Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Optrics Insider Shaun Sturby & Scott Young
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Scott: Shaun keeps tabs on what's going on out in the IT world largely from a security and IT management perspective, and I know you share these with our staff at our weekly meeting so we thought we'd do the same with you guys and pass those tips on. So what are the top three things you're seeing out there this week Shaun?
Shaun: The first thing that I want to talk about is all of these work from home PCs and patches. Last week was Patch Tuesday and Microsoft released about a hundred and twenty different patches. Lots were for Microsoft Office and the critical one was the one related to a remote code execution or RCE as it's called in the industry. In this particular case it's a malformed font, so if you've received an email or a document that has one of these malformed fonts when you open the document somewhere hidden in it will be one of these malformed fonts. When your PC goes and takes a look at that font it'll actually execute the malware writer's code. So now your computer is not your computer - it's been joined to some sort of a botnet and possibly could be used for doing other things like sending out more malware or sending out spam. So if it's a corporate owned device we definitely want to adopt it into our regular patching schedule, but what about people working from home using their own PCs? Are they all patched and up-to-date and what about the other devices such as tablets and cell phones?
www.OptricsInsider.com
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Scott: Well that's a good question and usually the patching tool that we recommend is ManageEngine's Desktop Central, but there's lots of different options out there and I think also F-Secure, which is the antivirus, allows you to also keep an eye on on ...
Shaun: ... and can push up patches
Scott: Okay that's good to know. The other question I want to throw out there to people watching is with respects to employees who are using their own personal computers at home. You're giving them access to your network and you're also assuming perhaps that they have a patched computer and the question is what standards are you wanting home users to have in terms of even being up-to-date on Windows 10 and not being on end-of-life Windows 7 or XP? What are your patching expectations? I guess to a certain degree you can't force employees to do things on their own personal computers but you certainly can set standards and offer a work computer to connect to your network as an alternative. Something to think about. Let's talk about the the second thing that you're seeing out there.
www.OptricsInsider.com
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Shaun: The other interesting thing was around spam messages. Google reported that they saw more than 18 million daily malware and phishing emails specifically related to COVID19 last week and this was on top of 240 million daily messages that were more generic coronavirus spam. These are scams related to personal protective equipment - you want to buy the masks or the face shields or the other one is for a cure. Some of these spammers are taking advantage of people's fear to try and sell them the cure for COVID-19. Now in this case, Google's reporting on what they see so these spam messages were also sent to Gmail addresses and Gmail for business addresses. The question to ask is how many of your users are implementing "shadow IT" and are using their personal Gmail addresses for work now? Google's doing a great job at stopping all of these messages, but what if one sneaks through? Would your users be able to recognize spam messages? What kind of training do you have and while we are definitely keeping them up to speed on at the office, what about on their home email accounts? Do you want to reach out to your staff members and offer to take a second look at spammy messages and say "yes we agree this is spam you should delete it".
www.OptricsInsider.com
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Scott: I know that's something that our staff are pretty good at doing anytime there's a questionable email. They're pretty good at sending it to you and and making sure you give it the thumbs up or a thumbs down, but that's also a fair point that it's easy when it's internal email and perhaps a bit trickier to manage when it's an employee's personal account. Don't let your guard down. Make sure you double-check. What's the ďŹ nal thing that you're seeing out there Shaun?
Shaun: There was an article here recently about CMR vs. SMR or what are called "conventional magnetic recording" hard drives and "shingled magnetic recording" hard drives speciďŹ cally being used in NAS, or network attached storage, computers or devices. So what's the difference between a conventionalmagnetic recording hard drive and a shingled magnetic recording hard drive? Basically the shingled magnetic recording is overwriting and putting the tracks together on the hard drive a lot closer together and they can do that those tricks to do that and it's great for getting more capacity in the same footprint for archive or cold storage type drives. What happened though was they did not disclose that they were using the shingled magnetic recording on drive speciďŹ cally marketed towards network attached storage or NAS drive systems.
www.OptricsInsider.com
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
People were finding that initially if you put in a bunch of hard drives they would work fine, but it was only when you went to replace one (because of a failure or some other issue) that troubles began. This was mainly due to the fact that CMR and SMR drives work differently and therefore caused problems especially if it was a mixed environment where half of the drives were conventional and the other half were shingled. The drives timed out so the process of rewriting the data took much longer and therefore users were getting a lot of RAID rebuild errors. Well that's a problem, so the industry is now demanding that the manufacturers completely disclose whether or not, especially for critical storage, if they are using conventional magnetic recording or shingled just so that the buyer is aware and they can make that informed decision.
Scott: Wow - I can see there's a lot of most likely frustrated Network admins and IT staff who are trying desperately to make sure all of their data is backed up and then they're getting all of these errors and they don't don't know why. It seems to me often it's that thing you'd never think about or something new or that when you're trying to troubleshoot something it's just you've gone through all the checklists of things and and whether it shingled or not is probably the last item on your list.
www.OptricsInsider.com
Optrics Insider - Remote Patching, COVID-19 Spam Email & CMR vs SMR NAS Hard Drives
Shaun: It's also a good reminder that to do a back up properly you have to have three copies in two different media in different locations.
Scott: Anything else you want to add or are those the top three things IT people should know this week?
Shaun: No, those are the highlights that I had seen this week so I'm sure that there will be many many more things over the next week.
Scott: Thanks for keeping your ear to the ground Shaun, much appreciated. I hope everyone found this discussion helpful and gave you some ideas some things to think about when it comes to patching computers, especially coming up with some sort of a plan or policy for your organization. Watch out for the COVID spam. I'm sure you've seen a lot of it and not just for your work email addresses, but for your personal email addresses as well. Make sure your staff know what not to click and then ďŹ nally pay attention to the type of hard drive you have especially for your for your critical backups. www.OptricsInsider.com
Optrics Engineering Optrics Engineering is a licensed engineering ďŹ rm specializing in network hardware, software consulting and training solutions coupled with a successful Internet-based technology-marketing company. Vendors we represent include: A10, Extreme Networks / Aerohive, Castle Rock Computing, Cisco, Dell, Ekahau Wi-Fi Design, HP, KnowBe4, HelpSystems, Kemp Technologies, Loadbalancer.org, MailStore, ManageEngine, Microsoft, Quest, Ruckus, Sophos, Trend Micro, Ubiquiti, Unitrends & WatchGuard For a full listing of our partners go to: Optrics.com/partners To watch full episodes of the Optrics Insider go to: OptricsInsider.com/category/videos Learn more about Optrics and how we can help solve your IT problems by going to: www.Optrics.com or call us at 1-877-386-3763. We can also be found on: - Facebook - Twitter - Youtube