Our Sunday Telegraph Wildix Article

Did you miss our Wildix advertorial in The Sunday Telegraph on Sunday 8th November 2020? Read it here!

Wildix main Telegraph
Our article in The Sunday Telegraph

As businesses adapt to staff working at home, it is imperative that remote workers have access to a reliable, secure and easy to use phone and communication system. Wildix is next generation VoIP, offering more features and functions to make it the first Unified Communication and Collaboration  platform.  Importantly, this secure access needs nothing more than a browser for your home and remote workers to connect!

As a Wildix partner, IT managed service provider Globalnet IT Innovations Ltd is rolling out the new platform to businesses across London, Essex and the South East. Globalnet MD, Robert Burdett said, “This is ground-breaking technology, making it quick and easy for remote staff to access the company phone system, with all the features you’d expect and a lot more.

“With nothing more than Google Chrome and a headset, your team can run a switchboard and communicate between teams and customers with voice and video. It can even integrate with your website for customer chat and direct calls to the right person to increase web sales by up to 52%, while saving up to 75% against landline costs.

“We’ve all become used to video conferencing and remote working with other tools over lockdown and this system brings those separate methods and more together. Wildix is truly affordable, fully integrated Unified Communication and Collaboration (UCC) suite to improve efficiency, reduce costs and increase sales.”

Find out more about the Wildix system. Call Globalnet on 0203 005 9650 or register your interest here.

9 Million EasyJet Customers’ Data Breached in Hack

A “highly sophisticated cyber-attack” in January has affected nine million EasyJet customers. EasyJet admitted the hack today.

EasyJet has said that email addresses and travel details had been stolen and that 2,208 customers had also had their credit card details “accessed” in the hack. The company claims there is no evidence that the data has been “misused”.

The budget airline says that it has informed the UK’s Information Commissioner’s Office and is continuing to investigate the hack, which it claimed it first became aware of in January 2020.

EasyJet has said that the online channels affected by the attack have since been closed, and that, other than those identified, no other clients’ passport or card details had been shared.

In a statement it said, “We take issues of security extremely seriously and continue to invest to further enhance our security environment.

“There is no evidence that any personal information of any nature has been misused, however, on the recommendation of the ICO, we are communicating with the approximately nine million customers whose travel details were accessed to advise them of protective steps to minimise any risk of potential phishing,” the airline said in a statement.

EasyJet Hack Southend
EasyJet is one of London Southend Airport’s major operators
What should you do if you are affected by the EasyJet hack?

Globalnet always recommends that you use separate secure passwords for all online accounts. Hackers often post stolen details – email addresses, usernames and passwords – for sale on the dark web. Using the same password for multiple accounts, including business accounts or email accounts may grant hackers access to sensitive data, bank accounts or your company network.

If you are concerned that your data, or anybody else’s in your organisation may be compromised then it is vital that you change your password wherever it has been used on other accounts.

How can Globalnet help?

Globalnet’s security stack is arguably the most secure solution on the UK SME market. Our tools can monitor the dark web for company credentials being released, provide secure password generation and storage and protect networks to prevent ransomware and malware infecting your system.

Globalnet works with businesses throughout London, Essex, Kent and Herts to ensure their data and networks are secure from all threats. Call us on 0203 005 9650 today to find out how we can provide the right protection for you.

Globalnet aims to be an integral part of your success, providing the best business advice, superior IT support and technology to help you reach your goals. 

New sextortion phishing scam revealed

There’s a new phishing scam doing the rounds using blackmail techniques to make susceptible users hand over their hard earned cash. Known as sextortion phishing, criminals are targeting users by threatening to expose porn viewing by claiming to have webcam footage of the victim using porn. Even more simsiter is the fact the hackers often have users’ passwords.

password, sextortion, phishing, porn, email. webcam, scam
Typical sextortion phishing email

One example, shared on Twitter by programmer Can Duruk , says: 

I’m aware that XXXXXXX is your password.

