Systems around the world have faced a major outage following an issue with CrowdStrike security software blocking recent Windows Updates.
Thousands of organisations including airports, hospitals, train networks and financial exchanges have experienced widespread system issues as of Friday 19th July 2024 – with international media reporting long travel delays and difficulties transacting payments.
The issue is currently believed to impact:
Windows environments running Crowdstrike cyber security software, which is blocking a recent Windows update, resulting in systems being unable to restart.
Certain Microsoft cloud-services with back-end dependencies on systems operating CrowdStrike.
Affected systems restart into the infamous ‘Blue Screen of Death’ (BSOD) upon unsuccessful update. Updating PCs via physical access is a major challenge for organisations with large scale sites or remote operations spread over a wide geographic area.
CrowdStrike / Windows Issue
Please note that Lineal Managed Services are not affected by the current worldwide CrowdStrike / Windows update issue affecting systems around the world. As of 0630hrs UTC, a manual workaround is available for Windows installations affected by this third-party software error, to manually remove the obstacle to a successful update.
If you or any part of your organisation has been affected by this issue, please contact our team via our [email protected] or 01271375999. If you know of anyone who may be affected, please ask them to get in touch for assistance.
A number of potential fixes are recommended, however some involve disabling the CrowdStrike agent, potentially leaving a further cyber security vulnerability:
Either booting Windows into Safe Mode or the Windows Recovery Environment, and manually deleting ‘C-00000291*.sys’ from the CrowdStrike Directory, rebooting the host normally.
OR Booting in Troubleshooting mode, and renaming CS.Agent.sys via Command Prompt.
OR For virtual machines – mounting discs elsewhere to change the file blocking successful update.
OR using Microsoft Intune / another patch management platform to block any updates likely to be faulty if not yet applied.
However, as already noted by a number of Lineal engineers – resolving the problem is likely to involve complications where organisations have Bitlocker encryption deployed to the Windows environment.
If you or any part of your organisation have been affected by this issue, please contact our team via our [email protected] or 01271375999. If you know of anyone who may be affected, please ask them to get in touch for help.
Lineal has been awarded Cyber Advisor status by the UK National Cyber Security Centre – in recognition of our ongoing work in support of the UK Cyber Essentials scheme.
As the public facing arm of GCHQ, the National Cyber Security Centre is responsible for engaging with businesses, the public sector and general public to improve the cyber security of the UK. The NCSC provides a single point of contact that helps law enforcement, defence, intelligence and security agencies coordinate and raise awareness of the importance of digital resilience.
Lineal are among a small handful of official recognised Cyber Advisors based in the South West, recognised for our ability to guide businesses and organisations through the process of obtaining UK Cyber Essentials (and Cyber Essentials Plus) Certification.
Cyber Essentials requires businesses to meet or exceed an assured set of security requirements each year, to protect against common forms of online crime, technology dangers and digital threats. Certified by the UK Government’s National Cyber Security Centre (NCSC), Essentials has become a standard good-practice requirement for all businesses looking to trade with public-sector organisations, helps build trust among customers, and helps demonstrate that an organisation is working hard to keep systems, staff and data safe.
Not dependent on specific technology or solutions, CE relies on demonstrating basic underlying controls and fundamental cyber hygiene, and organisations who obtain certification see both fewer instances of cyber breaches and the ability to recover faster in the event of an incident. A more advanced certification, Cyber Essentials Plus, is independently audited to build a more comprehensive security posture.
In addition, Lineal offer a wide range of key cyber security solutions both individually and as part of Managed Cyber Security packages.
We’ve helped numerous business successfully obtain Cyber Essentials for the first time – speak to us about how we can help your team do the same.
Confirming rumours circulating since April, Apple has unveiled Apple Intelligence, a groundbreaking personal intelligence system set to redefine user experiences on iPhone, iPad, and Mac.
However, unlike many well-known rivals, Apple Intelligence places much of the workload back on the user’s device in an effort to maximise trust. Ever privacy-focused, Apple’s innovative system integrates powerful generative models with personal context, providing highly relevant and useful intelligence without such a heavy reliance on data sharing with the cloud.
Apple Intelligence is anticipated to be seamlessly embedded into iOS 18, iPadOS 18, and macOS Sequoia, leveraging the power of Apple silicon to enhance language and image processing. It also introduces Private Cloud Compute, which dynamically balances computational loads between on-device processing and secure, server-based models, ensuring unmatched privacy and security.
– Advanced Writing Tools: Users can now rewrite, proofread, and summarize text across apps like Mail, Notes, and Pages. Features like Rewrite, Proofread, and Summarize help users craft perfect messages, emails, and documents with ease.
– Enhanced Mail and Notifications: Priority Messages and Smart Reply in Mail, along with Priority Notifications, keep users on top of important communications.
– Image Playground: This feature allows users to create fun and engaging images within apps like Messages, Notes, and more, using styles such as Animation, Illustration, or Sketch.
– Genmoji Creation: Users can generate unique Genmoji by typing descriptions, adding a new layer of expression to their communications.
– Enhanced Photos and Memorie: Improved search capabilities and the new Clean Up tool make managing photos and videos easier. Users can create personalized Memories with suggested music from Apple Music.
Apple’s longstanding Siri virtual assistant is to become more natural and contextually aware, now supports richer language understanding, on-device support, and new actions across Apple and third-party apps. ChatGPT is also being integrated into the Apple ecosystem, allowing users to leverage its expertise directly within iOS 18, iPadOS 18, and macOS Sequoia. Privacy protections ensure that user data remains secure, with ChatGPT’s capabilities enhancing Apple’s system-wide Writing Tools and image generation features.
Apple Intelligence will be available in beta with iOS 18, iPadOS 18, and macOS Sequoia this Autumn in U.S. English, expanding to more languages and features over the next year. It will be supported on devices with M1 chipsets, and newer.
For Apple advice and expertise, please contact our team today.
Lineal staff recently attended Barracuda Networks’ Discover24 event in Vilamoura, Portugal, to take part in the security provider’s annual conference.
In front of a capacity crowd of cyber security partners from more than thirty countries across Europe, the Middle East and Africa, the award-winning US security giant revealed its latest platform developments and insights into anti-cybercrime efforts around the globe.
Barracuda email security solutions protect more than eight million email inboxes worldwide, and screen a staggering 280m malicious email threats per week. For countless organisations, email remains the single-biggest attack vector for everything from credential phishing to impersonation scams, and Lineal has used Barracuda solutions to protect our clients for more than ten years.
However, in the past decade the provider’s unrivalled platform has expanded its solutions across the technology space dramatically – and now has an impressive array of specialised security solutions for everything from backup and firewalls to application security and highly-advanced security operations centres offering Extended Detection & Response (XDR).
Among the new technology demonstrated was cutting-edge AI assistance that uses machine learning to help detect malicious emails containing little actual text, and impressive statistics for catching emerging threats, ransomware incidents, attacks on APIs and even SaaS applications.
Barracuda also announced a range of planned upgrades and standardisations to their own platforms to help end-customer organisations deploy solutions faster and more effectively.
For Cyber Security support and expertise, please contact our team today.
Apple’s have announced new iPads with some striking headline achievements, including lightning fast M4 processing and impressive environmental credentials.
In a ‘Let Loose’ event, the company debuted the new iPad Pro and iPad Air in different sizes, with some astonishing performance statistics and lower pricing for advanced features.
The new iPad models also boasts a significant environmental achievements – using 100% recycled aluminium, 100% recycled rare earth elements , tin and gold plating. Free of mercury and PVC, the packaging is also 100% fibre-based to minimise plastic waste.
We’ve written before about Apple’s ambitious plans for using recycled materials throughout its products – including heavy use of recycled cobalt, aluminium, tin, and gold across batteries, circuit boards and magnets by 2025.
The new M4 processor is thought to deliver up to 1.5x faster CPU performance over the M2 in previous generations, and supports an Ultra Retina XDR OLED display, which Apple claims is the world’s most advanced – aimed squarely at artists and other creatives in line with the release of a new Apple Pencil Pro model containing a gyroscope, that can even simulate the delicate twist of a paintbrush.
Each new iPad version will be available to purchase from the 15th May.
For Apple advice and expertise, please contact our team today.
Microsoft Windows 10 has entered its final eighteen months of mainstream support, and will be declared End of Life in October 2025.
Originally launched in 2015 to both widespread acclaim and commercial success, Windows 10 has blazed a trail of computing success over the past decade. Yet all good things must come to an end – and with the end of mainstream support for Windows 10, users face crucial decisions regarding their digital ecosystems.
In particular – for users of an estimated 200 million PCs worldwide, the end of Windows 10 means no more security patching, bux fixes or other crucial updates – leaving Windows 10 machines exposed to potential security threars and malware attacks if not upgraded.
Windows 11 has been available since 2021, and promises enhanced security features, improved performance, with a sleek, modern interface. No new version of Windows is expected this year, with all PC users advised to upgrade to Windows 11 if they device hardware supports it. For those that don’t – because of old processors, TPM version, or a lack of RAM – users have few options but to plan for a hardware refresh.
Windows 10 launched in 2015 with a radical modern redesign for the 64-bit world.
Yet this transition isn’t always seamless, as it may demand hardware upgrades to meet Windows 11’s stringent requirements. For the countless individuals and businesses still relying on Windows 10 or holding aged machines that are ineligible – that presents a challenge.
Users can opt to continue using Windows 10 beyond its end of support date, albeit at their own risk. While this may seem like a viable short-term solution, it leaves a major question mark hanging over cyber security risk. Alternatively, some organisations may look to purchase extended support up to 2028, although this is a costly choice – with the price confirmed to double for each successive year.
Another possible avenue would be to look at alternative operating systems – Apple macOS or ChromeOS remain popular in some sectors, although given the sheer number of PCs still running Windows 10, it seems unlikely all will make an outright switch in time.
For many, it’s time to bid farewell to not just Windows 10, but longstanding devices that have far outlived their predecessors – in favour of Windows 11 devices expected to be supported into the 2030s.
Rumours of an Apple AI product have spread rapidly following release of four small language models to developers.
Open source and free to use, ‘Open-source Efficient Language Models’ or ‘OpenELM’ are a set of efficient text generation models available for Apple developers to begin experimenting. So far, the low-key release online without major fanfare has prompted only a handful of downloads.
Unlike Microsoft, Google and Facebook, many believe Apple are working on ‘on-device AI’ models that would not involve sharing large quantities of data with cloud-based platforms – a major step for the future of more privacy-focused AI. With a 3-billion parameter option available, it’s possible Apple may be quietly preparing something every bit as capable as Google Gemini, albeit behind the scenes.
In February, Apple’s CEO Tim Cook revealed that AI features are planned for future mac releases, but did not give further details, and has so far not released general purpose models for commercial use.
This has led to intense speculation that Apple are considering heading in a slightly different direction to the rest of big tech – perhaps keen to differentiate themselves in key areas.
However, Apple have already launched machine learning frameworks that hint at AI models running on M-series chipsets, an image editing model, and a UI-based model that would allow an AI to navigate a smartphone or tablet.
All this leaves Apple fans waiting until at least the Apple Worldwide Developers Conference in June, or other annual announcements during September, to see what’s waiting behind the scenes.
For IT Support and expertise, please contact our team today.
As the season changes, it’s the perfect time to give your digital devices a much-needed spring cleaning. Follow these simple steps to declutter, optimise, and give your PC or Mac a new lease of life:
To help keep your physical hardware in good condition:
Dust and Clean the Exterior/Air vents: Start your device’s spring cleaning by gently wiping down the exterior surfaces with a soft, dry microfibre cloth. Pay attention to vents, ports, and fan openings, where dust tends to accumulate or impact electronic connections. Use a can of compressed air to blow out any stubborn dust particles from these areas. Inspect the air vents and fan openings on your device for dust buildup. Use a can of compressed air to blow out any dust or debris, taking care not to damage any internal components. Keeping these vents clear ensures proper airflow and prevents overheating.
Inspect Cables and Connections: Check all cables and connections for signs of wear or damage, such as fraying or exposed wires. Replace any damaged cables to prevent electrical hazards and ensure reliable connectivity.
Clean the Monitor or Screen: Use a microfibre cloth slightly dampened with water or a mild screen cleaner to gently wipe the monitor or screen. Avoid using harsh chemicals or abrasive materials, as they can damage the screen. For stubborn smudges or stains, use a screen-specific cleaning solution applied to the cloth, not directly on the screen.
Keyboard and Mouse Care: Remove any dust and debris from your keyboard and mouse using a can of compressed air or a soft brush. For deeper cleaning, consider removing the keycaps from your keyboard and using a damp cloth to wipe them down. Be sure to let them dry completely before reattaching.
Elevate and Ventilate: Consider placing your PC or Mac on a raised platform or stand to improve airflow and ventilation. This helps prevent overheating and can help prolong the lifespan of your device’s components.
Internal Cleaning (Advanced): If you’re comfortable with it, you can open up your desktop computer or Mac tower to clean out any dust or debris that may have accumulated inside. Use a can of compressed air to blow out dust from components such as the CPU fan, GPU, and power supply. Be sure to follow proper safety precautions and consult your device’s user manual or manufacturer’s guidelines – and if you’re unsure, please contact Lineal’s hardware Workshop.
It’s also a good idea to clean your computer’s operating system occasionally with some regular electronic tidying:
Declutter Your Desktop: Start by tidying up your desktop. Remove any unnecessary files, shortcuts, or folders that have accumulated over time. Consider organising the remaining items into folders to keep your desktop clean and clutter-free.
Clean Up Your Hard Drive: Take some time to clear out unnecessary files and free up space on your hard drive. Use a disk cleanup tool on Windows or the Storage Management tool on Mac to identify and delete large or unused files, temporary files, and system junk.
Uninstall Unused Programs: Go through your list of installed programs and uninstall any that you no longer use or need. This will not only free up storage space but also improve system performance by reducing the load on your computer’s resources, as well as act as a good security precaution.
Update Software and Drivers: Ensure that your operating system, software applications, and device drivers are up to date. Check for updates through the settings or preferences menu on your PC or Mac, and install any available updates to improve performance, security, and compatibility.
Organize Your Files and Folders: Take the time to organize your files and folders in a logical manner. Create separate folders for different types of files (e.g., documents, photos, music) and use descriptive file names to make it easier to find what you need later.
Clean Your Keyboard and Mouse: Dust and debris can accumulate on your keyboard and mouse over time, affecting their performance and longevity. Use a can of compressed air or a soft brush to gently remove dust and debris from between the keys and around the buttons.
Backup Your Data: Don’t forget to back up your important files and documents regularly. Use an external hard drive, cloud storage service, or backup software to create a copy of your data in case of unexpected hardware failures or data loss.
By following these physical care tips, you can ensure that your PC or Mac not only performs optimally but also looks and feels like new for years to come.
The British Library has published its lessons learned from the devastating cyber attack that struck in October 2023.
In an eighteen-page report which shows an impressive commitment to transparency, but makes for painful reading, the organisation details how it was compromised by the Rhysida ransomware group during a traumatic timeline of events. In a subsequent press release, the Library also states it hopes other institutions will learn from its findings in the wake of a ‘deeply damaging criminal attack.’
Unfortunately, the report makes clear that in response to tighter security standards, the organisation ceased to be Cyber Essentials Plus certified in 2022, pending replacement of some older systems. In section six, sixteen ‘lessons learned’ form the basis of its future plans and guidance to other organisations:
Enhance network monitoring capabilities
Retain on-call external security expertise
Fully implement multi-factor authentication: Multi-factor authentication needs to be in place on all internet-facing endpoints, regardless of any technical difficulties in doing so.
Enhance intrusion response processes
Implement network segmentation
Practice comprehensive business continuity plans
Maintain a holistic overview of cyber-risk
Manage systems lifecycles to eliminate legacy technology
Prioritise remediation of issues arising from legacy technology
Prioritise recovery alongside security
Cyber-risk awareness and expertise at senior level
Regularly train all staff in evolving risks
Proactively manage staff and user wellbeing
Review acceptable personal use of IT
Collaborate with sector peers
Implement Government standards, review and audit policies and processes regularly
The exact origin of the hack – which took Library systems offline for months – is unconfirmed, in part due to the scale of the destruction. However the Library’s independent security investigators believe the original breach was caused by either a spear-phishing, brute force or other credential compromise. This allowed hackers access to a remote session on a terminal server that was not yet subject to Multi-Factor Authentication for a user to login.
From there, around 600GB of data (or half a million documents) were exfiltrated, with searches for sensitively-named content such as ‘passport’ and ‘confidential’. Backup copies of twenty-two databases were also made, and removed from the network. Ransomware was also deployed, and the encrypted data used for attempted extortion.
At several points Rhysida are believed to have made their own actions difficult to track – deleting log files and destroying servers to prevent a swift recovery. In a classic ‘double-extortion’ the group also leaked employee and customer data for auction on the dark web in November, with a starting value of 20 Btc (then approximately £600,000). The British Library insists that in line with guidance given by the National Cyber Security Centre, no attempt was made to communicate with the attackers, nor any ransom paid.
The Rhysida ransomware group are also reported to, or have claimed responsibility for, hacks carried out in Chile, Portugal, Kuwait and the United States in the latter half of 2023. Cyber security professionals believe the hackers are Russian-speaking, although evidence is limited.
Lengthy and costly, the cleanup effort has clearly been difficult. The report details that the Library convened Gold and Silver level crisis-management committees, with both private sector and UK state cyber security assistance – although senior staff at the BL were at one point forced to communicate via an emergency WhatsApp call in the absence of official systems. The Library’s main catalogue, containing more than 36-million records, only returned online in ‘read-only’ format in January, and the report states ‘Many staff have been unable to perform significant parts of their roles’ (for more than 3 months.)
The Financial Times have speculated that the recovery costs may eventually total over £7m, which would represent around 40% of the institution’s known financial reserves, although the Library’s Chief Executive, Sir Roly Keating, told the BBC it was too early to calculate the true value.
For cyber security expertise and assistance, please contact our team today.
Lenovo have teased a futuristic prototype of a laptop with a transparent display.
The Thinkbook Transparent Display is a 17.3-inch laptop with a MicroLED display that appears (almost) clear when unlit. This creates the effect of near-transparency when using dark mode apps, while a white, full-brightness display remains opaque.
In practice the display has no bezel, and is currently only 720p, which would now feel a little basic compared to most modern laptops. Like most devices, the top of the base contains most of the components, with the keyboard being a projection.
Lenovo has form for unusual laptop concepts – being among the first to experiment with rollable displays, touch keyboards, dual-displays and other unusual variants – as well as a prototype transparent smartphone.
While technologically impressive, it’s not entirely clear what practical applications transparent displays have for this form factor. Lenovo argue this is another kind of augmented reality, with the user able to look behind the screen or visually check design work against the real world, although laptops usually rest on a surface while being used.
The first transparent laptops appeared more than a decade ago from Samsung, and LG plan the release of an OLED transparent TV for 2024, although Lenovo’s attempt is one of the most impressive to date.
For now the transparent ThinkBook is a mostly just an advert for Lenovo’s more conventional laptops, but Lenovo acknowledges one major strength: a screen which “seamlessly blends and harmonises with its surroundings.” Or, to put it another way, perhaps one day all our giant screens will be a little less… in the way.
Ransomware provider LockBit has been taken offline by a joint operation involving law enforcement agencies from eleven countries.
As of the 20th February, a banner on LockBit’s website declares that the site is now under the control of the UK’s National Crime Agency, part of a coordinated operation to take down the group’s ‘command and control’ infrastructure.
Authorities from the NCA, the FBI, Europol and others from around the world swooped on a number of individuals believed to be involved with Lockbit – making arrests in Poland, Ukraine, and in the United States. Two further named individuals are believed to be Russian nationals.
The combined operation (‘Operation Cronos’) also froze more than two hundred cryptocurrency accounts, took down 34 servers and closed 14,000 rogue accounts.
LockBit made headlines as one of the world’s most successful ‘Ransomware-as-a-service’ providers: offering a toolkit any would-be cyber criminal could use to launch their own cyber extortion operation, demanding more than $120m in ransoms for unlocking encrypted data.
The group behind LockBit, which first emerged on Russian forums in 2020, did not respond to Reuters following requests for comment, but published messages on an encrypted messaging app stating it has backup servers not yet ‘touched’ by law enforcement. Investigations by police in numerous countries also revealed copies of stolen data the group claimed to have deleted after negotiating ransom payments.
More than 1,700 organisations are believed to have been compromised by LockBit, many of which are now listed online – and include Royal Mail, the NHS, Boeing and ICBC, China’s largest bank, among many others.
Decryption tools have so far been released to victims of LockBit in 37 languages, as part of the ‘No More Ransom’ project, with UK authorities pledging to reach out to organisations affected by the ransomware.
For Cyber Security expertise and assistance, please contact our team today.
We’ve launched a new online Trust Centre aimed at demonstrating Lineal’s commitment to Cyber Security and data privacy.
We take our role as your trusted IT provider extremely seriously, and we hope the trust centre will show what we’re doing to maintain the highest of industry standards.
Available online to anyone at any time, our trust centre acts as a transparent dashboard showing our current compliance standards, risk profile and cyber security best practices. In addition to reviewing our key policies, we’ve detailed what we do to keep staff, data and systems safe – across numerous areas including endpoint protection, network security, backup, infrastructure, app and information control.
Our intention is that the trust centre gives our customers confidence in our dedication to good cyber hygiene, and acts as a useful reference resource when our clients are dealing with 3rd-party supply-chain assurances, industry frameworks and insurance providers.
Furthermore, we hope that a detailed overview of the cyber security strategy employed by Lineal acts as a model for others, and a useful template for the kind of organisational transition our own team can help your organisation pursue successfully.
Those measures are backed by important standards: Lineal is an ISO 9001 & 27001 accredited organisation, Cyber Essentials and Cyber Essentials Plus Certified – with reviews of our status undertaken by Cybersmart, Microsoft, Alcumus and Huntress.
For Cyber Security expertise and support, please contact our team today.
Major email providers including Google, Yahoo and AOL are set to tighten rules on incoming email – making accounts more secure against SPAM and demanding more of bulk senders who want to see their emails delivered.
Google and Yahoo alone represent more than two billion email accounts, many of them belonging to individual consumers for personal use. Estimates suggest around 70% of these have no protection against domain spoofing.
Until recently, even many basic security protocols such as SPF (checking whether email header and ‘sent from’ address match) were not enforced on major email platforms such as gmail – allowing fraudulent emails to unsuspecting users. This made phishing emails easier to circulate, harder to detect, and has been recognised as one of the biggest enablers for cyber security attacks.
DKIM – a protocol that signs both the real domain and email with a cryptographic signature that email clients can cross-reference for authenticity – is also often absent, with email providers increasingly looking to demand better standards from email senders.
From February 2024, bulk email senders must adhere to the following requirements outlined by Google and Yahoo:
New Sender Rules
SPF & DKIM Enforced – Business and organisations that need their emails to be delivered safely will have to add SPF & DKIM settings to their domains and mail servers that verify whether emails purporting to be from them are genuine, and have not been tampered with. Without checks in place, Gmail and Yahoo may reject those emails altogether.
Easy Unsubscription – bulk emails must offer ‘one-click’ unsubscribe options for recipients, making it easy for email recipients to opt-out of repeated unwanted messages, and keep clutter under control.
DMARC, the most challenging of the requirements, will be enforced for bulk email senders sending more than 5,000 emails per day, aimed at preventing rapid phishing scams and other mass attempts at fraudulent communications.
For those communicating with the public, the changes are likely to prove crucial, and IT managers need to prepare carefully to ensure their emails continue to be trusted.
For Cyber Security assistance and expertise, please contact our team today.
Two of Lineal’s youngest team members recently featured in an exciting video project aimed at introducing young people to careers in technology.
The Digital Skills Series is a joint project by Devon County Council & the Heart of the South West LEP which interviews ‘Digital Pioneers’ among some of the South West’s most innovative tech companies, and aims to get Key Stage 3 students interested in the amazing opportunities that are available in the digital sector.
It is hoped that the scheme will help promote apprenticeships, degree apprenticeships, work experience and other kinds of placement that help promote much-needed technical skills in the sector.
One recent survey of tech companies in the South West suggested more than half of businesses struggle to find recruits for technical roles, and that the region needs to do more to work with schools, local and central government to overcome the skills shortage.
Lineal have supported apprenticeships for over a decade, and are featuring in this video project for the second time in recent years. The short video-interviews will be shown to school children across the area as part of a series, and we hope it will help inspire the next generation of digital pioneers.
Microsoft have previewed a new ‘Windows App’, designed to be a centralised hub for hosted Windows desktops.
Currently in preview, the new Windows app is compatible with iOS, macOS, iPadOS, and web browsers, and offers the streaming of multiple Microsoft services via Windows 365, Azure Virtual Desktop, Microsoft Dev Box, and other Remote Desktop Services.
The app also facilitates multiple monitors, custom display resolutions and scaling, as well as device redirection for peripherals such as webcams, storage devices, and printers.
Hinting at a future where Microsoft seeks out new customers independent of their hardware, more like Google’s ChromeOS, the Windows App indicates a push by Microsoft to establish the operating system as a standalone cloud-based service in its own right.
The team responsible – a new ‘Windows and Web Experiences’ Team – have also been tasked with a number of related cloud-centric features, including dynamic search interface, a widgets system, and of course, Copilot AI integration.
For now however, the Windows app exclusively caters to Microsoft’s business accounts, omitting consumer accounts. Despite this there are indications that this may change soon: the app includes a sign-in prompt for personal Microsoft accounts, although this feature remains non-functional.
Lineal has maintained strong scores in this year’s client feedback survey, continuing a long-term trend of positive improvement to our IT support services.
Once again, our team’s expertise drew much praise – with over 96% of respondents saying we understand customer problems either ‘Extremely Well’ or ‘Very Well.’ Fewer than 1% of respondents have now given us a negative response to this question within the past three years.
This verdict tallies with instant feedback from our ticketing portal, gathered throughout the year – with more than 97% of respondents rating their Lineal IT support engineer’s ability to resolve their technical support ticket positively.
Response times remain good – fewer than 4% of respondents felt we responded ‘Slower than expected’ when asked. However, we’ve also noticed an slight increase in ‘average’ speed ticket share (from 38% to 48%), something we’ll be working hard to improve.
A record 77% of respondents graded the quality of our IT support experience ‘Great!’ (the best option available) – our highest customer service score ever recorded.
Among our favourite comments were:
“Responsive, cooperative, professional, someone always answers the telephone.”
“Always prompt & helpful, nothing is too much trouble.”
“I found the front desk helpful and polite the back room staff knowledgeable and caring and provided me with a quick service and useful information. I would use them again for IT problems.”
“Did what you said you’d do, can’t ask for more really.”
“We have always found Lineal to come up with the right level of knowledge on any issues or products we require as and when we need something. Lineal service is second to none, absolutely outstanding.”
Each year new cyber threats appear to circulate online, and 2023 has certainly been no exception. For cyber criminals, it’s business as usual… right?
Not quite. Over time certain new patterns emerge that are important for cyber security researchers to identify, and these can help protect businesses and organisations in the future. So what can we learn from this year’s crop of nasty ransomware strains?
Akira
First spotted around April 2023, Akira ransomware appears to be one of the better-organised criminal efforts to extract payments from victims.
Suitable for multiple operating systems and sporting a green-and-black ransom note aesthetic Sophos describes as ‘Retro’, Akira is a professional effort that should give pause for thought.
Disabling many security settings to give itself more lateral movement on systems, the infection also tries to destroy backups to hinder the user, and has a ransom note written in (relatively) good quality English with a host of supporting infrastructure to help the hacker leverage a bigger payout.
The threat actor(s) behind Akira were known to exploit an existing VPN vulnerability to spread the ransomware, but had used stolen credentials purchased online from third-party data breaches to get started – in what has become a common pattern of low level breaches by third-parties supplying the more serious cyber crime via online black markets.
MedusaLocker
Originating back in 2019, this nasty ransomware has been through a string of variants with the most recent strain popping up in September 2023 to hit a major European health organisation.
MedusaLocker is an example of ‘Ransomware-as-a-Service’ – anybody can purchase and launch their own version, with a typical ransom being around $12,000. Like legal software companies, the developers behind Medusa even offer their customers a Support Helpdesk!
More recent variants have moved over to ‘double-extortion’ style attacks, where the hacker not only compromises the data, but threatens to leak a copy online, which is more likely to compel healthcare and public-sector organisations holding very private information on behalf of the public to pay the ransom demand.
Black Hunt
Targeting Windows environments, this ransomware looks relatively traditional, but may show the shape of things to come.
It can be spread both by email and via drive-by downloads on malicious websites that purport to give away free software or content, and for a special trick, immediately tries to terminate other processes on the user’s machine to speed up how quickly it can corrupt data – getting ahead of efforts to slow it down.
Curiously the ransomware searches for a specific text file called ‘Vaccine.txt’, which is likely a safety mechanism used by the original developers to protect their own systems against the dangerous infection.
The Group behind Black Hunt also use a tactic becoming increasingly popular among cyber criminals – publicly naming their victims in a perverse online ‘Hall of Fame’ – as a warning to others.
Our Verdict:
Keeping your data, staff and systems safe from ever-evolving ransomware infections means instilling good cyber-hygiene among your organisation, backed by a cyber security strategy that covers a range of areas including; endpoint protection, identify security, perimeter defence and user awareness training among others. Learn more here.
For Cyber Security Expertise and Support, please contact our team today.
The NHS have updated their ‘secure email standard’ which other organisations are expected to follow.
First published in 2016, the minimum standards for email security are designed to protect NHS staff and systems against supply-chain attacks caused by weaknesses in the cyber security of third-parties.
The standard anticipates that one of the biggest risks to the NHS originates with the rest of us: outside organisations, who need to be trusted not to put the health service in danger via email compromise.
There are two ways to meet the NHS secure email standard:
1. Implement an existing compliant service such as NHSmail, Microsoft 365 or Google Workspace [and follow configuration guidelines for that service.]
2. Demonstrate your own [email] service is compliant with the secure email standard by following the NHS secure email accreditation process.
For those using the biggest platforms – NHSmail, Microsoft 365 or Google Workspace, the to-do list of requirements are simpler and include such steps as ensuring there is a process for notifying the NHS if you have been breached, policies and procedures for using mobile devices, risk assessment, documented policies and universal use within the organisation.
There are also a set of specific configuration settings which the NHS has documented for Microsoft 365 and Google Workspace, which you can learn more about here.
For organisations operating their own mail servers or other email systems, the requirements are more extensive, and require the organisation to manually achieve DCB1596 certification with documented evidence that their setup meets the NHS Secure Email Standard. This applies to organisations hosting their own Exchange, hybrid configurations, and other lesser-known business email platforms.
For cyber security assistance and support, please contact our team today.
As Openreach continues a massive upgrade of the UK’s telecommunications infrastructure from analogue copper to digital fiber-optic, a record 10 million homes and businesses are now switched over.
However, September marks another key milestone – the official ‘Stop Sell’ of older analogue services to the market. From this month, no new copper telephone lines may be ordered*, as Openreach seeks to retire the old-style copper service that goes back to the early 1900s. The stop sell affects a wide range of services – including landlines, traditional broadband, alarms lines and many more.
The £15bn investment represents a great leap forward for the UK – but what does it mean for businesses with existing copper?
Will my existing copper line be turned off?
Not yet! Existing analogue services are expected to be allowed to continue into 2025. However, the lifespan of these is now rapidly reaching its end, and Openreach advises businesses should be preparing to replace these to avoid any risk of loss of service.
What should I be replacing my old copper line with?
For those still on the schedule to be completed, SoGEA broadband options which eliminate the existing line rental in preparation for the fibre switchover are already available for millions of properties. These may remove your old line number, so bear this in mind before you make the important jump to the new service.
What if nothing else is available in my area?
If you’re one of a small proportion of exemptions (sites where no Fibre or SoGEA services are available) ordering a reactivated copper line may still be permitted, at an increased cost.
Alternatively, customers may consider 4G or satellite broadband as an alternative. A new SOTAP (fixed line) option is expected to be available from March 2024, eliminating virtually all new copper service orders nationwide.
What do I do about Service (X) that my business needs?
If you’re unsure about any aspect of your telecoms or connectivity provision, and how it is affected by the stop sell, please contact our team for assistance.
Alternatively, check out Lineal’s recent webinar on the ‘Big Switch Off’:
Microsoft Copilot will release to users worldwide from 26th September 2023.
The flagship natural language AI tool that previewed back in March of this year brings ChatGPT functions to a whole range of Microsoft productions including your favourite Microsoft 365 apps, Azure, Bing and into Windows itself.
At a colourful launch event in New York, Microsoft CEO Satya Nadella debuted the official release of Copilot and demonstrated ways AI can revolutionise everyday tasks – whether that be writing emails, interpreting or generating images, transcribing handwriting into maths, or intelligently answering questions.
Copilot assistance aims to make Microsoft 365 apps including Teams, Word, Excel and more increasingly powerful – with users able to simply request complex data handling tasks rather than manipulating the data manually themselves. For more creative work, Copilot can also generate visual results within longstanding Microsoft apps like Paint.
This presents some fascinating opportunities for companies using the Microsoft 365 suite – common tasks such as ‘Re-write this email more professionally’, ‘Summarise this meeting’ and ‘Make me a set of PowerPoint slides based on this document’ would all be achievable within a few seconds.
Features from the Bing public preview have also made it into the release version – with users able to choose ‘More Creative’ ‘More Balanced’ and ‘More Precise’ language options to give the AI’s output a different tone, and draw on the wider web-based dataset that is previously unknown to the user.
For example, in another impressive example of Copilot using web and user data intelligently, an American user uploads a photo of a UK plug adaptor and asks ‘Will this work in London?’ Copilot is not only able to check based on an understanding of the image, but understands what the user means by ‘work’ and is able to confirm that the plug is the correct choice.
Some interesting guard rails have also been rolled in – Microsoft have previously stated that a firebreak exists between user data and the web dataset used to train the AI, but Copilot can use both to respond to prompts. Images created using the next version of DALL.E will also be crytographically signed as ‘Created by AI’, effectively signing the content as AI-generated.
Copilot will soon begin appearing to most users on the Windows toolbar – coinciding with the new upgrade of Windows 11 that is due on 26th September. Within Microsoft 365, Copilot Chat functions will begin appearing in app updates for Enterprise licence customers from 1st November 2023.
For Microsoft expertise and support, please contact our team today.
Microsoft have announced the end of WordPad – declaring that the word-processing app will be removed from future versions of Windows.
The difficult middle-child of Microsoft’s three main word-processing apps was originally released for Windows 95, and always sat a little uncomfortably between Microsoft Word (which has remained a heavyweight of the word processing scene) and Notepad (a stripped back, plain-text editor.)
Able to edit rich text for free, but with many features missing, WordPad was beloved by students, techies and other irregular writers who either didn’t have, or couldn’t afford, a licence for Microsoft Word.
The app was offered for free with each new release of Windows as a kind of ‘teaser’ for Word itself – but didn’t support many important features such as footnotes, subscript, tables, numbered lists, indentation and other typesetting options needed for more formal work. For more than decade, it remained many people’s only way to open a Word document, and gave digital access on millions of lower-specification machines across the developing world.
But WordPad itself has not been updated since the ill-fated Windows 8, way back in 2012, and still looks somewhat reminiscent of Office 2007 a decade later. There are also more alternatives in 2023 – with Microsoft Word more affordable than ever as part of Microsoft 365 (both on the web and on the desktop), Google Docs chasing the education market, and free alternatives like Libre Office and Open Office winning over casual users.
British intelligence services are actively providing advance warnings to potential ransomware targets in order to thwart impending cyber attacks. On average, every seventy-two hours for the last three months, a team of cyber security experts within GCHQ has been identifying the initial stages of new ransomware attacks targeting British entities, alerting intended victims and preventing attacks from being carried out.
An innovative system known as ‘Early Warning’, overseen by the National Cyber Security Centre (NCSC), is already believed to have thwarted major attacks, and draws on a range of unknown information sources including exclusive intelligence community feeds, public data, commercial inputs, and proprietary resources not available to the public.
This proactive approach, disclosed by several unnamed sources who spoke to Recorded Future News on the condition of anonymity, demonstrates the potential to curtail a significant number of successful cyber breaches. However, it has been noted by insiders that broader participation from organisations is needed to fully capitalise on the benefits of this system.
Currently, the scheme still has its challenges. Only a small fraction of organisations receive alerts – and it is estimated only 2% of those alerted act on the potential threat.
Ironically, a spokesperson from NCSC acknowledged the difficulties faced, stating, “We often struggle to find the correct contact information, or the person believes they’re speaking to a scammer.” The agency has taken steps to provide guidance on distinguishing official communications from criminal attempts to extract money or sensitive data.
In some cases, the delay in notifying potential victims has been so substantial that by the time NCSC establishes contact with the relevant parties, the ransomware attack has already been unleashed.
However, GCHQ clearly has big plans for developing the scheme further, and is encouraging organisations to sign up for Early Warning. As of the close of 2022, a mere 7,819 organisations had registered for the original service, but the NCSC’s annual report reveals that the system alerted over 5,900 user organisations about threats, more than 2,200 about vulnerabilities on their networks, and 56 received early alerts about ransomware attacks.
Learn more about Early Warning here, or speak to our Cyber Security team today.
Zoom has introduced revisions to its Terms of Service that have sparked significant controversy over user privacy.
It appears that Zoom may begin using calls between millions of users around the world to train AI products. The updated terms contain two standout sections, 10.2 and 10.4, which hold considerable implications for the extent to which Zoom can leverage user data. These segments specify Zoom’s entitlements to gather and utilise “Service Generated Data,” encompassing telemetry data, product usage information, diagnostic data, and analogous content collected in conjunction with users’ use of Zoom’s services or software.
Explicitly specified in Zoom’s revised policy is its exclusive ownership over Service Generated Data. This dominion extends to the company’s prerogatives to alter, disseminate, process, exchange, retain, and warehouse said data “for any purpose, within the limits and parameters stipulated by applicable law.”
“…You agree to grant and hereby grant Zoom a perpetual, worldwide, non-exclusive, royalty-free, sublicensable, and transferable license and all other rights required or necessary to redistribute, publish, import, access, use, store, transmit, review, disclose, preserve, extract, modify, reproduce, share, use, display, copy, distribute, translate, transcribe, create derivative works, and process Customer Content and to perform all acts with respect to the Customer Content, including AI and ML training and testing.”
Of particular concern is the overt declaration of the company’s right to employ this data for the training and enhancement of machine learning and artificial intelligence systems, with the inclusion of algorithm and model refinement. This particular clause raises the question of a lack of opt-out alternatives, something that is bound to fuel intense debate about user-generated consent and individual privacy.
Zoom justifies these measures as indispensable for delivering services to patrons, supporting the services, and enhancing its range of offerings including software and other products. Nevertheless, the implications inherent in these clauses are all-encompassing, particularly as they seemingly permit Zoom to harness customer data for any purpose associated with the activities or processes detailed in section 10.3.
Remarkably, Zoom has not issued any comments regarding these amendments yet. While Zoom’s motivations may center on elevating their platform and providing an improved experience, the extent and profundity of these adjustments are likely to cause disquiet among numerous users, particularly security and privacy advocates, thereby prompting inquiries into how their data is being leveraged.
For more software expertise and support, please contact our team today
A farmer in Canada has been ordered by a judge to pay C$82,000 ($61,442) for failing to fulfill a contract, with the judge ruling that the “thumbs-up” emoji is just as legally binding as a signature. The ruling reflects the need for courts to adapt to new technology and the changing ways in which people communicate.
The case, which took place in the Court of King’s Bench in the province of Saskatchewan, involved a grain buyer named Kent Mickleborough who sent a text message to clients in March 2021, advertising the purchase of 86 tonnes of flax at a price of C$17 ($12.73) per bushel.
Mickleborough communicated with farmer Chris Achter over the phone and sent a picture of a contract via text message, requesting Achter to confirm the flax contract. In response, Achter simply replied with a thumbs-up emoji. However, when November came around, Achter had not delivered the flax as agreed, and by then, the crop prices had risen.
The interpretation of the thumbs-up emoji became a point of contention between Mickleborough and Achter. Mickleborough argued that the previous contracts confirmed by text message indicated that the emoji signified Achter’s acceptance of the contract’s terms. On the other hand, Achter maintained that the emoji only indicated that he had received the contract.
During the legal proceedings, Achter’s lawyer objected to his client being cross-examined on the meaning of the thumbs-up emoji, arguing that Achter was not an expert in emojis.
Justice Timothy Keene, presiding over the case, even referenced a definition of the symbol from dictionary.com at one point. Keene acknowledged the extensive search for similar cases involving emojis from different jurisdictions, expressing his frustration over the need for such an exploration to determine the meaning of a 👍 emoji.
While recognising that a 👍 emoji is an unconventional method of “signing” a document, Keene concluded that, under the circumstances of this case, it was a valid way to indicate acceptance, fulfilling the purposes of a “signature.” He dismissed concerns that allowing the thumbs-up emoji to signify acceptance would lead to broader interpretations of other emojis like the ‘fist bump’ or ‘handshake,’ stating that the court should not attempt to hinder the advancements in technology and the common usage of emojis.
In his ruling, Keene emphasized that Canadian society is entering a new reality where emojis and similar forms of communication are prevalent. He also acknowledged that courts must be prepared to face the challenges that may arise from the use of emojis.
Vodafone and the owner of Three UK have announced their intention to form the largest mobile phone operator in the UK. The companies intend to merge their operations based in the UK, resulting in a combined customer base of approximately 27 million.
However, the deal is still pending approval from regulators, and the Competition and Markets Authority will assess the advantages and disadvantages for consumers.
There is widespread expectation that the two companies would pool their available resources, with Three and Vodafone customers benefitting from wider coverage, particularly 5G availability.
With approval pending, both Vodafone and Three are promoting the idea that the merger helps, rather than reduces, competition – creating a third provider with big enough scale to complete with the UK’s two biggest providers, EE and O2.
Margherita Della Valle, Vodafone Group Chief Executive, said: “The merger is great for customers, great for the country and great for competition. It’s transformative as it will create a best-in-class – indeed best in Europe – 5G network, offering customers a superior experience.
Canning Fok, Group Co-Managing Director of CK Hutchison said: “Together, we will have the scale needed to deliver a best-in-class 5G network for the UK, transforming mobile services for our customers and opening up new opportunities for businesses across the length and breadth of the UK.
Upon completion of the Vodafone and Three merger, their combined market share will surpass that of EE and Virgin Media O2. While Virgin Media O2 currently serves around 24 million mobile customers, EE, which is owned by BT Group, has 20 million users. Vodafone and Three UK currently occupy the positions of the third and fourth largest mobile companies in the UK.
Under the terms of the merger, Vodafone will hold a 51% stake in the new company, with CK Hutchison, the owner of Three UK, retaining the remaining share. Vodafone and Three have assured customers that they can expect an enhanced network experience with improved coverage and reliability, without incurring any additional costs from the outset. Furthermore, the companies have committed to investing £11 billion in the development of 5G technology in the UK over the next decade.
Vodafone and CK Hutchison initially confirmed their merger discussions in the UK in October of last year. In May, Vodafone acknowledged the company’s underperformance and announced plans to reduce its workforce by 11,000 employees.
The 2023 Cyber Breaches Survey has been released, highlighting key findings about the state of the UK’s cyber health.
This year’s study found that cyber security breaches and attacks remain a common threat, with 32% of businesses and 24% of charities recalling any breaches or attacks within the last 12 months – but with cyber security taking a back seat in the minds of many, falling behind economic issues like inflation.
In more positive news, a majority of businesses and charities have a broad range of measures in place, with the most common being endpoint security software (75%), cloud backups (70%), restricted admin rights (67%) and network firewalls (66%).
