will prefer to be locked down with a specific vendor to get to market sooner or take advantage of specific pricing or services,” Wu told TechNewsWorld.

Still, she said, “organizations should always think of a plan B whether it’s the cloud or some other option.”

“That being said,” he continued, “it’s rare to hear of companies that actually pull out of a specific cloud provider completely.”

Confusing cloud strategy planning with cloud implementation planning

Organizations should always have a cloud strategy plan before implementation or adoption. Strategic planning is created during a decision phase in which business and IT leaders determine the role of cloud computing in the organization. Next comes a cloud implementation plan, which puts the cloud strategy into effect.

“If you call something a strategy, and it’s really an adoption plan, you end up with hundreds of pages of details that aren’t of interest to business people, so you scare them away, Smith explained.

“A good cloud strategy should be a short and consumable document, consisting of 10 to 20 pages or slides,” Meinardi said.

Some areas commonly overlooked in cloud strategy planning, as identified by Wu, include key goals, targeted revenue targets, new revenue streams, and the new business or traction the organization wants to build using the cloud.

“Too often, companies get into a rush to adopt the cloud and only think about the implementation aspect without thinking of the higher goals or the larger strategy at hand,” he said.

Comparing a Cloud Strategy to Migrating Everything to the Cloud

Minardi explained that many business and IT leaders shy away from formulating a cloud strategy because it would mean they would be forced to use cloud computing for everything. “Organizations should keep an open mind and partner with a non-cloud technology expert, such as an enterprise architect, who can bring a comprehensive perspective to the definition of your cloud strategy,” he advised.

On the other hand, some organizations believe that moving to the cloud is an easy task.

“One of the biggest challenges companies face is they think they can take what’s going on and move it to the cloud,” said Jack E. Gold, founder and principal analyst at J.Gold Associates ” IT Consulting Company Northborough, Mass.

“To get the best benefits from a cloud implementation, you need to rethink your applications, solutions, architecture and strategy,” Gold told TechNewsWorld.

“They also don’t do a great job of deciding which apps should stay on-premises and which should move to cloud environments,” he added.

“There are a lot of apps that will never go to the cloud,” he continued. “They’ve been around for 10 years. They’re going to be around for another 10 years. Why bother?”

Outsourcing Evolution of Your Cloud Strategy

As tempting as it may be for other business and IT leaders to build a cloud strategy, Gartner doesn’t recommend it. Outsourcing is very important, it said.

“It makes sense to outsource during the adoption phase where you may need outside expertise,” Smith said. “What happens, though, is that it’s all too easy to put yourself in a position where you’re allowing your vendors to define your strategy.”

“If you want to go out and get help from someone who knows what they’re doing, that’s fine, but you have to look at what they’re doing,” Gold said. “You don’t want to just throw checks at the wall. You need to be involved in figuring out your strategy, even if someone else is helping you put it together.

Wu agreed. “I wouldn’t say that outsourcing strategy is a bad idea unless the entire strategy is being outsourced, with absolutely no direction from the company,” she said. “It’s really a big part of what leading global systems integrators do when they help design and implement cloud strategy.”

Comparing cloud strategy to ‘cloud first’

Gartner explained that the “cloud first” approach means that when someone wants to create or own new assets, the public cloud is the default place to do so.

“But cloud-first doesn’t mean cloud only,” Mainardi said. “If businesses and IT leaders adopt a cloud-first principle, their strategy must work on exceptions to the default option that will apply elsewhere besides the cloud.”

Wu notes that some of the assets best placed outside of the cloud are data with heavy residency requirements (data cannot leave a specific region or country), data that needs to be physically located outside of the location being processed for latency or performance reasons. Must be relatively close, and where data exits is very expensive, such as in big data applications and AI.

Believes it’s not too late to design a cloud strategy

Gartner argues that it is never too late to develop a cloud strategy. “If organizations drive cloud adoption without a strategy in place, it will ultimately lead to resistance from those who are not aligned on the key drivers and principles of the strategy,” Meinardi said. “As a result, this resistance will slow cloud adoption and potentially jeopardize the entire cloud project.”

Navigating the Internet can be a troublesome journey. Bad actors constantly hide behind emails, websites and social media invitations with the intention of exploiting uninformed users. Even your Wi-Fi router and the now-ubiquitous QR code are danger points. Add to that, the never-ending virus and malware threats.

Computer and mobile device users are often unaware of the danger zone. However, the Internet does not require a continuous journey through the Badlands. To stay safe online, it’s important to know what to avoid and how to protect yourself.

Here are five things you have under your control to help keep your digital activity safe.

1. QR Codes, Easy But Potentially Harmful

QR code for TechNewsWorld.com
A secure QR code for TechNewsWorld.com

These postage-sized image links can be convenient for websites. Simply point your smartphone’s camera at it and instantly visit a website, tech support location, discount offer on purchases, or restaurant menu.

However, QR codes can also take you to a nefarious place where malware or worse is waiting. QR codes can be programmed to link to anything, putting your privacy and security at great risk.

Think before scanning the QR code. If the code is displayed on a website or printed document that you trust, it is probably a safe one. If not, or you’re unsure, check it out.

You can download reputed QR reader apps that will do security checks at the endpoint of destination of the QR code. One such security tool I use is the Trend Micro QR Scanner app, which is available for Android and iOS.

2. Avoid ‘Unsubscribe’ Email Scams

This is a popular ongoing scam that has a high success rate for hackers. Potential victims receive an email asking for a product offer or other business invitation. The opt-out action move is enticing, looks familiar, and feels appropriate. “Don’t want to receive our emails? Click here to unsubscribe,” it prompts.