You don’t know me and you’re thinking why you received this e mail, right?

Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.

What exactly did I do?

I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!). 

What should you do?

Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google) .

BTC Address: 1Dvd7Wb72JBTbAcfTrxSJCZZuf4tsT8V72

(It is cAsE sensitive, so copy and paste it)

Important:

You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email

Hacked password

The scary part is that they actually use a password that the user recognises. It has been suggested that these may have come from any of the recent large data breaches, such as Uber, Carphone Warehouse, and so on.

While your spam filter will probably stop you receiving these phishing emails, there is still a chance of them getting through and hitting your inbox. It’s important that you and any employees know about the scam, recognise it for what it is, and do feel ashamed or pressured into paying the scammer.

How to deal with this phishing scam
  • Do not pay the scammer. Paying shows that you’re vulnerable and you may be targeted again. The police advise that you do not pay criminals.
  • Change your password immediately and reset it on any accounts you’ve used the same one for. Always use a strong and separate password. Whenever possible, enable Two-Factor Authentication (2FA).
  • Do not reply to the email
  • Always keep your anti-virus software and operating systems up to date
  • Cover your webcam when you’re not using it
  • Report the crime to Action Fraud

Action Fraud reports that over 110 victims have reported receiving emails like the one above in July – adding that having their passwords shown to them is a “nasty twist” on the traditional phishing scam.

Globalnet works with businesses throughout London, Essex, Kent and Herts to ensure their data and networks are secure from all antivirus, malware and ransomware threats. Call us on 0203 005 9650 today to find out how we can provide the right protection for you.

Globalnet aims to be an integral part of your success, providing the best business advice, superior IT support and technology to help you reach your goals. 

Find out more about Globalnet’s cyber security plans

 

 

 

Southend … The ‘Smart City’

Southend-on-Sea Borough Council is reported to have signed an agreement with tech company Cisco to deploy its ‘Kinetic for Cities’ platform in order to share the benefits of new digital technologies with its businesses and citizens, thereby making it a ‘Smart City’.

What Is ‘Kinetic For Cities’?

According to the Cisco blog, the Cisco Kinetic for Cities platform is a unified IoT platform strategy and a cloud-based platform that helps customers extract, compute and move data from connected things to IoT applications to deliver better outcomes and services. In essence, using sensors, digital management platforms, and analytics programs for all aspects of a city (including solutions for lighting, parking, crowd, environment and others), businesses and citizens can benefit from the effects of urban innovation, sector-specific solutions, city engagement that the technology provides.

Technology Hub

Through the use of the new platform, it is hoped that Southend can become a technology hub, and this can help it to grow and evolve, in line with the rest of the UK and with competition globally. It is also hoped that use of the digital platform could bring smarter, connected experiences for people who live in, work in, or visit the town.

Already Working In Other Cities

Cisco’s Kinetic for Cities platform is already being deployed in other cities such as Manchester (UK) where it is being used to project explore smart transport and CO2 emissions, in Jaipur (India) where it is helping to improve public safety.

How Will It Be Used In Southend?

At the current time, Southend Council looks likely to use the Kinetic for Cities platform for initiatives such as pilots relating to community safety e.g. building an intelligence hub with IP-based public safety systems for use with CCTV and advanced video analytics.

Also, there are plans to use the platform to help with traffic and parking management, easing of congestion, using the IoT to help monitor improve air quality, and to help manage energy better and bring down consumption, thereby reducing costs and helping the environment.

What Does This Mean For Your Business?

It has taken a long time for many of the potential benefits of the IoT to be realised, or for the IoT to be deployed in a more meaningful and beneficial way than in smart household gadgets. Using technology for the benefit of a whole town / city in this way represents a new kind of rapid regeneration which has the potential to benefit many more citizens and businesses than individual physical projects. Improving a whole town, and how efficiently it functions and how effectively it serves those who work and visit it in terms of experiences and opportunities can only be of benefit to locally based businesses, and can create an environment where businesses are better equipped to compete nationally and globally.