However general cyber hygiene may actually be getting worse. The report also highlights that the routine avoidance of relatively unsophisticated threats needs greater attention over more advanced hacking, with smaller businesses in particular losing ground in some very fundamental areas, including:
Use of password policies (79% in 2021, vs. 70% in 2023)
Use of network firewalls (78% in 2021 vs. 66% in 2023)
Restricting admin rights (75% in 2021, vs. 67% in 2023)
Security updates within 14 days (43% in 2021, vs. 31% in 2023).
A mere three-in-ten businesses have undertaken any kind of cyber security risk assessment – again showing low scores among smaller firms and driven in most cases by either changes at board level or the demands of customers – corresponding to an increase in businesses reporting checks on their own suppliers.
“Taken together, these findings highlight an increasing cyber hygiene challenge among small to medium enterprises (SMEs) in the post-pandemic era.”
In particular, the survey highlighted the food and hospitality sectors, entertainment and the construction sectors for reporting low take-up of cyber security measures. The UK’s largest businesses generally report higher scores across all areas, with the exception of patch management (44%) and restricting access to organisation-owned devices (31%).
Among the 11% of businesses that have suffered cyber crime in the last 12 months, the annual (mean) cost of an incident is now estimated to be approximately £15,300 per victim.
For Cyber Security advice and expertise, please contact our team today.
Apple has announced ambitious plans to expand the use of recycled materials, particularly metals, in its devices.
The company has set a new target to use 100% recycled cobalt in all Apple-designed batteries by 2025, along with entirely recycled rare earth elements in magnets, 100% recycled tin soldering in printed circuit boards, and 100% recycled gold plating.
The use of these key recycled metals has already significantly increased in recent years, with Apple now sourcing over two-thirds of all aluminum, nearly three-quarters of all rare earths, and over 95% of all tungsten in Apple products from 100% recycled material. The company aims to make all its products using only recycled and renewable materials, and to achieve carbon neutrality for every product by 2030.
Showing progress, 73% of recycled rare earth elements used in the Tech Giant’s devices came from recycled sources last year, and during 2022, a quarter of all cobalt found in Apple products came from recycled material.
Cobalt mining can be both environmentally damaging and comes at enormous human cost. A dramatic surge of demand for the rare metal have caused widespread worker deaths and human rights abuses in the Democratic Republic of the Congo, where 75% of the World’s Cobalt originates, that is then refined via Chinese metal processors and sold on to electronics manufacturers. Child labourers are often forced to work without protective equipment, even though cobalt is toxic and frequently unearthed alongside radioactive uranium.
Innovation has also driven progress toward Apple’s goal of eliminating plastics from the company’s packaging. The company has developed fibre alternatives for packaging components like screen films, wraps, and foam cushioning and is working to replace labels, lamination, and other small uses of plastics.
To cut the need for labels and glue, Apple has developed a custom printer to introduce digital printing directly onto the boxes of iPhone 14 and iPhone 14 Pro, and has introduced a new overprint varnish in packaging for iPad Air, iPad Pro, and Apple Watch Series 8 that replaces the polypropylene plastic lamination found on boxes and packaging components. These innovations have helped the company avoid over 1,100 metric tons of plastic so far.
Windows Server 2012 and Server 2012 R2 will be declared end of life (EOL) as of 10th October 2023, after which the operating system will receive no new security updates.
This leaves organisations using Server 2012 with several options:
– Re-license and migrate to a newer operating system if hardware supports it.
– Migrate those server workloads into a cloud platform like Microsoft Azure.
– Replace those server workloads with web-based applications.
– Purchase new server hardware with a supported operating system.
– Purchase specialist Extended Security Updates (ESUs) until 2026.
Which option to choose depends on where a business is their replacement/hardware lifecycle, budgets and changing workplace requirements. For some, a move to a newer version of Windows Server (2016, 2019 or 2022) is still possible, but this isn’t the only option. Don’t forget to check out Lineal’s handy flow chart on what to do when faced with the choice of replacing a server.
How and when to replace servers is a complex question, and businesses increasingly have far more cloud-based and software-as-a-service (SaS) choices available than a decade ago. Bundled services like Microsoft 365 have increasingly replaced the on-premises Exchange server, the file server and more for many small organisations – making the heavy capital investment for a server impractical. In the face of increasing hardware and energy costs, running on onsite server also looks increasingly expensive.
In some ways the end of Server 2012 represents the end of an era – in 2012, server sales were just beginning to recover from the financial crash. A decade on, both PC and small volume server sales look bumpy, while the largest server manufacturers appear to be focusing ever more sales attention on the data centre market – where there is growing appetite for enterprise hardware driven partly by the hosting and increasing consumption of those same cloud services.
For many small businesses in particular, a Server 2012 box may have turned out to be the last on-premises server they would ever purchase.
For Technical support and expertise, please contact our team today.
The FBI has cautioned smartphone users to avoid public USB ports due to the risks of malware delivered by public charging stations. The Denver FBI office, through CNBC on Twitter, stated that public charging stations in hotels, airports, and shopping centers are all susceptible to opportunistic malware attacks.
According to the FBI, malicious individuals have discovered that public USB ports can be adapted to “inject malware and monitoring software onto devices.” As a result, users should bring their own charger and USB cord while in public and use an electrical outlet for charging instead of a public USB port if possible.
Avoid using free charging stations in airports, hotels or shopping centers. Bad actors have figured out ways to use public USB ports to introduce malware and monitoring software onto devices. Carry your own charger and USB cord and use an electrical outlet instead. pic.twitter.com/9T62SYen9T
Using a public USB port to transfer malware to a device, such as a computer, tablet, or smartphone, allows hackers to obtain sensitive data on the device, such as usernames and passwords, hijack email accounts, steal funds from online accounts, and much more.
While Apple’s iPhones and Macs possess a USB security feature that disables data transfer through the Lightning port when the device has been locked for over an hour, this feature does not prevent malware installation when the device is in use and connected to a public port.
To safeguard against this potential method of attack, the recommended solution is to bring your own USB cable to charge in public spaces. The FBI has issued a comparable warning on its website, cautioning individuals against using free charging stations, using public Wi-Fi for sensitive transactions, opening suspicious documents, utilizing the same password for all accounts, and clicking unsolicited links in text messages and emails.
For cyber security expertise and support, please contact our team today.
The UK government has announced plans to test the UK emergency alert system that will send a siren-like notification to all mobile phones on 23rd April.
The new system is being trialled for use in the event of an immediate risk to life and enables emergency services to send messages directly to mobile phones when there is a threat to people’s safety. The siren-like notification can only be sent by an authorised government source: phones will vibrate and play a loud sound for up to 10 seconds, accompanied by guidance on how to respond sent from emergency services within a notification on the device’s home screen.
People’s privacy will not be affected as the alerts do not reveal their location or collect personal data. The system will go live on Sunday 23 April and should reach nearly 90% of mobile phones within a defined area.
People can opt-out of the emergency alerts by changing their device settings, but a survey conducted after the tests found that 88% of people wished to receive the alerts in the future. Emergency alerts will be used very rarely and will focus on the most severe weather-related incidents, such as flooding and possible wildfires. The system has already been successfully tested in East Suffolk and Reading.
The UK is following in the footsteps of other countries, such as the US, Canada, the Netherlands, and Japan, that have successfully rolled out similar emergency alert systems credited with saving lives. However, the US state of Hawaii caused panic when it accidentally sent out an alert warning of an incoming ballistic missile to televisions, radios, and mobile phones. Officials blamed miscommunication during a drill at the Hawaii Emergency Management Agency, which caused more than 30 minutes of panic. The UK government aims to strengthen national resilience with the new emergency alert system, which will help to warn and inform people in immediate danger and keep them safe.
Microsoft has announced a new Teams experience for Windows, replacing the existing version with a faster, cleaner Teams app.
The new version seeks to dramatically improve user experience, introduces powerful-AI based tools to more users, and addresses performance issues that have crept into Teams since the platform’s astonishing success during the Covid-19 pandemic – which saw rapid adoption by organisations around the world and an explosion of new features.
Microsoft estimates the new communication and collaboration app is now twice as fast, but uses approximately 50% less system memory, completing initial loading in under 10 seconds compared to over 20 seconds in ‘Classic’ Teams in independent benchmarked testing.
Part of that extra speed – in loading, scrolling and searching – has been achieved by tidying many of the extra controls that have been added to teams, simplifying the design for a ‘cleaner’ viewing window. Users who need access to multiple accounts will also find it easier to switch between work environments.
Microsoft are also highlighting the extensive integration of ChatGPT AI tools in the form of Copilot – which debuted for Microsoft 365 a few weeks ago. Within Teams, AI assistance will be able to summarise meetings, write chat or documents on your behalf, and answering questions mid-discussion flow.
While we’re not quite convinced about 3D avatars (!) the new Teams can highlight when individuals were speaking, automatically break long meetings into key ‘chapters’ for video review, redesigns Teams channels to feel more like the gathering point they’re intended to be, and use AI mid-chat in a way that has untold potential.
Overall the new design is more visually impressive, with customisation options that are available in public preview now, and available to Microsoft 365 users later in 2023.
For Microsoft 365 Expertise and support, please contact our team today.
3CX, one of the world’s best known telephony applications, has been rocked by a devastating supply-chain attack that is infecting end-users.
The breach, designated ‘SmoothOperator’ is believed to affect both the 3CX Desktop app and PMA, 3CX’s recommended replacement. Once the trojanised payload is delivered to the 3CX end-user, it interacts with popular web browsers such as Chrome, Edge, Firefox and Brave – likely in an attempt to steal user data, including browser history, down the line.
In a video released earlier today – SentinelOne demonstrated the forensic detection of SmoothOperator which has risen dramatically in recent days. A sample of how the powerful endpoint security software blocks the threat can be seen in the video below.
Security analysts are rumoured to have discovered links to Labyrinth Collima, a North Korean Lazarus Group offshoot from Bureau 121 of the DPRK’s ‘Reconnaissance General Bureau.’ 3CX is believed to be in use by more than 12 million daily users around the world, among more than 600,000 organisations.
Managed detection and response specialists Huntress have published a wide-ranging report on the breach with a difficult verdict for organisations using 3CX:
“We anticipate that 3CX will not complete a root cause analysis of this incident for some time, and users should look for alternative telephony mechanisms for the foreseeable future.”
Remediation: organisations using 3CX are advised to…
1. Enforce mandatory password resets for all users.
2. Reset passwords for any web-based accounts which might have suffered credential harvesting via the user’s browser, and have multi-factor authentication (MFA) enabled for those accounts.3. Invalidate any persistence tokens used for Microsoft 365, Google Workspace and other accounts that might allow automatic login without MFA.
4. Enable high security risk conditional access if using Microsoft Azure.
For Cyber Security expertise and assistance, please contact our team today.
Microsoft have announced plans to throttle, and eventually block, emails sent from on-premises and hybrid Microsoft Exchange Servers that remain unpatched.
“Persistently vulnerable” servers will receive incrementally stricter controls, beginning with throttling (delayed delivery) up to and including a complete block beyond 90-days, preventing onward delivery to other Microsoft-based email accounts such as those in Microsoft 365/Exchange Online and Outlook.com.
The dramatic move puts yet another large question mark over organisations relying on on-premises Exchange server hardware. While Exchange 2003, 2007, and 2010 are now rare, Exchange 2016 still remains in surprisingly widespread use, and many copies of Exchange 2019 are not regularly patched against known vulnerabilities.
Extra controls will apply to servers that run on outdated or unsupported software or haven’t been patched against known security bugs – to help Exchange admins identify unpatched or unsupported on-premises Exchange servers, and allowing them a chance to upgrade or patch before they become security risks.
Even in 2023, A simple Shodan search still shows thousands of Internet-exposed Exchange servers, with many still waiting to be secured against attacks targeting them with ProxyLogon and ProxyShell exploits, two of the most exploited vulnerabilities from 2021.
For cyber security advice and expertise, please contact our team today.
Backups are essential to ensure business continuity and protect against of data loss, system failures, or cyber attacks – and IT experts often reference the fabled ‘3-2-1’ rule when organising backups into an effective strategy.
The 3-2-1 backup rule states that businesses should have at least three copies of their data, stored on at least two different storage devices, with at least one copy being stored offsite:
1. Three Copies of Data
The first part of the 3-2-1 rule states that businesses should keep at least three copies of their data. This means that there should be two backup copies of the original data. Having multiple copies of data ensures that in case of data loss or corruption, and dramatically cuts the risk of complete data loss. As long as there’s at least one remaining backup copy, even giant corporations can always restore their data in a dire emergency.
2. Two Storage Mediums
The second part of the 3-2-1 rule states that the data should be stored on at least two different storage devices. This means that businesses should not rely on a single storage device, such as an external hard drive or a cloud server, for their backups. Storing backups on at least two different devices ensures that if one device fails, there is always a backup available from a separate source.
3. One Copy Offsite
The third and final part of the 3-2-1 rule states that businesses should keep at least one copy of their data offsite; ideally more! This means that the backup should not be stored in the same location as the original data or the other backup copies. This ensures that in case of a physical disaster, such as a fire, flood, or theft, the backup data is still safe and can be accessed from a different location.
While not perfect (cyber security experts argue modern backup solutions should probably specify immutability, for example) the 3-2-1 principle guards against each of the biggest threats to business data – destruction of the original data, failure of the device hardware holding that data, and a disaster at the site where that hardware exists – that most often causes financial losses, legal liability and repetitional damage.
By planning your backups with this rule in mind, you’ll know your business continuity is protected against common emergencies.
For IT Support & expertise, please contact our team today.
Microsoft has announced a GPT-4 powered AI assistant for the Microsoft 365 Office apps named ‘Copilot’, in an impressive array of preview videos.
Copilot promises to bring OpenAI’s groundbreaking natural language assistant into Word, Excel, Outlook, Powerpoint, Teams and more – helping users to write documents automatically with prompts, analyse spreadsheets and more.
Copilot can also use other Office documents as its source material, allowing powerful cross referencing commands such as ‘Make a Presentation based on my notes in Document.docx’, or copy styles based on examples of your other work.
The new tool, announced at Microsoft’s ‘Future of Work’ event in March, follows a string of recent Chat GPT related developments for the tech giant – which Microsoft promises to dramatically cut the time required to produce first-drafts, as well as rapidly cross-reference with data the user doesn’t have to hand.
Within Microsoft Teams, Copilot promises to summarise meetings based on text analysis of the transcript, or even recap for late attendees based on what they have missed.
Unlike the original ChatGPT version 3 preview, Copilot promises to implement some of the advances used in the trial version of Bing – with references and links embedded inside the AI’s responses demonstrating why it chose that answer.
Don’t expect to see Chat GPT 4 doing all your work for you quite yet though – Copilot remains in a trial phase with twenty select Microsoft customers, with the preview set to expand in coming months. (No Clippy, I wasn’t trying to write a letter – Copilot will do it for me.)
For Microsoft 365 expertise and support, please contact our team today.
Microsoft have acknowledged a critical new zero-day vulnerability with Outlook, that does not require any user interaction with an email to be triggered.
Reported by the Ukrainian Computer Emergency Response Team (CERT) to Microsoft and graded 9.8/10 on the severity scale according the NIST, the exploit is believed to have already been used by a “Russia-based threat actor” in attacks against European targets across government, transport, energy and military sectors.
The exploit (CVE-2023-23397) abuses the way Microsoft Outlook attempts to follow links in emails to retrieve remote content, even before they’re opened or viewed in the preview pane – allowing a remote attacker’s server to request authentication via an old technology known as NTLM, and automatically receive poorly encrypted username and password details from Outlook. NTLM was officially retired by Microsoft after Exchange 2003, but the technology remains available in current versions.
This is dangerous because with a username, password and corresponding email address, hackers have effectively completed a credential theft without any interaction from the end user. Many users use their email account as a single-sign on for other applications, putting numerous other services at risk.
CVE-2023-23397 is not yet fully documented however Microsoft believe the vulnerability occurs “when an attacker sends a message with an extended MAPI property with a UNC path to an SMB (TCP 445) share on a threat-actor controlled server. No interaction is required.” Once a connection is made, the server sends the user a new technology LAN manager (NTLM) negotiation message which is relayed for authentication – none of which requires the user to even view the email itself.
The exploit affects only the Microsoft Windows version of the Outlook Desktop client. Outlook for Mac, the Outlook Web & Mobile Apps (as well as Outlook.com) are not affected – since these do not support NTLM authentication. Estimates vary but Outlook is said to be used by over 400 million users worldwide, in its various forms.
System administrators are advised to urgently patch with the latest Outlook updates from Microsoft within 24 hours.
Where this is not possible, system administrators are advised to add users to the Protected Users Security Group (blocking NTLM), or Block TCP 445/SMB outbound from network firewalls or via VPN settings, cutting off any NTLM authentication messages at the perimeter of your network. In both cases, Microsoft warn this may affect other services from working correctly.
For Cyber Security expertise and support, please contact Lineal’s Cyber Security Team today.
No need to keep changing tapes or wheel in a giant in-house recording server in the 21st century! Call recording is an increasingly accessible technology for small businesses that can be optioned onto phone systems, opening up a wealth of possibilities for improving customer service, dispute avoidance and data protection.
There are some good reasons why fully-virtualised call recording is worth considering:
Training Fuel
Phone calls are not just for dispute avoidance, but the audio is useful for other purposes: highlighting good examples of calls with customers or demonstrating what NOT to say. These examples are really useful in call centres, but also for staff training in other customer-service environments.
The best call-recording options will let you hold your call recordings in the cloud, reviewing and ‘clipping’ sections of those recordings on the web – helping you to get the best out of the available audio, or download the content you need to keep, while dispensing with the rest to keep storage retention costs low.
Compliance-Ready
In certain industries – particularly in the financial and legal sectors – call recording is an important part of showing your business is acting in good faith and fully within the rules, as well as being an economical way to build trust among customers that your organisation is professional.
As the technology becomes ever-more affordable, it’s likely we’ll see more regulatory bodies, insurers and asking businesses to accept recorded audio as a minimum threshold.
Get on the record.
It’s very easy for somebody else’s interpretation of what was said on a call can vary from your own – which leads to all sorts of difficult situations.
Announcing that calls are recorded in advance not only provides evidence in the event of a dispute, but pre-emptively warns callers of that fact – helping to cool the temperature of the call before it begins. So next time, get that call on the record!
For telecoms advice and expertise, please contact our team today.
LastPass have confirmed that a hack on a staff member’s home PC led to a massive cyber security breach on the company.
The second stage of the attack used data stolen in LastPass’s August breach, cross-referenced with other stolen information, to launch a targeted sting on one of their DevOps engineers – installing a key logger on the staff member’s home PC which resulted in the loss of yet more data.
LastPass confirmed the attacker was able to steal the user’s master password, gaining access to corporate vault resources and shared folders. In the process, encrypted notes and decryption keys needed to access LastPass production backups based in Amazon Web Services (AWS) – cloud-based storage and critical database backups were also compromised.
Since the August 2022 breach, when LastPass source code was stolen, the company has admitted the breach also saw the theft of account usernames, hashed passwords, and some Multi-Factor Authentication (MFA) settings belonging to end users.
Unfortunately LastPass also acknowledged that saved URL for each password entry was unencrypted, giving potential attackers an obvious clue to the purpose of each set of credentials.
The breach highlights the way remote working culture has introduced significant new digital risks – such as the danger of home users accessing work data, resources and applications on devices that sit ‘outside’ of company cyber security protections.
LastPass is believed to be used by over 85,000 businesses and 30 million end users.
For Cyber Security Expertise & Support, please contact our team today.
For the first time, a group of Lineal’s IT Support Technicians are taking on the international CyberDrain Tournament as a team.
Each year multiple engineers from Lineal take part in the Cyber Drain CTF tournament. Designed to test System Administration and IT engineering skills, the challenge puts competitors through a series of investigative challenges across server and client-side, Microsoft Azure, Linux and Microsoft 365 environments.
The competition runs throughout February and March, with bigger point bonuses awarded for more complex technical challenges, and prizes sponsored by a number of major technology companies. Lineal engineers have scored highly in previous years – placing within the top fifty, and even within the top ten competitors worldwide.
However this year the CyberDrain competition is also a team event, allowing Managed Service Providers to test themselves against the world’s best.
At time of writing, Lineal is currently ranked amongst the top twenty teams on the Showdown Scoreboard. Stay tuned to see how we get on!
For IT Support and cyber security expertise, please contact our team today.
Microsoft have released an early preview of AI-powered search integrated into Bing.
Available via Bing.com, the new tool is the first sign of Microsoft’s multibillion dollar investment in artificial intelligence company OpenAI – and uses the same technology first seen in the open preview of ChatGPT 3.5. AI ‘Copilot’ now not only delivers search results, but can generates longer text-based responses to questions, and form responses to more abstract queries that don’t have an obvious web destination.
The move comes just 48 hours after Google’s rival AI chatbot, Bard, generated a factual error in a promotional video, wiping an estimated $100bn off Google’s total market value.
ChatGPT’s ‘chat prompt’ format also allows the user to respond to Bing in turn, and continue the conversation to get a refined response without having to restart their search from scratch.
In each case Bing’s responses contain automatically embedded links that allow the user to follow-up the origins of each recommendation, even where the citations originate from a wide range of sources.
A new sidebar in Microsoft Edge takes this one step further by allowing Bing to ‘read’ each web page you visit, and intelligently re-format the results – picking out key details or presenting data back in a new format.
Sample queries and a waiting list are already available via Bing.com, but the preview is expected to be made widely available to millions of end users within weeks as Microsoft bets big on the future of search.
For IT support and technical expertise, please contact our team today.
We recently attended a special event about the danger of Russian cyber aggression against the UK: here’s the latest guidance from the UK National Cyber Security Centre.
Be prepared for changes to Russian strategy
A feared ‘firestorm’ of wholesale attacks on the digital infrastructure of the UK and Ukraine’s other Western allies hasn’t arrived, but the NCSC urges Russia remains extremely unpredictable.
Intelligence agencies are now concerned Russia may launch a new cyber attacks on the West this year, partly as compensation for Russian ground war failures.
Rates of cyber attacks on UK organisations remain ‘steady’, with some very serious incidents reported – and the NCSC has emphasised before how Russian cyber attacks on satellite networks and banking systems in Ukraine have spilled over into multiple countries.
We do know that behind the scenes a number of UK organisations have been carefully briefed to prepare for Russian cyber attacks over the past year – and a ‘handful’ of cyber incidents each year are serious enough to require COBRA meetings.
Yes, REALLY unpredictable
Russian strategic aims are often inconsistent. Boldness and risk-taking are known to be favoured in Russian high command – which itself encourages reckless cyber operations, experimental techniques and surprise attacks – but also corners-cut and operational errors.
Much like the Russian ground offensive, many of the most aggressive Russian cyber attacks – such as the widespread use of destructive Wiper malware – appear to have been ‘front-loaded’ during March/April, preparing for a quick victory which did not materialise even as Ukrainian systems have been hardened.
However, the NCSC emphasises that ineptitude or failure is not a barrier to the further attacks by Russia – the individuals behind the attacks are shameless, and cyber attacks remain a convenient way to highlight weaknesses from policy makers in other countries.
Essentially ‘nothing is off-limits’ – an approach that is also exacerbated by the internal competition between Russian service branches, with the FSB, FDR, GRU and others often seeking to outdo each other.
Who is a target in the UK?
Past experience suggest Russian cyber operations often include a key psychological element – following infamous KGB tradition.
As a result, the Russian military likes to target ‘pressure points’ in particular: critical infrastructure, the energy sector, transport, media organisations, senior politicians and especially companies with visible public-facing operations – anything that might generate panic among the public, suggest democratic policy makers are weak, undermine the West’s resolve to support Ukraine, or provoke a widespread feeling of vulnerability.
Ukraine provides some clues as to Russian strategy, but the NCSC emphasises that espionage attacks can often involve gaining access for no specific purpose – and (for example: obtaining privileged administrator access to systems) are simply a contingency for the future.
Organisations that plan ahead suffer less pain
Official advice is clear: organisations that prepare even the most basic disaster-contingency plans recover more quickly and suffer much less financial pain in the event of a cyber attack.
Even very simple crisis management steps like agreeing ‘who is in charge’ in advance, confirming ‘where are the backups’, and keeping printed copies of essential preparations for an emergency, all help radically minimise the damage, disruption and time to recovery.
Forensic engines included in modern Endpoint Detection & Response (EDR) software help provide rapid information about the scale of hacks during incident response – this provides essential time for first responders to mitigate further threats, limit damage, and give the NCSC information about the threat to others.
The NCSC argues that British resilience will rely not just on small organisations across the country remaining vigilant, but gathering a wider pool of information on the centre’s behalf – the grassroots feeds into the ‘bigger picture’ of national security, and defending the UK is a team effort.
NCSC guidance, right from the top of the organisation’s CEO remains the same:
“Even with a war raging in Ukraine, the biggest global cyber threat we still face is ransomware” – Lindy Cameron, NCSC CEO, June 2022.
Useful Links:
NCSC Early Warning System – Early Warning helps organisation investigate cyber attacks on their network by notifying them of malicious activity that has been detected in information feeds
NCSC Exercise in a Box – A free online tool which helps organisation find out how resilience they are to cyber attacks & practice their response in a safe environment.
Incident Management – cyber incident response plan NCSC guidance to create your own cyber incident response plan
Each year GCHQ’s National Cyber Security Centre issue stricter new rules for business and organisations looking to secure UK Cyber Essentials (CE) and Cyber Essentials Plus (CE+) Certification.
Continuing themes from last year, there are now tighter rules on account access, thin clients, device firmware, remote desktops, antivirus/EDR solutions and more. Despite the success of the Cyber Essentials scheme, the past year has seen some notable cyber attacks on British organisations, and renewed calls for cyber security vigilance.
We’ve compiled a summary to help organisations prepare for what revisions are coming down the line in April.
Multi-Factor or Else.
Even sooner than many expected, Cyber Essentials will now require not only Administrators to have Multi-Factor Authentication enabled – but all end-user accounts as well, across all platforms. Previously exemptions were granted for services without this option available, now that gap closes.
Instead, where a service doesn’t support MFA this will now be declared a non-conformity, bringing digital services fully into line with the rules enforced on UK online banking, and even applying to school children – right down to reception-age.
That’s likely to pose a challenge for companies (and particularly schools) using any software or web services which don’t yet offer MFA – so many organisations may need to look at augmenting their IT setups with 3rd-party MFA solutions like Cisco Duo.
Don’t forget the Firmware!
Software version controls now extend to hardware device firmware – with the definition clarified to specifying “firewall and router firmware” in particular – which was always essential, given the perimeter nature of these devices. In a rare step back, firmware on servers, PCs and other devices has been removed from the scope.
Device Clarifications
The NCSC has admitted third-party devices have been a point of confusion – and has published a revised table clarifying which devices are within the scope of Cyber Essentials. Updates will apply only to devices which are not domain-joined, or when unlocked have limited access to data (smartphones, handheld scanners etc.) If the a vendor does not allow configuration to see CE standards, the application may use the vendor defaults without incurring a non-conformity.
Given that the definition partly rests on who owns the device in question, we predict more changes in future years.
Not Just Any Anti-Malware
Antivirus solutions no-longer need to be ‘Signature-based’ – since the best EDR solutions don’t rely on signature-based detection of threats anyway. CE+ audits will include extra tests to verify that anti-malware software is effective (beyond simple EICAR tests) and application allow-listing is being encouraged.
Scoring Changes
Minor/Major non-conformities have been merged with a single Non-Conformity mark. Any applicant receiving three non-conformities will receive an instant failure. Corrective actions must now be completed within two days, despite some exceptions are available for larger organisations.
However, unsupported operating systems become an unfortunate immediate triple-word score: the presence of any unsupported operating system within the scope is an automatic fail.
For Cyber Security and Cyber Essentials expertise, please contact our team today.
One of the best features available to Microsoft 365 users is a special setting in OneDrive called Files on Demand.
Where OneDrive normally synchronises a local copy of a file on your device to the copy saved in your account in the cloud, Files on Demand allows you to be more selective – only downloading local copies of files from OneDrive when you really need them.
This helps you conserve storage, and is especially useful on laptops with smaller hard-drives.
Each user can choose which files are also kept locally on their device – synchronising a local copy of essential files that will be available offline – while relinquishing larger files likely to take up space (such as videos) to only reside in your Microsoft 365 account in the cloud until you need them.
Users see a green tick where files are available both locally and synchronised in the cloud, and a blue cloud icon where files are saved in the cloud only.
When a file is accessed, the local copy is downloaded in the background, and made available locally for the future. The same control is available via a right-click option, by clicking on ‘Always keep on this device.’
Alternatively if you need to manage your local storage usage, you can right click and select “Free up space” to remove it from your device, knowing it still remains available in the cloud.
For Microsoft 365 expertise and support, please contact our team today.
By 2025 the UK’s analogue phone network is being switched-off, but that’s not the only major communications technology that is due to be retired imminently.
3G mobile networks are also due to be switched off, with Vodafone leading the charge to retire the older technology. 3G, launched in the UK in 2003, has been replaced in recent years by faster, more reliable 4G and 5G coverage.
According to guidance from Ofcom, the schedules of the UK’s major mobile providers are as follows:
Timescale
Includes
Vodafone
Begins switching off 3G in ‘early 2023’.
Lebara Mobile
Asda Mobile
Talk Mobile
Virgin Mobile
EE
Begins switching off 3G in ‘early 2024’.
BT Mobile
Plusnet Mobile
Co-op Mobile
Utility Warehouse
Three
Begins switching off 3G ‘by the end of 2024’.
Gamma Mobile
ID Mobile
O2
Yet to announce any switch-off timetable.
Tesco Mobile
GiffGaff
Sky Mobile
LycaMobile
The disappearance of 3G will mostly only affect very rural areas but also those customers with older mobile devices that don’t support newer 4G or 5G. In addition, Ofcom advises businesses to check any other kinds of 3G-enabled devices – such as care alarms, payment terminals and security devices, to ensure these don’t become non-functional. Mobile providers are obligated to announce the change to their customers nearer the time.
Traditional 2G voice and text services are expected to remain in place on Vodafone, EE and O2 until at least the 2030s.
For business mobile expertise and support, please contact our team today.
Extended Support for Windows 7 and Windows 8.1 officially ends as of January 2023.
The older operating systems will no longer receive any security patches or technical updates from Microsoft, which poses a compliance risk to businesses and organisations.
Mainstream support for Windows 7 originally ended in early 2020, although some Enterprise users could choose to purchase an ‘Extended Security Update’ (ESU) program for an additional three years.
Ever since then, Microsoft has regularly urged users to upgrade to Windows 10, and later Windows 11 on PCs with TPM security built into their chipset.
Windows 7 was originally released in 2009 and became an overnight success, selling over 100 million copies within six months. As of September 2022, a staggering 11% of traditional PCs are somehow still estimated to be running Windows 7 globally.
Windows 8 suffered a more checkered history: originally developed with a touchscreen-friendly tile display designed to be similar across PCs, tablets and the ill-fated Windows Mobile – many users found the new user interface confusing, continuing the mysterious curse of alternate-versions of Windows being a flop.
Microsoft Edge 109 will also be the last version of the web browser that will be considered supported for Windows 7 and 8, with a similar change expected from Google within Google Chrome.
Now the World officially waves goodbye to Windows 7/8.1, and any users still stuck on the old versions are faced with the choice of either purchasing a licensing upgrade for their old PC if their hardware permits it, or replacing their device entirely with a newer Windows 10/11-based model.
For Operating System expertise and support, please contact our team today.
Ilfracombe Academy Girls U13s recently won an incredible 9-1 victory over Kingsley School.
An early goal was just the beginning, as the team kept their cool and formation on the pitch, leading to a runaway win.
Lineal have been the official sponsor of Ilfracombe U13s Girls Football Team since 2016.
Goal scorers included ‘lucky charm’ Brooklyn (scoring five, fresh from her recent selection for Devon), Georgia D (two), Emily H (one) and Issy (one). Georgia D was nominated as player of the match by the opposition.
Lisa Norris of Ilfracombe Academy praised the girls for their teamwork, for an ‘exceptional performance’, and for ‘playing amazingly well at all times, doing so with grace, compassion and not even an ounce of arrogance.’
Well done to the whole team on a terrific win – we look forward to seeing your next result!
Apple have announced a new satellite-based emergency feature for iPhone 14 models across the UK, Ireland, France and Germany.
‘Emergency SOS’ uses satellite communications to send emergency alerts to a special Apple relay-centre from users who get into danger in areas outside of mobile coverage.
The European Emergency Number Association believes the move ‘will save lives and offer significant help to emergency services.’
When activated, a special easy-to-use emergency questions interface appears on the iPhone display helping the user to send key information to emergency dispatchers. In remote areas, text-based messages (such as SMS) can often be transmitted easier than voice calls.
Each emergency satellite message automatically incorporates the user’s location, altitude, battery level, Crash/Fall Detection status, and Medical ID if their iPhone has this enabled. Apple have also developed a special text compression algorithm to reduce the size of each message, reducing the transmission time between the Earth and Space to around 15 seconds.
iPhone 14 also comes loaded with a special Emergency SOS demo, allowing users to familiarise themselves with the new feature safely without alerting emergency services.
The service is now available for iOS 16.1, and is free for two years with the activation of a new iPhone 14, iPhone 14 Plus, iPhone 14 Pro and iPhone 14 Pro Max.
For technical expertise and support, please contact our team today.
As a New Year dawns, we check out some of the best new features that have been quietly added to recent Microsoft Teams updates ready for 2023.
Scheduled Send
One of the very best features of Microsoft Outlook now comes to Teams, with the addition of ‘Scheduled Send’ on messages – allowing a participant to drop a message into a chat or channel at a later time if they choose – perfect for coordinating across time zones or just getting ahead of the curve.
Teams also now supports quick-send video/audio note messaging much like many popular personal messaging apps, with audio note already available to send from the Teams mobile app.
Live Translation of Captions
This one has to be seen to be believed, but Microsoft Teams can now filter auto-generated captions through Azure Cognitive Services and translate these live on screen while the end user is speaking – a fantastic feature for organisations and businesses working internationally.
Real-time translation is currently available to trial across 40 spoken languages, although Microsoft have confirmed this will require Teams Premium licensing in the near future.
Instant Polls
Unlike most 3rd-party poll question apps, 1-click Instant polls can now be created and launched within a Teams meeting – allowing your attendees to respond to a simple binary choice easily.
The poll creator can also choose whether or not each vote is anonymous, and whether the results are shared with other attendees within the meeting.
Video goes 7×7
Teams Meetings previously supported a maximum of 9 video displays (3×3) on one screen, with users forced to choose a ‘Large Gallery View’ to access more. Now that limit has been raised to 49 (!) videos (7×7), allowing for some truly massive meetings!
Search Conversation History
A particular favourite of ours: Teams Search now returns the user to part of an entire conversation, not just the searched-for message itself.
This helps you revisit old conversations much more easily, without endless scrolling or loading, and finally means Chats can be a valid replacement for mountains of internal email.
Popout Shared Content
With an additional button, shared content in meetings can now be moved to a satellite pop-out window (much like chats) that can be moved freely like another window.
This handy addition becomes especially useful where you have secondary or tertiary displays in a conference room, and need to place certain windows on specific screens.
Emoji’s Go Wild!
Reactions were always a useful way to acknowledge or respond to a message from a colleague, but the reaction function has been expanded beyond the Facebook-style menu of emotions to incorporate all available emojis. Users can now effectively save their favourites, for a handy go-to reaction that fits their personality.
Suggested Replies
Microsoft Teams now also uses AI to take a stab at what your likely reply is going to be, and offers it up as a quick-response button.
Not entirely accurate but certainly interesting, this becomes more useful where simple responses like ‘Yes’ or ’No’ are needed from a mobile Teams user, for whom typing might be inconvenient.
@dditional People
Using the @function now adds people into Chat’s directly (with a prompt for sharing conversation history), saving the need to add people manually. Handy!
More to come….
Microsoft have also teased a refresh of Teams Channels, including a new ‘top-down’ format and increased branding, which brings them closer into line with both SharePoint Online and a number of popular social media apps such as Facebook and LinkedIn. Check it out below!
For Microsoft 365 expertise and support, please contact our team today.
UK & Dutch police have helped lead an international operation with Europol to take down one of the World’s biggest DDoS-for-hire services, webstresser.org.
The UK’s National Crime Agency and their Dutch Police counterparts announced the success of ‘Operation Power Off’ – which saw the seizure of infrastructure believed to be linked with criminal activity based in the UK, Netherlands and Germany, and the arrest of individuals as far afield as the UK, Spain, Canada, Croatia, Italy, Australia and Hong Kong by at least a dozen different law enforcement agencies.
On the other side of the Atlantic, the Department of Justice announced an additional six arrests by the FBI, with a further 48 domains seized as part of a criminal investigation into DDoS-for-hire operations.
According to Europol, Webstresser is estimated to have let over 136,000 customers launch more than four million Distributed Denial of Service (DDoS) attacks on targets for as little as £11, overwhelming websites and online services with traffic and knocking them offline. Although DDoS for hire services often pose as genuine ‘stress-test’ tools, users with very little technical knowledge were able to order attacks on unrelated targets – choosing between ‘Bronze’ ‘Silver’ and ‘Platinum’ packages.
The service was thought to be responsible for cyber attacks on at least seven major UK banks in November 2021, as well as numerous other businesses and government departments around the world. The BBC reports UK police have raided an address in Bradford, in connection with last year’s attacks on UK banks in particular.
Jaap van Oss, the Dutch Chair of the Joint Cybercrime Action Taskforce (J-CAT) praised the joint cooperation by law enforcement agencies to finally take Stresser offline.
– The following article was written by the ChatGPT 3.5 Preview AI in December 2022, with our own website used as input. Our Team’s commentary is shown in Blue.
[Start]
Cyber security is a hot topic in today’s world. With the increasing amount of personal and sensitive information being shared online, it’s more important than ever to ensure that our data is protected from potential breaches and cyber attacks.
One of the biggest challenges in the realm of cyber security is the ever-evolving nature of technology. As new innovations are developed and introduced, cyber criminals are constantly finding new ways to exploit vulnerabilities and gain access to sensitive information. This means that companies and individuals alike must remain vigilant and proactive in their efforts to protect their data from cyber threats.
Jevon – Impressive how the chatbot can construct complex sentences beyond the usual ‘here is a link for X’. It struggles with brevity and is often not saying anything profound, but hey, the internet has plenty of demand for filler text and simple news articles.
One of the key ways to improve cyber security is through the use of encryption. Encrypting data ensures that even if it is accessed by an unauthorized party, it will be difficult for them to decipher and make use of the information. This is particularly important for businesses, as they often handle large amounts of sensitive customer information that could be valuable to cyber criminals.
Another important aspect of cyber security is the use of strong passwords. Many people underestimate the importance of having a strong password, but it can be the difference between a secure account and one that is easily hacked. Strong passwords should be at least 8 characters long and should contain a mix of letters, numbers, and special characters. It’s also important to avoid using the same password for multiple accounts, as this makes it easier for hackers to gain access to multiple accounts if they manage to crack one password.
Joe – The chatbot has hit the nail on the head here; the greatest improvements in security come from the simplest changes. Strong, unique passwords are critical (although we at Lineal advise passwords be 14 characters or more, and passphrases are even better still!). However, it hasn’t recommended using a password manager to help actually manage all those unique passwords, or explained why a human you would need to use multi-factor authentication (MFA).
In addition to strong passwords and encryption, there are other measures that individuals and businesses can take to improve their cyber security. These include regularly updating software and applications to ensure that they are protected against the latest threats, avoiding suspicious links and emails, and investing in reliable security software.
While no system is completely foolproof, taking these steps can greatly reduce the risk of a cyber attack and help protect sensitive information from falling into the wrong hands. It’s important to stay informed and vigilant in the ever-changing world of cyber security.
[END]
Our Verdict: all of the Chatbot’s recommendations and more are contained within the National Cyber Security Centre’s Cyber Essentials framework which is evolving each year to provide a baseline of protective controls for cyber and data security. All in all, a good effort chatbot! B+
Lineal Software Solutions Ltd. has successfully been awarded two ISO Certifications – ISO 9001 and ISO 27001.
ISO is the world’s best known international standard for assuring business quality across a wide range of areas – including information security quality management, safety, sustainability and more. Highly prized among businesses, each ISO certification is extensively audited by an independent auditor to check compliance with the published standard.
Each management system must be continually reviewed and improved. We benefitted from in-built advantages of our own SQLWorks ERP software – which included many of the controls necessary to implement a quality management system. In particular, auditors praised the way Lineal’s own software automatically logged a forensic record of the actions of Lineal staff, the efforts of the company to incorporate customer feedback, and the team’s work on safeguarding against errors.
Managing Director Mike Matthews praised staff for their efforts, explaining:
“In our industry, what matters most is trust in technical expertise. Everything looks impossible until you know how to do it! We are so proud of our team, who not only took on this intense challenge over many months but succeeded. Twice.”
ISO 9001:2015 (‘Quality Management’) checks that a business is carefully planning, following and monitoring all business processes, constantly reviewing results good or bad, and implementing improvements in an organised way.
ISO 27001 (‘Information Security’) requires businesses to maintain the highest standards of data security, privacy and information management throughout the organisation, and is especially important among businesses in the technology sector.
Our special thanks go to Balazs Bagi of Improved Ways Ltd, for his expert knowledge and vital assistance at every stage of our application, and to our external auditors from Alcumus.
Well done to our entire team for their hard work!
This project has received grant funding from Devon County Council via the Devon Elevation Fund & UK Community Renewal Fund.
October sees the release of MacOS Ventura to the World – what can Mac users expect in the latest release?
As with previous MacOS releases, Apple clearly has one eye on the times, with the latest version of their operating system packed full of features for more flexible working patterns, mindfulness considerations and security additions. Read on to learn more.
DeskView
Top of the list from Apple is DeskView, which lets those with an iPhone 13 or 14 use the device as an external FaceTime camera. Ignore the promotional material about clipping your iPhone to the top of your MacBook for a better selfie – the real benefit here is as a portable camera that be used to show others on the call a view they can’t normally see – such as your keyboard, paperwork or objects behind the screen. Powerful stuff indeed.
Focus Filters & Stage Manager
An idea tested elsewhere but new to MacOS – focus filters allows you to group apps into types (‘Productivity’, ‘Communication’ etc.) and settings for those apps when that filter is applied. This helps cut out distraction and makes it easier to apply a kind of overarching ‘Work’ setting to your device when you need to concentrate.
Also new to MacOS is Stage Manager – a window control mechanism that parks apps stage left to make it easier to cycle through windows and control many interfaces at once.
Security enhancements
We’ve written about Lockdown Mode before – but the hyper-secure setting recently released for iOS users is now coming to MacOS as well: allowing those who are highly targeted or travelling in more dangerous parts of the world to set ultra-strict communication settings for their device to protect against surveillance malware.
Apple also makes good on its promise to support a passwordless future in line with the recommendations of the FIDO Alliance – introducing uniquely generated cryptographic passkey support for websites that links to biometrics.
Mail Improvements
Apple has quietly tidied up some of the gaps between Mail and other well-known email clients that are also available. Mail now includes a 10-second delay switch to stop an email being sent, automated reminders, and mercifully: scheduled sending, which will all appear in the newly released OS version.
Safari Updates
If you’re the kind of person who keeps hundreds of tabs open and lives through a browser – Safari tabs can now be grouped together to make organising your world easier – and shared with other users easily, helping you build and use collections of URLs easily. FaceTime calls will also now work within a browser, to save you returning to your iPhone.
For Apple Mac expertise and support, please contact our team today.
Microsoft has announced a new app designed to make it easier to coordinate remote-working and in-office staff.
Dubbed Microsoft Places, the app includes a number of features such as hybrid scheduling, intelligent booking, hot-desk reservation and way finding designed to support companies working in a more flexible way, where staff might only attend the office in person a few days each week.