Sometimes annoying repetitive emails asking if you want to unsubscribe from future emails. Some even provide a link for you to unsubscribe.

Do not select any option. Clicking on the link or replying confirms your active address.

Never enter your email address in the “Unsubscribe me” field. More senders will follow.

A better way to remove unwanted email, especially from an unknown sender, is to mark it as spam. This moves it to the spam folder. You can add that sender to your email program’s block list, or set a filter to automatically remove it before it reaches your inbox.

Finally, check out the free service Unroll.me. There you can unsubscribe from unwanted emails, keep others, or receive the rest in the Daily Digest.

3. Lockout Facebook Hackers

Other villains try to usurp Facebook accounts. Hackers can change your password, email address, phone number and even add a security code to lock you out of a pirated account. Before trouble strikes, be proactive to prevent these situations. Facebook provides the following security settings that you need to enable.

Enable two-factor authentication (2FA) to require your login approval on a different device.

To do so, log into your Facebook account on a desktop computer and navigate to Settings & Privacy. Next, select Security and login. Then scroll down and edit the Two-Factor Authentication option.

Facebook Two-Factor Authentication Settings

You will need to enter your Facebook password to complete this step.


Activate these two additional features to block Facebook hackers:

  • Enable the code generator feature in the Facebook mobile app
  • Set up login alerts in your email

First, open the Facebook mobile app and tap on the magnifying glass, enter the word “code generator” and tap the search icon. Tap on the Result Code Generator to navigate to the next screen, then tap the “Turn on Code Generator” button to receive a 6 digit code that changes every 30 seconds. You will need to enter this code within that short amount of time to login to your account on another device.

Next, set an alert about unfamiliar logins. You can do this from a computer or mobile device.

  • Computer: Go to Settings & Privacy > Settings > Security & Login > Receive alerts about unrecognized logins (see screenshot above).
  • mobile application: Tap Menu > Settings & privacy gear icon > Settings. Then tap Password & Security. Next, scroll down to Set up additional security > Receive alerts about unfamiliar logins > Tap to select your preferred notification methods.

If you’re having trouble logging in, visit facebook.com/login/identify to have the problem fixed. If you are unable to log in there, go to this Facebook help page instead and fill out the request form for Facebook to review your account. You will need to answer a few security questions to prove your identity. This may include providing proof of ID, like a picture of a driver’s license.

4. Secure Your Wi-Fi Router

The influx of people working remotely since Covid has put home Wi-Fi routers among the target sites of hackers. As a result, malware attacks on home Wi-Fi networks are on the rise because residential setups often lack the level of security and protection found on enterprise networks.

One nasty attack tool, called ZuoRAT, is a remote access Trojan designed to hack into small office/home office routers. It can affect macOS, Windows, and Linux computers.

With it, hackers can collect your data and hijack any site you visit on your network. One of the worst factors of ZuroRAT is that once your router is infected, it can infect other routers to spread the hackers’ reach.

Follow these steps to better secure your home/office Wi-Fi network:

  • Be sure to enable WPA2 or WPA3 encryption on your router. The default factory setting is often the old WEP (Wired Equivalent Privacy) security protocol, or is set to none. See the user manual or the router manufacturer’s website for instructions.
  • Change your router’s SSID (Service Set Identifier) ​​and password. It is critical. Typically, the factory setting shows the make or model of the router and has a universal password such as 0000 or 1234. Change the name of the SSID to not identify you easily. Avoid names that include all or part of your name or address. Make sure the password is very strong.
  • For added security, change the router’s password regularly. Yes, this is a major inconvenience as you will also have to update the password on all your devices that use that Wi-Fi network. But considering that it will keep hackers away, it is well worth the trouble.
  • Keep the router’s firmware up to date. Refer to the user manual and/or the manufacturer’s website for steps on how to download the latest update.

general question
How do I create a password that is hard to hack?

The strongest passwords have all these characteristics:

  • Long – the more characters, the better
  • mix of upper-case and lower-case letters, numbers, and special characters
  • No jargon words or anything related to personal information

Pro Tip: When using a password generator, always replace at least a few characters from the random result to create your final credential.

5. Beware of the phony tech support plans

Some fraudsters call you on the phone to tell you they are a tech support department working for a well-known computer or software company. The caller claims to have detected a virus on your device or made a call in response to an alert from your computer of malware. The scammer offers to fix it if you only provide your credit card number.

Keep phone. Your computer is not infected.

A modified version of this tech support scam is a text or email claiming the same details. do not respond. Just delete the message and move on.

You can also browse the web when a pop-up message crashes on your screen. I have received too loud Audio alerts warn me that my computer is in danger and should not be turned off without responding for help.

In all these cases, scammers want to scare you into following their instructions. The action they seek to fix the alleged problem will damage your bank account and possibly let them transmit the actual infection.

Follow these best practices to protect yourself from tech support fraud:

  • never Allow a scammer to trick you into visiting a website or clicking on a link.
  • never Agree to a remote connection by the so called technical support agent who initiated contact with you.
  • never Provide payment information for technical support you haven’t started. Legitimate tech companies will not call you and ask for payment to fix a problem detected on your device.

If you suspect that your computer has a virus or malware problem, contact a self-repair center. You probably already have a support plan or active warranty from where you bought the computer. If you have not contacted a technical support company, the call or message you have received is illegitimate.