News Bots to Flood UK with 30,000 Articles a Month

google-botsGoogle’s has awarded €706,000 ($800,000) to the UK’s Press Association (PA) so they can develop robot reporters or news-bots that can generate 30,000 articles a month

Digital News Initiative

The funding is part of Google’s €150m Digital News Initiative, a three-year program in support of European journalism using technology. The initiative is in its third and final year, and lis looking to provide funding for 7 projects in 27 countries.

Codenamed RADAR, or Reporters and Data and Robots, the Press Association project is a joint effort with Urbs Media, a UK startup specialising in automated data journalism.

Why?

On the one hand, this is an effective and less labour-intensive way to satisfy the demand for more news. Some sceptics, however, have noted that the initiative could be a handy way for tech and advertising giant Google to help websites to get more readers and thereby gain more advertising business and revenue for itself.

On its website, the PA has issued a statement about RADAR’s role in meeting the growing demand “for consistent, fact-based insights into local communities, for the benefit of established regional media outlets, as well as the growing sector of independent publishers, hyperlocal outlets and bloggers.”

Natural Language Processing Software

For the news bots to generate information and stories, natural language processing software will be used on a grand scale. The PA and Urbs Media will reportedly select a team of five journalists to identify, template, and edit data-driven stories. These journalists will apply the code to publicly available government databases to churn out stories.

Hope For The Local Press

This comes at a most opportune time where Britain’s hard-pressed and diminishing local press need to meet the demands for more and more page views, as well as filling spaces in print. PA Editor-in-Chief Pete Clifton has reportedly acknowledged the usefulness of RADAR in terms of cost-effectiveness in providing incisive local stories, and the fact that, although skilled human journalists are still vital in the process, local media would find it very difficult to produce articles in the numbers necessary with the limited number of journalists that they have.

Not Just The Press Association
Although the PA received the largest grant of UK recipients, Google also gave funding to other organisations as part of the initiative. These include Wikipedia (€385,000), City University (known for its popular journalism school (€335,113), fact-checking body ‘Full Fact’ (€300,000), owner of various computing titles ‘Dennis Publishing’ (€160,000), and Al Jazeera (€50,000).

News Bots Already Used In Some Countries

News bots are already being used by some media companies. In China, for example, Xiaomingbot generated hundreds of stories for last year’s Rio Olympics, and The Los Angeles Times’ own news bot, Quakebot, recently made headlines when it generated news of an earthquake off the coast of Santa Barbara, California.

What Does This Mean For Your Business?

This kind of initiative is another example of how many businesses are finding ways to promote and harness the power of technologies such as AI to help meet demand, particularly where services e.g. customer service, are concerned, in a cost effective, value adding way. It is also an example of how automation is beginning to be used to replace human jobs.

Research firm Gartner, for example, estimates that up to 85% of customer service centres will become virtual by 2020 e.g. by using more bots, and Facebook announced last April F8 that anyone can now make their own bot using Facebook’s application programming interface (API) known as ‘Messenger Platform’.

Also, in March this year, a report by PwC claimed that over 30% of UK jobs could be lost to automation by the year 2030. How much automation and what kind of automation individual businesses adopt will, of course, depend upon a cost / benefit analysis compared to human workers, and whether automation is appropriate and is acceptable to their customers.

Smart Pest Control System Outsmarts Rats

Computer mouse and mousetrap isolated on white background

A smart new system from Swedish company Anticimex is now using smart technology to bring pest control into the 21st century by tracing rats and revealing vital information about where they converge or nest.

Used To Be Manual

Like many companies in that industry sector, pest control for the main industrial clients of Anticimex used to involve the manual process of the setting up of traps, and stopping by once a week or once a month to check if the trap had caught a rat.