Hybrid scheduling makes it easy for employees to signal to each other when they plan to work from home or the office, and this allows Microsoft Places to make intelligent recommendations about the best times to speak with people in person. The aim here is to avoid what has been dubbed ‘commute regret’ – visiting the office only to discover the person you need to see is working from home.
With many companies using less office space and more hot-desking arrangements, hot-desk booking allows users to visually map themselves onto a floorpan, picking the best space for their work or coordinating time with colleagues.
Wayfinding has been designed to help colleagues who might attend offices infrequently – guiding them to meeting rooms from their mobile and generally making it easier for companies to adopt shared work spaces.
Alongside the monitoring tools already rolled out to Teams & Viva, Microsoft Places also adds an extra reporting layer that helps companies monitor home and remote working trends, and make recommendations based on those insights.
For Microsoft expertise and IT Support, please contact our team today.
Lineal have scored strong results in our Annual Client Satisfaction Survey this year, continuing a run of success.
For the third year in a row, over 70% of you said we understood your technical queries “Extremely Well” – our highest available grade – with no negative responses received for this question at all. More than 50% of you also told us we responded to problems either “quicker than expected” or “much quicker than expected” – a score bolstered by improvements we’ve made to our Client Support Portal.
This year we’ve seen a growing percentage of you (around 20%) using our Client Support Portal to raise and monitor new support tickets – although phone and email remain our busiest channels.
For the second year running, over 90% of you told us our customer support was either “Great” or “Good” – a score we’re working hard to perfect.
You also gave us honest feedback for areas we can improve – in particular some clients had suffered hardware shortages and supply chain delays recently, something we’re working hard to address: with more supplier choices, greater options for refurbished hardware, and more advance warning.
We review every comment, and particularly enjoyed the following:
“I have worked with many IT support organisations and in comparison, I have found Lineal’s customer service to be friendly, extremely efficient and very professional.”
“Always approachable, professional and friendly and swift in solving the problem.”
“Lineal website is full of information and easy to find what you are looking for. The regular newsletters and product information are informative and very helpful. The SQLWorks Procedures on the website are very helpful.”
“My questions and requests have always been answered speedily and professionally. I value the professional opinion of the sales team and the software support team.”
There’s now just twelve-months until the UK reaches the first major ‘Stop Sell’ – after which new analogue telephone line services will no longer be available to purchase.
The clock is also ticking for businesses with analogue services still in use: by 2025, all telecoms services in the UK that rely on traditional analogue (PSTN) copper phones lines will be declared ‘End-of-Life’ and will be officially ceased.
Most businesses (and homes) will likely choose to migrate their phone system to a similar setup that is cloud hosted, in future relying on VOIP technology to route calls over their internet connection instead, and taking their old analogue number(s) with them. This is also the option most of the UK’s major telecoms companies will be pushing as major improvements to UK broadband infrastructure are rolled-out.
For many of those already committed to a traditional onsite PBX, moving to a SIP service is also a viable alternative – replacing outdated ISDN lines with digitally-registered SIP channels for cost effectiveness.
This a better option for those operating at large scale, or with extremely specialised telecoms hardware functions that don’t have cloud-based alternatives available.
Go Fully-Mobile
If your organisation is heavily distributed to the extent that it has no centralised inbound call handling, there’s always the option of moving entirely to mobiles – although numbering challenges mean this won’t suit everyone.
Alternatively, you can combine this with Option #1, and deploy work soft phones to staff mobiles for a super-flexible work phone system without all the extra plastic.
For communications support and expertise, please contact our team today.
Apple has released two urgent security warnings for iOS, iPadOS and macOS in response to two new zero-day vulnerabilities.
The company believes both weaknesses – found in WebKit, the engine which underpins Safari, Apple device kernels, and many other apps – are being actively exploited by hackers.
A vulnerable device that accesses “maliciously crafted web content” would allow hackers to execute code, and even to “execute arbitrary code with kernel privileges” – essentially full access to the device.
Affected Software Versions Include:
iOS prior to 15.6.1
iPadOS prior to 15.6.1
macOS Monterey 12 Prior to 12.5.1
Users are advised to check their OS version and update immediately. To do this, please navigate to:
On iPhone or iPad: Settings > General > Software Update
On Mac: Apple Menu > About this Mac > Software Update
For Apple Support and Expertise, please contact our team today.
Microsoft have altered how macros activate in Microsoft Office files, in an effort to improve users’ cyber security.
Macros, which allow office files to run sequences of commands, can be used to automate simple tasks – but also maliciously by hackers as a mechanism of attack.
Macro-based hacks have been around since the late 1990s, but remain surprisingly effective. Users are commonly asked to open unexpected email attachment and authorise the macro to see its mystery contents, allowing the macro to introduce malware onto the system. In effect, users authorise the hack themselves.
Instead of the old yellow ‘Security Warning’ labelled with an instant ‘Enable Content’ button users previously saw when using Microsoft Office applications, files will now prompt with a red ‘Learn More’ button, and users will be forced to see guidance on using macros securely, before being able to enable the content.
This small move – which was originally rolled out, rolled back, and then rolled out again – has been part of a slow clampdown on macros that has lasted more than two decades. Over the years macro functionality has steadily had more restrictions applied – in 2003 IT admins could require macros to have a trusted certificate (more like software applications) and as of 2013, could block macros by default.
But Microsoft hopes this simple firebreak will nudge us to think twice, and stop (potentially millions) of people from endangering themselves and their technology with a click.
Human nature continues to catch out many users curious about mystery documents – particularly since only a small fraction of Microsoft Office users are even aware of Microsoft 365’s powerful automation features.
For IT support and expertise, please contact our team today.
This year we’ve made a number of policy changes to how Lineal protects your technology, data and users – part of a programme of adjustments designed to help our clients keep their organisations secure.
One of these is a change to how we manage security permissions. In future, we’ll be stricter about how and when we allow administrator (‘admin’) privileges to be used.
What does this mean?
Put simply, we expect no end-user to use an administrator account for their routine work.
Where a user needs administration privileges as part of their official role, we expect a separate admin account to be created for this function, with some extra protections put in place.
All admin accounts should be named to indicate the owner, assigned to only one individual, authorised by management, and protected by Multi-Factor Authentication, where available.
Why are Lineal taking this step?
Admin accounts carry enhanced powers – often to install applications, access raw data or bypass safeguards – each of which represents a more significant cyber security threat where an admin account is misused or compromised.
In the event of a cyber security breach, it’s not uncommon for attackers to leverage admin accounts to attack other systems or users laterally, using heightened account privileges.
Reducing the number of administrator accounts, their use, and the risk of an account breach, all help to maintain strong cyber security within your organisation.
No – this change will be a guiding principle for the assignment of existing/new admin privileges.
My organisation is subject to a compliance standard / framework, what do I do?
If you’re already subject to any specific controls over the distribution of administrator privileges, please contact us to discuss further, and we’ll do our best to explain how these changes support or enhance your existing controls.
What if I don’t want to do this, because of _________?
Where a client still allows a user to have local or domain administrative rights for standard duties, we’ll now require you to declare this to us in writing – as part of a disclaimer accepting liability for any adverse consequences of this decision.
We’ll also make clear that any remedial works required by us following an incident caused by this decision will be chargeable.
Who can I speak to about this?
Please contact our IT Support Teams via our Client Portal, via [email protected] or, 01271 375999, and one of our team will be happy to assist.
Advanced meeting room spaces that support hybrid working have become popular in recent years (no prizes for guessing why) and are big asset to partially or wholly remote workforces.
However many organisations find the hardware choices bewildering – so before choosing a conferencing kit for your meeting room, here are three key questions you need to ask:
Where’s that call coming from?
If you’re a devotee of either Microsoft Teams or Zoom, it’s easy to believe the entire world uses the same meetings software.
Stop and consider this for a moment and it should be immediately obvious there’s a problem here. Not all of your customers or suppliers will have standardised on the same choice as you necessarily – and that’s not even to mention rival platforms, or indeed traditional phone calls.
More modern Microsoft Teams Rooms devices also provide native support for scheduled Zoom meetings &/or Cisco Webex, and HDMI override that’s compatible with alternatives like Google Meet. We already escaped the world of restrictive hardware a decade ago, so let’s not go back there. Instead, it’s sensible to plan for a conference room setup where people can both make and accept calls in a variety of platforms, to cover all bases.
Connected to what?
How will the end-user actually make the call? This is important to think about – there are really three options here:
From a fixed PC/Mac in the room
From a device the user brings into the room with them
From a dedicated conference suite that tracks its own scheduled meetings
Option 1 helps eliminate some common hardware problems like getting the right cabling/adaptors, but it’s likely to prove a bit restrictive the rest of the time. Option 2 gives users great flexibility over using the room, and can be paired with wireless hardware – as well as falling back on some other advantages of laptops, tablets or smartphones: like the user bringing their own calling platform and display, and familiarity with their own audio settings.
Option 3 goes a step further so that the room already understands what meeting is happening when, and often supports ‘single-touch’ join from a console or touchscreen. This is best for enterprise environments where the video/audio largely doesn’t change, and what you really need is for the conferencing software (Teams or Zoom) to control who is actually using the meeting room, and when.
But what’s the room like?
Don’t forget the practicalities – this isn’t just about the technology, but also the physical space.
How big is the room, and how is the seating arranged? Will a conference phone cut it, or do you need satellite microphones to make sure audio is captured? Where are the power sockets? This will determine how your plans overlap with the device choice. Monitors are often easier to use than projectors, particularly as more screen-sharing is taking place.
Camera angles are important if your room is large, although audio always takes priority – most of the time it’s more important that everybody can be heard clearly, rather than be seen.
Need IT support and communications expertise? Speak with our team today.
Microsoft Teams has taken the world by storm, but it’s not just for office workers. Teams can also be deployed to powerful effect in many other working environments – including for field staff.
One of the lesser-known features is Teams Walkie Talkie Mode, whereby staff can transmit audio via special single-press mechanism that doesn’t require conventional dialling. This lets a frontline worker transmit either directly, or into a channel, in a similar fashion to when using a walkie talkie.
There’s a number of key advantages here – it means warehouse, shop-floor and field staff can carry fewer devices, and walkie-talkie mode’s ‘big button’ is also more glove-friendly than many touchscreen apps. Companies may also appreciate having to purchase less single-use hardware to begin with.
Because Teams already runs over data connections (usually Wi-Fi or 4G in the case of mobile devices) the range on Walkie Talkie Mode is also infinite, unlike their namesake devices.
If your field staff already have rugged Android devices, from providers such as Zebra or Samsung, these can even integrate single-press keys to drive Walkie Talkie Mode, even if the device screen is off.
Microsoft 365 ‘Field’ licensing is also available at lower cost, with a restricted toolset, allowing companies to safely and cost-effectively rollout Teams access to a wider pool of users. Walkie Talkie Mode itself is available as an additional app that can be enabled in your Teams Admin Centre, and controllable using security permissions administered by your administrator or Microsoft 365 Licensing Partner.
Lineal are a Microsoft 365 Gold Partner – for IT support and expertise, please contact our team today.
Apple have unveiled a special ‘Lockdown Mode’ for individuals likely to face extremely targeted threats to their cybersecurity.
Lockdown Mode will be added to iOS 16, iPad OS16 and macOS Ventura, and is designed for a small number of users who are likely to be targets of high-end surveillance spyware, and require the digital attack ‘surface’ of their device to be drastically reduced.
The new functionality is partly a response to the work of organisations like NSO Group, who have faced repeated accusations that their counter-terrorism surveillance software has also been used by governments and various state-sponsored actors around the world to illegally target journalists, activists and other political opponents.
The new tool represents an extreme device-hardening posture, and imposes very strict controls – including:
* Messages: Most message attachment types other than images are blocked. Some features, like link previews, are disabled.
* Web browsing: Certain complex web technologies, like just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode.
* Apple services: Incoming invitations and service requests, including FaceTime calls, are blocked if the user has not previously sent the initiator a call or request.
* Wired connections with a computer or accessory are blocked when iPhone is locked.
* Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on.
Apple is keen to point out that “while the vast majority of users will never be the victims of high targeted cyberattacks”, lockdown mode will become an option for those that may be, and reasserts Apple’s credentials in the high-end ‘secure-phone’ market previously dominated by Blackberry and other niche hardware players.
The tech giant’s will also offer up to $2m to anybody able to demonstrate a vulnerability in Lockdown Mode under their bug bounty programme – the largest such reward available in the industry.
Apple have previewed a range of futuristic new technologies at the Apple Worldwide Developer Conference 2022.
Among the latest releases were the upcoming new version of Apple’s flagship Mac operating system, macOS Ventura, iOS 16 for iPhone and iPad, new hardware and the new M2 Chipset.
Ventura brings a range of device-flexibility options to mac and macbook hardware – including ‘Continuity Camera’ – the impressive ability to use an attached iPhone’s special camera lenses via your laptop for some (truly next-generation) video-calling tricks.
A new productivity tool called ‘Stage Manager’ also helps users group windows into temporary groups – although perhaps the more useful feature is handoff support for facetime to iphone, allowing the user to leave their desk ‘mid-call’ without interrupting the conversation, in the style of more enterprise unified-communications apps.
2022’s powerful new MacBook Air will be the first to receive Apple’s own M2 silicon chipset, which somehow exceeds the staggering performance and power-efficiency traits of its M1 predecessor. To put those traits into perspective – Apple claim a new M2 chip can match 87% of the performance of a 12-core PC/laptop chip, while using only 25% of the power.
iOS 16 adds new abilities to iPhone – including the option to customise their lock-screens and notifications, circulate family photos in a shared album, and recall recently sent iMessages.
Apple also previewed a range of new services and Apple account features, including a new ‘Buy-Now-Pay-Later’ scheme (BNPL) in the style of popular fintech services like Klarna, passkey-based login support within Safari, and a safety feature called ‘Safety Check’ designed to help those who end up in abusive relationships.
For Apple IT support and expertise, please contact our team today
Lineal Software Solutions Ltd. are currently seeking ISO 27001 and ISO 9001 accreditation as part of a UK business improvement scheme.
ISO is the world’s best known international standard for assuring business quality across a wide range of areas – including quality management, information security, safety, sustainability and more.
This project has received grant funding from Devon County Council via the Devon Elevation Fund & UK Community Renewal Fund.
Seeking ISO accreditation requires the company in question to submit to a two-stage, independent external audit – reviewing both documented procedures, and how those procedures have been put into practice.
Watch this space!
For more information, please contact our team today.
Lineal’s Managing Director Mike Matthews has won an Omnis Software award for Outstanding Community Support at the International Omnis Developer Conference in Dusseldorf.
Mike first began developing software nearly 40 years ago, – starting with stock control software for the family manufacturing business – which eventually evolved into the modern software products carried forwards by Lineal’s in-house software development team.
Over many years Mike and Lineal have helped organise the European Omnis Developers conference (‘EurOmnis’) – promoting a community of developers who support each other’s projects and skills development.
Omnis software now underpins a number of important Lineal-developed software applications – including our flagship SQLWorks platform for business manufacturing/MRP, CRM, accounting & stock control. Omnis allows us to develop mission-critical business applications more quickly, deploy cross-platform across Windows & Mac, and draw on expertise from a wider community of developers.
This year’s conference was entitled ‘The Future of App Development’ – joining other notable recipients from as far afield as Mexico, Switzerland and Australia, and Mike thanked the conference for the award.
Congratulations Mike!
For business software advice and expertise, please contact our team today.
Just occasionally cybercriminals discover a new technique for tricking users or gaining access to something they shouldn’t have.
Hacks and scams go in and out fashion like much else – depending on their effectiveness and particularly, awareness among the wider public.
It’s helpful to keep one step ahead, so here’s our pick of some newer emerging threats to watch out for:
MFA Fatigue
The introduction of Multi-factor ‘Prompt’ notifications on Android and iOS are meant to make life easier. Instead of typing in a six digit code sent by text or generated by an authentication app, the user simply clicks ‘Yes this is me’ (or similar) when prompted on their authorising device.
But a hacker who obtains your password may have the option to spam the user with such notifications, until the user either accepts one by mistake or deliberately to make the prompts go away.
This trick can even get the hacker past otherwise bulletproof MFA on an account by pestering a targeted user – and users are often spammed in the early hours, when they’re likely to approve the login attempt without thinking, believing it to be a technical fault. By the time they’re asleep again, the hacker has remotely accessed their account.
30 Pieces of Silver
One of the most interesting revelations from recent arrest of members of the Lapsus$ ransomware group was wider publicity of their public-facing telegram channel.
This presents an interesting strategic question: how do you defend against a disgruntled member of your team being bribed to hand over vulnerabilities, credentials or privileged access that would otherwise remain guarded? Attackers who begin inside a networks usual defences have an extra capability for ‘lateral’ attacks that use each system or login captured to slowly compromise more of an organisation.
An ‘Insider’ attack is perhaps a corporation’s worst nightmare – with even a single VPN or admin password able to cause severe damage.
Dodgy App Permissions
A massive ecosystem of additional connected apps is available for Microsoft 365 – although many require addition permissions (such as access to emails, calendars, contacts and more) which are approved through an authorisation standard called Oauth.
Unfortunately this is open to abuse, particularly ultra-targeted spear phishing of upper-level management and those with privileged accounts. First step: get the user to visit a URL that wants permission for an innocent-sounding app to connect with Microsoft 365. Second step: when the user ‘Accepts’ an app’s access conditions, they grant an access to much of their Microsoft 365 account – an access that works remotely without being re-authorised by MFA or any of the usual protections, often in perpetuity.
In some cases the permission windows for the suspicious app are specially modified so that cancelling is circular, or give the app immediate permission to email other users the same app authorisation to spread the hack further.
In a mobile-first world, QR codes in public places can all too easily be tampered with to make users pay the wrong website, share malicious links on social media, or even dial premium numbers. Although Google Lens and similar apps will preview a link before the user clicks it, the underlying flaw is how easy it is to mimic the style and placement of official, legitimate QR codes, without the end user realising the swap has taken place.
The central problem is user awareness – would you click on a blind link in an email? No, exactly.
For cybersecurity expertise and support, please contact our team today.
If your staff’s company-issued devices are now everywhere, how can you keep track – and what are the benefits?
Device Management technology has really come into its own in the last few years, particularly as companies have embraced hybrid working during Covid.
Maintaining a large digital estate of company devices far beyond the reach of your travel distance or office network sounds like a logistical headache – but it simply requires a shift in approach. Here’s why your organisation should consider rolling out device management:
The Basics
First and foremost, device management means protecting access to data and your hardware investment.
Tracking a device’s specifications and physical location remotely have long been a cornerstone of device management – but modern hardware-loss protections go a step further by adding the ability for IT admins to remotely lock or even wipe a device in the event of a suspected theft. On the best solutions, MDM software can also look out for suspicious warning signs like a mobile device being jailbroken – and conditionally deny access to company apps or data.
In 2022 that safeguarding can now apply across desktop, mobile and tablet devices – right across Windows, Mac, iOS, Android & ChromeOS. Now that staff work anywhere from their homes to airports, that lockdown ability is a powerful tool.
Stress-Free Maintenance
With modern device management it’s easier for your IT administrators to manage devices, apps and the updates that apply to them.
In the old days (well, the early 2000s), remote administration meant a device had to be domain controlled, connected via VPN or similar, or within physical travelling distance of the technician.
No longer. Modern device management means device profiles, Windows updates, access to company-approved apps, patches, firewall rules and more can all be created and pushed out centrally via content-distribution ‘over the air’. Device management means even the hardware specifications of company devices can be remotely managed, potentially saving thousands of hours of IT support hours.
The ‘Out-of-the-Box’ Experience
Don’t forget the users! Device Management isn’t just to make life easier for the IT admins, but also helps make sure the end-user gets a great experience.
With remote device onboarding, the preparation of new or re-issued devices can be done in advance, allowing the user a complete profile of settings and apps to launch right ‘out of the box’. That flexibility allows organisations to enroll staff that never visit a central hub to collect the device, supporting distributed organisations with personnel (potentially) all over the world.
If your MDM solution also supports single-sign-on, that sign in can be the user’s passport to the full ecosystem of company apps and IT resources, right from day 1.
For IT support and systems expertise, please contact our team today.
In future Google Chrome, Microsoft Edge and Apple’s Safari will all facilitate passwordless login as an option – and major tech providers will offer passkey login for important online services including Active Directory and Azure.
Microsoft estimate that around 330,000 people have removed their password from their Microsoft Account in the last six months – with most using Microsoft Authenticator as a kind of passkey instead.
‘Hackers don’t break in, they log in’ is an often repeated mantra among cybersecurity professionals – reflecting the fact that most online accounts are breached via a normal login attempt, but with stolen credentials.
The FIDO alliance is the the online movement to replace password authentication entirely with single-use passkeys – although the organisation admits there are barriers to entry, including organisations’ cost to develop their own versions of the technology, an unfamiliar user experience, and the reluctance to ‘go first’.
It is hoped that with major tech providers building passkey support into their browsers, many more developers will be able to adopt the new standard to help keep users secure.
For Cybersecurity expertise and support, please contact our team today.
A good cybersecurity strategy includes layers of defensive counter-measures, designed to mitigate a wide range of threats at different levels of your organisation.
However there’s lots of ways you can help bolster your cybersecurity a little more, even working on a budget of (basically) zero – here’s our pick of the best:
Although compulsory for online banking in the UK, this feature is often available for free elsewhere online as well – and you should take full advantage.
This useful website is an index of websites and online services that already offer 2FA on your account(s), which methods are available, and where to find them.
Customised Login Pages
By default, your login window for many public cloud services is identical to everyone else’s – for example, by default Microsoft 365 companies see a picture of Rio de Janeiro each time they sign in. However, many people don’t realise this image can be customised, making the sign-in experience unique for your compny.
This feature is often free – but has one really important cybersecurity benefit: it helps your users realise when they might have been redirected to a phishing website. Fake login pages attempting to steal their credentials will often use the default background image to be recognisable to more people, rather than your custom one. When one of your staff clicks the wrong link, the wrong background might just help alert them before they hand over their credentials to a cybercriminal.
‘Spot the Phish’ Quiz
Let’s be honest, many online cybersecurity training tools are a bit rubbish – but this little gem of an online game from email security provider Barracuda uses five real examples of scam emails (A & B) to quiz your staff, and educate them on the warning signs.
User training helps build a resilience to cybersecurity threats that isn’t available via technology – protection for the ‘human layer’ of the organisation that needs to be vigilant, no matter which technology they’re using. Challenge your team today!
Has your Email been Pwned?
This delightfully terrifying website allows you to search those massive cybersecurity breaches you read about in the news for your own email address – informing you whether your information was involved, and where.
If you find an old email address has been listed in a known data breach, it’s best to update your password, turn-on two-factor authentication, and make sure your haven’t used that password anywhere else online – because it’s entirely possible that your credentials are already circulating as part of large stolen data dumps on the dark web.
Build a Cyber Action Plan
The UK National Cyber Security Centre (part of GCHQ offers a free ‘Cyber Action Plan’ tool to sole traders and smaller businesses that takes you through a short questionnaire about your business to help you build a starter list of recommendations to consider.
It’s been almost a year since Lineal introduced our new Client Portal, which allows our customers to not only raise new IT Support tickets direct into our systems, but review ticket progress and respond as new information is discovered.
However, we can also use global ticket data to get extra insight into our IT support process, improve our services, and help customers enjoy a better experience. So what have we learned so far?
Faster Responses
We’ve noticed some real advantages to customers connecting with us via the client portal – since last year, our average first-response time has improved by approximately 8%.
Evidence also suggests that in-life ticket responses are actually quicker via the portal than when raised by phone (around 5% on average), reflecting the fact that tickets can be updated without both agent and customer being available to continue the conversation at exactly the same moment.
So what does the time saving look like? In practical terms, it takes around 4 minutes longer for a simple phone call to be received, spoken and generated into a new ticket, rather than for that ticket to be submitted directly to the portal by the customer.
If most of those calls became portal tickets, Lineal customers and staff would save as much as 300 hours of talk time each and every year.
Changing Times
In previous years we’ve noted that Monday is our busiest day of the week, however recent data suggest this has shifted to Tuesday – possibly reflecting new hybrid working trends catching on, as office workers choose to reacclimatise to work from home either side of a weekend.
9am-10am remains overwhelmingly our busiest time of the day – as well as the period when a portal ticket can be created with the biggest time saving, compared with calling our Helpdesk.
High Importance
We took a gamble giving customers the ability to grade the priority of support tickets via the portal – we weren’t sure whether this tool would be used the way it was intended.
Statistics suggest it’s been an overwhelmingly positive feature – our highest priority tickets raised via the Client Portal (rated High and Urgent) have significantly faster first response times than not just tickets on average, but corresponding priority tickets raised by other methods.
Positive Feedback
Instant feedback (‘smiley face’) buttons added to the bottom of each ticket help users tell us more broadly how we’ve been doing. Ticket feedback for our IT Support service has been overwhelmingly positive (95%) and less than (5%) negative.
This is important because the feedback is gathered at time of writing, and on a rolling basis – rather than at times we’ve chosen to measure. Our current target is to increase this to 98% positive or greater.
For IT Support help and expertise, please contact our team today.
Google have previewed a design study of sensory notification devices designed for a less stressful digital life.
‘Little Signals’ demonstrates interesting ways the end-user might receive notifications in a calmer, more subtle way than via their smartphone screen – using ambient sound, changing shadows and discrete movements.
The friendly-looking set of six tabletop devices are a zen paradise of pastel shades and soft movements designed to be less anxiety-inducing than a constant blizzard of push notifications.
Little Signals is one of several Google ‘Digital Wellbeing’ experiments – with others including ‘digital detox’, a visual ‘anchor’ that prevents infinite doom scrolling, and a minimalist ‘paper phone’.
Some of the devices can be interacted with, or are intended to have minor affects on surrounding objects to get the user’s attention.
Each prototype hides an onboard Arduino micro-computer, but none of the devices use either display screens or artificial light, demonstrating how Internet-of-Things (IoT) devices might become better disguised as part of our physical environment.
For IT support and expertise, contact our team today.
Members of Lineal’s cybersecurity team recently ran a special training event for over a hundred UK exporters, as part of the Department for International Trade’s ‘Export Academy’ initiative.
The UK Export Academy was formed to give UK companies vital know-how as they develop international trade opportunities, and to help them avoid common pitfalls.
Attendees were given a wide-ranging crash course on common threats, including a run-down of various vectors of cyber attack typical to companies trading internationally, and techniques to mitigate dangers.
Topics included best practice for password management & identity protection, email safety, device health, network safeguards and much much more.
We’ll be part of other UK Export Academy events in the near future – you can find more information about the academy here.
Learn more about Lineal Cybersecurity expertise here.
Gamma Communications have officially released a new version of their flagship ‘Collaborate’ softphone app for desktop and mobile.
Collaborate extends your work phone functionality to a convenient app that runs across many device types, allowing phone system users to escape their desk phone, and communicate from a far wider range of workplace environments – as well as route calls intelligently in the cloud, regardless of the physical layout of the organisation.
With nearly three-quarters of a million Horizon end-users across the UK, Gamma Horizon’s cloud-hosted phone systems are already a technology titan of the British workplace.
But that workplace is ever-changing – with huge numbers of knowledge-workers operating either remotely from home, via co-working spaces, while travelling or across multiple sites, phone users are no longer anchored to a plastic deskphone.
Version 2 introduces a significant visual refresh to the platform, and already appears more reliable in typical marginal call scenarios (such as when transferring external calls with mobiles.) In addition to immense bolt-on phone flexibility, Collaborate also adds Instant Message, Video/Conference Calling, Status Notification and more under one roof, for a convenient unified communications solution that is perfect for small to medium-sized organisations.
Collaborate Version 1 users will receive prompts to update from the legacy version from April 11th, which is expected to be moved to end-of-life in the near future.
For telecoms expertise and support, please contact our team today.
Microsoft have announced a raft of new security features for Windows 11 – aimed squarely at the new trend of hybrid working.
With millions of users working remotely post-Covid, the enhancements largely focus on hardware security and identity protection, as end-user devices access ever more cloud-resources from a broader range of working environments.
Microsoft Pluton
‘Microsoft Pluton’ is the name of a new security processor integrated into CPUs on devices shipping with the new operating system – an App Control feature designed to prevent untrusted apps from running, block the theft of user credentials, and counter dangers from outdated drivers.
As we’ve noted before, Pluton (like Windows 11 itself) also relies upon Trusted Platform Module (TPM) technology to fire up a PC securely – but some TPM chips remain vulnerable to encryption keys being intercepted between components. Pluton devices are expected to close off that weakness, preventing this kind of hardware attack.
Smart App Control
As many predicted, Application Management begins taking centre-stage in 2022, as bigger organisations seek to prevent users introducing rogue software into their IT infrastructure (or worse, introducing it back into the company network themselves.)
Smart App Control blocks unsigned or suspicious apps at the OS level, and will receive regular updates daily.
However – it’s worth noting this core feature only applies to newly shipped devices – so even those who adopted Windows 11 early would have to complete a full operating system reinstall to ensure Smart App is live.
Microsoft Defender SmartScreen
SmartScreen helps protect identity by alerting the user if they’ve begun interacting with a known malicious application, fake or hacked website – with the added advantage that the safeguard is pre-installed for all users.
Microsoft are keen to demonstrate SmartScreen’s record of success elsewhere – blocking nearly 26 billion brute force attacks on Microsoft Azure Active Directory, and nearly 36 billion phishing emails that were intercepted by Microsoft 365, last year alone.
Credential Guard
Another ‘by default’ upgrade – Credential Guard isolates really important system secrets in a way that is designed to stop ‘pass the hash’ style attacks where a hacker is able to use the encrypted version of a password to gain entry, and (Microsoft claim) can even prevent malicious applications that have somehow obtained Admin-user privileges on their device from accessing those secrets.
You can discover the full list of the security enhancements coming to Windows 11 here.
Several Lineal Engineers have entered the 2022 international CyberDrain ‘Capture-the-Flag’ competition.
Designed to sharpen the problem-solving and technical skills of IT administrators, CyberDrain challenges test proficiency across a range of common platforms (including Microsoft Azure, Hyper-V, 365 & Linux environments). To rise to the top of the 1000-person strong global league table, contestants must recover as many ‘flags’ as possible before 14th March.
Contestants must be able to answer both beginner challenges that mimic typical support tickets raised by end-users, but also demonstrate advanced PowerShell scripting and system engineering skills.
This year’s competition adds an extra layer of challenge – with both harder and time-limited challenges that earn bonus points – and a wider range of prizes sponsored by Huntress and other notable IT vendors.
Good luck to all our competitors!
For IT Support and technical expertise – please contact us today.
Endpoint security specialist SentinelOne have isolated and demonstrated an installed instance of HermeticWiper malware currently destroying PCs across Ukraine.
First spotted on February 23rd, the 114kb ‘Hermetic Wiper’ malware gets its name from the (likely fictitious) ‘Hermetic Digital Ltd’ – a Cypriot company allegedly named on its digital certificate. The malware appears to have been circulated among a number of Ukrainian organisations, and abuses a partition management driver to begin corrupting a device’s physical drives.
Once activated, the malware initiates a device shutdown, making the system irretrievable and booting only as far as Windows’ ‘Your PC/Device needs to be repaired’ screen.
The timing and nature of the attack (crippling PCs in the short term, until they can be replaced) suggests an effort that has been coordinated with Russian military operations.
For cybersecurity advice and expertise, please contact Lineal today.
QR codes have become an easy way for companies to promote themselves – now that everyone carries a barcode scanner in their pocket (their smartphone) why not take advantage of this to better connect with customers?
Well…. because it can also be a cybersecurity nightmare.
Cryptocurrency platform Coinbase recently made headlines by using their Super Bowl half-time advert to advertise themselves with a bouncing QR code that users could scan live from their sofas. As many pointed out, this is literally the equivalent of clicking a blind link in an email from an unknown sender – with users unlikely to have checked where the link will take them, or what information they’re handing over when they get there.
Worse still, even if a company’s own QR codes are harmless, it’s very easy to generate imitations online that are not – leveraging a larger company’s advertising as a way to scam users.
QR codes can all too easily be planted by third-parties as a way of tricking the unsuspecting – in particular, you need to be wary of the following scams:
SMS/Phone Codes
– QR codes are generally used from smartphones with calling and SMS sending abilities, so it’s possible to prompt the user to send a text message to a number. Handy for business, certainly, but risky if the user doesn’t realise they’re calling or texting a premium number.
Social Media Share
– Scan here to automatically tweet a link from @Lineal! Unfortunately that link is easily manipulated, causing the scanner to potentially become part of further phishing attempts on their own twitter followers.
Connecting to Wi-Fi
– In public spaces, many businesses will prompt users to join their free Wi-Fi via QR code. Clever and convenient, but obviously easy to use as a mechanism for a man-in-the-middle attack by those whose fake Wi-Fi network is simply a trap set for the unsuspecting user who’s just trying to access their email in a coffee shop, airport or hotel.
Guidance:
Think before you click – does the QR code match the rest of their branding? Where does the link preview point to? Is there anybody/anywhere you can double-check?
Use a Password Manager – although you might not spot a fake website URL, a password manager that normally autofills only a password on specific sites will recognise the fake immediately.
Assuming the device doesn’t sit within the container of a firewall that’s likely to detect threats as you browse the web, companies issuing work mobiles & tablets need to also extend endpoint security software to those devices – the same way you might a work laptop for those working on the move.
Android version 13, codenamed ‘Tiramisu’, has been previewed to developers – the new operating system will spend February and March in preview build, with the final release expected in August of this year.
Android is clearly thinking ahead about how individuals will use their phones in future. Detailed in the developer notes are clear preparations for a time when an Android device has to sit even more at the core of many people’s broader technology usage:
Among the improvements already announced are a new ‘Photo Picker’ tool – an important security improvement that allows users to share specific images to 3rd-party apps installed on their device, without having to grant that app access to an entire media folder.
In a similar upgrade, Android 13 also adds a new device permission for apps that join to nearby Wi-Fi devices without sharing GPS permissions, for example allowing users to use smart devices in their home, without granting outright location permissions in the process.
Visual customisations first introduced in version 12 are being extended – with Google’s own ‘themed app’ colour settings granted to 3rd-party app developers, allowing far greater customisation of a phone’s look and feel.
Furthermore Android 13 will expect more apps to route updates via the Google Play store, continuing the trend of tightening security, against the (sometimes risky) app ultra-flexibility that was once Android’s hallmark.
For IT expertise and support, contact our team today.
This year GCHQ’s National Cyber Security Centre have introduced stricter new rules for businesses and organisations hoping to achieve UK Cyber Essentials (CE) and Cyber Essentials Plus (CE+) Certification.
In addition to promoting the scheme’s key priorities, the new terms for successful assessment are widely believed to be partially a response to recent events – including more widespread remote and home-working via cloud-based web services during Covid-19, and a series of devastating ransomware attacks that disrupted major infrastructure in the US.
Need a taster of what’s to come? Here are our key take-aways:
Cloud Services under the spotlight
In previous years organisations could exclude many cloud-based platforms from the scope of their assessment – but with the wholesale move to the cloud only accelerating under working from home, and web-services containing ever more data, cloud-based systems such as Microsoft 365 and Google Workspace move squarely into the frame.
Multiplying multi-factor
Most critically this year, two-factor authentication will become compulsory for all administrator accounts registered to cloud-based services – as the NCSC tries to stop hackers obtaining credentials and then remote accessing their way to cyber-devastation. Expect user accounts to follow in 2023 – an exemption may be granted under certain circumstances, but it’s clear the days of the old ‘password-only’ login are numbered.
2022 also places new restrictions on passwords: organisations are encouraged to have password managers enforcing random 8-characters or more, or a 12-character pattern, at a minimum. Mobile devices and similar should have minimum 6-figure pin or biometric security – with a recommended lock-out for ten failed password attempts.
Sub-networks under scrutiny
Sub-networks may now only be excluded if they don’t have a connection to main networks or no internet-access – meaning many organisations will now have to detail their satellite and subordinate operations more fully.
Patching-discipline is said to be the most common reason for failing a Cyber Essentials assessment – the 14 day patch window remains, but automated updates should now be enabled if available. Thin client devices are to be included from next year, and unsupported software should be air-gapped on sub-networks that don’t have internet access.
A question of hats
All super-users are now meant to have distinct user and administrator accounts, with stronger security on the latter. This distinction extends to cloud-services, meaning administrators will have to swap between their day-to-day functions completed on user accounts, and their admin roles where they have elevated privileges.
In the wake of the Colonial Pipeline ransomware attack and others, it’s clear rules for admin accounts will only become more stringent.
Greater auditing
Cyber Essentials Plus Certification will increasingly require more in-depth auditing by independent inspectors – including sending malicious test-emails, validating software versions, testing file access, and confirmation of the all-important admin/MFA rules described above.
Lineal are a Cyber Essentials Plus certified organisation, and can help your team achieve certification. Contact our team today.
In the era of fake news and disinformation, Lineal wields the sword of truth against the dragon of lies. Or something. Don’t Write in.
“Have you tried turning it off and on again”
Not strictly a myth – since the line made famous by Channel 4’s ‘The IT Crowd’ is still often a valuable test for electronic hardware – but admittedly since 2006 some extra complications have crept in.
For example in 2012 Microsoft added a feature called ‘Fast Boot’ – later becoming ‘Fast Startup’ in Windows 10 – whereby a PC does a kind of restart-lite, retaining its system state to speed things up, introducing a risk that the problem may not be reset by the user ‘turning it off and on again.’ To keep Roy’s tape-answer-machine truly happy, you’d now probably have to do a full shutdown.
“The Millennium Bug Wasn’t Real”
Although widespread disaster was avoided while we all partied like it was 1999, this was in large part due to millions of pounds worth of work by countless unseen software developers and IT engineers patching various systems in the run up to the millennium.
Even though Apple has clearly enjoyed a reputation for Macs being less virus-prone than Microsoft Windows PCs, it should be obvious that this is untrue, and Mac users shouldn’t think they’ll never need security software. Although Apple do insist on strict technical conditions for running macOS apps, this doesn’t make them immune. 2020 research by Malwarebytes suggests (proportionally) Macs may even now outpace Windows endpoints for relative threat exposure.
In reality, Mac viruses are only considered ‘rarer’ largely because Macs are rarer – with hackers pursuing their targets based on the size of the payday they can expect. Non-operating-system-based cybersecurity threats (eg: phishing emails, credential stuffing, impersonation fraud etc.) are also every bit as dangerous, regardless of the device you use.
“Charging your phone overnight destroys the battery”
Lithium ion batteries used in laptops and smartphones don’t suffer nearly such a pronounced memory-effect as degrades nickel-cadmium and nickel-metal hybrid batteries. More importantly, modern smartphones contain circuitry that bypasses the battery once it is fully recharged, so we can all safely ignore suspect clickbait stories about self-crystallising batteries or exploding smartphones.
In some ways this one is a bit like believing free-wheeling your car in neutral downhill will save extra fuel – the technology has moved on.
“More bars equals a faster network”
The bar icons on mobile phones are an indication of signal strength, rather than speed as such – and don’t allow for numerous other factors like the number of other users trying to signal from that tower or how networks choose to ‘label’ their service. In many cases the indicator itself only updates every few minutes, making the icon deceptive.
Worse still there’s no parity of scale between handset models, manufacturers, or even networks – meaning your ‘four bars’ are not directly comparable to somebody else’s.
“Refreshing browser windows makes it faster”
When you load a web-page you send a request to the web server that sends you back a handful of code to your browser, which displays it. Each time you hit refresh you start the process again, so far from ‘refreshing’ your browser tab to speed it up, you’re asking it to do more – probably slowing you down.
“You can hear the phone ringing at the other end.”
Your phone plays a ringing tone so that you’re not listening in silence while it tries to connect your call. The sound you hear doesn’t match the ringing at the other end, either in start/end time or ring frequency. Put simply, you’re listening to your own phone ringing, not theirs.
Either way, you can easily debunk this with two smartphones. If you feel your own mobile ringing even when it isn’t, you may be experiencing Phantom Vibration Syndrome!
Microsoft have announced that OneDrive Personal will cease to synchronise on Windows 7, 8 and 8.1 from 1st March 2022.
Beyond this date, data saved to the OneDrive desktop app will not be saved to the user’s online Microsoft 365 account. Instead the user must either upload files via their account on the web through their browser, or upgrade their hardware to Windows 10/11.
Business-licensed users will still be able to synchronise OneDrive files until Windows 7 extended support finally ends in January 2023, although time is clearly ticking for business users of the popular file storage app who remain on older operating systems.
The hugely successful Windows 7 reached ‘End of Life’ (the end of official support) as of January 2020, but remains in surprisingly widespread use. Despite the free release of Windows 10 and 11 over the past decade, Windows 7 alone still has millions of PC users remaining – approximately 14% of the global market.
Keen observers will note that with the business version still running (for now) there’s likely no overriding technical reason the Personal version must cease, but that OneDrive itself sits at the centre of Microsoft’s hugely popular suite of Office apps – and that announcements like this are one of the few remaining ways Microsoft can clearly signal the need to upgrade decade-old hardware that may have security vulnerabilities.
For 2022 we’re announcing a series of changes to the way Lineal helps keep your IT safe and secure – including some new technologies that will allow us to better care for our customers’ cybersecurity.
One of these is the introduction of SentinelOne as an alternative to traditional antivirus options. We’ve formed this partnership to offer a more extensive set of tools to customers, and further modernise the way we keep your staff, systems and data safe.
You can learn more about SentinelOne, and why we’ve taken this step, below:
What is SentinelOne?
SentinelOne is a next-generation Endpoint Detection & Response (EDR) software that we’ll be recommending in future to protect PCs/Macs and more from cybersecurity threats, in place of more traditional antivirus options.
Why are Lineal making this change?
We’re responding to changing times – in recent years we’ve seen the threats to small businesses shift away from general malware towards more dangerous ransomware that encrypt data and seek to extort payment from victims.
Why have you re-focused on Ransomware?
The scale of the threat. While malware might endanger data, hit device performance or introduce other serious technical problems, ransomware can be totally devastating – bringing even major industries to a standstill.
The UK National Cyber Security Centre recently argued that “Ransomware represents the key cybersecurity threat facing Britain…” – following a series of high-profile and crushing ransomware breaches in the US, across industry, and against the NHS.
For a small business, a ransomware infection is potentially terminal, and as the methods used by cybercriminals change, our recommended cybersecurity precautions need to adjust to reflect this.
What’s wrong with traditional antivirus?
While a traditional antivirus software is a good defence, these typically work by comparing against a list of known threats that are regularly updated. This technique has its limits – particularly when it comes to never-before-seen ‘Zero Day’ threats.
With the spread of ‘ransomware kits’ on the dark web, it’s becoming easier and easier for cybercriminals to introduce brand new variants and strains, on an hourly basis. This necessitates a different kind of counter-measure: intelligent EDR software that understands how a threat to an endpoint ‘acts’ and can remediate more effectively.
OK, but why SentinelOne rather than [Product X?]
In addition to performing exceptionally well in independent testing, we’ve been impressed with SentinelOne’s cloud-based management and ‘storyline’ investigation tools, and their Ransomware Warranty pledge of $1,000 per computer (Up to $1m) for each machine with valid protection.
Even more impressively, the Singularity engine utilises some highly advanced fingerprinting technology to support cutting-edge rollback abilities – a powerful aid to incident response.
The company consistently ranks as a Leader in Gartner analysis, is the only vendor on record to achieve a 100% score in MitreEngenuity testing, and won both Gartner’s 2021 ‘Customer Choice’ highest ranked product, and CRN’s 2021 Product of the Year award for endpoint security.
What does this all mean for me?
In future cybersecurity discussions, one of the Lineal team may speak with you about EDR, and may quote SentinelOne as an alternative option to renewing your existing antivirus.
If you would like to discuss this with us, please contact [email protected] or simply speak to one of our team.
PC & Mac? And Servers too?
Yes!
Will I still be able to purchase other Antivirus products via Lineal?
A massive cybersecurity vulnerability discovered in an Apache logging tool has caused chaos across the internet, as organisations rush to patch millions of web-based services around the world.
The Log4j weakness exploits a bug in Apache’s open-source Log4j v.2 logging Java library, allowing an outside user to insert their own code that Log4j will interpret as ‘real’ instructions, to devastating effect.
Log4j is highly common across huge numbers of web-based services, servers with web based front-ends, and countless devices that support some kind of web-based maintenance – such as routers, network switches and many more.
A horrifying compilation of screenshots gathered on GitHub shows how (at time of writing) hackers can already exploit the bug everywhere from the search fields of Linkedin, Amazon and Baidu, to the login pages of Apple and Cloudflare, across Webex meetings and even the chat boxes on online games such as Minecraft.
In each case hackers can use the vulnerability to have the device’s network-access ability either forward confidential information to another URL, or retrieve a payload from another website. According to reports by ARSTechnica, the trick has already been used in the wild, with researchers seeing new botnets, crypto-mining malware and more installed by hackers.
CVE-2021-44228 is graded ‘Critical’ by Apache, and SysAdmins are advised to patch services urgently.
Lineal’s IT Support Teams are rolling out an important security change to the way we secure your Microsoft 365 accounts – enabling Multi-Factor Authentication (MFA) for all users.
We’re taking this step in response to a marked increase in account-theft attempts that we’ve seen in recent months; where previously MFA was an optional extra for added security, we’re now strongly recommending this be enabled across the board.
Every person with a Microsoft 365, Exchange Online or Azure user account licensed with Lineal.
What are the advantages?
An extra ‘factor’ at login drastically helps improve the security of your user account – making it difficult for any attacker who manages to obtain your username & password from logging into Microsoft 365 using your identity.
We’ve encountered a noticeable increase in account-takeover attempts in recent months, with individuals’ work emails then being used for the onward spread of supply-chain attacks and phishing emails to others.
Multi-factor authentication is already standard practice across online-banking in the UK, and we believe it should be standardised for all identity-based online services.
How does it work?
In addition to your username and password, each user registers a third factor – typically either a mobile phone number (for SMS), smartphone authenticator app, USB security key or password manager – any of which generates a temporary code for login. This extra ‘factor’ verifies your identity – making it hard for a third party to log into your accounts, since they won’t have access to the temporary passcode.
For preference, we recommend free Authenticator-app based MFA via Microsoft Authenticator, Google Authenticator or similar apps for iOS/Android. These are generally considered to be a more secure method than single-use SMS (text-message) codes, which have their weaknesses, with Microsoft and others announcing this method will be phased out.
However, even SMS-based MFA will be more secure than a standalone password, so we’ll still implement this where necessary.
Does my organisation need to budget for this?
No – although paid options are available if you need your MFA backed by Conditional Access or other security settings.
What’s the timetable for this change?
We’re aiming to have this change fully deployed by 2022.
What do I need to do?
Nothing for now – a member of your Lineal IT Support team will be in touch to discuss implementing the change.
What if I experience issues getting started with MFA?
Please contact our IT Support Teams via [email protected], 01271375999 or via our Client Portal, and one of our team will be happy to assist.
Lineal are delighted to announce our new partnership with Jurassic Fibre, bringing faster broadband to South West businesses.
Exeter-based Jurassic Fibre are a regional connectivity provider rolling out new ultrafast full-fibre infrastructure to thousands of addresses across the West Country.
At time of writing, Jurassic Fibre’s £250m investment in a new fibre network already includes numerous towns and rural communities such as Barnstaple, Bridgwater, Bude, Exmouth, Honiton, Okehampton, Sidmouth, Sowton, Taunton, Wellington and Yeovil.
Lineal Software Solutions Ltd. are a Barnstaple-based IT support and software development company assisting businesses and organisations across the UK and beyond.
Lineal’s Managing Director Mike Matthews said: “Thanks to Jurassic Fibre many businesses will finally have the option of true ultrafast, ‘pure’ fibre broadband at low cost, provided over cutting-edge infrastructure that simply hasn’t been available from any other provider.”
“We’ve been impressed by what Jurassic Fibre have built. Every day Lineal’s Technical Support teams encounter businesses depending on ever more cloud-based technology, and requiring faster connection speeds – together we’ll help deliver the connectivity options many so desperately need to run their businesses effectively.”
Jurassic Fibre said: “We are proud to be serving both business and residential customers across North Devon with our ultrafast full-fibre broadband services. Our partnership with Lineal enables businesses to take full advantage of their new bandwidths by providing the platform to utilise new technologies to serve their customers better.”
Jurassic Fibre is available in a range of speeds from 100Mbps down (20Mbps up) up to gigabit grade, and via private-fibre ‘leased line’ gigabit ethernet, for businesses needing exceptional quality connectivity.
For find out how faster connectivity options could help your business, please contact Lineal today.
Law enforcement agencies have announced the arrest of seven individuals linked to REvil ransomware which caused a series of high profile ransomware incidents earlier this year.
Europol and the US Department of Justice recently announced the success of ‘Operation GoldDust’ which included a joint-effort from 17 countries – with arrests spanning Romania, Poland, South Korea and Kuwait.
The group are accused of 7,000 individual ransomware attacks, and links to attacks which breached organisations using Kaseya remote-manageement software back in July – a supply chain attack described by security specialists SentinelOne as a ‘well orchestrated’ and ‘mass-scale’ ransomware campaign.
Europol thanked all the countries involved for a concerted effort, Eurojust and Interpol, and also praised the contribution of a number of private cybersecurity firms who assisted Operation GoldDust with technical support.
After originally claiming to be disbanding in September, it was revealed REvil’s infrastructure was itself hacked by a joint team from the FBI, US Cyber Command and the Secret Service – and forced offline. Key members of the group’s leadership, believed to be Russian, were thought to be on the run.
The issue of Russian reluctance to tackle cyber-crime syndicates also spilled over into warnings of US retaliation during in-person talks between US President Joe Biden and Russian President Vladimir Putin in June.
Apple has released a staggeringly powerful new MacBook Pro model for 2021, bundling some important changes of direction.
Firstly, screen size: Apple will offer both 14-inch and 16-inch versions of the latest Pro, having presumably seen the light from both PC rivals (looking at you Dell), and it’s own Apple devotee fanbase, respectively – who for years have hoped for the larger 17” format to be re-released.
In a big U-turn, Apple has also re-introduced HDMI, SDXC and other ports, after famously removing all but USB-C from the Macbook’s chassis in 2016. That future didn’t quite work out – as Apple now acknowledges: the user-base of the Pro in particular have generally been power-users that need more options, not just more dongles.
Unlike its smaller cousins, the MacBook Pro 2021 isn’t burdened by quite the same portability obsession – favouring high performance for processor-intensive computing, photo, audio and video-editing – of the kind that makes Macs popular among creatives and software developers. The latest edition of the ‘power user’s’ MacBook incorporates the all-new M1 Pro and M1 Max chips, which boast some eye-watering performance statistics.
MagSafe also makes a welcome return, ensuring that a snagged power cable won’t pull your laptop off the table into oblivion. 2016’s Touch Bar, never quite beloved of the user-base, has been scrapped to enlarge the keyboard – returning the overall design in the direction that originally made the Pro so successful.
Prices begin at £1,899 inc VAT for the 14-inch model, and £2,399 inc VAT for the 16-inch. For those with no maximum budget, optional extras are available up to a blistering 64GB of memory and an 8TB (!) SSD, for those who need a laptop with all the stored-up potential of a nuclear reactor.
Lineal’s Tom Williamson Cary has become one of North Devon’s first successful ‘Kickstart scheme graduates’.
During his six month Kickstart placement at Lineal, Tom has worked on numerous new business opportunities, helped promote Lineal, and even mentored younger students as part of Lineal’s work with the PETROC ‘Techknowledgy Transfer’ Project – funded by the Department for Business, Energy and Industrial Strategy working with Innovate UK under the Business Basics programme.
Having completed the Kickstart programme, Tom will now join Lineal’s Marketing Team as a full-time staff member, to work on business development, and is believed to be among only a handful of such ‘Kickstart graduates’ in North Devon.
Lineal’s Managing Director Mike Matthews explained: “Tom is one of the first wave of Kickstart placements – one of around sixteen thousand young people across the UK – who’ve already benefitted from this scheme. He shows real promise and enthusiasm, and we’re delighted he’ll now be joining our team longer-term.”
Tom said: “I’ve learnt a lot over six months, and it’s been great to be welcomed to the team and get started on some exciting projects.”
The Kickstart scheme is a £2 billion Government programme dedicated to short-term work placements for those aged 16-24 who are eligible to claim Universal Credit – and aims to help bridge the gap between education and work, when many young people are at risk of longer-term unemployment.
Businesses can learn more about the Kickstart Scheme here.
***Edited 1st February 2022 – To reflect updated information issued by Microsoft.***
Microsoft has officially announced 2022 pricing updates for UK customers of Microsoft 365, Office 365 and many related cloud services.
The hugely popular cloud-based collaboration software is used by millions of organisations around the globe, and assists around 300 million end-users to work more productively.
New pricing – the first mainstream increase for a decade – is set to go-live from March 2022, and will see increases of between 0% and 25%, depending on license type.
To help businesses know what to expect, we’ve assembled a short guide to the upcoming changes.
Which License Types are affected?
Although exact UK figures have not been published in full yet, indicative US pricing changes are expected to be as follows:
Old
Expected
%
Microsoft 365 Business Basic
$5
$6
20%
Microsoft 365 Business Standard
$12.50
$12.50
–
Microsoft 365 Business Premium
$20
$22
10%
Office 365 E1
$8
$10
25%
Office 365 E3
$20
$23
15%
Office 365 E5
$35
$38
9%
Microsoft 365 E3
$32
$36
12.5%
Microsoft 365 E5
$57
$57
–
Microsoft 365 ‘F’ Plans
No Change Expected
Microsoft 365 ‘A’ Plans
No Change Expected
Microsoft 365 Personal Plans
No Change Expected
Will anything stop working?
Unfortunately, yes – Microsoft 365 and Dynamics 365-based data and services will cease to be available to businesses using old subscriptions after 1st July. All users will need a new NCE license assigned to them by their Microsoft licensing provider before this date. Microsoft Partners will continue to provide, deploy, manage and administer licensing, exactly as before.
However the service itself will remain the same – all old license options will be available under new NCE license types and new pricing.
Why is Microsoft making this change?
This is the first such price rise for a decade, and reflects the huge leap forwards in the quality of technology, range of apps and business value of cloud-based services that have been added to Office 365 since the package originally launched in 2011.
Can I ‘lock in’ the old price in any way? / Any offers… on offer?
Organisations who replace their old licensing with new SKUs prior to the 1st February are able to ‘lock in’ some of the legacy-pricing, and avoid the upcoming price rise until February 2023.
Purchasing new licensing also reserves this price for additional users that the customers might add during the term – meaning that customers expecting to increase their staff/license count later this year may be incentivised to move themselves to new licensing now, before pricing changes take effect.
However, 2022’s new annual licensing prices also includes annual minimum terms that restart each year at renewal, so licenses do not ‘leave contract’ entirely after the first year as before. Please contact Lineal for more information.
So many license types – help!
Don’t panic – we’ve published a handy guide to what each license type contains, and this page will be regularly updated with the latest information. Alternatively, please contact our team and we’ll be happy to clarify your current or future licensing.
Lineal’s Lewis Marrow has graduated from the University of Plymouth to become North Devon’s first cybersecurity ‘Degree Apprentice’.
Starting at Lineal in 2017 to pursue an apprenticeship in cybersecurity via PETROC, Lewis’s skills have gone from strength-to-strength to see him achieve a 2:1 BSc (Hons) from the University of Plymouth (Digital Technology Solutions: Cyber Security Analyst.)
‘Degree’ or ‘Higher’ Apprenticeships are an advanced category of apprenticeship organised by the National Apprenticeship Service that combine undergraduate-level academic work with specialist training in the workplace.
Apprentices are expected to ‘earn-and-learn’ in tandem, gaining both knowledge and industry skills that are greatly-valued by employers. Many, like Lewis, are quickly snapped up by their business sponsors full-time once their apprenticeship is completed.
Lewis said: “A Degree Apprenticeship has been a fantastic experience allowing me to gain the knowledge and training I require to become an IT professional, the team at Lineal have been very supportive along the journey and I would recommend to anyone.”
While working at Lineal, Lewis won a Petroc Outstanding Achievement Award, has appeared in a Department for Culture, Media and Sport ‘Real Ideas’ film project promoting STEM education in schools, and his cybersecurity work has improved the resilience of numerous organisations – including helping Lineal itself achieve Cyber Essentials Plus Certification.
Lewis also recently completed the Great North Run in a blisteringly quick time of just under 1 hour and 27 minutes!
Windows 11 is due to be released officially on 5th October 2021 – the first major version upgrade since Windows 10 was released in 2015.
As with Windows 10, PC users will be able to begin downloading the new version from this date, and new PCs will begin shipping with Windows 11 pre-installed.
If the thought of your PC changing fills you with dread – never fear! Here’s how you prepare:
See a preview
The first thing most users will notice is the visual improvement – Windows 11 features a ‘new design’ which forms the backbone of the update in an effort to make PC screens feel more user-friendly, calming and interact better with natural light.
Check Minimum Specifications
The following list summarises the published minimum specifications required to install and operate the new upcoming version:
Processor:
1 gigahertz (GHz) or faster with 2 or more cores on a compatible 64-bit processor or System on a Chip (SoC)
RAM:
4 gigabyte (GB)
Storage:
64 GB or larger storage device
System firmware:
UEFI, Secure Boot capable
TPM:
Trusted Platform Module (TPM) version 2.0
Graphics card:
Compatible with DirectX 12 or later with WDDM 2.0 driver
Display:
High definition (720p) display that is greater than 9” diagonally, 8 bits per colour channel
Internet connection and Microsoft accounts:
Windows 11 Home edition requires internet connectivity and a Microsoft account to complete device setup on first use.
Switching a device out of Windows 11 Home in S mode also requires internet connectivity. For all Windows 11 editions, internet access is required to perform updates and to download and take advantage of some features. A Microsoft account is required for some features.
Microsoft’s full specifications for Windows 11 can be found here.
Things to Expect
The following Windows 10 features are all due to disappear on the new version, in some cases being disabled, replaced by newer apps or available only via manual re-download from the Windows store on new installs:
– Internet Explorer
– Windows S Mode (Home Edition Only)
– Skype (Personal), 3D Viewer, Paint 3D and ‘OneNote for Windows 10’
– Start Menu Groups
– Taskbar Moving
– Tablet Mode
– Timeline
Cortana will also be relegated to the Start Menu – no longer used during setup and not automatically pinned to the taskbar.
Make a Backup / Create a Recovery Drive
Major (or even minor) Windows version upgrades are not without pitfalls as we’ve seen in recent years, so it’s worth checking that you have a full backup of your device prior to leaping into the unknown.
Synchronised copies of files in Microsoft OneDrive, Google Drive or Dropbox are always a plus, although for rapid restoration it’s also helpful to make a manual, local backup to a portable hard-drive that will be more quickly restorable if your subsequent upgrade doesn’t go to plan.
Hugo achieved a stunning 4th-place finish internationally – just narrowly missing out on a bronze medal for Team GB, but winning a PlayStation 5 in the process from competition cybersecurity-sponsor Huntress.
Martyn and Joe also scored very highly from among 1,000 competitors worldwide – finishing a record 17th and 32nd respectively.
Each passed significant milestones in their challenges – at 2000 points and 3000 points respectively – with Hugo becoming one of only four competitors worldwide to break the stratospheric 4000-point barrier.
Designed to test System Administration and IT engineering skills, the CyberDrain CTF challenge puts competitors through a series of forty investigative challenges across server and client-side, Microsoft Azure, Linux and Microsoft 365 environments. The competition ran throughout July, with bigger point bonuses awarded for more complex technical challenges.
Congratulations to all our competitors!
For IT Support and technical expertise – please contact us today.
This July, Lineal we be launching our new online Client Portal for all our IT support and managed services clients.
We’ve been preparing this for some time, and we’re excited to see it go live!
Our new Client Portal will be available from week beginning Monday 19th July, and will provide a smart new way of raising IT support tickets with our IT Support Team.
How will it work?
The Client Portal button is accessible in the top right hand corner of our website (on both desktop and mobile devices) and can be used to raise a new IT support ticket directly with our IT Support Team by clicking ‘New Support Ticket’.
You’ll receive email updates whenever the status of your ticket changes.
Since the Client Portal also allows you to log in and check recent progress on your support tickets, you will be asked by email to create a username and personal password when accessing the portal for the first time.
What does this mean?
We’re introducing this extra tool to help resolve your IT queries (particularly routine queries) faster and even more efficiently.
For various reasons, many of our customers have told us they would benefit from the added convenience and transparency of this instant access, self-service tool. Behind the scenes, our IT support package remains the same great service you can rely on.
Can I still use email or phone?
Absolutely! Our full helpdesk IT support service will remain open as normal via [email protected] or 01271 375999. In addition, you’ll also be able to monitor these tickets via the portal.
We hope the new Client Portal will save you both time and effort – providing an easy and convenient new way to raise support tickets swiftly and track progress.
If you have any questions or queries, please contact us via [email protected] or 01271 375999 (or the client portal!)
An intrepid group of Lineal IT engineers are each competing in a capture the flag (CTF) event designed to sharpen the skills of Systems Administrators.
Points are awarded by completing a number of investigative technical challenges across Hyper-V, Microsoft Azure and 365 – capturing a ‘flag’, or important string of text, which credits the player’s score.
Designed to test System Administration and IT engineering skills, one thousand contestants are taking part in the ongoing July event, organised by CyberDrain, and supported by judges from Managed IT Service Provider association CyberGeek.
There are forty flag-capture challenges being attempted by (overwhelmingly) IT engineers around the world – spanning server and client, Azure, Linux and Microsoft 365 management.
Challenges must be completed independently, and the scoreboard is updated as individuals compete for first place. Contestants are encouraged to tackle more difficult challenges to win prizes, and find creative alternative solutions to capturing flags – although hacking is strictly prohibited!
The capture the flag competition is sponsored by a number of leading IT, communications and cybersecurity providers, including Microsoft, Datto and Huntress.
Good luck to all those taking part!
For IT Support and technical expertise – please contact us today.
More than a thousand organisations using Kaseya Remote Monitoring and Management (RMM) software are estimated to have been hit by ransomware over the weekend.
Miami-based Kaseya’s ‘VSA’ product – which is used by Managed Service Providers to provide remote IT services to the systems of organisations worldwide, including endpoint and patch management – is believed to have been breached with an update that rolled-out ransomware to many of Kaseya’s own customers.
REvil themselves claim the total number of encrypted user endpoints around the world may be as high as one million, and have demanded an unprecedented ransom of $70m in Bitcoin (around £51m at current price.)
On Friday, Kaseya advised all customers to immediately shut down any on-premises Kaseya VSA servers, to prevent hackers shutting off administrative access for future fixes – and ignore any communication from hacking groups while an FBI investigation was ongoing.
Access to Kaseya’s cloud-based SaaS services were initially shut down as a precaution, but has since been restored, and an endpoint detection tool has been published online here.
It is now believed that the exploit for Kaseya VSA had recently been highlighted by the Dutch Institute for Vulnerability disclosure, but early patches to rectify the problem had not yet been issued. In the 48 hours following the breach, more than 2,000 VSA severs were taken offline – suggesting that many organisations did heed warnings issued by the US Cybersecurity and Infrastructure Security Agency (CISA), the UK National Cyber Security Centre (NCSC) and others – although Swedish supermarkets, New Zealand schools and many others have had systems crashed by encrypted data.
It’s 2021 but somehow the phishing email scams just keep coming.
You could almost miss the days when ‘Bill Gates’ would get in touch by email to offer you a shipment of diamonds. Modern email scams are much more sophisticated, the designs more convincing, and the payloads more dangerous – than ever.
Our advice remains the same:
Be wary of any unsolicited email or unknown contact.
Always look to see if an email is being sent from the correct domain.
Don’t open any unexpected or mystery attachment, or click links to unrecognised destinations.
If unsure, verify information with someone by asking via a communication method other than email (eg: by looking up a phone number separately from the email, and calling direct.)
Here’s our pick for some of the sneakiest our team have seen ‘in the wild’:
The Dodgy File Share (Deluxe Edition)
As useful as a crowbar in the arsenal of the burglar, cybercriminals have been using these ever since file sharing and collaboration apps took over the world – this one appeared even more persuasive for it’s nearly spot-on branding imitating a Microsoft 365 file share link.
But the Deluxe edition takes this scam to a whole new level – with just a mistaken click giving cybercriminals an automated account access, and even replying affirmatively to emails between users asking if these are genuine. Nasty.
The TV License
TV licensing is something many people buy once a year, often never receiving physical proof, and don’t think about much – making this a clever way to steal card details without arousing too much suspicion.
These often go the extra mile – making up fake customer numbers and renewal dates – to seem real, which can also identify the email as a scam if cross-referenced in your own records.
The Pandemic Phish
Cybercriminals don’t let little things like ethics get in the way of a good scam – with widespread public fear, and the NHS Covid vaccine roll-out in full swing, everything is an opportunity to hack accounts, steal information, or extort money.
Please be aware the real NHS will contact you via a combination of text message and/or post, and certainly won’t threaten you with the loss of your vaccine appointment if you don’t click a suspicious link.
Microsoft have announced a web-based version of Visio will soon be made free to all commercially licensed Microsoft 365 users.
The popular diagramming and visualisation app was originally a standalone license, but will transition to being offered as an inclusive web app for the first time, much like Microsoft PowerBI, Microsoft Project, and other historically specialist apps Microsoft have been keen to promote more widely.
Visio (Online?) is described an initially ‘lightweight’ version of the original, allowing business users to create, edit and share professional diagrams live within their browser – as well as integrate these with other apps such as Microsoft Teams, Office apps like Word or Excel, and even via PowerBI.
This new version will be available to all business users with Microsoft 365 Business Basic (or higher) subscriptions. Power users needing extra functionality (such as the ability to automatically visualise external data sources) will still need a standalone plan (Visio Plan 1 or Plan 2) to access higher level features.
A ‘Visio in Microsoft 365 Early-Access Signup’ Form is available here for keen diagram-makers everywhere!
Lineal are a certified Microsoft Gold Partner – for expertise and support, please contact us today.
As things re-open from Covid-19 lockdown measures, Lineal are taking some important steps to help keep everyone safe while we care for your technology.
Regular Staff Testing
This Spring we introduced regular Covid testing, with Lineal staff receiving Innova SARS-CoV-2 antigen rapid lateral flow self-testing kits.
All results are received within 30 minutes and are submitted twice weekly via the GOV.UK Covid-19 test reporting service.
Maintained Social Distancing
Although staff have returned to the office, we’ve maintained flexible remote and home-based working for many, with around three-quarters of staff working at least two-days per week remotely. Staff hot-desking is discouraged – a measure we’ll review over time.
Lineal’s front-of-house has been enrolled in the NHS venue QR code system since September 2020, for app-based track-and-trace.
We’re asking both staff and clients to maintain onsite social distancing & mask use during site visits, as a precaution.
Vaccination
We’re encouraging all our staff to book vaccination appointments as soon as their age group is eligible under the national NHS covid-19 vaccine roll-out.
At time of writing, this programme has now been extended to those in the 30-40 age bracket.
We’ll be reviewing recommended best practice regularly as NHS guidelines are reviewed. For more information, please contact Lineal today.
Gamma Communications have launched a new ‘PhoneLine+’ service to help micro-businesses prepare for the WLR switch-off due by 2025.
The new easy-subscription service allows micro-businesses, sole traders and other organisations with few lines to move to a low-cost and digital ‘virtual-landline’ style service that can even incorporate their existing analogue phone hardware.
However users can also leverage extra cloud-based features – including desktop PC/Mac softphone and mobile app access to their existing landline(s), call-redirection, number presentation, voicemail-to-email, automated open/close scheduling and other ‘business style’ features.
All existing analogue PSTN phone lines are due to be switched off by 2025, meaning businesses need to plan to either migrate their analogue phone services/numbering either to SIP-based technology or a cloud-hosted VOIP system that routes calls via the internet.
For the UK’s 6.5 million micro-businesses, many of whom rely on mobile re-directs or use a joint telephone number for broadband/voice calls, this presents a challenge, as Openreach is already upgrading the fibre network to FTTP – putting many small companies’ advertised numbering at impending risk.
Moving your phone service to PhoneLine+ is available via a simple email-signup process, with the option of porting across your existing number, and choosing between either a new VOIP handset or adopting your existing landline with an ATA adaptor.
Gamma Communications is both the UK’s largest SIP provider, and one of the most established VOIP telecoms providers: with around half a million phone users using its popular Gamma Horizon platform for business telecoms. PhoneLine+ is expected to prove equally popular, as the telecoms market extends to include smaller organisations, needing a more simple, flexible and cost-effective option.
For communications expertise and support, please contact us our team today.
Apple has released important security updates under macOS 11.3, in response to a serious gatekeeper vulnerability discovered by security researcher Cedric Owens.
The weakness, found in Apple’s ‘Gatekeeper’ tool which normally blocks unrecognised apps from being installed by default, allows a dangerous file to be rigged so as to not trigger the operating system’s inbuilt safeguards.
Writing in a Medium Post entitled ‘Gatekeeper Bypass: 2021 Edition’, Owens demonstrates a terrifying method by which an attacker can ‘very easily craft a macOS payload that is not checked by Gatekeeper.’
Once launched, no warning prompts prevent the user from installing just about any dangerous application, which can also communicate with external servers without even triggering App Transport Security (ATS).
The simplicity of the hack, which leverages the fact that scripts placed in Contents / macOS / directory are not checked, has been described by Objective-See as ‘massively bad’ and ‘a doozy’ of a blog post.
GateKeeper itself was originally introduced in 2012 as part of an effort to stop the spread of malware in Mac OS X ‘Lion’ v10.7.5, and was followed by enforced application notarisation in 2020 under macOS 10.15 ‘Catalina’, as Apple required software developers to have apps officially cleared for authorised use.
In response to the discovery, Apple have released macOS Big Sur 11.3 update with ‘improved state management’ that prevents the ‘bypass’ of Gatekeeper checks, and are urging macOS users to install the upgrade.
For Cybersecurity expertise and support, please contact our team today.
Facebook and LinkedIn have both suffered massive data breaches, exposing the details of more than 533 million and 500 million user accounts respectively, it has been revealed.
Extensive leaked data from Facebook was reportedly found online by security researcher Alon Gal – including the personal information of 11 million UK users such as phone numbers, locations, birth dates and many email addresses.
It’s believed that the ‘hack’ may relate to a bug in Facebook’s friend-adding ‘Contact Importer’ tool which was fixed in September 2019. Previous breaches in 2017 fell before the introduction of GDPR, which Facebook argues absolved it of responsibility to notify users.
Questions still hover over the LinkedIn breach in particular, with the company claiming much of their data appears to have been aggregated from other sources, or (like Facebook) were perhaps not technically ‘hacked’ at all – but scraped in bulk from publicly visible parts of the popular professional website.
The huge cache of Linkedin data was thought to be on sale, after security researches found a 2 million user ‘sample’ advertised online.
A Facebook spokesperson told Reuters the social media platform will not inform users if their accounts were part of the breach, and Linkedin are yet to issue a statement on this point – although given that LinkedIn has around 740 million accounts in total, a clear majority of its users are likely affected.
Users of both platforms can check if their email addresses (and now phone numbers) were likely breached via either platform over at: https://haveibeenpwned.com/ – and are advised to update passwords as a precaution.
For IT Support and cybersecurity expertise, please contact our team today.
Android users around the world have reported problems with apps crashing randomly, following a widespread fault with WebView.
In particular, the problem seems common to email clients including Google Gmail, Microsoft Outlook, Yahoo! Mail and more – with one early warning sign being the repeated display of messages warning that apps ‘keep closing’.
It’s as yet unclear how the bug found its way into the live build of so many users’ hardware. In a statement, Google acknowledged they are aware of the fault, and advised users looking to self-fix the problem to uninstall Android System WebView.
A further fix was issued to Android as of 11pm Pacific Time on Monday which updates WebView directly. Webview is a piece of software which helps load content from the web and receives regular updated alongside Google Chrome.
So far only Google and Samsung support have acknowledged the issue directly, although it’s likely to affect all recent Android phones not yet updated to Chrome version 89.0.4389.105.
For IT Support and expertise, contact our team today
Microsoft have urged the system admins of on-premise Exchange email servers to upgrade in response to new breaches from state-sponsored hackers.
The Chinese group, known as ‘HAFNIUM’, are believed to have exploited previously undiscovered zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016 and 2019 via compromised US-based servers. Microsoft Exchange Online or related services (such as Microsoft 365) are not affected.
CVE-2021-26855, CVE-2021-26857, CVE-2021-26858 and CVE-2021-27065 create a ‘perfect storm’ under which the attacker makes an untrusted connection to the targeted Exchange Server on port 443, and connects appearing to be someone with authorised access to add a web shell that grants a backdoor for future access.
HAFNIUM has previously been accused of industrial espionage and attempts to breach the technology of important private, public and national security organisations, including defence contractors.
As of 4th March, the Department of Homeland Security has also issued an emergency directive to all US federal agencies to urgently patch any on-premises Exchange servers by midday on 5th March.
For Cybersecurity advice and expertise, please contact our team today.
The UK National Cyber Security Centre have launched a new online Cyber Aware ‘Cyber Security Self-Assessment Tool’ to help small businesses.
Free to use, and aimed at organisations with fewer than ten staff, the short online questionnaire generates a handy to-do list of actionable cybersecurity recommendations and points to check, with guidance for each – depending on the answers submitted.
Questions are branching depending on the circumstances of each small business, but covers topics including backups, passwords, technology lifecycle management and more. Small business owners are also directed to useful plain-English resources to address each point highlighted.
Cyber Aware is a campaign launched by the UK National Cyber Security Centre (the public-facing arm of GCHQ) designed to provide simple guidance for individuals and small businesses to use technology more safely.
2021 continues to bring surprises, and in the fast-moving world of technology, new revelations are always just around the corner.
Here’s five of the most eye-catching tech articles our team have spotted in recent weeks:
“With no payload, analysts are struggling to learn what this mature malware does.”
A curious malware found on numerous latest-generation Macs seems to have no purpose, and even comes with a self-destruct mechanism – leaving the cybersecurity community baffled.
“New malware found on 30,000 Macs has security Pros stumped” – ARS Technica
“So Alex could just call Tony Abbott’s cell phone directly to report this, or send him a DM on Insta.”
Why shouldn’t you post a picture of your boarding pass on social media? A cybersecurity technician ends up talking to the former Prime Minister of Australia, after discovering you don’t necessarily need any hacking skills to breach a major international airline.
“Ep.84 – Jet Setters” – Dark Net Diaries
“What seems like a big win for privacy may, ultimately, only serve to tighten Google’s grip on the advertising industry and web as a whole.”
“Facebook Apologises for Flagging Plymouth Hoe as offensive term” – Evening Standard
“Chrome OS became the second-most popular OS..”
Driven largely by education sales, Chrome OS has officially become the world’s second-most popular operating system, taking new market share from Microsoft Windows and pushing Apple’s MacOS into third place.
“The world’s second-most popular desktop operating system isn’t macOS anymore.” – ARS Technica
For IT expertise and support, please contact our team today.
Support for Microsoft Edge Legacy will officially end on 9th March 2021, and the web browser will not receive any further security updates, Microsoft have announced.
The next Windows 10 monthly update, due 13th April, will automatically include the new (Chromium-based) Microsoft Edge and replace the legacy version automatically.
Edge was originally released in 2015 as a direct replacement and refresh for Internet Explorer, which was rapidly losing market share among the world’s most popular web browsers. Edge Legacy, which used EdgeHTML, was a programming fork of Microsoft’s ‘Trident’ engine that had been used in Internet Explorer 11.
The new Edge, released in 2020 and based on the same Chromium ‘Blink’ browser engine as Google Chrome, has proved more popular – and as of January 2021 looks set to overtake Firefox as the world’s third biggest web browser.
Enterprise organisations still provisioning the legacy version as standard are advised to plan their deployment of the new Microsoft Edge with the following set of steps.
Lineal are Microsoft Gold Partner – for IT expertise and support, please contact us today.
Chinese tech giant Xiaomi have debuted a new, longer-range, wireless ‘air charging’ technology.
Mi Air Charge allows a special charging beacon in the home to detect a device, such as a smartphone, and directionally provide up to 5W of wireless charging at a distance.
The company claims this is the first ‘truly’ wireless charging technology that doesn’t require a device to be physically placed at a base station for induction charging.
144 antennas comprising a phase control array allows the beacon to direct millimetre-wide charging waves via beamforming to a special rectifier circuit on a Xiaomi smartphone handset that recharges the device battery. The company believes similar technology will eventually be available for smartwatches, smart speakers and other home devices.
It’s not yet clear how far a user will be able to roam from the beacon, although Xiaomi claim the charging will work at ‘several meters’ distance.
Although the device is largely a marketing prototype at this stage, Xiaomi are expected develop it into a viable consumer product. The corporation has been officially listed on the Hong Kong Stock Exchange since 2018, and is focusing on ‘Internet-of-Things’ (IoT) devices and supporting technology.
For IT support and expertise, contact our team today.
Microsoft Teams have added Breakout Rooms to online meetings to support group collaboration.
Breakout rooms act as small satellite virtual meetings, and can be used to temporarily divide a larger meeting into smaller teams for workshop exercises or brainstorming sessions.
The feature has been a popular request among Education users, as successive Covid-19 lockdowns forces more academic institutions to adopt remote-teaching.
Teams supports up to fifty simultaneous breakout rooms with custom names, assigning individuals to specific rooms, organiser announcements across rooms, and automatic closing of rooms back into the meeting.
The additional control is still marked as ‘Preview’ while the feature is being rolled out to PC and Mac users.
Lineal are a certified Microsoft Gold Partner – for Microsoft 365 expertise and support, please contact our team today.
Approximately 50,000 UK customers have had .eu domains suspended, following Brexit.
The .eu domain registrar EURid has formally suspended 81,000 such domains as of 1st January 2021, following the decision that .eu ownership requires the owner to be resident in a country that holds membership of the European Union.
Many internationally trading UK companies hold foreign domain versions of their websites to assist trading overseas, support multiple languages, improve web performance in other territories and develop export markets.
Numerous IT services, including email, websites, directories and more are often also tied to domains which represent a key pillar of many companies’ authentication technology.
Many British domain holders cancelled their domains as the transition period approached – over 200,000 .eu domains held by UK customers were cancelled between 2018 and 2021, with registrars contacting customers multiple times to alert them to the changes.
Although the remaining 81,000 have not been not cancelled outright, UK customers have no way to recover these domains without being able to prove the owner holds citizenship of an EU member state, and provide a suitable registered address.
Britain’s exit from the EU also begins a countdown for these customers – who must either have an EU company representative to renew on their behalf, or face their domains put back up for sale again by 2022.
A number of major UK internet service providers (ISPs) have announced above-inflation broadband price rises for 2021.
Virgin Media says an average customer will face a 4% rise this year – announcing that the increase is part of a plan to invest £1 billion in its network infrastructure.
BT, EE and Plusnet have also amended their terms of service, and are expected to publish above-inflation price rises over 4% shortly. Sky have already raised prices, with some customers seeing increases of up to 10%.
Ofcom figures suggest market rates for broadband have remained broadly consistent over the course of the last decade prior to 2020 – driven in part by more of the UK being brought on-stream under Openreach’s superfast fibre roll-out.
Although network investment is likely to be welcomed, many customers will no doubt suspect ISPs are raising profits at a time that the UK is particularly dependent on home use of connectivity.
Where investment also supports fibre-to-the-premises (FTTP) rollouts, the increase may also represent a regressive step – charging customers in less well-connected parts of the country with slower broadband to fund upgrades in already better-connected areas.
Approximately 41% of broadband customers are not in contract, and the best deals are gained by those who look for options rather than renewing automatically. New Ofcom rules mean that price rises from an ISP allow escape from contract terms, giving customers other options.
Contact Lineal – Placing your connectivity with a trusted IT provider can be both more organised, and sometimes better value. Contact us today!
SMS-based two-factor authentication, where the user typically receives a passcode text message to their smartphone that acts as a secondary confirmation of who they are, has been a staple of online banking and many other secure online services needing two-factor authentication (2FA) for over a decade.
However many now believes even SMS can be intercepted, and would rather sign users onto authenticator apps or issue secure keys with encoded passcode generation.
Official Microsoft statistics state that users who enable Multi-Factor Authentication (MFA) on their accounts to verify identity block 99.9% of all automated account breaches. Using SMS-based two-factor authentication should not ‘stop’ doing so (despite the flaws of SMS, any 2FA is better than none) but users should consider swapping to other methods.
However this modification to Microsoft’s advice will see more of a driving force behind MFA as specifically biometric, authenticator app or secure-key based, rather than relying on mobile networks for one-time passcodes.
For cybersecurity expertise and support, please contact out IT team today.
Apple have announced a new range of Mac devices with Apple M1 Silicon Chips. iPad and iPhone devices have used Apple’s own ‘A’ chips for some time, but M1 will be the first Apple chipset in macOS devices – which previously used Intel chips under license.
M1 is expected to show exceptional performance – with the 8-core CPU matching comparable PC laptop performance while using only 25% of the power, and able to deliver over twice the speed of comparable PC laptop CPU performance at maximum power levels.
Autumn 2020 sees the release of macOS Big Sur, the latest update to Apple’s Mac operating system, which has been optimised for the M1 chipset and its integrated graphics – as well as offering new app features such as universality for all Mac apps across all M1 devices, and offering iOS/iPadOS apps vis macOS.
For Apple expertise and support, please contact our team today.
Lineal are delighted to be taking part in the new Petroc Techknowledgey Transfer project – aimed at teaching students to support businesses with special technology masterclasses.
The project will involve some of North Devon’s best known technology firm, and cover a range of different topics, including modern accounting, digital marketing, procurement, cybersecurity and other important business processes.
“Petroc’s Techknowledgey Transfer project is excited to be supporting local businesses alongside local business experts Applegate Marketplace, Maynard Johns Chartered Accountants, Lineal, LimeCloud and Barr Media to deliver an exciting new project.
We are inviting small and medium sized businesses to access support on business admin technologies. Our business partners will be delivering fully funded virtual masterclasses to eligible businesses. We also have student work placements available for some businesses. For more information, please contact- [email protected]”
One hundred small businesses will be selected to take-part in the student-led part of the Petroc Techknowledgey Transfer, which will also be a studied project to measure the benefits of technical expertise being applied to businesses.
Microsoft have previewed the Windows 10 October 2020 update with a partial re-design aimed at making the display clearer and enhancing security options.
Windows 10 updates are free of charge and are now issued to over a billion devices on a twice yearly update cycle.
Among the changes recently revealed on the Windows Experience Blog were:
“A refreshing Start. The Start menu has a more streamlined design. A uniform, partially transparent background to the tiles creates a beautiful stage for the redesigned app icons like Calculator, Mail and Calendar. This refined Start design looks great in both dark and light themes, but if you’re looking for a splash of color, first make sure to turn on Windows dark theme and then toggle “Show accent color on the following surfaces” for “Start, taskbar, and action center” under Settings > Personalization > Color to elegantly apply your accent color to the Start frame and tiles.”
Ease of use has also driven other improvements, such as more natural support for Windows 10 on convertible devices:
“2 in 1 toast elimination. 2-in-1 devices now naturally switch by default to the new tablet experience without the notification toast asking you to switch into the tablet mode when you detach the keyboard, helping to keep you in your flow.”
“A Taskbar tuned to your liking. Getting a new Windows PC? You will enjoy a cleaner, more personalized, out-of-box experience featuring a taskbar specifically curated for you—less clutter and more content that you’ll love. (This experience is limited to new account creation or first logon scenarios.)”
In addition the new version includes security enhancements – including an updated version of Windows Hello3 single-sign-on & multi-factor authentication technology:
“Simpler device management. Mobile Device Management (MDM)1 now includes a Local Users and Groups policy that gives administrators the same options as on-premises Group Policy.”
“More secure biometric sign on. With enhanced sign-in security2, Windows Hello3 now offers added support for virtualization-based security for certain fingerprint and face sensors, which protects, isolates and secures a user’s biometric authentication data.”
“Stronger app protection. Windows Defender Application Guard (WDAG)4 now helps protect Microsoft 3655 as well as Microsoft Edge with a unique hardware isolation strategy. WDAG keeps enterprise data protected by opening sites and Office files from untrusted sources in a virtualized container.”
Lineal are a Microsoft Gold Partner – for IT support and solution expertise, please contact our team today.
Password managers help users remember all their passwords – but can be a much more powerful tool for dramatically limiting the damage in the event of a single account being compromised.
Criminals increasingly use credential-stuffing attacks where automated tools use previously-breached account details to gain access to the user’s other accounts.
A good password manager ensures you can use a strong, randomly generated and distinct password across each of your accounts to prevent any single breach putting other data at risk.
Keeper can also notify users when breached passwords are identified online, integrate with single sign on tools such as Active Directory, and enforce multi-factor authentication – all important considerations for organisations needing to maintain cybersecurity standards across large teams.
For added convenience, Keeper is available via the web, Windows/MacOS desktop clients, browser extension and Android/iOS mobile app.
For Cybersecurity advice and expertise, please contact our team today.
From December 2021 UK mobile networks will be forbidden from selling network locked mobile handsets.
Communications industry regulator Ofcom believe locked-handsets is anticompetitive, and prevents customers switching mobile providers easily.
Network providers have claimed locked handsets are a deterrent to phone theft, although Three mobile, O2, Sky mobile and Virgin mobile have already ended the practice.
Mobile providers also argue locked handsets help justify better promotional rates (blocking customers exploiting the cheapest handsets deals and then swapping networks) although consumers often claim it is an attempt to hold onto customers who would otherwise have switched provider anyway, such as after the end of their contract.
Unlocking a phone typically costs around £10, but customers must normally find a third-party provider to assist, and face a delay or technical problem during switching – which Ofcom believes is unfairly difficult.
The change to consumer law brings the UK into line with the rest of the EU, although the UK changes have been under consideration since before recent EU rulings on the mobile market.
In addition a number of other changes are planned or June 2022, including more accessibility provisions for disabled customers and greater exit-rights where contract terms change unexpectedly.
Facing an income shortfall of around £2m due to falling visitor numbers during lockdown, the Bletchley Park Trust, which is a registered charity, was facing extensive redundancies – some of which will now be avoided.
In a statement, Facebook said the heritage site was a ‘birthplace of modern computing’, and acknowledged the important strategic role the wartime location played in shortening the war.
Bletchley was home to a number of famous mathematicians, linguists and other intellectuals working in secret on behalf of the war effort, including Alan Turing – now considered the father of modern computing – Gordon Welchman, Hugh Alexander and others. At its peak, almost 10,000 personnel, around 75% of which were women, worked as part of Bletchley’s operation, who remained bound by the Official Secrets Act until at least the 1970s.
Google have re-branded GSuite as Google Workspace, in an effort to consolidate the Google software brand for business users.
The re-designed platform brings Gmail, Google Drive, Google Docs apps, Google Meet and more all under one banner more officially, and follows other recently announced updates to the platform including new file deletion rules for Google Drive.
New collaboration tools for the post-lockdown world have been added – including simpler sharing of co-authored documents, previewing documents before opening them, and introducing popout video calling during co-authoring.
“…We’re bringing Meet picture-in-picture to Gmail and Chat, so you can actually see and hear the people you’re working with, while you’re collaborating.”
Existing Gsuite customers will not face contract changes for at least 12 months, although redesigned app icons and extra features will begin appearing during October 2020, and new Google Workspace customers will be expected to choose from the new licensing packages immediately.