The Inspiration

Anticimex CIO Daniel Spahr is reported as saying that the inspiration for the change from manual checking to smart innovation came from when, as a regional manager in central Europe, he read about rat infestations in Copenhagen and the invention of a motion detector-based rat trap to be used in the sewer system.

Catching Rats The Smart Way

When smart traps first came into being, the system has some basic reporting features. These were improved upon over time, and this process was helped by Anticimex engaging software company IFS to further develop the new platform for smart traps. This led to a trial of the new Anticimex in Finland this April.

As well as tracing rats and giving information about where they converge or nest, the smart traps work by sending real-time data and reporting if motion is detected, or if a trap has been activated. The information collected by the units can be used to improve the sales and marketing of the product, and give customers a detailed idea of the pest control efforts happening in their properties.

Battery Powered

The traps themselves are powered by various sizes of rechargeable batteries. Equipped with SIM cards, the units send text messages via SMS through 2G and 3G networks, alerting Anticimex of any activity with its traps 24 hours a day. The units send out warnings if the batteries need to be recharged / batteries that need to be replaced, etc. This information can help Anticimex plan their resources for its smart traps.

Hard To Hack

Despite worries about how smart devices of all kinds can be vulnerable to attacks by cyber criminals, Anticimex are reported to be confident that the devices and their communications are highly secure and difficult to hack.

Financial Rewards

The move by Anticimex into innovative smart technology appears to be paying off as the pest control company is now achieving revenues of US$474 million.

What Does This Mean For Your Business?

This is another example of how some very old problems are now being solved using the latest smart technology. In the case of Anticimex, vision and inspiration, plus a strategic alliance with a technology company has delivered an important technical and competitive advantage, and could revolutionise a whole industry.

If this can be achieved with a pest control business, other businesses should be asking themselves how / if technology could play a part in solving some of the challenges for businesses and their customers in a cost-effective way, and whether the fresh perspectives and ideas offered by alliances e.g. with technology companies could help move things more quickly forward in new, exciting, and lucrative directions.

Rogue Drone Over Gatwick

It has been reported that a drone being flown dangerously close to Gatwick airport was the reason why four Easyjet and one British Airways flights had to be diverted.

Runway Operations Suspended

Reports indicate that runway operations at Gatwick for two periods (one nine, and one five minute period) between 6pm and 7pm on Sunday 2nd July were suspended.

The resulting flight diversions during that period meant that many passengers ended up far from their intended destination (West Sussex), in places such as Stansted, Southend (Essex), and Bournemouth (Dorset).

The Drone

Reports about the exact nature of the drone itself are limited, other than to say that it was observed in the vicinity of Gatwick. Sussex Police are reported to be investigating the matter, but as yet the drone pilot has not been identified, and police were not able to recover the drone from the scene.

Certainly Not The First Time

The UK’s safety body jointly funded by the Civil Aviation Authority and the Ministry of Defence known as Airprox has recorded 70 such incidents last year, and 33 so far in this year. In fact, there has been a total of 142 Airprox incidents involving drones since 2010, with 40 of them being recorded near Heathrow, and 6 (7 including the latest) being recorded near Gatwick.

Could Have Been Worse – Has Been Worse

Although this latest incident caused a good deal of disruption, previous encounters with drones have posed more immediate and apparent danger.

In June, for example, a Loganair pilot attempting to land Edinburgh airport had to take evasive action after a drone came within only 20 metres of his plane.

Revised Code

A code (recently revised) exists in the UK to help ensure that drone pilots operate their crafts safely. The code specifically states that drones shouldn’t be flown near airfields or near aircraft, and that they should be flown below 120m (400ft) and at least 50m (150ft) away from people. This latest incident, and the fact that drones have been sighted by aircraft 12,500ft from the ground, show that not all drone pilots have read / abide by the code.

The Civil Aviation Authority has warned that flying drones near airfields carries serious punishments under law, including possible imprisonment.

What Does This Mean For Your Business?

Drones have found a use in many current business applications e.g. monitoring construction projects, film and TV, and the aerial photography market. They have also been tested and tipped for use in the future by e.g. Amazon for parcel deliveries. A move towards autonomous vehicles and new transport technologies means that drones currently have a bright future when used responsibly and professionally in the commercial world. Incidents such as the one at Gatwick give unwanted bad publicity to technology that has a lot of safe, cost saving, and productive uses in the right hands. It also points to the need for regulations and guidelines to be developed and revised as such new industries grow.

Charity Challenges (Snooper’s) Charter

The human rights charity has been given the go-ahead by the UK High Court to make a legal challenge against the so-called ‘Snooper’s Charter, and will be enabled to do so with the help of £50,000 of crowdfunding raised earlier this year via CrowdJustice.

What Is The Snooper’s Charter?

The Snooper’s Charter is another name for the Investigatory Powers Act which became law in November 2016. It was designed to extend the reach of state surveillance in Britain. The Charter requires web and phone companies (by law) to store everyone’s web browsing histories for 12 months, and also to give the police, security services and official agencies unprecedented access to that data. The Charter also means that security services and police can hack into computers and phones and collect communications data in bulk, and that judges can sign off police requests to view journalists’ call and web records.

Why Challenge It?

The charity ‘Liberty’ wants to challenge the Charter on the arguments that surveillance of everybody in the UK may not be lawful or necessary, and that whistleblowers and experts have warned that the powers would actually make it more difficult for security services to do their jobs effectively.

There are also the arguments that the new law puts too much power in the state’s hands, could be and invasion of privacy, and that the government storing large amounts of sensitive information about each of us could in itself be irresponsible and a security risk.

Some critics have also expressed suspicions about the motives of the UK government for introducing the law e.g. to censor and control rather than to protect.

Helped By Recent Judgement

Liberty’s argument has been helped by the fact that last December, the European Court of Justice (in a separate case, represented by Liberty lawyers) ruled that the same powers in the old the UK state surveillance law the ‘Data Retention and Investigatory Powers Act’ (DRIPA) were unlawful.

What Does This Mean For Your Business?

It goes without saying that, especially in the light of the recent UK terrorist attacks, the UK’s ability to spot and foil potential plots is vital. Although the new surveillance Charter may include measures that could help with that, many people and businesses (communications companies, social media, web companies) are uneasy with the extent of the legislation and what it forces companies to do, how necessary it is, and what effect it will have on businesses publicly known to be snooping on their customers on behalf of the state. The 200,000+ signatures on a petition calling for the repeal of the Investigatory Powers Act after it became law late last year, and the £50,000 crowdfunding raised from the public in less than a week to fight the bill, both emphasise the fact that UK citizens value their privacy and take the issues of privacy and data security very seriously.

NHS Sharing Data With Google Not Compliant Says ICO

A deal which led to the sharing of healthcare records of 1.6 million patients in the UK with Google’s AI company ‘DeepMind’ has been judged by the UK data protection watchdog the Information Commissioner’s Office (ICO) to have not complied with the Data Protection Act.

What Deal?

Back in May 2016 a data sharing agreement between Google’s A.I. Company DeepMind and the Royal Free NHS Trust meant that Google was granted access to the information of the patients for 5 years up to 2017 of 3 London Hospitals, namely;  Barnet, Chase Farm and the Royal Free Hospital.

The information was intended to be used by Google for the specific purpose of developing an app called ‘Streams’ to alert doctors when a person is at risk of developing acute kidney injury (AKI). NHS figures at the time showed the need for such an app because kidney injuries were believed to cause 40,000 deaths a year in the UK.

What Went Wrong?

A member of the public complained, the ICO investigation took place, and it was reportedly found that there were some shortcomings in how the data was handled e.g. some patients were not adequately informed that their data would be used as part of the deal. This led to concerns being raised about transparency for patients about how records were being used.

Protection

The Royal Free Trust originally stated that the patient data that Google would be given access would be encrypted, and that the Google DeepMind employees working on the project would not be able to identify any individuals from it.