More information for both existing and new customers is available on the officially rebranded Google Workspaces Blog here.
For knowledge of cloud services and excellent IT expertise, please contact our team today.
The original source code to Microsoft Windows XP and Windows Server 2003 has leaked online – nearly two decades after their original release.
Official support for Windows XP ended back in 2014, and the final security patch was a one-off release in 2017 released in response to the WannaCry ransomware attack that temporarily crippled large parts of the NHS.
According to NetMarketShare, Windows XP still accounts for at least 1% of all PCs that generate web traffic worldwide (around 25 million PCs) although may actually include many air-gapped factory PCs and similar in practice.
The 43gb data dump has been available to Government agencies and similar for a while, although it’s unusual that the public at large have the opportunity to discover zero-day exploits for an entire operating system. Microsoft urges that users should not still be using XP, and the outdated platform is insecure even for the oldest legacy services.
For IT expertise and guidance, contact our IT team today.
Google Drive trash will soon impose a new 30-day automatic deletion deadline on trashed files.
At present users may delete files, but these are retained indefinitely in their Google Drive trash until deleted manually – causing a loss of storage space, encouraging hoarding of files, and convincing users that they need not worry about file retention limits.
The change, which begins on October 13th, brings Google Drive more into line with Gmail and other free Google Services – as well as rivals such as Microsoft OneDrive and Dropox – which also auto-empty trashed files after set periods. New warnings inside Google Drive will notify all users.
You can learn more on the GSuite updates blog, published here. As before, G-Suite admins will have the ability to recover post-trash deletion for a further 25 days, although this is a hard limit and only available for active users.
This year’s Lineal Client Survey 2020 saw hugely positive feedback, and record customer satisfaction results for our staff – thank you to all who took part.
2020 has been a turbulent year so far, but our positive improvement in the quality of our technical services continues from similar results during recent years. (Past Client Survey Results: 2019, 2018, 2017, 2016)
A record high number of you (76%) felt we “understand your questions and/or problems” “Extremely Well”. This is the most people who have ever awarded us the top grade, and represents long-term progress: over double the quality score we received back in 2015.
We asked an important supplementary question this year: how did you feel our IT Teams supported you during the Covid-19 lockdown specifically? Respondents graded us strongly, with a mean average of 4.45 stars out of 5.
For the first time, more than 70% of respondents considered our overall customer support “Great” – also the highest grade available, and twice our score from five years ago.
We also continued to make steady progress on our speed of responsiveness: more than 50% of you now feel we respond ‘Quicker’ than expected, and for the first time more than 20% of you considered us to be “Much Quicker” than expected – again: a rating we’ve doubled in recent years.
Lineal’s Net Promoter Score – an industry wide metric for good customer service which asks whether respondents with consider referring our services to a friend or colleague, rose to +56 this year, our best score to date.
Your feedback helps us identify areas of weakness where we still have room to improve: and to focus training and other resources on ensuring our clients receive the best service possible. In this coming year, we’ll be looking at ways to track our progress more steadily over time.
“Staff show an understanding of the issues and are dedicated to resolving them and formulating a constructive outcome cost effectively. It is not so much about a quick response and service, it’s more the fact that the staff take ownership of the problems.’
“We love Lineal. So helpful and understanding of our needs. No other company matches up to the efficiency of them. Big thanks to Paul and Hugo!”
“When we moved from Outlook 365 Home to Business we could not have had more support.”
“Fantastic service! They helped me find a replacement iMac when mine died, and the service they give is exemplary! Highly recommended! 10/10.”
For expert IT Support and technical services, please contact us today.
Many Adobe Lightroom users on iOS have suffered a crippling data loss after a faulty routine update.
Users who updated to Adobe Lightroom Mobile 5.4.0 on iPhone or iPad had their photos and software presets deleted unexpectedly.
Adobe, which develops a large suite of creative apps for the media and design-sectors, has apologised and issued an update for the fault, but made clear that the lost data is irretrievable to those without backups.
The software company’s statement clarify it is only a subset of Lightroom users who have been affected – specifically those:
Using Lightroom Mobile 5.4.0 on an iOS device (iPhone/iPad)
Without an Adobe Cloud Subscription, or with cloud sync disabled
Without a separate device or cloud backup (such as iCloud) in operation, independent of Lightroom itself.
This includes many free version users who would have trialled Lightroom without a full Adobe Creative Cloud subscription.
Users are advised to update to 5.4.1 to avoid the issue, although this will not restore lost photos. As always: please, please, please maintain an independent backup of all data you can’t afford to lose.
For IT Support and business continuity assistance, please contact our team today.
Qualifying businesses in many rural parts of the UK are eligible for a Voucher worth up to £3,500 to help get new leased-line fibre broadband installed under the UK Gigabit Voucher scheme.
The Government recently urged SMEs to apply, with Digital Minister Matt Warman MP arguing the £70m pot is “still there for the taking.”
But what is the Gigabit voucher scheme, and how does it work?
How fast is gigabit?
Gigabit broadband is 1,000 megabits/per second (around twenty-times the download speed of a normal domestic FTTC connection) and unlike conventional broadband, supports a ‘symmetrical’ upload rate that is equally as fast as the download.
In most cases however, SMEs will deliberately opt for a more limited connection speed on a gigabit ‘bearer’ (eg: 200Mbit/s up and down) to keep costs manageable, while retaining the capacity and option of regrading up to a maximum of 1,000 Mbit/s at a later date if needed.
What does the voucher get used for?
Most connectivity providers charge an installation cost on new Leased Line installations – normally based on the length of fibre cabling that must be ‘dug in’ to connect the business. The voucher is a refund to help offset this upfront cost. Businesses must pay the ongoing monthly connectivity charges as normal, but the voucher is intended to help firms overcome the initial barrier-to-entry.
I’d like £3,500 please.
Quite! Although the the voucher is paid direct to your chosen supplier. Once your business has applied and been deemed eligible, your supplier will submit your voucher with your details when you place the initial order for your leased line. After your fibre is dug-in and connected, the scheme will check that your service is live before paying your supplier the due amount.
If your install is less than £3,500 you are likely to only be awarded the relevant cost, rather than the full amount. In most cases businesses will be signing a leased-line term with their provider for the ongoing cost of connectivity – normally between one and five years.
Can I use my voucher via Lineal?
Yes! We use Gamma Telecom Ltd for fibre leased-line connectivity, who are an approved supplier under the Gigabit Voucher Scheme.
Why is this funding being offered?
Successive Governments have reasoned that investing in better broadband is good for UK business growth, but the logistics of physically digging in fibre cabling is left to third-parties such as Openreach. Those providers insist ‘hard-to-reach’ properties are not economic to connect under the regional FTTC and FTTP broadband roll-outs because of the upfront cost of this installation work, or that gigabit fibre to the entire country is only achievable over the long term. For the best return on investment, the Government wants to prioritise upgrading businesses that already suffer slow speeds.
Gigabit fibre installations to commercial properties are also a capital project – the physical fibre, once ‘dug-in’ to a business premises, may end up being used for years to come by future businesses who take over the site, allowing more companies to benefit from widespread upgrades to the existing infrastructure.
What are other businesses doing?
To date around £90m worth of vouchers have been awarded so far, and around 29,000 connections have already gone live. The Government’s election pledge during 2019 was for gigabit fibre for the whole of the UK by 2025, a target which is widely expected to be missed.
This leaves rural businesses dependant on inclusion in their regional fibre-to-the-cabinet broadband roll-out as a stopgap, hoping to be included in an early tranche of Openreach’s future FTTP roll-out, or looking to fund the upgrade to a leased lined themselves.
Help! We really are out in the sticks!
If the cost of your install is still too large, there are other options: such as pooling your vouchers with neighbouring eligible businesses, accessing faster connections via 4G or point-to-point link. Speak to us to learn more.
Lineal Software Solutions are excited to announced the public release of our next generation of SQLWorks software.
Version 10 of our flagship business management suite harnesses more advanced manufacturing capabilities for the first time – introducing brand new material resource planning (MRP) capabilities into our existing integrated accounting, CRM & stock control platform.
Automation is critical to productivity. SQLWorks MRP allows businesses to instantly gauge future demand for stock items & materials based on a flexible time horizon and existing stock availability, automatically generate purchase orders for approved suppliers, automatically roll-up part and cost changes through bills of material, and automatically create works orders for production centres on the factory floor.
“… We are clear that the faster adoption of technology will result in greater investment and in more manufacturing taking place in the UK.”
UK Gov ‘Made Smarter’ Manufacturing Review
These hotly-anticipated new features will help drive real business benefits, especially among manufacturing and logistics companies: including more intelligent and cost-effective purchasing, optimised stock holding, and coordinated forward planning of production.
Factory managers can now backflush manufactured items, auto-attach engineering documents, optionally roll-up updated part-costings from purchasing through the relevant kits, and even import new assemblies from popular engineering CAD software via drag-and-drop.
“… British manufacturing needs a factory reset.”
Mike Matthews, Lineal Software Solutions
MRP is an immensely powerful tool for running a business – and we’ve given users the ability to drill-right down into purchasing and production recommendations – finding the exact source of demand from potentially thousands of orders, to line level, with a simple double-click.
SQLWorks manufacturing abilities integrate seamlessly with other business processes across accounting, CRM and stock control – and we’re planning further extensions to functionality for release later in 2020: including detailed capacity planning, support for ‘Just-In-Time’ (JIT) style manufacturing, and more complex ad-hoc report building.
We’ve also made some updates to the visual identity of SQLWorks with this iteration to help make our software feel smoother and more accessible to new users, and expanded Lineal’s UK Software Development Team of Omnis developers to hasten our development cycle.
Mike Matthews, Lineal’s Managing Director, explained: “This is a terrific new leap forward for our SQLWorks software. The new release is our most advanced ever, and introduces powerful new manufacturing and logistical control to our existing business management tools.”
Measurable Business Benefits
One, fully-integrated platform
Heightened financial visibility
Hours of work duplication saved by automation
Greater manufacturing control
Optimised spending & stock holding
Genuine support for business continuity
“We believe the ability for industry to automatically complete important engineering tasks – like importing newly-designed assemblies, production planning, updating part costs and forecasting future operations – will prove a popular choice among manufacturers.”
“Post-lockdown many firms will be doing some serious soul-searching about whether their systems are really up to scratch. British manufacturing needs a factory reset. If you can’t innovate then you’re at a dead end, and modernisation will be an important part of the UK’s economic recovery.”
Lineal’s Mike Matthews and Huma Mahmood-Khan recently featured on the Tech South West Podcast (‘Tribe Tech’) – to discuss the post-lockdown recovery, women in tech, and Lineal’s new SQLWorks MRP software.
It’s nearly a year since Lineal was shortlisted for Tech Company of the Year, and won a 2019 Tech South West Award (North Devon Cluster). Members of our team were invited to discuss recent developments, including Covid-19 and other issues facing the technical sector, alongside other award-winning tech businesses from across the region.
Tech South West exists to champion the area’s growing number of technology businesses, showcase innovation and suport STEM skills across the wider South West region – partnering with a number of more local Tech Business Groups to advocate for the sector.
July 14th: as Microsoft flag a ‘Critical’ Level-10 DNS vulnerability on Domain Name System (DNS) servers worldwide, Lineal engineers rush to patch the infrastructure of dozens of organisations overnight.
The Microsoft Security Response Center recently released details of CVE-2020-135, a ‘Critical Remote Code Execution’ weakness deemed ‘wormable’ (potentially spreading between devices automatically) affecting all Windows Server versions.
A grade of 10.0 is the highest possible severity level that can be assigned under the Common Vulnerability Scoring System Calculator. For comparison the WannaCry attack, which temporarily crippled the NHS in 2017, had a CVSS rating of 8.5.
Lineal staff use remote monitoring software to administer large numbers of client servers and devices, monitor hardware health and deploy patches more rapidly – and were quickly on the case overnight to patch the vulnerability as a special emergency.
Within 8 hours we’d patched a large number of DNS servers – applying both an initial fix and further scheduled updates.
DNS is a naming technology which translates the identities of computers, servers and other networked devices into the IP addresses used for connecting on private and public IT networks.
For this reason, DNS servers often have massive reach, and must be carefully protected to mitigate the risk of compromising an organisation’s technology on a huge scale – even across the globe.
Israeli IT security firm Checkpoint Software Technologies, who discovered the 17-year old hidden bug and reported it to Microsoft, argue ‘this is not just another vulnerability’ and risks handing an attacker ‘complete control of your IT’ if IT admins fail to address the issue urgently.
For IT expertise and support, please contact our team today.
UK mobile networks have been instructed not to buy Huawei 5G equipment for their infrastructure by the Government, and must remove all existing Huawei equipment by 2027.
The landmark ruling came following an overturning of last year’s half-way decision to ban Huawei from the ‘Core’ UK network only – decided as a result of the UK National Cyber Security Centre’s 2019 findings that due to US sanctions affecting Google Android products, any Huawei chip manufacture removed from (Japanese-owned and UK-based) ARM could ‘increase the risk’ to the UK.
Huawei itself argues the criticism is a politically-motivated attack by Washington to hit the Chinese economy. The tech company is the World’s biggest provider of this kind of technology, as well as one of China’s most successful exporters.
China itself has undoubtedly faced more scrutiny from the international community in recent months, following news stories about the Chinese Government’s handling of Coronavirus, Hong Kong protests, the detention of Uighur Muslims in ‘reeducation’ camps, and the close connections between Huawei and the Chinese Communist Party.
All four of the UK’s big mobile providers (BT EE, Vodafone, Three and O2) all use Huawei equipment in their core networks, albeit to different extents. The decision also affects major broadband infrastructure providers, such as BT Openreach, and related ISPs.
In practice, this means 5G providers will be forced to look at alternatives from either Finnish-provider Nokia or Swedish provider Ericsson.
For IT expertise and support, please contact our team today.
Microsoft have previewed an exciting new set of Teams collaboration features in the June 2020 update.
Those on the more experimental Preview Build will be the first to receive the option for large Gallery View – expanding the video meeting grid to 7×7 for a maximum of 49 participants in a meeting. The maximum possible meeting attendance is also set to be increased to 300 participants.
With Schools around the world attempting to push ahead with e-learning, there’s also a new ‘Class Insights’ dashboard designed to monitor pupils’ engagement. Microsoft is promising ‘virtual breakout rooms’ – with centralised control via an organiser who can direct smaller groups to their own meetings and recall them to the main meeting when ready.
Multi Window support will allow users to create satellite calls, chats and more in external windows for better productivity – likely to be especially welcomed by those who use more than one display.
For those speaking English, live captions in meetings will be available in Preview Build to support extra accessibility.
Assigning Priority status to certain chats will allow users to receive custom notifications on important or urgent items. On the security side, external the PSTN numbers of dial-in users will now be masked to guest-attendees, and ‘screen-lock’ is compatible between Teams phones and the desktop app.
Teams phone hardware is receiving a host of new UI features, and for those interacting with more personal users, Teams calling has become inter-operable with the Skype app. This will allow more public facing communication between business Office 365 tenants, and those with Outlook.com acounts, Microsoft 365 consumer/student plans and similar.
The Free Teams Trial will also have one of its key limitations, the ability to schedule meetings, removed in a bid to encourage users to get the most out of one of the platform’s strongest features.
Microsoft have increased the Sharepoint maximum file size upload limit up to 100GB.
Previously limited to 15GB, Microsoft’s powerful cloud-based, centralised file sharing platform used by businesses and enterprise organisations around the world will now permit users to store larger files following Microsoft’s June update.
A default Sharepoint tenant of 1TB could now store up to ten 100GB files – allowing Microsoft 365 users greater flexibility to store or backup longer videos, CAD designs and other typically large filetypes used by specialist software.
This also applies to Microsoft 365 products which use Sharepoint as their underlying technology behind the scenes – such as OneDrive, Stream and Microsoft Teams.
Cybersecurity experts are warning against a prevalent new strain of macOS ransomware for Apple devices dubbed ‘EvilQuest’ – packaged alongside pirated versions of popular apps.
Like most ransomware, EvilQuest encrypts all the Apple user’s files and demands a $50 ransom for decryption within 72 hours.
While many Mac users believe malware for Apple devices does not exist – this is simply untrue. The newest strain comes after similar infections spreading between Mac users in recent years, including KeRanger and Patcher.
EvilQuest is also a more sophisticated effort than most attempts by cybercriminals: the app is correctly code signed, with a very convincing installer, and even overpowers the Mac versions of common antivirus softwares such as Norton, Kaspersky, Avast, McAffee and Bullguard.
The trojanised software known to be used to deliver EvilQuest to unsuspecting victims are torrent download versions of popular Apple macOS apps, examples of which include Little Snitch, Ableton Live and Mixed in Key 8 – a popular DJ software.
Among the important steps Mac users should take to reduce the risk of macOS ransomware are:
Keep a regular, organised regime of backups, offline and air-gapped from the device itself.
Only download Apps from reputable sources.
Consider whether utilities like Malwarebytes and RansomWhere are needed as extra precautions.
For IT Support and cybersecurity expertise, please contact our team today.
This defining moment of the 21st century has provided ample inspiration for the world’s writers, bloggers and journalists – so far, 2020 has been a big year for tech.
Here’s some of our favourite technology articles from across the internet in recent weeks:
1. “… By now the silence from the UK government about the NHS app was deafening. What was going on?”
The Ransomware that Attacks your from inside a Virtual Machine – Sophos
3. “… In the rest of the building, only three people tested positive out of 927”
A fascinating diagrammatic look at how Covid spread through a single floor of a 19-story office building; researchers conclude duration of interaction is the critical danger to workplace safety.
An Analysis of three Covid-19 outbreaks, how they happened, and how they can be avoided – El Pais
4. “… In fact, Zoom is using its own definition of the term.”
Free public Wi-Fi is a popular service for retail, events and hospitality providers to offer, and increasingly becoming an expected service among the public.
This needs careful thought: not least technical considerations like how to keep public networks isolated from work networks, and providing strong enough connectivity to support the user environment.
But most importantly: how should a businesses or organisation to gain value back from providing free Wi-Fi? We take a closer look at some of the best techniques.
Authentication & Audience Participation
Most public Wi-Fi networks expect connecting users to ‘authenticate’ by providing details such as their email address or name, and often accepting some terms and conditions of use.
This can be a fantastic marketing opportunity to gather email subscribers, demographic data, survey product popularity, or simply count customers.
Alternatively, commercial quality systems like Cisco Meraki also offer hidden gems like Facebook Authentication – in which the user has to ‘Like’ the business brand or page to gain access. This kind of authentication is superb way of increasing your visibility online by leveraging value from public Wi-Fi – effectively asking the public to become your marketeers via social media.
Physical signage and other real-world marketing can also encourage visitors to share their experience of your venue or event online while their complimentary connectivity is available.
Targeted Advertising
‘Splash’ Pages loaded on the User’s device when they first connect are customisable on many business Wi-Fi platforms, and this creates a perfect opportunity to brand the experience.
Treating this like a regular webpage offers the chance to advertise offers that are time-sensitive, updated seasonally, or promoting key products.
Alternatively, if your audience is large or targeted enough, then this space can be treated like digital real-estate, and sold on as advertising space to others looking to reach an audience.
Footfall Mapping
By combining signal strengths from different access points and triangulating the direction, enterprise systems like Meraki are able to produce animated ‘heatmaps’ of footfall around a site or venue over time.
This is valuable information it itself for public-spaces and retail centres – who rely on being able to control or exploit human travel to maximise sales, minimise costs or optimise the flow of people.
Prompt for Reviews
You’ll never get a more geographically targeted audience than this – so why not ask the key question when it counts?
To online brands in particular, digital reviews are worth serious investment, and smartphone connections direct with the customer is a perfect opportunity to prompt via the web for useful feedback or survey customer satisfaction.
Alternatively ask publicly: and gather Google Reviews, Facebook Ratings, Trustpilot Stars, or any other feedback that is of value to your organisation en masse.
For Wi-Fi guidance and networking expertise, please contact our team today
Flash is being retired for cybersecurity reasons: the same technology which can easily load web-based games or other client-side content is especially vulnerable to exploitation by hackers to run malicious scripts on a user’s device.
Adobe state in an update on their website that all security updates, and the availability of all version downloads, will cease from this date.
Flash-based content will also cease working – leading technical experts to suggest Adobe have recently programmed a ‘time-bomb’ into the code of Flash Player to render it useless after the supported date. This should help prevent users seeking out third-party versions, and represents one of the strictest policies towards end-of-life enacted by a major software developer.
Fewer and fewer websites still operate this way (possibly as low as 2.6%) since the original announcement of the technology being retired in July 2017. This follows major browser developers, including Google, Microsoft, Apple & Mozilla urging developers to transition to HTML5 and Javascript alternatives that are more integrated into the browser itself.
For Cybersecurity and IT expertise, contact our team today.
To complete the challenge, he must run at least six kilometres every day throughout June, to exceed his one-marathon-a-week target.
Kevin decided to raise money for his chosen charities after wife Debbie, a nurse, was diagnosed with cancer herself twice during the past decade – and praised the support provided by FORCE cancer support centres across Devon.
The couple benefitted from counselling sessions, a breast-reconstruction support group, a course on life after cancer, pampering sessions and even travel insurance advice.
Debbie explained: “At the time I was first diagnosed there was nothing like this in North Devon. I found FORCE very helpful. At times it can feel like you are in the middle of nowhere not knowing where to turn. FORCE helped me to put things into perspective.”
Kevin has returned to running himself as part of a recovery: shedding five stone in weight since 2018. His fundraising target for the June challenge is £250 – but he hopes to exceed this at a time when many local charities will be struggling to fundraise.
On behalf of the whole team at Lineal: well done Kevin – keep going!
Two years ago ASUS first previewed an experimental dual-screen laptop. Dubbed ‘ProjectPrCog’, the unusual concept creation effectively doubled the available screen size to both the top and bottom case of the laptop.
In 2020, ASUS have (sort-of) finally taken the plunge with the ZenBook Duo. An intriguing new design, this ‘one-and-a-half-screen’, $1499 version includes a secondary rectangular monitor in the lower half of the case for extra display room.
Among the theoretical advantages of a dual-screen laptop are the ability to hold communications apps like email or instant messaging on the lower screen while working on the upper, and the ability to stream video from the top while controlling the stream itself lower down. A powerful Intel i7 processor included as standard ensures the extra screen space isn’t wasted, and it’s easy to imagine the Duo becoming a cult-hit with graphic designers and similar.
The overall design is not quite as futuristic as ProjectPrCog – ASUS have shied away from a full touchscreen keyboard, favouring a cut-down version of conventional laptop keys, and a touchpad mouse/numberpad combination.
Conceptually though a dual-screen laptop still poses some challenges: a cramped keyboard close to the edge makes it quite difficult to type on top of er… one’s lap. At 1.5kg the model sits around average for laptop weight, but dual displays is likely to impact the battery life considerably compared with single-screen models.
A highly commendable effort from ASUS and undoubtedly interesting. World-changing? Probably not yet.
For IT Support and expertise, please contact out team today.
Cloud storage giant Dropbox is beta-testing a new password manager app – ‘Dropbox Passwords’ – by invitation only.
Password managers allow the user to generate and store encrypted, complex passwords for many user accounts inside a single piece of locked software and autofill them into websites and applications – making it easier to use diverse, complex passwords across all of your IT.
Password managers are measure increasingly recommended by respected cybersecurity authorities – including the UK National Cyber Security Centre. Options like 1Password, Lastpass and others are already well established, although Dropbox is likely to have significant reach to business customers considering using a password manager for the first time.
Unlike bigger rivals such as Microsoft’s Office 365 and Google’s G-suite, Dropbox do not offer workplace document editing apps – leading the company to explore new avenues for branching out beyond file-sharing and cloud-storage.
These plans have included Dropbox Paper (a collaboration and project management tool), integrations to other growing challenger-platforms such as Slack and Zoom, and now password management.
Principally a cloud-storage company that helped establish file-sharing in the minds of those who had never used it before, only time will tell if Dropbox can establish a broader brand for securing a cloud-first IT business world.
The combined NHS Digital Taskforce, NHSX, recently beta tested the new UK Covid-19 contact tracing app on the Isle of Wight, and have released code to the cyber security community to review.
The app logs interactions with other bluetooth-enabled smartphones each day, and allows the NHS to notify users who have been in contact with self-reporting Covid-19 cases that they should re-enter isolation as a precaution.
A recent blog post by the UK National Cyber Security Centre identified a number of areas for improvement, with the contact tracing app itself expected to be officially released in June 2020.
The Pairing Problem
NHS servers ping the app every 8 seconds to confirm active connections, and the app itself records received signal strength indicators (RSSI) via Bluetooth to gauge where users have been in contact with each other. Users then upload their records if they experience symptoms.
Any attacker with access to this upload traffic, (which does not include the user ID but is unencrypted) could begin comparing submissions via start/end times and signal strength readings, and would theoretically be able to pair these users together.
This problem of uniquely identifiable pairs potentially compromises the identity of the individuals using the app, as well as their location history relative to each other.
The NCSC have confirmed that in the release version, even ‘anonymised’ RSSI data will itself be encrypted, to stop any third-parties attempting to ‘re-identify’ either or both of the users.
Intercepting the Public Key
In beta testing, the Authority’s Public Key was not transferred to the user’s phone via TLS encryption (like a secured web-page) raising the possibility that although the app could be downloaded successfully, this important piece of information used for submitting data could be compromised.
This would be akin to a kind of ‘man-in-the-middle’ attack, where a user’s encrypted uploads could be (even if not unencrypted) sabotaged or withheld during transmission back to NHS systems.
Security researchers have suggested that since this key is not secret, it should be wrapped into the installation of the app itself.
The NCSC have since confirmed that intermediate certificate pinning has been used to reduce the risk of this happening, and that this limitation will be fixed once the Isle of Wight trial ends.
Bluetooth Broadcast Values
The app operates via broadcast values with change every 24 hours to prevent a device being tracked by Bluetooth over longer periods of time. This is significantly longer than the industry standard 15 minutes.
However, more controversially, a predictable ‘KeepAlive’ counter is used to connect old and new broadcast values, raising the potential for an attacker to re-identify the user beyond the 24-hour limit.
The NCSC defends the longer-term tracing as necessary to establish social interactions more accurately, but has resolved to randomise the counter to stop broadcast values being easily matched or the user re-identified endlessly.
Whistleblowing
Under beta testing, the app’s original policy documentation contained the line: “You may not publicly disclose any details of the vulnerability [that you’re reporting] without consent from NHSX.”
This would have run counter to the NCSC’s own vulnerability disclosure policy, which suggests that members of the technology community should be encouraged to highlight system weaknesses (particularly during public consultation beta-tests) for correction.
This line is to be removed from the public release version.
For cybersecurity support & IT expertise, please contact our team today.
No need for a backup if it’s safely in the cloud, right? Wrong – here’s three reasons your team still needs to independently backup cloud data.
1. Retention Time
Popular cloud-storage platforms like Microsoft Office 365, Google G-Suite and Dropbox only retain deleted items in trash/deleted items for 30-days, with the longest ‘from beyond trash’ recovery being 90-days in some cases. Dropbox Pro and Business accounts may optionally extend this to 180 days, but this is still a limited window for many businesses.
Three months is not a long time – and users are often horrified to discover they can’t simply salvage a deleted file under any circumstances beyond this event horizon.
Astonishingly, this misunderstanding helps contributes to top cause of business data loss being… human error. Delete (an un-backed up) file in haste, and repent at leisure.
Advisable cloud-backup platforms such as Veeam Backup for Office 365 and Barracuda Cloud to Cloud Backup can be used to keep a fully automated and distinct backup of cloud-based data, well beyond the default retention limit.
2. Single File Recovery
Some cloud storage platforms only allow the user to recover one file at a time – designed as they are to be used by large numbers of users interacting with individual files. This feels very practical, until it comes to a situation where an organisation needs to restore larger quantities of data in one go – such as cases of widespread malicious deletion by an employee or hacker.
Even on a relatively serviceable 50Mb/s broadband download connection, 1TB of data would take more than five and half-hours to restore centrally – and some platforms even require each file to be restored individually via manual control. In the short term, this might put significant pressure on a business or organisation’s ability to function.
This is something often ignored in Business Continuity planning – not just whether recovery is possible, but how long will it take. More comprehensive backup options normally allow a full, automated restore, either to the existing platform or an entirely new environment.
3. The Email Problem
Despite premature claims of email’s demise, many users still keep their entire working life in their inbox – including not only communication, but attachments.
Having moved traditional Exchange servers to the cloud, businesses often don’t have a backup for these (even in text form) beyond that of files. Why should email be any different?
A much better solution, and one that guarantees better sleep, is to put in place a backup service that includes your email estate, that is fully indexed, searchable and restorable for when you need it most.
For IT Support and backup expertise, please contact our team today.
In a statement, easyJet says that a “highly sophisticated cyber-attack” discovered in January 2020 compromised email addresses and travel details of roughly nine million travellers. For 2,208 customers, credit card information was also accessed.
No further detail has yet been publicised as to the nature of the breach, although the company stated that it had “closed off unauthorised access”.
The bad news comes at a difficult time for airlines, as air-travel has declined dramatically in the wake of Covid-19 restrictions. When faced with a similar situation in 2018, British Airways received a large financial penalty of £183m from the Information Commissioner’s Office.
The airline are making contact with all affected customers warning extra vigilance towards ‘unsolicited communications’, due to the heightened risk of phishing attempts from criminals masquerading as easyJet who may have gained access to customers’ personal details.
Under new GDPR guidelines introduced in 2019, it is mandatory that breached organisations report to the UK Information Commissioner’s Office (ICO), who are currently investigating.
For cybersecurity and IT Support expertise, please contact Lineal today.
Gamma Communications have officially launched Teams Direct Routing, allowing organisations which use Microsoft 365 to make Microsoft Teams your phone system.
Teams Direct Routing is a simple monthly bolt-on to Teams-enabled Microsoft 365 licenses, that allows the user to make or accept normal voice calls via the UK phone network.
But what about the actual… phone? Yes, end users can use either the Teams mobile app for their smartphone on iOS/Android, or their PC/Mac – however hardware manufacturers are surprisingly close behind: with Poly and others announcing hardware officially approved to operate a Microsoft Teams based phone system.
Poly CCX Series Teams Phone Handsets
This makes Microsoft Teams a compelling choice as a full-business phone system, with call-routing, voicemail and many the other features commonly associated with work phones – available ‘through’ Teams.
Each user’s overall license package comprises three parts: two Microsoft elements including the user’s Microsoft 365 license that includes Teams, the ‘Phone system’ (PBX) bolt-on, and one from Gamma – the Teams Direct Routing Bolt-on itself.
All this is backed by the remote-working flexibility of Microsoft 365’s cloud infrastructure and Trust Centre – better yet, the monthly cost of extending Teams in this way is a tiny fraction of the upfront cost of buying a traditional business phone system and unifies the user’s other key work communication tool (email) under a single account, calendar, and set of security permissions.
With a user-base of over 70 million daily active Teams users, Teams itself is a workplace juggernaut given extra momentum by the important need for home-working driven by Covid-19. Although Microsoft themselves also offer direct routing call plans that integrate with Microsoft Teams, these do not include the numerous extra functions extensively supported by telecommunications suppliers, such as flexible number porting, extra control over redundancy and business continuity plans, and other related considerations needed to better ‘manage’ an organisation’s communications.
Teams Direct Routing is likely to prove an extremely popular choice for companies seeking to modernise, and ‘get the most’ out of Teams. Take our advice: this one is going to be big.
For more information on Microsoft 365 and Teams, click here.
For more information on Microsoft 365 licensing, click here.
For more information on how Microsoft Teams can be deployed as a full phone system, please contact our team today.
Microsoft have announced Reply All email storm protection for Exchange Online – designed to prevent crushing organisational reply all email chains.
By default, the feature will detect ten reply all emails to over 5,000 recipients within 60 minutes, (what IT admins jokingly call a ‘reply-allpocalypse’) and will block further sending to prevent the problem escalating.
A particular problem in large organisations, email storms begin when large numbers of recipients click ‘reply-all’ either to respond or ask to be removed from the chain – massively multiplying the overall number of emails passing through Exchange servers.
If you find yourself stuck in a big reply all email storm, the guidance is simple: Do nothing. Do not reply to the email. Replying only makes the problem worse for everyone in the email chain, including you.
Reply all email storms have plagued large organisations. The NHS was infamously struck by a server-crushing 500 million emails in less than two hours on 14th November 2016, after an IT contractor accidentally sent a test email to everyone with an NHSmail email address – approximately 840,000 people.
Microsoft itself became one of the first test cases during the “Bedlam DL3” incident of 1997, when a user emailed 13,000 company addresses. Other users unaware of how many replies they were sending asked to be removed, and by the time the storm had subsided a terrifying 15 million emails had been sent – far beyond the capacity of late-90s email servers.
Reply-all email storm protection is currently being rolled-out to Microsoft Exchange Online and packaged services including Microsoft 365.
For IT Support and expertise, please contact Lineal today.
The UK National Cyber Security Centre (NCSC) are officially removing the technical terms ‘Whitelist’ and ‘Blacklist’ from their organisation in an effort to be more inclusive.
The terms ‘Whitelist’ and ‘Blacklist’, which refer to lists of permitted and not-permitted things in the cybersecurity world, will be replaced with the more literal and accurate ‘Allow List’ and ‘Deny List’.
Prolific spam email domains for example are often ‘Blacklisted’ by system administrators – a negative association the NCSC feels should not, even inadvertently, imply a connection to skin colour.
The organisation, a more public extension of GCHQ, acknowledged in a statement on their website that whilst “…it’s not the biggest issue in the world…”, the organisation is acting positively in response to requests from the public, is making an effort to be more inclusive, and that using such terms might otherwise have impaired the recruitment of valued “future colleagues.”
‘Blacklisting’ also has an unfortunate connotation with an illegal practice of barring whistle-blowing employees and trade union members from working across certain sectors, which has a history within the construction industry among others.
Google Chrome, Microsoft Edge and others have made similar terminology decisions – deciding that pejorative references to colour should not be used in cybersecurity terminology.
For IT Support and cybersecurity expertise, please contact Lineal today.
Microsoft Teams will soon gain the ability to display video-call participants in a 3×3 (9-person) grid, among other new Teams features.
The new teams features improve on the current limit of a 2×2 (4-person) grid – one notable limitation when compared with popular rivals such as Zoom.
Other features being added include custom-backgrounds, a ‘raise-hand’ feature similar to that used in Citrix GoToMeeting webinars, audio-sharing and call recording for 1-1 direct calls. The iOS version on mobile/tablet will also gain Teams’ background blur feature used to obscure the caller’s surroundings.
Recognising perhaps that Teams is still new to many workplace settings there has been a revised focus on hardware for new teams features: ‘Teams Certified’ audio/conferencing devices are now available, and the new Teams push-to-talk ‘walkie-talkie’ mode designed for field workers is currently in preview.
Playing catchup with Teams’ dramatic surge in popularity – to over 44m daily users and 1000% more calls during lockdown across the globe – Microsoft are also overhauling the Teams Admin centre to give admin users more visibility and control over meetings, usage and group policies.
Lineal are a certified Microsoft Gold Partner. Learn more about Microsoft Teams, or contact us today.
Common scams include pretending to represent Government, law enforcement or medical authorities to obtain information or financial payment, blackmailing users with threat of infection, donation requests for fake organisations, and malware distribution – including one new ransomware even dubbed ‘Coronavirus.’
In a joint statement published in April, the UK National Crime Cyber Security Centre and US CISA (Dept. of Homeland Security) notes the sudden rise in Covid-19 scams, and even highlight instances of SMS text-messaging phishing attempts mimicking UK Government text alerts.
In the example cited, a fake compensation payment is offered to entice the user to hand over details via an imitation UK Government website.
There has also been a growth in online hackers and trolls targeting Zoom and other video conferencing platforms. Users unfamiliar with this kind of software in particular may prove an easy target for cyber criminals.
Phishing scams are part of a larger trend of online Covid-19 themed fraud. In March, the NCSC removed around 500 fake online shops claiming to be selling fraudulent virus-related items over the internet.
Google currently estimate that Gmail filtering is blocking over 100 million phishing emails each day, and that almost 20% of online email scams now refer to Coronavirus (around 18 million) – likely to be the largest phishing ‘theme’ in history.
For cybersecurity expertise and assistance, please contact Lineal today.
Apple have launched a new mid-market iPhone, the iPhone SE, to popular aclaim.
Similar to the iPhone 7 in appearance, this more baseline model of iPhone is designed to broaden the user-base of Apple’s popular iPhone range into the territory of more budget Android smartphone alternatives.
Not that Apple have scrimped on the technology – even the more basic SE includes an A13 Chip, 4.7-inch Retina HD display, and the ‘best single camera’ system on an iPhone ever (as opposed to the multi-lens affairs on more premium iPhones.)
In a nod to the World’s current Coronavirus difficulties, the SE also contains the original TouchID fingerprint sensor, so that users can still unlock the screen without removing facemasks.
Like it’s experimental predecessor, the 2nd-generation SE will also be available at more affordable prices: including £10.99 a month, or £279 upfront via Apple trade-in, suggesting there will soon be some very cost-effective deals reaching customers on the high street. To thin Apple’s extensive iPhone range, the iPhone 8 will also be discontinued.
Apple’s physical high-street stores remain closed due to Covid-19 lockdown – however online preorder begins from Friday 17th April, starting at £419.
For technical expertise and business mobile, please contact Lineal today.
As businesses and their staff begin to adapt to the UK’s Covid-19 lockdown, we take a closer look at how IT Support requirements have shifted.
After two weeks of IT Support call volumes to Lineal rising significantly, queries have begun stabilising as the organisations and companies we support, and their employees, become more accustomed to working from home.
In parallel, the nature of IT tickets we commonly address has also altered, with a majority of support queries involving either virtual private network (VPN) or remote access assistance – even overtaking email in the short term.
We’ve seen renewed interest in cloud-based services, including Microsoft Office 365 tools, Gamma Horizon hosted telephony, and Azure-based computing, as well as portable hardware shortages – with major distributors keeping things moving but reporting limited availability of new laptops, headsets and power cables.
In-house, Lineal’s own use of Microsoft Teams has increased noticeably as staff work remotely. Following an initial lockdown practice drill in early March, activity graphs show three weeks of increased Teams collaboration between staff – including audio/video conference calls, chats and screen-sharing.
We’re keeping things moving and continuing to support all our clients fully throughout the the Covid-19 lockdown; if you have any feedback or ways we can improve our service, please let us know.
For IT Support and technical expertise, please contact Lineal today.
Lineal SQLWorks company Diamedica (UK) Ltd., who manufacture specialist medical solutions, are providing vital support to the NHS as part of the UK Government’s Ventilator Challenge:
Developed by Lineal’s in-house software development team, SQLWorks integrated business management software, is the core of Diamedica’s accounting, order-processing, stock and production control.
“…Diamedica (UK) Ltd confirmed today they are playing a critical role in the Government’s efforts to accelerate production of ventilators to support the fight against COVID-19. Diamedica’s ventilator designs were shared with the Cabinet Office team leading the challenge, who have been able to match the plans with specialist manufacturers who are able to start ramping up production quickly, and at scale.
Diamedica are now providing consulting services to the matched specialist manufacturers who are contracted to produce ventilators.
Robert Neighbour, Managing Director, commented “We are exceptionally proud to be a part of the effort to deliver ventilators for the NHS. Our product is already the leader within emerging markets and has now been selected to support the UK’s fight against COVID-19. I want to thank our team here at Diamedica for their dedication and efforts thus far, and all the manufacturing partners who are critical to this effort.”
For further information please contact Charlotte Green, Head of Sales and Marketing at Diamedica (UK) Ltd.”
Mozilla have released an urgent patch to version 74.0 of Firefox, notifying browser users around the world that it’s time to patch Firefox again.
The timing of the new patch, which also affects the ‘Extended Support Release’ (version 68.6) suggests that the latest update fixes a vulnerability which (at worst) may have been live in the browser since July 2019.
Mozilla’s official announcement from 3rd April categorises the impact as ‘Critical’, and states that ‘we are are of targeted attacks in the wild abusing this flaw’.
The precise details of the security flaw have not yet been published, although we know that the issue refers to a ‘use-after-free’ function by which the browser frees up previously occupied memory back to the device – with online cybersecurity blogs speculating that any new contents of the relinquished memory may still have some level of access to the browser.
Community-led Mozilla, whose popular Firefox browser is still the World’s second-most popular desktop browser, suffered other critical security flaws as recently as January – when the US Department of Homeland security took the unusual step of instructing users to urgently update their browsers following the discovery of a vulnerability which granted potential access to the operating system.
Zoom’s video-conferencing software has seen a surge in hacked video calls around the world, with a new phenomenon, ‘Zoombombing’, disrupting unsecured conference calls.
As large numbers of people work from home due to Covid-19, online trolls have begun searching for Zoom calls where meeting hosts have not passworded access or credentials are easily obtainable, and disrupting meetings with either audio or un-expected screensharing of inappropriate material to other attendees.
Zoom’s ease-of-use for beginners and freemium download option have proved popular in recent weeks with the platform surging to over 200 million users – a pattern also seen among similar conferencing platforms from Microsoft, Cisco, Google and others.
Automated Zoom conference meeting finder ‘zWarDial’ discovers ~100 meetings per hour that aren’t protected by passwords. The tool also has prompted Zoom to investigate whether its password-by-default approach might be malfunctioning https://t.co/dXNq6KUYb3pic.twitter.com/h0vB1Cp9Tb
Cyber security experts have also highlighted the availability of automated Zoom-call hacking tools in the darker corners of the web – able to seek out conference calls without passwords for trolls to exploit.
Most experts believe Zoombombing intruders can be avoided with routine security precautions which should be taken by the host (and co-hosts) of any Zoom meeting.
In particular Zoom meeting hosts have been cautioned to:
Set a unique, complex password for every Zoom meeting
Google have released aggregated smartphone location data which shows the UK under lockdown.
According to the newly published ‘Community Mobility Report’, in which Google GPS data from the location settings of Android phones is broken down by country, the UK has seen a dramatic drop in those going outside during March, as people stay in lockdown for the duration of the Covid-19 crisis.
‘Retail and Recreation’ visits, which includes restaurants, cafes, shopping centres, theme parks, museums, libraries and cinemas are down 85% against normal rates, and ‘Parks’ show a 53% decrease.
‘Transit Stations’ including public transport hubs are down an astonishing 75% as people remain at home rather than travelling.
‘Grocery & Pharmacy’ visits show a smaller decrease, at 46%, as people continue to shop sparingly for essentials.
However, Google GPS data varies across the UK – with Google warning readers not to compare rural and urban areas. Remoter parts of Scotland and Wales are less consistent both in lockdown severity but also available data to measure.
This measurement difficulty is something also noted by the Kings College Covid-19 sympton tracker app, which gathers self-reported data from across the UK and has risen rapidly up the Google Play and Apple App Store app charts in recent days.
Data for Devon suggests the lockdown is being observed slightly more strictly, with even lower rates of shopping and leisure trips being made compared to the UK average, but marginally higher attendance at workplaces and at public transport hubs.
The UK’s biggest telecoms providers have agreed to remove data caps from Home broadband packages during the Coronavirus lockdown.
Although most UK home broadband packages now come with an ‘unlimited’ data allowance (subject to fair usage), many legacy products still enforce a data limit which may incur financial penalties if exceeded. Much like mobile data contracts, historically these were usually set at a specific monthly data usage, eg: 200GB.
The move follows discussions with the Government and telecoms regulator Ofcom, who are seeking to support vulnerable customers during the Coronavirus lockdown.
The Department for Culture, Media and Sport has also stated that the measure will be ‘effective immediately’ and help ‘people to stay connected whilst they stay at home.’
OK – don’t panic: try and make a quick list of everything you commonly need to work in the office. Then contact our IT support teams via [email protected] and 01271 375999
Cloud-based services such as Microsoft Office 365, G-suite and Dropbox should still work via your web browser as normal (but please ask if you run into difficulties.) However, if you have systems that are based at your workplace, you might need to ask Lineal for a VPN in order to gain remote access (see below.)
Check out our tips for happy remote-working here, and some great deals for remote workers here.
If you have a Gamma Horizon phone system, we’re offering several months of free Gamma Collaborate licensing to extend your phone system to mobile/desktop devices – to support remote working. Please let us know here.
Can you help me set up a VPN?
Yes – as you might expect, this is currently our most requested support ticket type! Please speak to your support team via [email protected] or 01271375999.
How do I access ___[system]___ or line-of-business applications.
The answer to this will vary depending on the system, the security permissions at your company, and where it’s hosted – please speak to your support team via [email protected] or 01271375999.
Are Lineal extra busy?
Yes – our call and support ticket volumes have increased around 30% over the past two weeks, however these are still at perfectly manageable levels.
How do I set up my desktop PC at home?
We can walk you through ‘which-cable-goes-where’ if you’re unsure, but if your work-now-home-PC isn’t configured how it normally is in the office, please just speak to our support teams for remote assistance: [email protected] or 01271 375999.
Why might I need a ‘VPN’?
A Virtual Private Network gives direct access to your workplace network from home. If you have technology which is only available in the office (eg: an accounting database or CRM system based on your own server) these won’t be accessible outside without first connecting via a VPN.
If you have cloud-based services such as Microsoft Office 365, Dropbox, G-suite, webmail, Salesforce or other online services, these should be available through your browser as normal.
Help! I can’t buy ___[hardware item]___ anywhere!
You’re not alone: we’ve seen stocks of laptops, convertibles, power cables and others run low from many UK suppliers. If you’re having trouble sourcing something, please contact us via [email protected] for a quote, and we’ll do our best to find your request direct via distributors.
I think ____[service]____ is down, but maybe I’m just confused. How do I tell?
It’s first worth heading over to DownDetector.com to see if there are issues reported with major UK providers, such as mobile networks, cloud services and broadband ISPs. If you’re unsure, please speak to our support teams.
Will the internet/service_x fail due to high demand?
No, but we do all need to act responsibly. Much like with supply chains and emergency hotlines, capacity needs to be used sensibly by everyone.
Please don’t stream 4K or High Definition video unless it’s really necessary, and expect some of the bigger cloud computing providers, like Microsoft and Google, to dial down the responsiveness of some connectivity-intensive bonus features to help accommodate the extra computing demand around the world.
How do I use my work phone system remotely/from home?
Depending on who maintains your phone system, you might need to speak with your provider for either remote access or call re-directs.
If you have a Gamma Horizon phone system provided by Lineal, we’re offering several months of free Gamma Collaborate licensing to extend your phone system to mobile/desktop devices – to support remote working. Please let us know here
For IT Support & technical expertise, please contact our team today.
With growing numbers of employees out of the office in response to Coronavirus, we’ve assembled some great deals, discounts and freebies available online for home-workers, remote-workers, and many others.
Discounted ESET Antivirus
You’ve started using your home laptop or PC for work so you can keep away from the office? You’re not alone.
For companies that don’t have Office 365 collaboration software already, Microsoft are offering a 6-month free trial of the freemium version of Microsoft Teams – permitting audio/video conferencing, document sharing, instant message and more across PC/Mac, tablet and smartphone.
Perfect for working from home, the freemium version does include low data limits (10GB shared, 2GB personal) but Microsoft have temporarily lifted the user-limits to accommodate more businesses.
Discounted MacBook Air
This past week Apple have cut the price of their ultra-portable, highly popular MacBook Air model to £999 inc VAT.
Famously small enough to fit inside a Manila envelope and perfect for taking home, the latest lightweight model is made from 100% recycled aluminium, comes with a 13-inch Retina display, and boasts a 256GB solid-state hard-drive – twice the previous storage capacity. Extra discount is also now available for Education customers.
Free Gamma Collaborate
For businesses and organisations using Gamma Horizon phone systems with us, Lineal are offering a minimum of two-months free trial of Gamma Collaborate for all users.
Gamma Collaborate extends your deskphone to the Horizon app on your mobile, PC or Mac, and includes instant-message, audio/video conferencing, screenshare, presence notification, extension dialling and more. If you have call-handling settings like hunt groups or number presentation set up, this will work automatically from the new devices.
As of last Thursday, audiobook giant Audible.com have launched a free service called ‘Stories’ to introduce free audiobooks to children (and indeed, re-introduce much-loved classics to adults.)
Available in multiple languages, you can discover Audible stories here.
Adobe Creative Cloud for Students
Adobe are making Adobe Creative Cloud apps available to all existing higher education students and educators users free of charge, until at least 31st May 2020. Registered institutions must enrol for access beyond their existing campus desktop apps, but you can learn more about the opportunity here.
Peloton
For the restless, exercise app company Peloton has extended its free trial to 90-days – the infamously expensive Peloton bike itself is not required, and classes incorporate yoga and other kinds of work-outs to take advantage of throughout the shutdown.
For technology assistance and IT support: please contact Lineal’s team today.
This week Microsoft Teams gained 12 million daily users, bringing the total to 44 million globally. During the past few days, Microsoft have raised cloud computing capacity by 600% to support this surge in demand for remote-working tools.
If it’s all new to you, or you’re working from home for the first time – never fear!Lineal haveassembled some of the best online Microsoft Teams resources to help users of all levels.
We’ll update this ultimate guide to Microsoft Teams to include valuable new videos, examples and training materials as we discover them.
Members of Lineal’s Software Development Team were recently invited to join the Omnis Software Engineering Team for a special 2-day visit focusing on development work regarding web features within SQLWorks.
Software engineers from both companies focused the dedicated day on the implementation and deployment of Lineal’s recent online work including business-to-business (B2B) trade ordering portals and online user survey systems.
The SQLWorks Team at Lineal wanted to thank the staff at Omnis for being excellent hosts and helping to craft an extremely useful and informative visit.
Omnis technology has underpinned Lineal’s SQLWorks Business Management Software (integrating accounting, stock control, CRM and manufacturing) since the early 1980s. Lineal’s Managing Director Mike Matthews is a part of the international Omnis Technical Committee, and Lineal staff regularly help coordinate and take part in EurOmnis, the international Omnis software developer conference.
For Software development advice and expertise today, please contact our team today.
We recently attended the 2020 Gamma Communications Roadshow at Stamford Bridge – hearing the latest business telecoms and technology trends from across the UK. But what do businesses need to be aware of?
Clock Ticking for ISDN
BT will officially turn off all ISDN services by 2025, with the ‘stop-sell’ order coming as early as 2023.
With UK businesses just getting used to putting ‘2020’ on paperwork, this is no longer a drill – if your phone system uses ISDN, your business needs to begin preparing to switch to a digital services such as SIP or better still, a hosted VOIP platform.
There are perhaps as many as 1.5 million ISDN channels still in use by businesses across the UK. Gulp.
Ultrafast Fibre Rollout Gathers Pace
Superfast broadband (‘Fibre to the Cabinet’ or FTTC) prices are falling all the time, but the big story of the decade is likely to be the steady roll-out of ultrafast ‘Fibre to the Premise’ to many more businesses – to around 40% availability over the next few years.
Salisbury is the first single-year rollout ‘test’ area trialling complete fibre infrastructure (booking a new copper line in the Salisbury area is likely to be rejected).
Interested in fibre for your area? Perhaps you should speak to your friendly neighbourhood IT provider…
Not all 5G is born equal
We’ve known for a while how the smallest of the UK’s four mobile networks (Three Mobile) is arguably in the best position to deliver data, although it’s now becoming clear Three has an enviable technical advantage over some of the other major providers – and is even using the cheeky marketing slogan: ‘If it’s Not Three, It’s Not Real 5G’.
The reserved spectrum range favours Three to such an extent that EE/BT, O2 and Vodafone have all submitted strongly worded complaints over preferential access. Gulp.
Microsoft Teams Telecoms Emerges
Among Gamma’s most exciting news was the announcement of a Direct Call Routing service for Microsoft Teams – which effectively plugs into the back of Teams and Microsoft’s ‘Phone System’ PBX add-on, to turn your Microsoft Teams software into a fully fledged business phone system.
Until now Microsoft’s Teams platform has been a strong option for video/audio conferencing, screenshare, instant messaging and collaboration – but have always lacked the more robust business call-handling feature-set of true phone systems, or suffered from a shortage of physical handsets. With both of those challenges solved by Gamma and the Teams app available on a variety of devices, it’s easy to imagine Teams phones appearing on desks.
Direct Routing for Teams is expected from April 2020. The final pricing is likely to be somewhere in the region of between £15-25 a month per user (including Microsoft Office licensing) – finally unifying telecoms under the same single user account as Microsoft Office 365 hosted email, files storage, office apps and collaboration software. Watch this space.
For communications services and expertise, please contact our team today.
Edit: This article was originally published a few weeks before the first national UK COVID lockdown, 2020 – and has been left in its original form.
“All Staff Meeting” it said in the diary, and that was unusual. While both Lineal’s technical and non-technical teams meet regularly, it is rare that they are all required to gather at once on a Monday. Something was up.
“Tomorrow…” announced Mike, “… you’re all going to work from home. Lockdown: you have two hours to prepare.”
Tuesday 10th March would be a complete quarantine drill day. Staff would attempt to replicate everything Lineal does while working remotely – from home in most cases, but in physical isolation from each other. The scenario would be a practice run for either a coronavirus isolation scenario, or a catastrophic on-site evacuation incident such as severe flooding.
We would be permitted to visit clients if required, make preparations for home working, and to remove any equipment we might need from Commercial House in advance – providing we did so within the 2 hour advance warning period.
The business operations of our clients would remain critical throughout, so everything would need to operate as normal, with the quarantine remaining effectively ‘secret’.
(Lineal staff first begin finding out about the quarantine drill. Approx. 1430hrs Monday.)
The problem with working in a technology business is that you rely on a lot of technology. Two hours isn’t a long time to coordinate twenty-six people, so putting Lineal’s Business Continuity Plan into practice isn’t as easy as asking if everyone has memorised the document.
First: untether from the desk. Staff without laptops would need to be issued them quickly, and everyone remove their device from the building. Fears of a burgeoning black market in charging cables proved unfounded, and by late afternoon everybody had what they needed.
“.. those who have had close contact will be asked to self-isolate at home for 14 days from the last time they had contact with the confirmed case ..”
(Gov.uk, “COVID-19 Guidance for Employers and Businesses”)
Web-based and other cloud services such as Microsoft Office 365 would be accessed over home broadband connections, with the same security controls as staff normally use while remote working.
Good luck everyone!
As always, IT Support engineers would depend on remote assistance software to help end-users, and need to ensure good communication at all times. Throughout the process, staff were encouraged to note their experience of the experiment and highlight issues for review.
Secure access to Lineal’s internal networks, and all the systems that sit behind it, would be granted to our team via a secure Virtual Private Network (VPN).
Top tip #1: Familiarise yourself with the mobile hotspot on your smartphone, because the 4G connection is a useful way to test that your VPN will connect successfully, before actually leaving your place of work.
Tuesday Morning
Everyone was connected remotely to all our business continuity systems, which granted access to Lineal’s in-house telephony, shared workspaces in Microsoft Teams, and SQLWorks business management software.
Without a physical desk phone at home, staff would instead use a desktop softphone on their PC, continuing to handle and transfer calls exactly as before – relying on status indicators to gauge each other’s availability, similar to how they would with their existing desk phone.
Microsoft Teams would permit instant message and document sharing – and facilitate video conference calls and screen-sharing with clients who were often otherwise unaware that Lineal’s offices had gone dark for the day. Teams rapidly became the preferred method of quick communication between individuals or small groups – with a rapid problem-solving chatter sitting below the level of email.
Incoming and outbound call volumes were actually slightly higher than usual, as staff continued not just taking customer calls, but calling each other more regularly due to the lack of physical proximity. The relative ease through which individuals would usually interact was replaced through Teams, and more conference calls, later reflected in higher Teams user activity.
Lineal Microsoft Teams User Activity: 3rd – 10th March
Top Tip #2: To enable full home-working, you need not just a unified communications tool, but more call volume ‘capacity’ than normal.
Full remote-working is an interesting exercise because it forces your team to reconsider elements of the operation everyone takes for granted. For example, our teams regularly make use of meeting rooms and spaces at the Lineal office in order to work on projects and meet with customers.
In a geographically distributed “virtual” world, these meetings need to take place in different ways. Generally, tools like Teams make an excellent substitute and the result is a far more focussed experience which achieves the shared aims of the meeting, but with slightly less social interaction than you would expect when meeting face to face.
(Business as usual, with rising call volumes)
Although the practice of full home-working is dramatically easier than it once was, and potentially hugely cost-saving, several staff reported feeling a little isolated. We’ll be incorporating all our staff’s feedback into our Business Continuity planning, and continue to make improvements.
How to Plan:
Have a Plan Saved in your email drafts – detailing what needs to happen in the event that a significant number of staff need to be sent home. Worry about things in this order:
1. Basic Connectivity & Communication
How will your staff connect to your IT remotely, and how will they communicate with each other. The checklist runs as follows: hardware, cables, broadband and communications tools. These are the most fundamental tools for both work, and circumventing any other problems your team encounters.
2. Access to Work Files
In the short term, staff otherwise isolated from systems can still process documents productively – If you’ve moved to Office 365, G-suite or cloud-storage platforms like OneDrive or Dropbox, this should be easiest workplace task to provide access for.
3. Access to Databases
Operating cloud-based? That will help. However, remotely connecting to non-cloud, ‘on-site’ systems such as accounting, stock control and other vital software will rely on external access to your network – for example via VPN.
This is likely to be unfamiliar to many end users used to working from the office – start with the users that most need it for the continued operation of the business, such as mission-critical staff or more senior accounting managers.
4. External Permissions
What systems do you need access to that are operated by third-parties. Remote equipment? Agency resources? Supplier portals? If these are web-based they may be accessible from anywhere, but make sure this is the case. To dramatically simplify this one, don’t run an IT company!
5. Support Structure
If you’ve never worked entirely from home before, it can feel strangely isolating. Guidance from NHS England currently states coronavirus self-isolation should last as long as two weeks, so check regularly that your team are coping OK. Encouraging emails, chat channels, funny gifs, team calls and the like are more important than you might think.
***This page will be updated with links to new guidance, as required.***
For business continuity technology and expertise, please contact Lineal today.
Lineal’s Managing Director Mike Matthews recently spoke to more than a hundred business leaders who gathered in Tiverton and at Haldon racecourse near Exeter for ‘Purple’ disability employer conferences.
Organised by Be Ready Employer Hub, the event focused on the business benefits of employing hidden talents staff and those with disabilities or long-term health conditions.
Lineal benefits from the contribution of our hidden talents staff and were asked to talk about their work, our experience of both mistakes and successes, and the importance of building a supportive working environment.
Invited as a guest-speaker, Mike’s case study included the story of Lineal Software Developer Reuben Winsor, who won the 2016 Pluss SouthWest ‘Achiever of the Year’ award for his progress.
Ready Devon is supported by Devon County Council and the Department for Work & Pensions – providing disability awareness training, guidance for employers, networking and access to partnership organisations.
Be Ready can be found online here, via LinkedIn here and on Twitter @BeReadyHub.
Microsoft have combined the mobile versions of its Office programs into a single new Office app, uniting Word, Excel and Powerpoint under a single banner.
It’s true that Microsoft would prefer you use their whole Office 365 suite of apps, but the combination isn’t just strategic – the new mobile Office includes a whole toolkit of new abilities better optimised for mobile.
A number of typical tasks people might tackle when using a smartphone, such as PDF signing, reading QR codes, photo-to-document conversion or scanning PDFs with Microsoft Lens, are all ‘baked in’ to the new mobile Office version, with Microsoft clearly trying to maximise awareness of these lesser-known extras.
Such tools are activated from a new ‘Actions’ menu aimed at simplifying the controls users have to input to complete common tasks, as part of Microsoft’s Fluent design scheme.
Microsoft Word comes with a new dictation ability (which may be familiar to those using the desktop app) that supports speech to text. It’s hard to imagine users writing lengthy documents this way unless forced not to type, although assembling plain text into a OneDrive file for others to collate, or editing changes into an existing project might be more practical.
Excel is, of course, not a natural fit on mobile – where individual cells remain a bit fiddly on a touchscreen. Even so, there are improvements here too: Excel ‘cards’ simplify wide Excel rows into a simple summary, which ensures the user doesn’t have to open an unwieldy spreadsheet to find information.
Again, there’s an awareness here – that very few users will seriously attempt heavy editing via mobile, but access and convenience is critical for a workforce that increasingly operates on the move. Powerpoint presentations can also be created from a bullet-point list: not a work-of-art perhaps, but potentially a lifesaver at short notice.
Outlook, Teams, OneNote and the other Office 365 apps remain independent (for now) although it’s easy to imagine some of these also being merged into the combined app in future, as Microsoft seeks to build a seamless experience between the different productivity apps of the popular Office package.
In a diplomatic move, Office also includes support for popular third-party storage apps including Google Drive, Dropbox, iCloud and Box.
Google have released the new developer preview of Android 11, with technology ready for 5G and support for virtual-reality overlay options within apps.
Developer previews are designed to encourage 3rd-party app developers to stay ahead of the curve, and test the compatibility of new features, prior to the release of Android 11 during the Summer.
This time around, the much-hyped release of 5G requires Android handsets and app developers to adapt to the new technology: including operating-system to assess whether connections are metered or unmetered, and unlock boosted computing options if data speeds are sufficiently high.
Some of the improvements are also being driven by hardware trends among the big manufacturers – including new support for folding-screens and the ‘pin-hole’ style cameras that sit within the screen extent of the phone.
An ‘Only this time’ choice will be added to security preferences which allows for a one-time exemption to default security options. This is already the case with standard apps (such as your default browser) but will now apply to system tools such as the phone’s GPS, microphone or camera.
On the flip side of this, more of the phone’s intrinsic features (such as phone/messaging apps) will begin behaving more like their popular 3rd-party app counterparts – allowing persistent notification ‘bubbles’ that can be re-positioned on screen for a more fluid experience.
At present Android 11 will only operate on Google’s own flagship ‘Pixel’ range of smartphones, but expect the OS to begin appearing on other handsets from June 2020.
For Business Mobile expertise, please contact our team today.
At time of writing, around 83 million trees have been planted worldwide across at least 16 countries – and assuming you don’t clear your browser settings, Ecosia also keeps a total count of your personal searches. Supported by Microsoft Bing, Ecosia’s searching is encrypted, results are not stored, and data is not sold to any third-party advertisers.
Around 45 searches equates to one new tree – so get searching!
Video Conference, Don’t Travel
Business travel, especially air travel, isn’t as necessary as it used to be, and it’s increasingly difficult to justify time spent sat in traffic.
Video conferencing was once a bit of a standing joke, but with responsive video quality, devices with in-built microphones/cameras/speakers, and better internet connectivity, the technology is much more practical than was once the case.
For an easy way to gauge the costs involved, add up mileage expenses for a week, month or year, and ask which meetings really had to be conducted by travelling. If that expense could be saved, so could the planet.
Use an Eco Button (Or Don’t)
There are a number of gadgets available that prompt office workers to turn off their screens, most famously the ‘Eco-button’ – a bright green light-up USB button which you hit to switch your PC into sleep mode. On startup, a small application praises your efforts by displaying your CO2 and cost saving to date.
Unfortunately this is arguably an example of greenwashing. The plastic device (probably shipped from China) isn’t actually necessary to enable device sleep settings – Windows 10 already has handy power-saving options available, so aside from the software recording your savings, the button mainly serves only to raise awareness and act as a fun reminder.
Hopefully each eco-button might one day have saved enough CO2 to justify its own manufacture… maybe. But with a little vigilance, this ought to be achievable without quite so much plastic.
Return your old Router
Switching broadband services often means a new router, which isn’t ideal for cutting plastic waste.
Some ISP’s allow users to voluntarily return a redundant router for recycling, in an effort to cut down on routers being piled up in cupboards, and ensure fewer of their devices ultimately end up in landfill.
BT recently announced this scheme will soon be compulsory, and new customers who fail to return their BT router for recycling at the end of the contract using a pre-paid return envelope will face an extra charge of up to £50.
Alternatively, many local councils now allow the recycling small electrical items with household recycling, so there’s little excuse for throwing out this kind of equipment.
New customers will face a fine of up to £50 if they decline to return their BT router at the end of the contract, British Telecom have announced.
BT operates a scheme to recycle old routers, which will soon become compulsory, in an effort to reduce electrical waste and cut the volume of unrecycled broadband routers being sent to landfill.
Entry-level Broadband routers from many major providers are locked to a single Internet Service Provider (ISP), which often causes spare routers to pile up in cupboards when customers switch broadband supplier.
The move follows a pattern of UK companies trying to bolster their green credentials, in the wake of Extinction Rebellion and other environmental movements gathering increased public support.
As subsidiaries, the BBC reports that the scheme will also ‘eventually’ apply to EE and Plusnet broadband customers.
Increasing numbers of local councils in the UK now offer direct recycling of small electrical items, reflecting a noticeable rise in the value of copper and other useful materials – giving home users few excuses not to attempt to recycle their old router.
For IT support & expertise – please contact our team today.
Now it’s 2020, and in a world dominated by Google Chrome and mobile web browsing, Microsoft is trying again. Edge was re-launched this month, having been completely re-structured on Google’s open-source Chromium source-code.
Possibly the most frustrating thing for Microsoft is that there’s actually little wrong with Edge – at least as far as most users will recognise. But, beyond the snazzy new logo, is 2020’s new Edge worth your attention?
Some of Edge feels painfully similar – upon downloading, you’ll be immediately (and repeatedly) prompted to import favourites from your other browser (just in case your current browser is an organised place you inexplicably wanted to move away from to win a bet/to fulfil an ancient prophecy/because you work for Microsoft.)
However, Microsoft has clearly learnt some lessons – the choice of layouts (‘Focused’, ‘Inspirational’ or ‘Informational’) are worth investigating to dodge the msn.com-style assault on the senses, and make Edge feel more like a clean, distraction-free tool for daily use. The toolbar design also feels much closer to rivals like Chrome and Firefox: simple and easy to use.
Edge is quick too – performing well in tests and supposedly ‘optimised for Windows 10.’ Although hard to verify in true laboratory conditions, it’s easy to picture Edge delivering Office 365, Outlook.com and other Microsoft web-based services in an efficient manner, and it feels smooth. More importantly, by adopting Chromium, Microsoft have banished one of 2015 Edge’s demons: the lack of available app extensions that eventually finished Windows phone.
‘Immersive Reader’ Mode (similar to that in Office 365) can now be activated from the address bar and strips out on-page distractions, adverts and on-screen formatting for enabled web-pages. This is a simply brilliant and calming addition for reading through articles, and is sure to win plaudits from those concerned about accessibility.
Microsoft also appear to have given a little extra attention to business users – perhaps aware that although Google Chrome dominates Android’s mobile world, workplace computing remains a key area where people still use conventional Windows 10 devices in overwhelming numbers. Sharing preferences between devices is a repeated boast by rival browsers like Safari and Firefox, but Edge can now do this too.
Edge uses Bing search by default, but once signed into your Microsoft account can do some clever extras, such as amend your search results to define acronyms according to your organisation or industry. ‘Inking’ abilities that exist in Office 365 (eg: for taking notes in OneNote) are also extended to Edge for overwriting PDFs in-browser – allowing some simple tasks like signing a contract or filling in a form in legible handwriting.
If your system admin tinkers with Group Policy, it’s possible to turn on an ‘Internet Explorer Mode’ that renders legacy web-pages more accurately, without the pesky security holes that plagued Internet Explorer installations years beyond their supported date.
Sharing a code-base with Chromium allows Edge to borrow some of Chrome’s best media features – including screen-casting to Chromecast devices on display screens and similar. Edge is also allegedly the only browser on Windows 10 to support 4k Netflix – the kind of popular feature it’s hard to imagine Internet Explorer’s developers ever even considering.
In market share terms, Edge languishes with Firefox around 10%, hugely outgunned by the behemoth of Google Chrome at around 70% of all internet usage globally. Will that change? The next few months may reveal whether Edge can establish itself as something with more appeal.
Microsoft Edge (2020) stable-version is now available for PC, macOS, Android and iOS online here.
For IT Support and technical expertise, please contact Lineal’s IT Support Team today.
Lineal Software Solutions Ltd. recently welcomed Chancellor of the Exchequer Sajid Javid MP to Lineal’s Barnstaple Offices to tour our operations and see our technical work.
Visiting with North Devon’s new MP Selaine Saxby, Mr Javid toured Lineal’s different departments and had chance to meet technical staff in a number of different roles (and enjoy a cream tea!)
Considered one of the most senior Cabinet positions, the Chancellor is responsible for financial and economic matters at the Treasury. A former Managing Director at Deutsche Bank, MP for Bromsgrove, Culture Secretary and then Business Secretary, Javid is the first British Asian to hold one of the Great Offices of State.
For IT Support and technical expertise, please contact our team today.
The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency have advised all Mozilla Firefox users to urgently update their browser versions, following discovery of a vulnerability that grants potential access to the operating system.
The unusual warning comes after Mozilla itself admitted being aware of ‘targeted attacks in the wild abusing this flaw.’
It’s 2020! Looking back at recent years, we thought we’d share articles we wish we’d written – some of the most fascinating and most thought-provoking technology pieces from across the internet.
1. “… Close to a fifth of the entire world’s shipping capacity, was dead in the water”
Surely a Hollywood movie waiting to be made. Couriered by hand from Ghana to London, how one last hardcopy backup saved a $55 billion coporate empire from total destruction.
NotPetya – The story of how Ransomware nearly destroyed Maersk Shipping – WIRED
4. “… everyone has different lifestyles and levels of paranoia”
A scorched earth strategy against data-hungry Google is more possible than you might imagine: with some handy tools from Google themselves to eliminate your account piece by piece.
How to set your Google Data to Self-Destruct – NY Times
5. “… I stared at the cursor. Eventually, I typed “nytimes.com” and hit enter. Like a freaking dad.”
Google Chrome 79 will contain a Chrome hacked password alarm to notify at-risk users.
‘Password Checker’, which first appeared in October, will regularly compare user passwords saved in-browser against publicly-known data breaches.
The service will feel familiar to those who’ve tried the (often terrifying) but essential https://haveibeenpwned.com/ – which shows visitors where their email addresses have been compromised.
Chrome’s update is being gradually rolled out to new users, and is available within Settings > People > Sync and Google Services > Other Google Services, and is named ‘Warn you if passwords are exposed in a data breach.’
The alert mechanism is just the latest in a series of attempts to push users to safer browsing: 2019 also saw Google Chrome actively warn users of websites without valid security certificate, and penalise such websites in Google search rankings.
Chrome 79’s new hacked password alarm mechanism should prompt systematically when account credentials need password updates, and allow users to keep their accounts secure.
For IT support and cybersecurity expertise, contact Lineal today.
Lineal Software Solutions Ltd recently won a Tech SW award at the 2019 Tech South West Awards.
Held at the Exeter Mercure Rougemont Hotel,the Tech South West Awards recognise technology excellence across the wider South West region of Bath, Bristol, Cornwall and the Isles of Scilly, Devon, Dorset, Gloucestershire, Somerset and Wiltshire. Awards celebrate talent, creativity, business success, education, leadership, diversity and more.
Each ‘Cluster’ Award celebrates fantastic organisations and technical initiatives across different parts of the South West. This could be a company achieving fantastic growth, an organisation or partnership delivering a big positive difference to their community, a learning initiative, innovative programmes, novel ways of encouraging and celebrating tech heroes, diversity, best practice or local tech successes.
This year Lineal won North Devon’s Cluster Award, and also narrowly missed out on winning ‘Tech Company of the Year (Revenue under £5m)’.
Managing Director Mike Matthews and Naomi Williams (Business Development) were proud to collect our Tech SW award, and our glass trophy now enjoys pride of place in our office!
“We were honoured to be the recipient of one of the first Tech SW awards” explained Mike: “It’s a real endorsement of our team’s hard work and our commitment to delivering brilliant technology solutions for businesses and organisations across the South West.”
Lineal will continue to grow and develop – we look forward to next year’s Tech SW awards, which you can learn more about here: https://www.techsouthwestawards.co.uk/
Thousands of devices were left with broken browsers this week, after a Google Chrome experiment rolled out a hidden change to the world’s most-used browser.
Launched exclusively on ‘stable’ versions, the update left IT admins around the world puzzled at blank tabs that refused to load.
The test initiated a new WebContents Occlusion feature, designed to reduce Chrome’s device resource use for tabs while not currently being viewed – no doubt part of Google’s effort to address Chrome’s reputation for heavy resource usage and the ever-increasing pattern of users deploying more and more tabs during the shift to cloud services.
Online forums were suddenly filled with complaints from system admins fielding complaints from users and businesses all over the world – including US wholesaling giant Costco, who claimed their entire call centre environment was unavailable.
Larger organisations typically use device control to specify applications such as which browser an employer uses – which left System Admins at large enterprise businesses unable to simply direct users to an alternative browser, and furious that Google can roll-out unexpected changes to the platform.
Google has now issued an apology:
“After the rollout, we received reports that in some virtual environments, Chrome on Windows displays a blank page, which may be because Chrome mistakenly believes it’s covered by another window. As soon as we confirmed the reports, the feature was disabled.
“If Chrome on Windows is displaying blank pages, restart Chrome. On the next start, this feature will be disabled.
We also want to provide an explanation of how this change was rolled out. For some features, Chrome uses a gradual rollout process that happens more slowly than the main rollout. This allows us to quickly revert a change if we discover a bug that wasn’t uncovered in prior testing.
Once we received reports of the problem, we were able to revert it immediately. We sincerely apologize for the disruption this caused.”
For IT Support and expertise, contact Lineal today.
An online crowdfunding campaign has been launched to pay the mobile roaming bill of migrating eagles being tracked the Russian Wild Animal Rehabilitation Team at the Siberian Environmental Centre.
The thirteen tagged Steppe Eagles, being tracked via bi-hourly SMS messages containing GPS coordinates, ran up a hefty data roaming bill after migrating across countries as far afield as Egypt, Georgia and India.
One eagle, named ‘Min’ by researchers, unexpectedly flew from Kazakhstan via Iran, initially losing signal but then sending a backlog of messages at high rates, before crossing into Saudi Arabia and reaching as far South as the Yemen.
At a cost of 7,000 roubles (£85 per day), Min quickly used up the programme’s entire budget for tracking all 13 Eagles, forcing the Russian team of environmentalists to turn to social media for financial support.
Considered endangered by the IUCN, the Steppe Eagle once commonly reached as far afield the Ukraine, but researchers were unprepared for expensive data charges across the Middle East, which can be three-times higher than those in the Russian Federation.
The centre’s crowdfunding campaign has raised more than 250,000 roubles (roughly £3,000), although Russian telecoms provider MegaFon has since agreed to write-off the wayward Eagles’ data roaming bill debt as a gesture of goodwill.
Local businesses recently gathered at Barnstaple Library for a special cybersecurity workshop organised by the South West Police Regional Cyber Crime Unit and Lineal Software Solutions Ltd.
Thirty participants from firms across the South West took part in a series of lego-based group exercises highlighting key concepts in cybersecurity, as they sought to protect a fictional utilities company from attack by common real-world cyber crime.
The winning team defended their company by spending their budget on the correct countermeasures at each stage of the exercise, and strategically limiting the damage from any breaches in security.
The South West Regional Organised Crime Unit (SW ROCU) is one of nine regional units across England and Wales that delivers specialist capabilities to target and disrupt serious and organised crime. Designed to raise awareness of coordinated digital threats, the cybersecurity workshop session is part of a new educational initiative being run by the Police right across the region.
Group exercises were followed by a short Q&A including advice for businesses on related topics including network best-practice, password policy, physical security, and the Government’s new Cyber Essentials certification.
Lineal’s Head of Technical Services, Matt Norris, explained: “We were to delighted to be able to organise the Cyber Crime Unit to run this very special workshop for local companies: we see cyber attacks becoming ever more sophisticated, and the SWRCCU takes a really positive and constructive approach to educating business owners about how to protect their organisations and employees.”
“Many businesses struggle to grapple with cybersecurity, but help and expertise is accessible.”
You can learn more about the South West Police Regional Cyber Crime Unit’s and their educational work across the South West online here.
For IT support and cybersecurity expertise, please contact Lineal today.
Email remains a, if not the, key threat vector for protecting organisations from cyber crime – with around 90% of cyber attacks beginning by compromising an unsuspecting user via email.
Today we take a closer look at some of the clever tricks of Barracuda’s email filtering & security service, and why the small investment to protect your inbox is worth it:
Attachment Scanning
In addition to profiling every email which passes through its live email filtering service in seconds, Barracuda scans each email attachment for signs that the contents might be malicious.
As cyber criminals begin to use more sophisticated means, it’s worth implementing this to prevent macro-enabled office documents, infected PDFs and similar file download tricks from catching out users who might be curious to open a dangerous attachment.
Outbound
Barracuda email filtering scans not just incoming, but outgoing emails from your hosted mail service or mail server, ensuring not only that your clients are protected from suspect emails, but that staff cannot circulate threats further within your organisation.
Anybody familiar with being caught in a reply-all ’email storm’ knows how quickly bad email can spread internally – be part of the solution yourself, not the problem.
Email Spooling
In the event that your email service falters, clients quickly begin receiving bounce-backs, which leave a poor impression of customer service.
This is avoidable – routing via Barracuda’s email servers, emails will temporarily ‘spool’ like planes stacking over an airport, ensuring onward delivery later when the service comes back online. This ensures any unfortunate interruption to communications is not immediately visible to your clients.
Long Term Recovery
Hosting your email in the cloud with Microsoft Office 365? Everything is backed up in the cloud, correct? Not quite – even Office 365 has a 30-day recovery period on deleted email, and emails can ultimately only be restored individually.
This retention period can be longer, or even unlimited, with Barracuda email backups, making sure that emails can be recovered long after staff have deleted them, accidentally or otherwise.
This extra silo of automated email backup protects not just against employee negligence or malpractice, but also common digital breaches such as compromised accounts.
For cyber-security and IT expertise – please contact our team today.
Apple have released MacOS Catalina, 2019’s update to the Mac’s leading operating system.
Catalina introduces a number of new features, including ’Sidecar’ dual display, new media systems, Mac Catalyst for developers and Screen Time activity monitoring.
Although we say it every year, the endless march towards a unified Mac/iPad operating system feels another step closer: macOS Catalina introduces ‘Sidecar’ – which allows an iPad to be the secondary monitor for your MacBook. In addition to being a smart productivity trick for those needing extra screen space, the iPad is able to perform new functions such as an extra high-resolution display for those with impaired vision.
MacOS Catalyst, released in the latest version, also makes it easier for app developers to publish their apps across both MacOS and iPadOS operating systems, with the implication being that Apple see the devices as very much part of the same software universe.
Apple have shuffled their media services options around this year – replacing iTunes with new services named Apple Music, Apple Podcasts and Apple TV. In addition, the new Apple Arcade gaming subscription service has been launched, with a fixed-subscription service for an unlimited package of games.
Screen Time introduces activity monitoring, with either productivity or parental control clearly in Apple’s sights. Downtime allows users to share time away from the screen, categories or individual apps, and includes shared visibility across multiple apple devices.
As always, it’s worth waiting a short time for others to discover any early release-bugs in the new operating system update, before updating promptly.
For Apple device expertise and IT Support, please contact our team today.
Microsoft are offering an initial ten free Charity Microsoft 365 licenses for Nonprofit organisations.
Microsoft 365 allows users across an organisation to work more flexibly, collaborate on shared work and maintain an ‘always-up-to-date’ software base across a charitable organisation.
The flagship ‘Microsoft 365 Business’ cloud IT bundle, which normally retails at £15.10+VAT per user per month (Or £3.80+VAT per month for NonProfits) includes everyone’s favourite Microsoft Office 365 apps such as Word, Excel, Powerpoint, Outlook and more. 50GB of Exchange Online email hosting per user is also included as standard, with 1TB of cloud OneDrive storage, and Windows 10 Pro licensing for each user’s device, packaged with a host of organisational security features.
Lineal’s Head of Technical Services Matt Norris explained: “This is a super offer which we’re expecting to do some real good in the Charitable sector especially – and hopefully nonprofits will snap up their free Charity Microsoft 365 licensing while it’s available. Office 365 makes flexible working and collaborative projects much easier, advantages that we know are a key concern for many in the voluntary sector.”
Mike Matthews, Lineal’s Managing Director explained: “We’re delighted to be shortlisted for the Tech South West awards – it’s a real recognition of our team’s hard work, creativity and dedication to be ranked among the best in the region.”
“2018-19 has been really quite something for Lineal. We’ve opened new premises, taken on bigger projects than ever before, expanded our product offering to new areas, and signed a diverse range of new clients.”
“It’s fantastic to make it through to the final round of this prestigious award.”
Tech South West exists to champion excellence among tech companies, and make the South West a hub for technology and innovation.
The awards will be presented in a special ceremony at Exeter Castle on Wednesday 27th November – a full shortlist of nominees and categories has been published on Tech South West’s website, here.
Every year we ask you, our valued clients, to give us feedback on how Lineal has been doing recently, and how we might be able improve.
This year, Lineal posted some of our best customer satisfaction results to date: our client survey 2019 posted a stunning 92% of you rating our overall customer service either ‘Great’ or ‘Good’ – a record high, and a similar 92% felt we met out mission statement as a company, a further small increase on 2018.
We’ve worked hard to develop team structures and training programmes in the past year, with some promising results. You rated the extent to which we understood your technical queries strongly – 95% of you believing our support teams understand your queries either ‘Extremely Well’ or ‘Very Well.’
Our speed of response also continues to develop. More than a third believe Lineal acts ‘Quicker’ or ‘Much Quicker’ on IT support tickets than expected, with just 3% of respondents believing we responded slower than expected. This is our best responsiveness score in five years.
The trend towards a more diverse range of IT services was shown again in client survey 2019: more than 15% of you now recognise Lineal’s ability to deliver specialist consultancy, networking & cybersecurity expertise, and more than 55% recognise us as a provider of managed cloud IT services.
We’re not perfect: among the constructive suggestions raised this year were that we perform routine website security updates out-of-hours to maximise availability, and that we help to provide more training material for newer products.
Your feedback help us highlight potential areas of improvement for our staff, and define our focus for the coming year. Among our favourite comments from this year were:
“Keep up the great work guys! Exciting times ahead…”
“I have had a pretty good service. Your staff are always polite and do not get too technical with me.”
“It is great to see a friendly face at our front door – you just know that your problem will be solved.”
“I’ve been very impressed with the level of service I have received from Lineal over the last 2.5 years at [Client] and would have no hesitation in recommending you guys”
Apple have made headlines this week with the release of new iPhone 11 models at their annual Autumn hardware release event.
New models include the mid-range iPhone 11 ($699), and flagship iPhone 11 ‘Pro’ ($999) and ‘Pro Max’ (6.5” larger form factor) options.
The latest design has divided opinion – with the irregular hole design of the extremely powerful triple-camera on the iPhone 11 Pro and Pro Max models in particular unsettling those with trypophobia.
On paper however, some truly impressive camera features have been included as a result: including wide-angle and night-mode photography that is finely optimised for low light levels, as well as 4K and even 120fps slow-motion video recording.
Apple have heavily doubled-down on photography and videography for the selfie-generation this year. The cluster of three telephoto lenses even theoretically allow the user to shoot different shots simultaneously from the same iPhone, although it’s hard to imagine anyone but the keenest of photography nerds making use of such a feature.
At $50, the standard dual-camera iPhone 11 more affordable than last year’s iPhone XR, and there’s a hint that Apple are calibrating for the sweet-spot of what consumers will accept at a time when Apple’s critical new hardware sales are actually declining. However, as numerous publications have noticed, the lower value of the pound is likely to make the current generation of iPhones still feel more expensive for UK customers.
Other headlines are as expected: Apple have extended battery life once again, offered a new range of colours, the ‘toughest glass ever‘ and stated a revised focus on device privacy, one of the remaining key strengths of Apple devices over Google Android rivals.
In a throwaway line, it was also confirmed that iPhone 11 will be ready for Wi-Fi 6, but not 5G – a subtle suggestion perhaps that Apple believes 5G may be an innovation still slightly over-hyped by the tech industry. Perish the thought.
Microsoft have announced dark mode for Microsoft Office 365.
Dark mode will extend muted and low-light colour schemes across Microsoft’s suite of Office 365 apps, and across Office.com, beyond the Outlook dark theme introduced last Summer. The improvement comes just in time for the newest releases of iOS and Android smartphone operating systems.
Adding low-light themes has become a popular addition for the major tech players in recent years – with Apple and Microsoft making significant strides in adapting their operating systems to be easier to use after-hours.
Office 365’s development team point to the changing nature of work: that office users increasingly use battery-dependent devices (such as laptops, tablets and smartphones) that need to conserve power, over desktop PCs with fixed power connections.
Today’s workforce is much more mobile, often working from home at night, in shared office spaces or even darkened aeroplanes – and are more aware of the health dangers of eye-strain and sleep deprivation that can be caused by unnaturally bright screens.
Instead the focus is on a more ‘relaxed’ viewing of Office 365, with Outlook even able to automatically able to switch to dark-mode depending on the hour and date dynamically, or when the user has enabled battery-saver.
Dark Mode is expected to roll-out to Office 365’s 200-million users in coming weeks.
Lineal are certified Microsoft Gold Partner – for Office 365 expertise, licensing and support, please contact us today.
Rumours circulating online suggest Apple may be planning multiple iPhone 11 models – with square multi-lens camera clusters and glassy coloured casings, photos of the materials or which were leaked online in May.
Remaining releases are likely to be mainly iterative, including iOS 13 for iPhone, iPadOS and even WatchOS 6. MacOS 10.15 Catalina is also expected to be a key part of Apple’s showcase.
The tech giant is likely to see the iPhone 11 announcement as a chance to help reverse hardware sales trends – which Apple now curiously no longer publishes in full, asserting that devices sold is ‘less relevant today than it was in the past’ a likely marker of the iPhone market slowing down as consumers hang on to their devices for a longer replacement cycle.
Apple is also expected to launch it’s own gaming service, dubbed Apple Arcade, as an online subscription service akin to an iTunes for gaming – just one example of how the company is increasingly re-focusing its efforts on premium service offerings, rather than luxury hardware.
For Apple hardware, expertise, accessories and support – please contact our team today.
But is it true; are passwords doomed? Enter the FIDO2 Project – a fascinating effort to ‘Move the World Beyond Passwords’ led by the FIDO Alliance industry association and World Wide Web Consortium.
Headlines aside, FIDO2’s aims are ambitious: to replace passwords with a flexible device-based authentication standard that allows users to log in via biometrics or temporary security keys.
Unique to each website, not stored centrally and not transmitted, FIDO2 argue this standard naturally scuppers phishing, password theft and replay attacks – and introduces some privacy advantages sure to woo even ardent digital rights activists: such as the inability to track users between sites.
While still technically possible, cheating biometrics requires the kind of preparation not common to everyday opportunistic cyber-criminals.
The big players are taking note: Google plans to ‘begin’ retiring passwords for Google services accessed via biometric enabled smartphones (such as those with fingerprint scanners) and Microsoft is planning similar changes to apps in Windows 10; even talking of a ‘passwordless world‘ via Windows Hello that extends facial recognition. Apple have been publicly heading down this road for a while now – with ‘FaceID’ facial recognition introduced for recent generations of iPhone and iPad, as well as Apple Watch device-led unlocking for your Mac.