There were also assurances that Google could not use the data in any other part of its business; that the data would be stored in the UK by a third party, and that all data will be deleted when the agreement expires at the end of September 2017.

Not Unusual

Despite concerns being raised in the media when the deal was first announced, the Royal Free NHS Trust pointed out that information sharing agreements of this kind weren’t unusual and that it was one of 1,500 agreements with third-party organisations that process NHS patient data.

Now What?

The ICO has now asked for the Trust to commit to changes which will ensure that it is acting within the law by signing an undertaking. The Trust has been asked to establish a proper legal basis under the Data Protection Act for the Google DeepMind project (and for future such projects), to complete a privacy impact assessment, to commission an audit of the trial and share the results with the ICO, and to show how it will comply with its duty of confidence to patients in any future trial involving personal data.

What Does This Mean For Your Business?

If your organisation works in a medical field or develops products or services with medical applications or inputs, an agreement of this nature with the NHS or a private health company could represent an R&D opportunity. As the national data guardian Fiona Caldicot pointed out in this case, there was huge potential that creative use of data could have on patient care and clinical improvements.

This story is, however, a reminder that companies / project partners should always be very clear on the Data Protection law (and GDPR as it will be next year) before embarking on a project. It also illustrates how privacy impact assessments are an important data protection tool in digital innovation, and how, just because new technologies enable businesses to do more, it does not mean these tools should always be fully utilised. The price of innovation shouldn’t be the erosion of legally ensured fundamental privacy rights, and the costs for companies that don’t take account of this could be great.

AA Website Shop Data Breach

Reports have surfaced of a data breach in April this year in the website shop of motoring / breakdown company the AA which left a large (13 gigabyte) cache of data, including personal customer data viewable online for several days.

What Happened?

Security researcher Scott Helme from ‘Motherboard’, and Troy Hunt of website ‘Have I Been Pwned’ reportedly discovered that a breach in the AA website meant that, what the AA blamed on a server “misconfiguration” actually meant that a huge file, allegedly containing addresses, names and parts of payment card numbers was left exposed online.

Mr Hunt and Mr Helme reported finding 117,000 unique email addresses in the exposed file along with names, net addresses, credit card types, expiry dates and the final four digits of the card.

Motherboard and ‘Have I Been Pwned’ subscribers / victims whose information was included in the exposed database were contacted to verify if the details were genuine and accurate, which they were reportedly found to be.

The AA Said…

AA president Edmund King is reported to have said that they first learned about the problem on 22 April. Soon after discovery, the firm that runs the shop on the AA’s behalf was told about the problem, and the vulnerability and the issue was resolved on 25 April. The AA has also reportedly said that, even though the database file was exposed, no (customer) payment details were compromised.

The AA Have Done…

Reports indicate that the AA have stated that they take data security very seriously, opened an independent inquiry into the issue, informed the UK’s data watchdog, the ICO, and issued legal letters warning against a dissemination breach under the ‘Computer Misuse Act’.

Criticism

The reported criticism of those who discovered and made the details of the breach public appear to focus of accusations that the AA may have not informed of all of the affected customers about the existence and the seriousness of the breach, and may in effect have kept quiet about it until others made it public.

What Does This Mean For Your Business?

This is another example, in what appears to be a long line of customer data breaches, involving high profile, well-known companies. This story is a reminder that, particularly with GDPR coming into force next year, companies need to be very familiar with, and to ensure that they comply with data protection regulations, and to realise that they are obliged by law to keep people’s personal information safe and secure.

Companies need to be as transparent as possible to customers about data breaches, and to inform them when data is exposed, rather than trying to keep quiet.

Businesses can help themselves and their customers avoid heartache by making sure that web and data security are issues that are prioritised, practices and systems are regularly reviewed and assessed for risk to make sure they are effective, compliant, and up to date, and that Disaster Recovery Plans are in place.