Password keeper apps (such as the excellent 1Password) have become an interesting half-way house to a more secure password future – where the password manager retains a set of passwords behind a strong keycode, in an encrypted form. The password manager may also perform other useful functions, such as warning the user where passwords overlap, allocating different password access permissions to different people within a business or organisation, or auto-filling in common web browsers.
The adoption of password managers may reflect a coming time where users continue to ‘use’ passwords, but without engaging in the process of recalling or typing the password. It may not be passwords that are doomed, but the user’s traditional interaction with passwords.
Are passwords doomed? A few potential futures emerge: one where passwords exist but are used less directly by users, where passwords are relegated to a secondary security measure of questionable usefulness, or most radically, where passwords are replaced entirely.
For cybersecurity and IT expertise, please contact our team today.
Office 365’s Microsoft Teams has grown and grown to become far more than a simple work chat or video conferencing app.
As new features are added to the collaboration suite all the time, you could easily miss the best of the new updates – so we’ve collated some of the most interesting cool tricks for Teams:
Blur background
Homeworking? Taking an important video call with a less than formal background? Unless you want to end up in a viral video clip like BBC commentator Professor Robert Kelly, Teams has got you covered with simple controls to mask your immediate surroundings from a video call.
With a simple toggle, Microsoft Teams will detect your face in the foreground and blur the remainder of the screen, to spare everyone the embarrassment of your favourite coffee shop or messy home office.
Screenshare to Mobile
Teams has had the ability to optionally share your screen with other attendees in the same meeting for some time, choosing to show either the whole Windows desktop or restricted to a single window (such as a presentation.)
However, Microsoft have also recently added this feature for iOS/Android, allowing attendees to enjoy the full Teams experience on the move.
Viewing a desktop on a mobile can be an eyesight challenge, although it’s especially handy to be able to view a shared Powerpoint presentation in Private mode – and skip back through slides without interrupting everyone else’s flow.
Join by proximity
Join by proximity allows Teams to detect meeting that’s physically located nearby. This seems like a peculiar idea to begin with, but is actually designed for more open ‘meeting’ situations – such as conference venues or hotdesking environments: making individuals’ screen space as collaborative as the room itself, or extending a spontaneous group meeting into a virtual one.
Teams will prompt within the meeting room lobby if any existing rooms are available nearby via Bluetooth, allowing the user to apply to join the meeting with audio muted, and without an original Teams invite. The meeting room organiser must accept via a Meeting Room control unit for security reasons, to ensure only welcome attendees join the meeting room.
Proximity join is available from May 2019, including on mobile versions of Teams.
Integrate Interactive Tabs
One of the best untapped features of teams is the ability to add custom tabs (click ‘+’) into each chat channel which allows for the creation of something entirely custom.
Among our favourites are embedded maps, OneNote notebooks, diary, Sharepoint files, and Microsoft Power BI’s impressive data visualisations.
Of course, Channel admins can also add from a category simply marked ‘website’ – via which any responsive web service with a valid SSL certificate can be deployed neatly through teams for the look-and-feel of a more integrated desktop.
Get Notified of Availability
Status indicators mean its easy to tell if a contact is unavailable to chat, but right-clicking on a contact now offers a handy ‘Notify When Available’ option which performs the basic requirement of call back – allowing Teams to prompt you of contact availability the best time.
Microsoft Teams is available with Microsoft Office 365 Business Essentials licensing and above.
Lineal are a Gold Microsoft Partner – for Microsoft Office 365 support, licensing and expertise, please contact our team today.
Chinese technology giant Huawei have announced the development of Harmony OS, a smartphone operating system designed to replace its reliance on Google’s Android platform.
The news, which was announced at the 2019 Huawei Developer Conference, is the latest twist in a series of events which saw Google’s official suspension of Huawei’s Android license in May 2019, in response to a security warning from the US Government.
Much like its rivals, Harmony OS is designed to run across a wide range of devices beyond smartphones, including tablets, wearables and smart screens. Built from scratch, Huawei also claims developers will be able to develop and deploy new apps across multiple device-types and screen sizes much more easily.
Huawei’s focus on developers may seem a little niche, but may be shrewder than first thought – in light of the difficulty Microsoft experienced seeking to establish Windows Mobile as a rival to Android and iOS, and the declining spiral of app availability, hardware sales and popularity.
Harmony OS may be at an early stage (concept images were noticeably absent from Huawei’s media release) although the move may signal a realignment of the smartphone world into the 2020s – with three operating systems: Apple’s iOS, Google’s Android, and Huawei’s Harmony going head to head.
For Business Mobile expertise and support, please contact our team today.
Lineal have launched Lineal Business Mobile at the 2019 North Devon Show.
The annual North Devon Show, for which Lineal is a proud Sponsor, receives around 20,000 visitors each year. In addition to all the agricultural, culinary, craft, entertainment and community highlights of North Devon, visitors to the show might also have spotted Moby, Lineal’s Business Mobile Mascot.
Mike Matthews, Lineal’s Managing Director explained: “We’ve provided fixed-line business telecoms for a wide variety of local firms, but increasingly customers have asked us to deliver business mobile services too. We felt that the time was right, and we’re delighted to be able to add this to our extensive range of IT, software and communications services.”
“With attractive packages for unlimited business mobile voice minutes, unlimited SMS and Data bundles, – and even UK network-hopping SIM technology – we’re certain Lineal Business Mobile will be a popular option for businesses across the South West.”
Visitors to the show also undertook our retro Space-Invaders Challenge for the second year running, with a live Microsoft PowerBI ‘Highscore’ dashboard visualising the best arcade skills on display at the show! Congratulations to Martin P. from Barnstaple, who achieved the best highscore (1390) of this year’s challenge.
Despite uncertain weather at first, North Devon Show 2019 was a great success – see you next year!
For Devon IT Support and expertise – contact our team today!
Apple have issued a silent update for video conferencing software Zoom, following discovery of a major webcam security vulnerability affecting Mac users.
Zoom issued an emergency patch for the problem two days ago – in a rapid response Apple was still concerned might not reach enough users.
The controversial web server installation – originally designed to save Mac-based Safari web browser users from additional clicks and make video conferencing easier to use, was shown to create a potentially serious vulnerability whereby Zoom calls could be launched from any website with the camera turned on.
Believed to put at risk more than 4 million webcams globally, the zero-day exploit was discovered by security researcher Jonathan Leitschuh – who originally gave Zoom 90-days to resolve the issue prior to publication.
Leitschuh has since praised Zoom’s willingness to do a public ‘about face’ with the emergency patch, and Zoom’s CEO taking direct video calls to discuss the problem.
Nevertheless, Apple’s decision to step in to protect Mac users remains an embarrassment for the previously very successful video conferencing solution.
Additional problems include Mac versions of video conferencing software which use Zoom’s underlying services for white-labeled video calling – such as Ringcentral.
Instead of patching the problem, Zoom’s permission to turn on the webcam can also be disabled manually, via Settings > Video > ‘Turn Off My Video When Joining a Meeting.’
For software expertise and support, please contact Lineal today.
Communications giant Poly (nee ‘Polycom’) have launched their new VVX450 series phone handsets – and our team at Lineal have taken it for a test drive.
On first impression, the new handset is exceptionally eye-catching – the square design certainly feels modern and cutting-edge, if a little serious. All the controls will feel very familiar to users of the very successful VVX410 and VVX411 handsets, but the phone’s 4.3″ full colour screen is the most dramatic improvement – with a wider display and higher definition that appear much sharper.
Much like the VVX411, the menus and buttons are simple and intuitive – continuing the same focus on ease-of-use that has seen Poly sell VVX phones in the hundreds of thousands across the UK, into a very diverse array of business sectors.
We were particularly impressed by the speakerphone. Polycom have cranked the in-built speaker up to eleven, and the Polycom VVX450 could easily be used as a capable conference phone for a typical meeting room.
Someone may have been slightly over-ambitious with the phone’s size: desks may include less paper these days, but the handset feels large and space might be an issue in more traditional working environments. As before, the VVX450 supports single-cable (‘POE’) network and power, PC pass-through, headsets and more, but is noticeably larger than the VVX411 predecessor, itself a substantial handset. Overall, the impression is that the new model may look more naturally at-home on the desk of an executive, rather than an occasional phone user.
Bitdefender have released a free decryption tool rescuing those affected by recent versions of GandCrab ransomware.
The free tool enables stricken users to recover data encrypted by various versions of GandCrab without paying a ransom to cybercriminals.
In a joint announcement with Europol, Romanian Police and other law-enforcement agencies, the cybersecurity provider detailed how a team of experts were recently able to gain access to the GandCrab control server, and access decryption keys for the ransomware that would allow safe recovery of data.
GandCrab became the latest nasty ransomware threat in January 2018 – following a disturbing trend of businesses and organisations worldwide struck by malicious encryption software.
Bitdefender’s previous attempts to quash the ransomware resulted in new versions being released by cyber criminals, but the latest recovery of private keys resulted in GandCrab’s developers announcing their ‘retirement’ – allegedly having exploited more than $150m in personal profit over five major versions of the ransomware.
Bitdefender’s recovery tool and instructions for use is available for download from the Bitdefender Labs here. In order to use the tool successfully, affected users must have a working internet connection and at least one copy of the ‘ransom note’ file present on the affected device.
For cybersecurity expertise and support, contact our team today.
WhatsApp users have been asked to update their app version urgently following a major Whatsapp security breach.
The exploit is believed to be possible via a missed WhatsApp voice call, made possible by a software loophole recently introduced to limit message forwarding. Affected users would be unaware that their device might be compromised.
The Financial Times’ exclusive report links the breach to NSO Group, an Israeli private cybersecurity company whose private customer list is likely to include military, security and law enforcement clients.
Analysts believe the technique has probably so far only been used to ‘eavesdrop’ on high-profile targets with especially security-sensitive information, although today’s announcement raises the possibility that criminal third-parties may attempt to exploit the same vulnerability against ‘ordinary’ WhatsApp users such as civilians.
WhatsApp has utilised end-to-end encryption since 2016 across both Apple and Android smartphone devices, making it a common communication medium for personal use, but also for organised crime. There are more than 1.5 billion users worldwide, making WhatsApp security a truly global concern.
Smartphone users are being advised to update their copy of the App to the latest version – 2.19.134 on Android and 2.19.51 on iOS or newer.
For Mobile technology assistance and expertise – contact Lineal today.
Microsoft have blocked availability of May’s Windows 10 Update from PCs with attached removable storage – such as USB flash drives and SD Cards.
The restriction has been put in place to prevent users encountering accidental drive re-assignment when they try to update: causing D: to become E:, or similar.
Harmless for most personal devices, any change is likely to cause maximum confusion for work devices which often rely on organisations sticking to a fixed structure for drive access.
Instead, users will be confronted by a warning message reading:
Your PC can’t be upgrade to Windows 10. Your PC has hardware that isn’t ready for this version of Windows 10. No action is needed. Windows Update will offer this version of Windows 10 automatically once the issue has been resolved.
While USB drives may be easily removable to make May’s Windows 10 Update available again, users online have pointed out that Microsoft Surface devices and other Windows 10 enabled tablets are likely to be scuppered by the SD Card, which may have been pre-installed for work devices. More worryingly, Microsoft’s official support article notes ‘The drive reassignment is no limited to removable drives. Internal hard drives may also be affected.’
May’s 2019 Windows Update (which looks to include some promising new features) has undergone an extended testing period with the Windows Insider program this year, after some Windows users suffered file deletion problems during the October 2018 update cycle.
An undetected bug remains a setback for Microsoft’s flagship operating system, and the concept of a constant update cycle on a consistent platform. The problem will not be unfamiliar to Apple, however, whose 2017 OSX High Sierra update somehow reached release with an undetected root password security bug, only discovered weeks after release.
Microsoft have confirmed the removable storage bug will be resolved in a ‘future servicing update for Windows 10’ although May 2019’s Windows 10 update may well turn into June, July or August.
For IT support and expertise, contact our team today.
Online rumours about the release of iOS 13 have suggested Apple may be about to add a number of ‘Mac’ style features to their touchscreen-based operating system.
Among the improvements hinted at exclusively by 9to5Mac for release at Apple’s Worldwide Developer Conference in June, iOS 13 looks set to include system-wide dark-mode and high-contract display versions, a less intrusive volume control, new font management, desktop-version website priority and new ‘Undo’ controls.
Most importantly, iOS 13 is rumoured to include a kind of panel-based app container system, allowing users to more easily control screen space and switch between applications smoothly.
If true, the move will be seen by many as the first confirmation of a long suspected plan by Apple to begin merging their two main operating systems, iOS (for iPhone and iPad) and MacOS (for MacBook, iMac and Mac mini ranges) for a more common experience across Apple’s range of devices.
Numerous concept images of what the proposed iOS might to look like have appeared online, although Apple aficionados may note that dark-mode would display very differently on OLED devices to non-OLED ones.
Recent iPad Pro advertising, which asks ‘What’s a computer?’ suggests that much like Microsoft, Apple is preparing for more capable tablets to increasingly replace traditional laptops for work computing.
For Apple equipment and expertise, contact our team today.
Microsoft’s Windows Team have previewed a new optional Light Theme to be released in May 2019’s Windows 10 update.
The glossy, bright look is currently available to those on the Windows 10 Insider Preview Build (a kind of test program for volunteer guinea-pigs of future Windows versions – accessed through Windows Update.)
Both Apple and Microsoft have introduced ‘Dark Modes’ more eye-sensitive for night-time use in recent years, either in popular software such as Outlook, or as part of the main operating system itself, as in the case of Apple’s Mojave update.
Windows Light Theme introduces a brighter feel for Microsoft’s signature operating system, likely to prove a hit among companies with certain in-house ‘styles’ favouring brighter tones, or to provide more options to those with visual impairments.
As of March 2019, Windows 10 is now in use across more than 800 million devices worldwide, running on just a smidge under half of all PCs in existence (49.9%.)
May’s Windows update (build 18362.30) also features numerous minor fixes, including improvements to printing processes, splitting Cortana from Windows Search, and extending dark mode within OneDrive.
Light theme will be available within the ‘Personalisation’ settings available by right-clicking on the Windows desktop, once the new update lands in May.
For Microsoft expertise and support – contact our team today
Staff and volunteers from Lineal Software Solutions Ltd. and TM Fitness have raised £500 for North Devon Hospice’s Pitch-in-a-Pound day.
The annual Pitch-in-a-Pound Day, supported by businesses and fundraisers across North Devon, raises funds for the vital work of the former Charity of the Year, which cares for more than 3,000 people affected by life-limiting illnesses each year.
With help from TM Fitness gym in Barnstaple, Lineal staff ran, walked and rowed a total of 100 miles in relay, and raffled-off healthy fruit basket prizes to raise funds.
Lineal’s Managing Director Mike Matthews thanked all those who donated, volunteered or helped:
“This important charity has cared for somebody from so many local families, across more than 800 square miles. The organisation and its staff rightly hold a special place in the heart of the local community for its good work.”
“That’s why, for the second year running, we decided to match whatever Lineal staff raised on the day, bringing the total tom £500. Well done team!”
Thank you to everyone who volunteered, donated or helped with pitch-in-a-pound this year! You can still sponsor our appeal via our JustGiving by clicking here or learn more about North Devon Hospice by clicking here.
Samsung have unveiled Galaxy Fold – a folding smartphone with a large (7.3” 2152×1536) internal display.
Designing a folding phone presents challenges, not least how close to exact the fold can run without breaking the internal display.
The benefits? A larger screen inside looks a smart choice for certain app formats – such as Google Maps, or split-screen use between apps. Samsung have cleverly ensured the display switches as the hinge is opened, seamlessly connecting the ‘outside’ display to the ‘inside’ without a delay that might interrupt use of the phone.
But there are some quirks too – the impressive internal screen is 6% less bright than the external, and drains the battery significant faster than the external 4.58 inch display that acts as the more traditional phone keypad.
The South Korean electronics conglomerate is not the first to trial a folding smartphone, nor even the first to announce – with Chinese rivals Huawei and Xiaomi both previewing rival models with different folding styles.
The Galaxy Fold will cost a wallet-emptying $2000 – but does at least demonstrate a level of innovation that has been sorely lacking in the smartphone market in recent years. Studies suggest gadget-lovers are increasingly holding on to their devices for longer, with risk-averse manufacturers adding only incremental changes.
Folding smartphones have disrupted the market before, so perhaps if the design can be perfected, there may be new use cases that soon demand folding technology.
For IT support and expertise, contact Lineal today.
Adobe have released an urgent update for Adobe Reader DC, patching newly discovered security vulnerabilities.
The highly popular PDF app, often pre-installed on Windows PCs, has been shown to contain a loophole that allows an attacker to remotely run Javascript code within an opened PDF to cause memory corruption.
Currently rated ‘Critical’ by Adobe’s Severity Rating System, the bug is believed to have originated from entirely legitimate functionality: Adobe Reader allows PDFs to contain embedded JavaScript to support interactions with the web.
Adobe have responded quickly – publishing the fix to Adobe Security Bulletin alongside patching for 42 other vulnerabilities as of Wednesday 12th February, including one which allowed PDF documents to access hashed passwords.
Adobe Reader is officially 25 years old this year, and although official figures are hard to source, is popularly believed to dominate more than 75% of the PDF software market.
Users can either auto-update their installation or prompt this manually by clicking ‘Help’ > ‘Check for Updates’ within the software itself.
For software and security expertise, contact Lineal today.
The Raspberry Pi Foundation has opened its first Raspberry Pi store in Cambridge.
The lovable entry-level learning computer, which can be used to build everything from robots to weather balloons, miniature servers to automated pet-feeders, will have a physical high-street presence for the first time.
Visitors to the shop can access the various versions of Raspberry Pi, Pi accessories, souvenirs and books, in addition to advice on new projects.
The best-selling British computer of all time, the Raspberry Pi offers an adorable 1.4 GHz processor and 1GB of RAM which would have represented the peak of consumer computing power in the late 1990s.
Such tiny computers are of course meant to be educational (and fun) rather than serious work devices, although the internet is full of ingenious uses for the low-cost, minimalist hardware which may prove to have greater use under an Internet of Things (IoT) style future of connected devices.
The shop is estimated to have taken £10k during it’s first three days of trading, and the Foundation believes the cult-status of the Pi will ensure ongoing interest from young and old alike.
Phishing emails that attempt to steal sensitive information or defraud funds are a growing threat to small businesses – and the root cause of roughly 90% of business cyber attacks.
Educating your staff to be wary of clicking on a suspicious email is arguably one of the simplest and most effective cyber-security practices for small businesses. But how should you approach this?
Nobody is Immune
There’s no telling when or where a phishing email will arrive at your business, and any single compromised computer might be a cyber-criminals ‘way-in’ to the company – so a good place to start is the idea that it is everyone’s responsibility to watch out for suspicious emails.
Phishing email traffic is estimated to have increased by around 65% last year, and approximately 30% of those phishing emails get opened by IT users.
You’re the CEO of a global multi-national conglomerate? Then you’re MORE, not less likely to be targeted. Such ’Spear Phishing’ attacks are often highly specific to key individuals, aiming squarely at users with privileged information, responsibility over finances or higher levels of access.
Email awareness applies to anyone and everyone with access to email, so training efforts to make your company secure need to apply up and down the hierarchy.
Use Examples
Getting hands-on with real examples of phishing emails is the single best way to immunise your team against being caught out. Cybersecurity companies increasingly recognise the ‘human’ factor as the most critical ’threat vector’ – put simply, there’s (ultimately) no substitute for human intuition about what might be suspicious.
Show your team key warning signs to look out for – suspicious email addresses in the email header, bad grammar, or links to dodgy URLs that display when you hover your mouse pointer over them.Fortunately ‘Fake bank’ or ’Nigerian Oil Minister’ type scams have become quite notorious over the last decade, so even the least tech-savvy user will soon catch on to the idea that if an email seems odd, it’s worth checking before clicking or typing-in any sensitive details.
Studies suggest many IT users increasingly feel that cyber-security breaches are inevitable, and that there’s ‘nothing they can do.’ This security ‘fatigue’ is partly the fault of cybersecurity providers, who have bombarded companies with this idea.
Avoid this mindset. Yes, 76% of companies reported being the victim of a phishing attack in 2017, but 24% did not. Those exemplary organisations will (at least partly) be making their own luck with good working practices, cybersecurity training for users, and strong IT security.
Defeatism also ignores that not all cybersecurity breaches are created equal – a breach could result in a negligible cost to recover a single PC, or cripple a major organisation worldwide, as NotPetya ransomware did to Maersk Shipping in 2017. Under GDPR, the scale of the fines issued by the Information Commissioner’s Office are directly related to the severity of the breach.
The lesson is clear: limiting your organisation’s exposure to attack also limits the potential ‘scale’ of the damage. Never surrender!
Do Your Part
It’s helpful to be able to show you’re also investing in your users’ safety at work – that you’re leading by example. Fortunately, there are many ways to reinforce end-user security when using email:
Cloud-based email hosting services (such as Microsoft Office 365) include multiple layers of spam filter as standard, which prevents the end-user ever coming into contact with a considerable volume of suspicious communication, and usually represents greater security than would be typical for your own on-site Exchange Server.
More secure antivirus providers (such as ESET) maintain their own lists of suspicious websites likely to be imitations used for phishing important credentials (such as bank details) and blocking these when encountered.
Email filtering services, such as the excellent Barracuda, are an inexpensive security bolt-on to work email that can dramatically cut down on each person’s day-to-day exposure to dodgy emails. Barracuda Phishline is also available as an automated training service – building a program of dummy phishing emails that can be used to raise awareness among your staff. Clever!
Facebook has announced plans to merge WhatsApp, Messenger and Instagram’s messaging capabilities.
The social media technology giant plans for interoperable communication between each platform, although the development is stated to be the start of a “long process” and the apps will remain independent.
The consolidation may be good news for consumer-facing businesses, as dramatically more of the world’s smartphone chat users are centralised under a common standard for instant messaging.
WhatsApp released a Business version in 2018, suggesting that the chat software provider believes the public will increasingly seek to engage with businesses directly via such chat apps in preference to traditional methods such as email or phone call.
Whatsapp (over 1.5 billion active users globally), Facebook Messenger (1.3 billion) and Instagram (1 billion) will easily represent the largest collective chat application user base in the world, and the most popular across Europe, Africa, North America and South America.
The coagulated mass of (WhatsMessengerGram?) will also allow Facebook to better compete with Google’s unified Messenger App, and Apple’s iMessage platforms, as well as further challenge regionally strong chat applications with tertiary functions – such as payment transferring WeChat, preeminent among Chinese smartphone users.
Facebook’s project is set to be completed later during 2019.
For IT and communications expertise, contact Lineal today.
With the Government publishing official Brexit guidance, we take a closer look at 4 items likely to be important for the technology of UK businesses:
.eu Domains
For UK businesses using .eu registered domains, it’s expected that these will not be available for purchase or renewal after April 2019.
Official Government guidance is for businesses to purchase .co.uk, .com and/or .uk versions of important domains, and re-direct traffic in case of a ’No Deal’. Such action is likely to be more challenging for domain-linked services such as email.
This is also a difficult prospect for the unprepared: .com domains alone outnumber their .eu counterparts almost 40-1, so UK businesses may find themselves in a race to grab vital digital real-estate. Web developers and marketing teams might also have built significant reputational presence for the .EU versions of their company websites, and won’t relish the prospect of having to start over.
Mobile Roaming
UK Mobile users abroad currently benefit from EU roaming regulations that limit mobile operators to a default data usage cost of €50, with alerts generated as the mobile user approaches the roaming limit.
Official Government guidance states that in the event of a Deal this limit would continue during the ‘implementation period’ so mobile workers abroad would temporarily be protected against high roaming costs after 1st April.
In the event of ’No Deal’ outcome, EU roaming regulations would no longer applies to UK mobile users abroad, and restrictions on how much European mobile operators could charge roaming UK mobile users would be removed.
The Government states UK networks will soon be bound by new UK laws upholding the same financial penalties for their roamers abroad – although these UK-based networks are ultimately responsible for whether roaming services are available via foreign networks. Mobile users working internationally need to be wary when consuming mobile data abroad after 1st April 2019.
Data Sharing
Whether UK businesses can access customers’ (or any) personal data from the EU will be determined by an ‘Adequacy Decision’ taken by the European Commission; deciding whether UK data protection rules are sufficiently close to those of the EU for data transfers to be permitted.
The UK formally adopted the EU’s ‘General Data Protection Regulation’ (GDPR) during 2018 and will retain this beyond April 2019, suggesting that a common framework for a company’s ‘Legal Basis’ to process personal data is likely. However, the EC have stated this decision will not be taken until the UK leaves the EU.
Government guidance suggests companies dealing with any personal data from the EU, or with operations abroad, proactively seek legal advice to ensure they continue to be legally watertight when transferring data internationally after 1st April.
Geo-Blocking
‘Geo-blocking’ certain customers online based on their location is currently not permitted, but this restriction will effectively be lifted after 1st April – for UK trading businesses.
This affects many online retailers: for example those who deliver goods ordered online, online services (such as streaming or cloud hosting) or take bookings for services at physical locations (such as ticketing.)
UK businesses trading to the EU will still be expected to uphold EU rules – for example offering the same service to both French or German customers.
However, the lifting of Geo-blocking restrictions effectively opens the door for UK-based online retailers to offer different services to different UK customers, or UK customers when compared to EU customers. Businesses are still advised to seek independent legal guidance for any variations to their service.
Online Security breach website HaveIBeenPwned.com has detected the largest online breach of email addresses to date – nearly 773 million unique emails.
The 87GB of breached personal data, publicised by Microsoft Regional Director and cybersecurity expert Troy Hunt, was spotted last week via online file-hosting website MEGA under the ominous name “Collection #1”, and has now been removed.
The data itself, believed to be a terrifying aggregation of a large number of previous smaller data breaches, also contained more than 21 million identifiable plain-text passwords.
More than 140 million of the email addresses identified have never been seen before by HaveIBeenPwned.com, suggesting some of the personal data may originate from as yet undiscovered breaches.
Those affected by the breach are advised to change their passwords immediately, to prevent criminals potentially exploiting the data to access other online services where the user has registered with identical login credentials.
You can check if your email(s) (and potentially passwords) have been breached among the 773 million by clicking here.
For IT support and cybersecurity expertise, contact Lineal about your requirements today.
Windows 7 uptake worldwide has finally been overtaken by Windows 10, with just one year until all consumer support for the popular operating system ends.
2009’s acclaimed Windows release will officially reach end of life from January 14th 2020, beyond which customers operating remaining Windows 7 PCs will receive no additional security updates or patches.
Much like Windows XP before it, Microsoft’s Extended Security Updates (ESU) will theoretically be available for additional years (specifically until 2023), but only to enterprise customers using Professional or Enterprise versions, billed on a ‘per-device basis’ and at increasingly steep annual costs.
Online web market share tracker NetMarketShare now records Windows 10 as a mere 2% ahead of Windows 7, approaching 40% of the overall desktop market – if still some distance behind Microsoft’s original Windows 10 roll-out targets.
Users looking to upgrade to Windows 10 may look to replace hardware, purchase a direct upgrade, or acquire the upgrade via a larger package such as Microsoft 365.
For Microsoft advice and support, contact Lineal today.
Early feedback from users was positive (despite recurring jokes that the Microsoft Office user-interface may also need a similar makeover from designers.)
That makeover has already begun with Office 365’s new fluent menus: specifically, streamlined menu bar options for both the web and desktop client versions of the major Office apps, which load faster during general use. The existing option-heavy menus will also remain optionally available, as might be expected for a product being used by more than a billion knowledge-workers worldwide.
Licensed Office 365 customers receive ongoing updates throughout the lifetime of their subscription, including security updates and all new visual improvements. However, revised icons for gradually retiring apps, such as Yammer and Skype for Business, might imply these products have greater independent lifespan than is actually expected by Microsoft support.
Lineal’s Ian Meredith has been awarded DrayTek Certified Network Admin Certificate, adding an additional qualification to Lineal’s networking experience.
DrayTek’s ‘Dray School’ requires network engineers to pass a series of advanced network and security configuration tests using DrayTek devices, routers and access points, including best practice for firewall settings, fault-finding and other detailed network tasks.
DrayTek’s business-grade Router range have won praise from across the IT Support sector recent years, with the provider winning a PC PRO Technology Excellence Award for five successive years (2014-18). DrayTek router models have proved highly popular with businesses, with intelligent features such as 4G fail-over increasingly in demand for business continuity requirements.
As a part of the 2-day examination procedure, each engineer’s router is attached to a testing network which judges whether the engineer has managed the device correctly, and automatically passes or fails based on a series of security checks.
Well done Ian!
For Networking and Security Expertise, contact Lineal today.
Setting your email out of office is something most people do only occasionally, and therefore can be unfamiliar to many. However, an auto-reply helps present a professional face for your business or organisation while you’re away enjoying the holiday season, and provides reassurance to those trying to contact you.
Here are our handy guides for setting up your auto-reply:
1. Open Outlook from your Office 365 Apps, and click the ‘Settings’ cog icon in the top right of your browser. Click ‘Automatic Replies’.
(If using Microsoft’s Outlook.live.com free personal service, you may need to click ‘View All Outlook Settings’ in your Settings tab for Automatic replies to be visible.)
2. Outlook will open your Autoreply settings. To turn on your Automatic replies, tick the top box labelled ’Send Automatic Replies’, and enter the text for your auto reply in the text box.
Choose the date and time period you wish your Out Of Office to remain active for, and when ready, click ‘OK’
Outlook 2019 (for Mac)
1. Open Outlook from your Applications, click ’Tools’ from the Menu Bar and select ‘Out Of Office’.
2. Outlook will open your Autoreply settings. To turn on your Automatic replies, tick the top box labelled ’Send Automatic Replies’, and enter the text for your auto reply in the top box.
Choose the date and time period you wish your Out Of Office to remain active for, and when ready, click ‘OK’.
Outlook 2019 (for PC)
1. Open Outlook and click to the ‘File’ Menu from the top toolbar.
2. From the ‘Info’ Tab click the ‘Automatic Replies/Out Of Office’ Button to open the Automatic Replies Window.
3. Click ’Send Automatic Replies’ at the top – choose the date and time period you wish your Out Of Office to remain active for, enter the message you wish to use for your Autoreply in the ‘Outside My Organisation’ text field, and click ’OK’.
Mac Mail
1. Open Mac Mail
2. Right click on the left hand navigation panel and select get Account Info.
OR – If you right click on a file stored in your own mailbox you will have a direct link to your Out of Office
3. Click ’Send Out of Office Replies’ – choose the date and time period you wish your Out of Office to remain active for, enter the message you wish to use for your Autoreply in the ‘Internal Reply and External reply’ text fields, and click the red close icon in the top left.
Gmail
1. Open Gmail in your web browser, and click the cog icon in the top right.
2. Open ’Settings’, click ‘See All Settings’ and scroll down to the section named ‘Vacation Responder’.
3. Switch Vacation Responder to ‘On’. Choose the date and time period you wish your Out Of Office to remain active for, enter the message you wish to use for your Autoreply in the text field, and click ‘Save Changes’.
Kerio Webmail
1. Sign in to Kerio Webmail, and click your email name in the top right of the browser window. Choose ‘Out Of Office’ from the dropdown Menu.
2. Tick ’Send Out Of Office Message’, choose the date and time period you wish your Out Of Office to remain active for, enter the message you wish to use for your Autoreply in the text field, and click ’Save’.
Yahoo! Mail
1. Sign in to Yahoo! Mail and click the cog icon in the top right corner of your browser to access your settings. Click ‘More Settings’
2. Click ‘Out Of Office’ Response from the left hand menu. Toggle the ‘Turn On Out-Of-Office Response’ Switch to ON.
3. Enter the to and from dates you wish your out of office to remain on for, enter the auto-response in the text box, and click ‘Save’.
Windows 10 Mail App
Open Mail and click the settings cog in the bottom right of the menu.
2. Select ‘Automatic Replies’ from the settings menu
3. Select your email account, toggle Automatic replies to ‘ON’ and enter text for your automatic reply for internal and/or external contacts.
For IT support advice and guidance, contact Lineal today.
Microsoft have re-released October 2018’s Windows 10 update, after pausing the upgrade for technical fixes last month.
Some users complained of missing files and other update issues due to a bug with folder re-direction, with Microsoft eventually halting the availability of the download globally.
The move sees a more cautious Microsoft seek to evade criticism with a new ‘focus on quality’. The revised update has taken a month to re-issue and was released to ‘Windows Insiders’ (a kind of Beta-testing pool) several weeks ago for initial vetting, prior to re-release for the general public.
Since 2015, Windows 10 has been updated incrementally (much like rival Apple MacOS) with each iteration upgrading Windows 10 itself rather than seeking to replace the platform.
For businesses, updates may be managed centrally to avoid stumbling into first-day mishaps, such that home users were most likely to suffer from the results of October’s upgrade false-start. As always, Lineal’s advice is to delay major operating system upgrades for at least 24 hours, to ensure release-bugs have been identified.
In Microsoft’s defence, Windows 10 is now running on 700 million devices, and shows healthily declining customer incident rates – in addition to high public satisfaction, allegedly receiving the best Net Promoter Score (NPS) of any version of Windows to date.
The October Windows 10 update remains the only one of its kind to be pulled, and then re-released, and the pressure will be on Microsoft to ensure it remains unique.
For Windows expertise and support, please contact our team today.
Apple have announced three new Apple products in their Autumn Keynote product release – including a new Mac Mini, MacBook Air and iPad Pro.
The new devices eliminate creeping gaps in the Apple product range, finally replacing legacy devices long overdue a refresh. The Air (released in 2011) and Mac Mini (2013) both receive a significant upgrade in design and more powerful technical specifications.
The new Mac Mini has been upgraded to to 3.6Ghz processor, 8GB of memory and 128gb all-flash storage. For power users, the specifications inside the new Space Grey casing can be pushed higher – up to 4.6Ghz 6-core i7, 2TB SSD and a staggering 64GB of memory likely to please even the most demanding of photo-editors.
Speaking from New York, Apple CEO Tim Cook confirmed rumours from earlier this year, and pitched the releases as a move to assist ‘creatives’, acknowledging that customers from Apple’s most loyal business sector would be anticipating convenience and more powerful hardware from the upgraded models to support their creative work.
The new MacBook air is an astonishing work of portability, at just 15.6mm thick (around 10% thinner even than the 2011 version) and incorporates a retina screen, Thunderbolt 3 Ports, Touch Sensor and many other recent staples of the current MacBook and MacBook Pro range.
A 100% recycled aluminium shell on both devices also demonstrates Apple’s increasing environmental awareness, and serious efforts have been made to decrease plastic consumption to manufacture the inner workings of the device.
iPad Pro receives updates handed down from the more successful iPhone range, including FaceID, edge-to-edge screens and a thinner shell (equating to 25% less volume than previous models) charged by USB-C and including the A12X chip.
Apple claim the increase in core-count equates to a huge jump in processing speed – making the Pro technically faster than 92% of all portable PCs, and even able to generate complex Autodesk objects or run games at 120 frames per second. If true, this represents an enormous leap in capability, positioning the iPad Pro as a true competitor to performance laptops.
2018’s Macbook Air will be priced from around $1,199, and Mac Mini/iPad Pro from around $799, at time of writing, and will be available almost immediately.
For Apple hardware and expertise, contact Lineal today.
Dell have released details of a new ultrawide monitor format: the super-sized Ultrasharp U49 – a curved mega-monitor that measures a desk dominating 49-inches, corner to corner.
Monitor sizes have escalated steadily over the years, with evidence that greater on-screen real estate improves worker productivity; as users can multitask and cross-reference information on screen more easily on a larger desktop space. Accordingly, all the major operating systems have also added support for easier double-app screen sharing, if multi-taskers know where to look.
At ultrawide sizes however, monitors include content outside the user’s peripheral vision (and desk-space) forcing manufacturers to look at a curved chassis design instead. In practice, a curved monitor screen makes significantly more sense than a curved television – since the viewing distance of the observer can be more accurately estimated.
Increasingly popular for financial services and the creative sector, curved ultrawide formats can sometimes feel a little silly: able to open a Microsoft Excel Spreadsheet into the B(A-Z) columns without any user scrolling.
Don’t expect to see U49s very often – Dell will be selling the prestige ultrawide monitor in the US for (a bank-account punishing) $1,700 from the end of October.
The smarter development may be the less publicised: Dell also announced smaller Ultrasharp models with USB-C single cable input – allowing users to incorporate all the traditional device charging and compatibility features of a laptop dock neatly into the back of their screen.
This allows users to instantly connect a portable device (laptop, tablet or convertible) to their desktop monitor with only a single cable, and simply walk away from the desk with their device when needing to work elsewhere.
Take note: this kind of flexible working is coming sooner than you think.
For IT assistance and expertise, please contact Lineal today.
Google Plus is to be shut down, following a data leak which put almost half a million user accounts at risk.
The tech giant announced on Monday that the consumer social media platform would be retired by the end of August 2019.
Launched in 2011, Google Plus has had a rocky history – spawning a comedic sub-genre focused around it’s slow adoption, weirdly vocal support from Google employees, and failure to compete with larger social media rivals such as Facebook.
Google’s own statement acknowledges this in harsh terms:
More controversial however have been recent security problems. This month the Wall Street Journal published details of a bug in the Google+ API which had allowed app developers to access user data without permission via their friends, (an almost identical vulnerability to that underlying 2018’s Facebook/Cambridge Analytica scandal which resulted in Facebook executives testifying before Congress – in Google’s case potentially exposing 496,951 Google+ user accounts.) Google estimate around 400 application developers would have had access to private profile data as a result of the bug.
First discovered in March shortly prior to GDPR coming into effect in the EU, Google was not legally bound to report the breach to all European users, but would now be required to do so within 72 hours from discovery under ICO rules, if a similar breach were to re-occur.
News outlets have linked Google’s failure to disclose the leak with the final decision to close the platform, despite Google’s insistence that widely known low user-engagement is behind the move. Existing Google+ users may choose to restrict security permissions or remove content, although the platform’s lack of success suggests many will allow ‘phantom’ accounts to be disregarded.
In overlapping new coverage, Google is expected to launch the newest version of its flagship android Pixel smartphone in just a few hours time.
For IT and security expertise, contact Lineal today.
Lineal Software Solutions Ltd. has become the only current VMware Enterprise Partner across Devon, Cornwall and Somerset.
Enterprise Partners can both provide and implement the most advanced and specialised VMware solutions to the market – including cloud infrastructure and mobile device management solutions alongside datacentre products.
Now owned by Dell Technologies, VMware’s ground-breaking technology has become a staple of business IT around the World since early innovations in server virtualisation first revolutionised computing during the 1990s.
Previously one of the South West’s few VMware Professional Solution Providers, Lineal achieved the coveted status of Enterprise Solution Partner after engineers and other staff successfully passed an extensive series of examinations to qualify for the highly sought-after industry accreditation. VMware Partners are expected to maintain current subject knowledge and the 2018 series of assessments are particularly challenging, requiring considerable experience and understanding to achieve the high standards set by VMware.
Lineal’s Managing Director Mike Matthews explained: “VMware’s virtualisation solutions are renowned as some of the world’s most sophisticated, most demanded, and most secure technology.”
“The ability to manage virtualised computing, network infrastructure, storage and more has made VMware the worldwide market-leader for cloud-based computing and software-defined data centres.”
“In particular, we’re very excited to be offering VMware Mobile Device Management (MDM) solutions built on the latest Workspace ONE platform to organisations that need device security and compliance assurance measures in place.”
“This is an emerging requirement for more and more organisations of all sizes, and as a VMware partner in Devon, we look forward to delivering real innovation using VMWare to build the next generation of datacentre, MDM and application delivery platforms for our clients.”
For VMWare expertise and support, contact our IT Support team today.
Lineal Software Solutions have been officially registered as a provider developing software suitable for HMRC’s new ‘Making Tax Digital’ initiative.
The new tax regulation, which will require UK businesses to undertake tax reporting (initially VAT) via digital links from April 2019, will need approved accounting softwares to report directly and digitally to a company’s HMRC digital tax account via web API.
Only software which passes a reporting test set by HMRC using example data will be approved for Making Tax Digital.
Mike Matthews explained: “Currently only around 130 software providers in the UK are registered as developing for direct Making Tax Digital accounts reporting. SQLWorks has had the ability to calculate your VAT return for many years, but very soon, you’ll be able to process your submission direct to HMRC digitally too.”
“HMRC’s main aim is to remove any re-keying or manual re-processing of data – which will make SQLWorks the perfect integrated solution for processing business all the way from quotation to sale, to direct VAT reporting.”
“The government have recently altered some of the software rules being put into place for making tax digital, but we’re hard at work to make sure all SQLWorks customers can begin reporting VAT digitally from next year.”
Recent figures collected by The Institute for Chartered Accountants have suggested awareness of Making Tax Digital is still very limited, with less than half of businesses stating they were unaware of changes that are about to come into force.
For an effective, integrated software solution – contact our team today.
Apple have announced the iPhone XS, iPhone XR and fourth series of Apple Watch as part of 2018’s Apple Keynote Address at the Steve Jobs Theatre.
The iPhone XS, currently available for £999 pre-order for the 5.8” version, or as a ‘Max’ 6.5″ version at an eye-watering £1,099, will include an A12 Bionic chip powered by longer life batteries and driving the highest quality screen currently available on a smartphone.
Interestingly, Apple will also be debuting a more mid-range iPhone XR, with a range of colours, a new liquid retina screen positioned in a similar corner-to-corner style, and the same headline A12 Bionic chip specification. Updated 12MP camera technology allows each iPhone to introduce accurate depth of field in portrait mode, and Apple have continued their glass-first theme to ensure all three versions of the latest flagship iPhones are waterproof.
For Apple Watch Series 4, Apple’s design team have rounded the edges to create a less square device, and re-oriented the more customisable watch face to make better use of the screen corners. The re-designed device will also include some new tricks: including electrodes able to take an electrocardiogram, and fall-detection should the wearer suffer an accident.
Each new product also corresponds to a drop in price of previous generations of Apple technology – including the Apple Watch Series 3 being reduced to a more affordable £279.
While the quality of Apple’s touchscreen products never fails to impress, Team Lineal were left wondering whether the Mac range will ever receive a new release. Predictions of a new Mac Mini, a new Mac Pro, and even the widely rumored new Macbook Air, were revealed to be unfounded.
Apple’s reliance on new iPhone sales is well-documented, with the popularity of the high-quality public-oriented product line pushing the tech giant to become the world’s first trillion-dollar company over the Summer. For at least another year, Apple’s focus has remained ‘business as usual.’
Cisco’s Meraki have announced the release of Meraki Go, a new range of wireless access-point infrastructure designed for small businesses and the service sector.
The move suggests Cisco is seeking to expand their enterprise WI-Fi offering to a wider market, supporting smaller installations and public-access areas such as cafes, shops, hotels and small offices. Pricing is currently only available via certain routes (including Lineal), however many expect Go to represent a more cost-effective way to deploy the premium Wi-Fi features for which Cisco’s Meraki technology has become famous.
New access points have been previewed, for both indoor and outdoor settings. Slightly smaller than the enterprise range, these include a simple 1 Year hardware warranty, suggesting the hardware may be better suited to public-access locations, carry a lower cost of entry, and make more regular replacement a viable option.
Not that Cisco have fallen short on the feature set. In addition to web blocking of unwanted websites and usage limits on traffic, Meraki have included the all-important ability to run multiple Wi-Fi networks in parallel via the same hardware – an important tool for the service sector businesses needing both staff and public access Wi-Fi.
Both indoor and outdoor access-point models can be powered via a single ethernet cable from a POE switch to minimise cabling, include wall mountings as standard, and act as a ‘Mesh’ network; passing connected devices between the access-point with the strongest connection, without the need for the end-user to re-connect to the network as they move location.
Like its big brother, Meraki Go will require a subscription (either 1, 3 or 5 years), which provides support and security updates to Meraki’s supporting cloud-management app. As before, system admins can cloud-manage and configure their whole Meraki Go network via the Meraki management app, on PC/Mac, remotely or via their smartphone.
For Wi-Fi installations and support, contact Lineal today.
Due out this Autumn (2018) is macOS Mojave – Apple’s latest new operating system for the Mac range.
Named after the arid desert in the Western United States made famous by movies of the same genre, macOS Mojave has been widely pitched as a usability update with a range of new features designed to make it easier for users to stay ‘focused’.
Headlining Mojave will be the new system-wide ‘dark mode’, allowing users to swap between lighter or darker macOS theme to make their Mac less sleep-disruptive and easier on the eye, particularly at night-time.
Far from just being a black background however, Mojave rather artfully adjusts the entire theme and default background through a gentle ‘morning/day/evening/night’ cycle.
There are plenty of new tools too: the desktop can now sort files by type using ‘stakcs’, search by image, and quick edit PDFs and screenshots via Preview.
The tech giant, which recently became the world’s first trillion-dollar company, has also been rumored to be planning new MacBook Air, and Mac Mini devices for release later this year, both of which would coincide neatly with a fresh operating system with the theme of keeping macOS a highly ‘convenient’ system for all settings.
The MacBook Air hasn’t been fully refreshed since its launch in 2010, and the Mac Mini since 2014. While the former occupies a crowded space of various other MacBook and iPad sizes, the latter is long overdue for a replacement.
In a possible nod to the limited physical space where such devices might be used, Mojave can also detect photos automatically from your iPhone and insert the image on your desktop app, into a document or file.
However, an additional update, which Apple initially suggested would allow FaceTime video conversations expand to include up to 32 participants, has been bumped back to a later release.
Apple’s ninth Mojave beta was recently released for public testing, indicating that the full autumn release to the wider public is now not far away.
For Apple hardware, expertise and support, contact Lineal today
Yes, it’s that time of year again – the time when we ask our clients how our team has been doing, and what we can do to raise our quality of service even further.
In 2018, a record 96% of you feel we understand your IT needs either ‘Extremely Well’ or ‘Very Well’, and 90% of you felt we met Lineal’s IT support mission statement either ‘Very Well’ or ‘Well’.
In three years, the percentage of you who feel we resolve queries ‘Much Quicker’ than expected has doubled, and a high 82% feel we’ve either met or exceeded their expectations for time taken to resolve technical queries.
Your Client Survey 2018 feedback also suggests Lineal is being used for a wider range of IT expertise than ever before – with more of respondents recognising our capacity to deliver phone systems, broadband, leased lines, Wi-Fi networks, SQLWorks business software and a whole range of Cloud IT services.
There were also areas for improvement: a small minority of you (14%) still felt our customer service had been ‘OK’ – a rating we’ll be working hard to exceed with some new processes for sharper communication, monitoring task completion, and ensuring timely confirmation.
Lineal moved into new offices in central Barnstaple this year, and we want this to help deliver a better service for our customers.
As always, thank you to everyone who responded to our Client Survey 2018 – a wide variety of constructive feedback helps us immensely to focus on key areas of improvement.
Kind and constructive comments are always helpful – here were some of our favourites.
– Always helpful, would recommend the Company to others. Thank You.
– Good team of people and we now use Lineal for most if not all our IT, software, phones and support. It’s good to have in one place and generally we are very happy with the overall service.
– All seems OK, call outs prompt and service great.
– Generally resolve issue promptly and friendly team.
For Lineal IT Support expertise and advice, please contact our team today.
This year Lineal Software Solutions Ltd. was an official Sponsor of the 51st North Devon Show, and launched (maybe) the show’s first ever Space Invaders Championship.
The retro arcade pub-classic, in which the player holds out against descending ranks of tiny pixelated aliens was first released in 1978, making the game 40 years old this year (yes, really.)
Mike Matthews, Lineal’s managing director explained: “We wanted to make this year’s show fun with something both young people (and the young at heart) would recognise instantly and enjoy.”
“For those of us er… more advanced in years… the memories flooding back! Lineal was first founded in the 1980s, and it’s astonishing to think how far technology has developed.”
Fortunately so has Lineal, and visitors to our stall could learn more about Lineal IT support, cybersecurity, business software, cloud services, phone systems and much, much more.”
Lineal, which recently moved to new premises in central Barnstaple, was also an official Sponsor for this year’s North Devon Show, and presented the prizes to winners of the ‘Hacks and Riding Horses’ class.
However, much like IT support, battling aliens also seems to be a matter of experience – with parents often achieving much higher scores than children on our Space Invaders High Scores board.
After 2017’s Show was unfortunately cancelled due to poor weather, 2018 was a huge success and a fantastic day out for locals and visitors alike. Next year? We’ll be planning something even bigger…
Mike explained: “The North Devon Show is always a highlight of the calendar, and the array of businesses, charities, livestock, rural groups, crafts and all-round entertainment is a showcase for the community in this part of the world. We’re always proud to be able to support it.”
See you next year!
For IT Support and expertise, contact Lineal today.
Lineal Software Solutions Ltd. has welcomed VIPs to officially open our new offices in central Barnstaple, celebrating our 30th year anniversary in business.
We’ve expanded our operation, moving into Commercial House on Barnstaple’s Strand. The building will be home to Lineal’s team of over twenty IT support and software development staff, including three apprentices from PETROC.
Lineal’s new offices were officially opened in a short ceremony by North Devon’s MP, Peter Heaton-Jones, Vice President of PETROC, Bill Blythe and Marise Mackie of Pluss.
Mike Matthews, Lineal’s Managing Director, explained: “We’ve grown steadily in recent years, and for the businesses and organisations whose technology we support every day, the additional space will help us deliver improved connectivity and an even stronger service.”
Click for a Virtual Tour of Commercial House, now officially open:
“We’ve invested in infrastructure that will help future-proof Lineal’s new home for the 2020s: including high speed gigabit fibre-optic cabling throughout, solar panels, new training facilities, conference rooms and an enlarged hardware workshop.”
“The next generation of Lineal’s own SQLWorks accounting and stock control software for cloud and mobile platforms, designed to give businesses a competitive edge, will be built right here in North Devon.”
“This was a year in planning, and I want to thank all our staff, who worked tirelessly around the clock to make the move a reality.”
Peter Heaton-Jones MP congratulated Lineal: “I was delighted to be asked to cut the ribbon on Lineal’s impressive new offices. I first met Lineal’s founder, Mike Matthews, four years ago when he was operating from a converted barn in his back garden. The expansion since then has been incredible. The fact that this growing business is moving into the centre of Barnstaple is excellent news for the town, and shows how robust our local economy really is. Their close ties with Petroc, allowing young people to get their first taste of the world of work, is something I particularly support. I wish Lineal many more years of success and growth in their excellent new home.”
For IT support and expertise, please contact our team today.
The European Commission has issued Google with a €4.34 billion fine for Android anti-competition practices, after ruling the popular operating system unfairly cemented the dominance of Google Search.
The EC found Google had, via ’significant’ payments to smartphone manufacturers, ensured exclusive installation of Google’s own search application, and bundled Google apps such that selectively omitting services was impossible on the mobile platform prior to release.
More than 95% of all searches on European Android devices are made via Google search, testifying to the search giant’s unprecedented reach via pre-installation.
Many users (as Microsoft’s Bing search engine can surely attest) never change their system defaults, and although many rival search and browser providers are available for Android, these must be installed separately, often via Google Play.
Many will remember similar court battles fought between the US Government and Microsoft, resulting in the former’s eventual ruling that the latter had unfairly influenced the market via pre-installation of Internet Explorer, and creating the convention of an initial default browser choice on all new Windows PCs.
Microsoft eventually paid $561 million, but also continued losing ground to rival web browsers, including Google Chrome, among those using the internet on their operating system. Since 2013, the number of affected devices (particularly handhelds operating various versions of Android) has increased hugely. In future, new Android devices may be forced to include a similar initial search/browser selection, to help maintain consumer choice.
Google has defended its actions throughout, and has already announced it will appeal the decision, with the case expected to continue for some years.
For technology expertise and support, contact Lineal today.
Support and security updates for Microsoft’s Windows Server 2008 and 2008 R2 operating systems will end in January 2020.
Customers operating Windows Server 2008 will then cease to receive security patches and other important system updates.
Around 70% of the world’s server operating systems are Windows based, with Server 2008 one of the most successful versions, still representing more than half of these installations as recently as 2016.
Users of Server 2008 and 2008 R2 have just over 6 months to decide whether to upgrade to a newer version of Windows Server (such as the long-awaited Server 2019, hardware permitting), replace servers with newer models, or migrate those server-based processes to a cloud-based platform, such as Microsoft Azure.
‘Mainstream’ Support for Server 2008 is unlikely to be extended – having already been granted temporary extensions, once from July 2013 to January 2015, and again to the final deadline next year.
As with previous operating systems, enterprise customers will have the option of purchasing ‘Premium Assurance’ support packages of different levels, to extend support as late as 2026 – but as with other legacy Windows products, for increasingly high associated costs.
Businesses will need to weigh up for how long they can afford to delay upgrading, or depending on the physical server hardware, whether it makes more sense to spurn the licensing costs of upgrading the Windows Server version and go directly to either the cloud, or a new server.
For IT infrastructure support and expertise, please contact our team today.
Microsoft has announced the release of a new Surface Go tablet, adding to it’s acclaimed Surface lineup.
The new addition to the touchscreen range is designed to be an entry-level offering, offering more basic specifications but far greater portability at just 1.15 lbs and 8.3mm thin.
At around $399, it’s difficult to say exactly what Microsoft is trying to achieve: the new model is less consistent with Surface’s more ‘premium’ brand, and doesn’t stack up particularly well on price against Apple’s entry-level iPad, or against cheaper Windows laptops on technical specification. Limited to Windows 10 S and an Intel Pentium Gold processor, the additional elements which makes the Surface range more interesting, like the keyboard and stylus controls for touchscreen artwork, are also optional extras.
Instead it’s widely believed the tech giant is attempting to win over customers in the education sector, where a budget offering from a reputable manufacturer is likely to appeal to departments looking to provision sets of devices.
As always, Microsoft may also be hoping that the Surface Go owners of today will be the Surface ‘Pro’ owners of tomorrow.
While a 9 hour maximum battery life and a 10-inch screen is likely to prove limiting for business use, Chief Product Officer Panos Panay noted it was the ‘perfect device’ for his youngest daughters – and the internet seems to agree, noting the release timing is suspiciously good for the new term.
Lineal are a Microsoft Gold Partner – IT assistance and expertise, contact us today.
Dell is once again going to public market, in a stock trading deal that will see new Dell shares on the open market for the first time since 2013.
The computing giant, which went private at a cost of $25 billion, has been held in ownership by Michael Dell and Silver Lake private equity since 2013.
At the time, Dell argued the pace of change required to meet the age of cloud-computing and a mobile-first world would have been too much for shareholders to stomach. Urgent change was needed – and the death of the PC might be just around the corner.
Except the the death of the PC never truly arrived. With extra control, Dell made all kinds of internal changes to the company itself. Now the complex transaction sees Dell and Silver Lake buy back tracking stock in owned-subsidiary and virtualisation specialist VMware, acquired at arms-length when Dell purchased EMC in 2016.
Dell’s move offers the chance to reduce the company’s debt burden, while ironically bringing VMware (itself independently successful) under closer control.
For consumers of Dell’s high-quality systems, expect to see Dell technology that is once again tied more closely to shorter-term market opinion, popular appeal and customer feedback.
The Wi-Fi Alliance has formally announced the introduction of the WPA3 security protocol, the next generation of wireless security to protect routers and networks.
The new security standard follows hot on the heels of last year’s breach of the existing WPA2 standard, which has been in use since 2004.
WPA3, released in both ‘personal’ and ‘enterprise’ with extra protections, is expected to fix a number of deficiencies in the older WiFi protocol, including:
Captured encrypted data cannot be decrypted by a later breach of the password – in order to access data, a hacker must have both the password and data at point of transmission.
Encryption of data will be individualised, such that snooping on other devices across less secure Wi-Fi networks will be made more difficult.
Extra protections against password brute-forcing and ‘dictionary’ style attacks, dramatically increasingly the time cost of bulk guessing a password successfully.
Smart devices with no screen, including many Internet-of-things (IoT) technologies, will be administered via a smartphone screen during Wi-Fi setup.
To most end-users, the experience of entering a Wi-Fi key will feel virtually identical. WPA3 isn’t expected to actually be implemented until 2019, and is predicted to gradually replace the existing WPA2 standard on all Wi-Fi certified devices. WPA2 will continue to function, but will be steadily phased out.
Nevertheless, expect to see major manufacturers rushing to ensure their own products are stamped with the very latest security ‘WPA3 Ready’ branding.
For networking and cybersecurity expertise, please contact Lineal today.
Conference phones have traditionally had image problem. Costly, serious pieces of equipment, which often retail north of £350 for even a basic model, they feel inconvenient. Used infrequently, they’re sometimes more complicated than a telephone should be.
Worst of all, for all but the most established of businesses, a conference phone is a little… heavy-duty. Wired-in, with a large footprint, tangle of cables and strange satellite microphones – conference phones are an invasive species in the meeting room.
Enter Plantronics’ Calisto series – a curious pocket-sized invention (pictured) designed to bridge the gap between speakerphone and a true conference phone setup.
Four directional microphones (which can focus on sound from whomever is speaking) give 360 degree meeting-room coverage and efficient noise-cancellation to the Calisto range, which in a novel twist: is battery powered.
Plantronics, whose reputation for high build-quality audio equipment (particularly headsets) has been well-earned in the air-traffic control sector and moon landings, are increasingly reaching out with more accessible desktop telecoms hardware – even acquiring another successful Lineal communications partner: Polycom, back in March.
There’s a pleasing practicality to the Plantronics Calisto range: both USB wired and bluetooth connections are available to connect to either laptop, PC, tablet or your smartphone (in addition to USB wireless on other models.)
At only 270g, and just 11cm square, it’s small enough to be truly portable – tidied away into a desk drawer or moved to ‘create’ new meeting room spaces whenever needed. In the real world, where meeting rooms need to be swapped at a moment’s notice, why not just pick your conference phone up and carry it down the corridor?
For smaller and medium sized businesses where workspace might be limited, the Calisto’s ease-of-use helps present both a professional image, and finally makes conference calling into something within reach of everyone.
Previous models of Plantronics Calisto (including the 600 series) have been well received, and Plantronics has judged the small business market well. Expect great things.
For communications and IT expertise, contact Lineal today.
Microsoft have successfully submerged their first underwater datacentre, in a test expected to trial the viability of the technology.
The shipping-container sized server array was lowered to the sea bed near the Scottish Islands, as part of a flagship test for the concept of underwater IT infrastructure.
Project Natick, which is powered entirely by renewable energy via the European Marine Energy Centre’s wave and tidal power generators, will test whether largely autonomous data centres might be deployable in areas where sea-water cooling can be used to manage excess heat.
This kind of cutting edge research and development (described by one Microsoft Vice-President as ‘Crazy’) represents a significant engineering challenge: in addition to surviving water pressure, the datacentre’s server arrays must connect via undersea cable and function for five years without physical maintenance before the capsule is recovered.
Undersea communications cables have been in use since the 1850s, although maintaining complex fixed underwater infrastructure is a feat so far only managed by the oil & gas sector.
Conventional land-based datacentres (such as those used to deliver Microsoft’s Office 365 and Azure services) require high electricity usage and infrastructure to spin fans for air-cooling. Without efforts at carbon off-setting currently used by Microsoft, this would carry significant environmental cost – creating an incentive to ‘heat sink’ the technology underwater.
Microsoft also notes that almost half the world’s population lives near large bodies of water (a legacy of a previous millennium), and that in future the underwater datacentre may prove a solution to the issue of secure delivery of cloud services closer to point of use.
Lineal are a Microsoft Gold Partner – for expertise and support: contact us today.
Two new models of ASUS dual-screen laptops have been previewed at the computing company’s annual Computex convention.
The Zenbook Pro 15 (released this month) includes a secondary ‘ScreenPad’ in place of the touchpad, which acts as an additional HD touchscreen for controlling basic functions on popular apps, or can be turned off to function as on other laptops.
‘ProjectPrCog’ is ASUS’ more experimental offering: a promising futuristic laptop where the keyboard is replaced entirely by a second touchscreen which can be software driven for both typing and alternative displays, depending on whether typing is required.
The idea of dual-screen laptops has a troubled history, having spawned some curious inventions that never quite caught on. Some of these have been low-key, smartly implemented, but a little underwhelming (think Apple’s MacBook Pro Touch Bar) or very obvious, completely whacky and unpopular – like Lenovo’s W700ds monstrosity.
Firstly, it’s not entirely clear what the purpose of a second screen is: a segregated extra screen-space simply isn’t as useful as extra shared space on the main screen. If 15.6” is not sufficient, why not purchase a 17” laptop? On MacOS, Android and Windows, smart screen clipping tools are available for more efficiently dual-running apps side by side, making the actual re-arrangement of windows less necessary.
Secondly, if pressing a keyboard shortcut (F6) is required to activate the ASUS ScreenPad, many users will surely leave it off permanently, rendering the eyebrow-raising $2299 price tag of the Pro 15 largely unjustified.
However, ASUS’ second suggestion probably carries better longer-term potential, and is not the first attempt at a touchscreen keyboard from a mainstream PC provider – Lenovo have attempted to float something similar as a primarily creative tool with their Yogabook range. Successfully reclaiming the lower half of the laptop for additional screen-space would allow ASUS to be first in developing a huge variety of innovative potential uses.
The notion of software keyboards on a variable display have failed in the past because of a lack of keyboard ‘feedback’. Users do not experience the true sensation of a key being ‘pressed’ – the same problem that makes typing feel less intuitive on tablets and mobiles to all but the most habitual device users.
Whether the unreleased ASUS ‘ProjectPreCog’ will finally solve this control problem is likely to determine the dual-screen laptops true viability.
For hardware provisioning, IT advice and support, contact Lineal’s team today.
At time of writing, Lineal technical support staff are currently updating DrayTek Vigor firmware for all clients with known DrayTek equipment.
Enterprise Router provider DrayTek has called for urgent firmware updates, following discovery of a security vulnerability.
20 different business router models from DrayTek’s Vigor range are known to be affected by the security flaw, known as DNS hijacking, which may allow a third-party to alter DNS settings by issuing commands to a dormant session of the web-based DrayTek router control interface.
The unwelcome news marks the first major security flaw to befall the acclaimed networking equipment brand for some time – and comes less than a year since DrayTek won PC PRO’s ‘Best Router Brand Award’ for 2017.
A Vigor router showing IP number 38.134.121.95 is reported to be a likely indicator of compromise, and affected routers may exhibit unusual network behaviours.
DrayTek’s official guidance warns that this is likely to be only a preparatory ‘phase 1’ of any like cyber-attack by criminals, preparing re-direction of web traffic to compromised web pages which might capture unsuspecting users’ passwords or other sensitive information.
As a general security precaution, it’s always worth logging out of web-portals and other accounts not being used (including your email, social media, bank account and device itself… or indeed your router’s configuration panel.)
If you have a DrayTek Vigor router not covered by a Lineal Support Agreement with us, please get in touch for guidance.
The future of Lineal is nearly ready – the long awaited Project X (Lineal’s new home) is entering the final project stages.
Managing Director Mike Matthews explained: “Lineal’s new offices will be a significant leap forwards for us, and allow us to much better support our clients. Higher quality connectivity will make Lineal more contactable and reliable than ever, and we’re installing new server hardware and other infrastructure to expand and improve our capacity for cloud-based and hosting services.”
“Our staff will also have access to new and improved training facilities, an important part of our planning for future years. As our IT team expands to take on larger projects, and our SQLWorks software team expands to support the release of Version 8, we’ll be needing the space!”
Formerly Commercial House, Lineal’s new location on Barnstaple’s Strand is a two-story period building which will be the working headquarters of around twenty staff. New solar panels will help contribute to our efforts to make Lineal a more environmentally responsible business.
Important Information
Although Lineal’s address will ultimately change on official paperwork, all key services (including phone numbers and support channels) will remain as they are currently.
Lineal will begin to move frontline staff in stages between:
Wednesday 23rd – Friday 25th of May
All Lineal clients will receive additional information regarding schedules for infrastructure switchover where applicable. We anticipate no disruption of service during normal working hours.
Please contact our team via 01271 375999 or email [email protected] with queries.
Google looks set to replace Google Drive with Google One, a broader ranging storage service designed to incorporate storage across a whole range of Google services.
Google One will be available with up to 15GB storage for free (as with Google Drive now), $1.99 a month for 100GB, $2.99 for 200GB, 2TB for $9.99. It’s not yet clear whether these prices will be adjusted for UK users.
Drive users will be migrated to the new service over the ‘coming months’ and can stay updated by email by subscribing with Google here.
Google Drive has been able to handle direct sync from Android’s photos app, and more advanced tasks like full PC backup, or on-demand file sync on the business version, for a while now – but the new platform unifies the offering under a shared storage allowance.
There are also other nods to a more ‘iCloud like’ service – including shared plans for families, a support service, and promotional customer benefits like discounts for other products.
For now, the new app appears to be a unifying ‘personal’ platform (rather than a more formal ‘work’ platform like Microsoft Office 365.) Google are hoping to centralise your personal life such that desktop PC files, data and media generated by a whole pantheon of Android apps all will are share a central storage plan. The tech giant’s target of making ‘life simpler and less cluttered’ with Google One is being kept at arms-length from G-Suite business customers.
One simple way to get more out of Google? If you’re using Android, this could make a lot of sense.
For assistance and advice in adopting cloud-based technologies: contact Lineal today.
A Lineal engineer has climbed to the world-famous Southern ‘base camp’ of Mount Everest, to a height of 17,598 feet (28°0′26″N 86°51′34″E).
Lineal’s Martyn Kay, a senior support engineer, reached base camp (via Kathmandu) as part of a team of 6 intrepid explorers, flying to Lukla (in what appeared to be a modified rickshaw) before a climb of more than 5,300 feet to base camp itself. On the way they crossed one of the worlds highest mountain passes and summited 3 Himalayan peaks above 16,000 feet.
Affected by the thin atmosphere at an altitude in excess of 18,000 feet, Martyn described the symptoms of altitude sickness as constantly fighting to catch your breath accompanied by pounding headaches.
Following in the footsteps of Edmund Hilary and Sherpa Tenzing in 1953, the team reached the Southern base camp on 18/4/18 under snowy, sub-zero weather conditions.
Despite encountering other teams in difficulty, Martyn and team completed their 100 mile expedition and returned safely from the life-changing experience – bringing home local Nepalese delicacies for the Lineal team.
Scale new heights with Lineal! Contact our team today.
Adobe has announced a large discount for its Creative Cloud suite of apps, in a special Adobe discount scheme designed to win over the education sector.
Many of the big names in software, including Microsoft’s Office 365, Google’s G-Suite and other popular products such as ESET’s antivirus range, have been offered with significant discounts for the education sector through partner resellers, in the hope of capturing the next generation of technology users early, and contributing to wider learning.
In each case, the gesture is undoubtedly a worthy public relations boost, with Adobe also pledging to support workshop schemes to show educators how to teach with Adobe’s suite of creative apps in the classroom.
In both cases early access is especially important for Adobe Creative Cloud, which includes Photoshop, Lightroom, InDesign and many other leading creative apps, because of the very high high barrier to entry: both creatively and by cost – despite the software brand being simply unrivaled across the creative sector.
Adobe clearly hopes the dramatically reduced Adobe discount pricing will wet the appetite of larger organisations, and introduce high quality design apps to a much wider audience at an earlier age.
Google have made public their plans to release a comprehensive Android Chat app, comprising of both SMS and a new rich communication standard (RCS.)
In an exclusive with the Verge, Android announced the new app, which looks distinctly like the direct challenge to Apple’s iMessage fans Android have been hoping for, and which will be able to centralise messaging under a single platform.
Unlike Apple users, content with the excellent iMessage, Android users have long been split among a variety of messaging apps. They must suffer SMS run via Android’s ageing ‘Messages’ app, and direct messaging spread out among video/IM hybrid Google Hangouts, world domination software WhatsApp, various invasive species of Facebook Messenger, the re-branded Microsoft Skype app, and Google’s own doomed chat app: Google Allo. It’s all a bit of a mess.
In addition to overhauling this, Android Chat will also be available from a desktop client with SMS abilities (much like iMessage) and include new rich communication standard style messaging familiar to Facebook Messenger and WhatsApp users.
A single ‘feed’ encompassing rich content abilities also tracks the trend in the commercial sector: with firms looking to adapt from email to group-managed, millenial-friendly, cross platform communication apps like Slack and Microsoft Teams.
However, in addition to trying to build a fan-base for individual use, Google is presenting fresh opportunities for businesses. RCS has already been trialled by the tech giant in partnership with a number of companies (pictured), who plan to evolve currently SMS-based messaging services into RCS based customer service that integrates more complex tasks, such as calendar bookings and imagery.
Google Allo ran out of steam around 50 million installations. Whether, like iOS, Android can finally centralise disparate systems under a kingmaker will soon be tested.
***Latest Update to the Hall of Shame – 8th February 2019***
At Lineal our IT team review a lot of dodgy emails. The criminal scam known as phishing (sending fraudulent emails to trick end users into divulging sensitive information or downloading dangerous files) is a widespread threat, and we’re constantly on the lookout for dangerous new scams appearing on the internet.
It’s estimated that around 90% of organisational security threats are caused by a mistaken click in an email, making it by far the most common way businesses are breached by ransomware, viruses or individuals with malicious intent.
However, some human intuition and alertness is always required. With this in mind, we take a look at some examples of the most devious phishing scams we’ve ever seen:
The ‘Delivery Note’
Phishing emails are from fake ‘banks’ or enterprising Nigerian oil ministers, right? Wrong. This fairly innocuous email is the digital form of one of those ‘sorry we missed you’ cards you might receive through the letterbox for undelivered packages.
If you didn’t notice the suspicious sending address, accurate branding could lead you to believe this was really from a major logistics company, and divulge various personal details before realising there isn’t really a package to collect.
The Card-Payment Conundrum
Oh dear! My recurring card-payment for my TV license has expired – time to key my new card details into a dodgy website.
The growth of recurring payment systems for everyday things (like TV licensing) has meant users are familiar with being prompted to update card details, but stay alert: just because the request is mundane doesn’t mean it’s innocent. This is a nasty phishing email which scammed viewers out of thousands of pounds – even hitting national headlines.
The ‘File Share’
A proliferation of easy file-sharing platforms mean that we’re all more familiar with receiving large files via sharing links.
Curiosity about what this file is, and why your contact is emailing it to you (via a pretend ‘Dropbox’ email) might cause you actually to hand over your email address details. This trick is very simple, and persuasive – only the vaguely mail-merged ‘Hi info’ should suggest this is not really something you want in your inbox.
The (Convincing) ‘Fake Bank’
Forget semi-literate Russian hackers and the like, the quality of this fake Natwest email is in a different class. Spelling corrections, clumsy phrasing or dodgy branding can often give away an email scam, but criminals are becoming increasingly sophisticated at imitation. Anyone who falls for this email would be handing over their online banking login details.
Imitation is the sincerest form of flattery, and for the unwary email user, likely to be the most expensive.
The Government Request
Uh Oh. An official demand from Companies House. Better respond quickly. Bad luck – you’ve been scammed.
Don’t let the impeccable branding or the dull subject matter catch you out: look at the email address and the link. .ink is not a normal public-sector domain, so that should ring alarm bells.
The Domain Scam
Much like the delivery note scam above, this clever phishing scam we recently witnessed is based on the user not realising there’s anything sensitive about their domain details.
Hovering your mouse over the buttons reveal URLs that are not from this organisation, and should not be trusted.
The ‘Email Recovery’
This crafty scam invites you to ‘Recover (email) Messages’ that your email service held back due to a sync error – which should be your first clue that this is suspicious. Genuine email filtering tools (such as the excellent Barracuda) are very transparent about exactly what has been quarantined, or (as with Microsoft Office 365) expects an admin user to review the email separately.
Suffice to say you should NOT click ‘Recover Messages’.
The Fake Order
A sales enquiry from a University for a high value item – how promising! Except no, ‘Daniel’ isn’t a Procurement Manager, and if dispatched on credit terms, you’ll never see this item again. Worst of all, when you invoice the real University of Nottingham, they’ll think you’re an email scammer trying their luck. How ironic.
As before, the email address should give this away: real universities use valid .ac.uk (academic) domains, not free gmail accounts with a ‘.ac’ dumped somewhere in the address by a criminal.
For IT Security expertise and support – contact Lineal today.
Be honest, you’ve read some truly useless things online about GDPR. We all have.
The problem isn’t one of enthusiasm: more and more companies are recognising the impending deadline of the new data protection regulations and acting to implement best practice.
There is, of course, a growing industry of consulting firms and data protection advisers trading on businesses’ lack of expertise and frequently, fear of being left behind. Most organisations begin preparing with a spot of Googling, some light reading, and a bit of browsing online GDPR help articles written by experts.
However, the real experts can’t divulge too much free advice (otherwise why contract their services?) thus much of the available articles and blog posts are deliberately vague. The conundrum has already spawned some unfortunate attempts at humour, but doesn’t really help companies attempting to put in place GDPR compliant policy.
All is not lost: there really is some genuinely useful guidance out there – here are our pick for some of the best GDPR resources:
ICO: Eight Practical Steps
The Information Commissioner’s Office original ‘eight practical steps’ presentation is a series of slides that are exceptionally clear, and can be worked through in stages. A more recent, formal ’12-step’ version also exists, for a more conceptual understanding of the new regulations.
GDPR Readiness Assessment from Microsoft
A little technical at times, this quick quiz is a useful way of thinking further about protection policy, particularly around access control. For further information on how Microsoft can assist with GDPR in the cloud, look for the blue button in the top right hand corner.
ICO Helpline
The ICO has a little known helpline via which small businesses and charities can consult a member of ICO staff for extra advice – details of which can be found above.
IT Governance Compliance Gap Assessment Tool
Always a strong source of IT expertise and policy, IT Governance have developed a range of ‘Toolkits’ to assist data protection officers and those implementing GDPR within their organisations. These range from the simple £60 compliance gap assessment tool (a handy Excel Spreadsheet you can work through) to more expensive implementation packs and data flow mapping tools.
Lineal’s IT security apprentice Lewis Marrow has won a Petroc Outstanding Achievement Award for the 2017 academic year.
The award was presented by VP of Finance and Resources, Bill Blythe, in a ceremony at the Barnstaple Hotel to congratulate prize winners from across the Higher Education college’s student body.
Lewis is one of Petroc’s few Degree Apprentices, studying for University undergraduate degree level qualifications whilst also working as part of Lineal’s frontline IT support team. Lewis takes a keen interest in cybersecurity, and has demonstrated advanced security skills in addition to educating employees of Lineal clients on how to use technology safely.
Writing on Twitter, Mr Blythe praised all the winners, many of whom are beginning careers training with some of Devon’s best known companies across diverse sectors including accounting, computing, construction and engineering.
Lineal’s Head of Technical Services Matt Norris congratulated Lewis on his professional development:
“Lewis’ progress and contribution as part of our team has been fantastic – we expect this won’t be the last time Lewis wins an award. Training in partnership with Petroc helps us add important skills, and some exemplary individuals, to our team”
Team Lineal have raised £250 for North Devon Hospice, after hosting a fundraising buffet for staff and visitors.
The donations were collected by the IT Support firm as part of the local charity’s ‘Pitch in a Pound’ day, held each year in support of the hospice by North Devon businesses, schools and community groups.
Managing Director Mike Matthews explained: “It’s hard to find anyone in North Devon who doesn’t have a friend or family member who has been cared for by this terrific local charity, and it’s important every business does its bit for worthy causes.”
“That’s why I agreed I would match whatever my team raised on the day. Well done to all involved!”
North Devon hospice, which covers more than 800 sq. miles of Northern Devon, supports and cares for more than 3000 patients with life-limiting illness each year.
Lineal staff cooked, baked and sold a variety of sweet and savory food, including curry, pastries, chilli, samosas, dips, and a whole variety of different cakes and sweet treats.
Learn more about ‘Pitch in a Pound’ day on North Devon Hospice’s website by clicking here.
North Devon IT support and software company, Lineal Software Solutions Ltd, has celebrated 30 years’ success in business.
First founded in 1988, our company, which supports businesses and organisations across the UK and beyond with a range of IT services, are preparing to move to larger offices in central Barnstaple in the Spring.
Managing Director Mike Matthews thanked staff past and present for all their hard work over the last 30 years:
“Technology (and hairstyles) have changed considerably since 1988, but for us the best is yet to come. I’m proud that during that time, we’ve played a role in the success of some of North Devon’s best-known companies.”
We have doubled in size in the last two years, now employing over 20 locally-based staff who work in IT support and software development on behalf of other businesses and organisations across the UK and, increasingly, overseas.
Lineal also now includes staff from disability social enterprise Pluss, apprentices and degree apprentices, training in cooperation with Petroc.
The company has been recognised as one of the South West’s few Microsoft Gold Partners, helped to launch the Barnstaple Town Centre Wi-Fi project, and is part of DigitalND – a new group designed to promote digital connectivity and skills in North Devon.
Mike added: “The South West still has important connectivity and IT skills challenges to address, but public internet access didn’t even exist thirty years ago. Now the small company we originally started in my back room supports trusted clients as far afield as Australia. Ten Years from now? Watch this space.”
For IT Support and expertise, get in touch with our team today.
USB drives are a security nightmare. From losing files, to sharing them inadvertently, or accidentally installing something malicious, these tiny handheld digital storage grenades are a data-protection disaster waiting to happen.
Many people can’t help themselves. Sometimes it’s just so useful to be able to move a file to a separate computer, or carry a copy of that file on a handy keyring.
It’s true that too many operating systems auto-run memory sticks. As users we could perhaps be more careful though – find a USB and it’s tempting to plug it in… a 2016 University study suggested roughly half of those who find a memory stick on the ground will plug it in without thinking.
In particularly data-sensitive environments options are available to either disable PC USB ports, or remove them from a PC entirely. At the very least, businesses preparing for this summer’s new GDPR regulations need to take some sensible USB security precautions:
1. Be strict.
Ask yourself whether it’s entirely necessary to put this file on a memory stick, and be harsh about what files you copy. Memory sticks now hold terabytes of data, and are too easy to drop, or leave on the train.
GDPR is naturally concerned with sensitive personal data, and not your supermarket shopping list. Nobody ever intends to lose a file full of personal data, so you should think twice before putting the former on a USB drive, while the latter is probably OK.
The best antivirus softwares (for example Lineal’s recommended ESET antivirus) automatically offer to scan a newly connected memory stick for malicious software, before the user accesses the files. This only takes a few seconds, but it’s strongly advised to let your antivirus act as gatekeeper for a USB stick, as you would your emails or web browsing.
3. Sharing is not caring
Sharing files via memory sticks is not sensible, not least because you’re forced to share the whole contents, including the ability to duplicate files.
You can’t be certain what any given person will do with the USB drive or its data, or what the person giving you a memory stick might have done with it previously, so it’s safer to confine USB drives to a specific individual.
4. Get something better
The world of IT is full of better solutions, including Apple’s useful ‘Airdrop’ function which allows direct, localised file sharing over WiFi. For company-wide systems, numerous excellent cloud-based file storage and sharing platforms are available. Microsoft’s excellent OneDrive platform is easy to use from any device, and allows businesses to share files online via the cloud, with customisable permissions to control who has access to the data at any time.
A USB drive should not be necessary to complete routine IT tasks. Thank goodness.
Microsoft is seeking student UK technology developers to enter the 2018 Imagine Cup – with a chance to win $100,000.
The prestigious technology trophy, awarded every year to a team of three young people who develop a groundbreaking technology idea, are currently accepting entries for 2018’s Imagine Cup UK finals.
UK finalists are expected to be chosen in March (top prize $5000) with global finalists travelling to Redmond, Virginia (the home of Microsoft) for 2018’s worldwide finals, and a chance at a grand prize of $100,000.
The winning entry must be an original technology project, created from an initial idea to implementation and run from the Microsoft Azure cloud platform. Entries can be on any theme, although recent competitions have been dominated by inventions designed to not only demonstrate innovation, but contribute to human well-being.
Entries from the UK will be judged by an expert panel, including Clare Barclay Chief Operating Office of Microsoft UK; Haiyan Zhang, Innovation Director at Microsoft Research; Michael Wignall, National Technology Office at Microsoft UK; and Rob Fraser, Commercial Software Engineering Lead at Microsoft UK.
Microsoft’s insistence on the final solution operating via Microsoft Azure no doubt reflects their ‘cloud-first’ business approach, in addition to a recognition that the ‘global’ finalist’s winning idea should be a truly global possibility.
Winning Imagine Cup entries from previous years include a solution to help those with diabetes manage symptoms, a charity donation app that embeds into news articles, and the ‘Emma Watch’ – recently featured on the BBC for assisting those with Parkinson’s in reducing limb tremors.
Teams can learn more, and enter the competition, here.
Lineal are a certified Microsoft Gold Partner – learn more.
Lineal Software Solutions have won the prize for ‘The Most Unusually Decorated Tree’ in the Arlington Church Christmas tree decorating contest 2017.
Lineal’s tree decoration, an eclectic mix of technology, gold and glitter, took the prize for ‘Most Unusually Decorated Tree’ against, tough competition from more than 30 other trees decorated by other local organisations.
The annual Arlington competition is held to raise funds for community’s Church Roof Fund, using trees kindly donated by Mole Valley Farmers, and is judged by vicar of the Parish, Rosie Austin.
Executive Tree Decorator and little elf, Sarah Allsobrook explained: “We were absolutely delighted with our prize and we think it’s important Lineal does its bit for local charitable causes.”
John Lewis, M&S and Harrods have not yet to confirmed whether the highly-exclusive, prize-winning IT-themed decorations will be available to the public in time for Christmas 2018.
The success of Lineal’s imaginative arboreal design department was announced by Managing Director Mike Matthews, at Lineal’s annual Christmas Dinner, along with the formal presentation of the winners’ certificate.
Congratulations to Sarah and Huma on their award-winning decorations!
Net Neutrality looks set to end in the USA, following a landmark 3-2 decision by the Federal Communications Commission (FCC.)
The ruling will permit American internet providers to cease treating all internet traffic equally, and permit the blocking or throttling of certain types of internet traffic or charging for access non-uniformly – providing the restrictions are released publicly.
Opponents of Net Neutrality fear the lifting of restrictions will pave the way for anti-competitive behavior in the US and ultimately around the world – with internet service providers (ISPs) deliberately impairing services provided by competitors to make their own offering appear superior. Imagine ISPs degrading each other’s parent-company video streaming services, and you get the picture.
This latest ruling u-turns on the 2015 decision to guard against anti-competitive practices, and will be politically controversial – passed strictly down party lines with the committee’s three Republicans, including Trump-appointed Chairman and former Verizon lawyer Ajit Pai voting in favour, and two Democrats voting against.
Consumer protection has, if anything, become slightly stricter in the UK following recent Ofcom decisions, whilst across the pond, 2017 is expected to go down in internet history as a year of dramatic internet deregulation. Internet usage crosses national borders of course, with the international affect of the FCC’s decision being ours to speculate on.
The end of Net Neutrality won’t kill the internet, but it’s likely some intelligent individuals will be developing discretely advantageous ways for their own business interests to benefit financially from preferential treatment online, or profit from those who wish to do so.
Long term, any introduction of ‘toll-road’ style access is likely to act as a barrier to entry to newer technology companies, to the benefit of more established providers.
Apple have issued a fix for yesterday’s severe security alert, after it emerged the tech giant’s High Sierra operating system would allow access to many users’ MacOS Root User without entering a password.
The story caused alarm around the world, as Mac users discovered full administrator control of their device was available to anyone within reach of the keyboard.
Discovered by a Turkish developer who tweeted it to Apple Support, Lemi Ergin, the widely publicised fault is believed to affect all Apple MacOS devices (such as the iMac and MacBook ranges) running version 10.13.1 or newer.
Mr Ergin has since published an article on Medium defending his decision to flag the vulnerability publicly, arguing that despite the security flaw being public knowledge on the Apple Developer Forum since 13th November, Apple had failed for resolve the issue.
Yesterday Lineal published guidance to all our Mac clients, advising caution over the physical security of Apple hardware, and explaining the need for users to set a new root password to temporarily secure their Mac while Apple worked on a security fix.
Security update 2017-001 is now available via the App Store, and Apple have even taken the almost unprecedented step of forcing 10.13.1 devices to update automatically.
The failure to set a random default MacOS root password (a fundamental technical security feature) once again calls into question the recent competence of Apple’s historically excellent quality control and product testing, and may slow the adoption of the firm’s latest flagship operating system. The widespread media publicity surrounding the story is also likely to undermine Apple’s long-held reputation for security on Mac devices.
Apple issued an apology, stating ‘We greatly regret this error and apologise to all Mac users.”
For Apple assistance and support, contact Lineal’s IT team today.
Firefox Quantum has been released to the world, in Mozilla’s biggest browser release since 2004.
Mozilla’s newest version of their flagship open-source browser project is by far the fastest ever version, with a visibly quicker, crisp style and 30% less memory usage than Chrome. In a subtle nod to Microsoft Edge’s fading promise, the project claims the new Browser will be fast ‘For Good.’
Lineal’s team have been impressed by how jaw-dropingly quick the new browser is. Strip back the home screen to nothing but a search bar and jumping to your first optimised web-page is like turning the page of a book – the kind of responsiveness Google say they want to one day achieve with Chrome.
And Firefox must stand up to Chrome. Google’s own web-browser has become the closest thing to an internet standard since competition rules finally punctured Internet Explorer’s dominance in the mid 2000s.
Chrome’s flat-packaged browser now accounts for around 60% of all normal web use, and increasingly eclipses major rivals like Firefox, Microsoft Edge, and Safari. This level of conformity may be unhelpful – just as Microsoft’s old defacto-monopoly of the browser market arguably prevented Internet Explorer from developing, to the detriment of web users, so Google Chrome’s dominance needs to be challenged. If not by Firefox, then whom?
Not comprehensively challenged, sadly: Firefox Quantum moves Mozilla from using Yahoo! search by default, to using Google, where the search giant is even further ahead. Mozilla will also inevitably fall far behind Google on mobile, where it runs on under 1% of devices thanks in part to Google’s own development of the Android platform.
Nevertheless a super-fast, community-driven browser for the future of the Internet (even on desktop) really is a breath of fresh air.
Google search is by far the world’s biggest search engine (sorry Bing), but some of its more hidden Google games, apps and tools are lesser known – a reward for a lucky few.
Got a few minutes to kill? Here’s some of our favourites:
Chrome Dinosaur
Google’s Chrome browser contains an offline game for when your browser can’t connect to the internet: T-Rex run charts the journey of a pixelated dinosaur in her/his quest to reach the right hand-side of the screen.
Press space bar to begin, jump over obstacles and try to set a new high score. Perfect for killing a couple of minutes when your router is re-starting.
Like Google Earth, Google Sky allows you to explore the heavens with useful overlays for learning the constellations, and zooming into high quality NASA photography of distant galaxies where available.
For extra wonder, search out the ‘Ultra Deep Field’ image, captured by the Hubble Space Telescope in 1995 – the furthest optical point humanity has ever seen.
Make Music
For the creative-type, Google added this guitar widget to its hidden Google games in 2011. Move your mouse over the strings to compose a musical masterpiece, and record your jamming session with a handy record function.
Google Doodle Pacman
Google’s doodles have become an almost daily feature – celebrating everything from the World Cup, the birthdays of famous inventors and the anniversary of beloved 1980s classics.
The doodles normally link to a relevant search term intended to educate, but just occasionally games – such as a wonderful ‘Google-themed’ Pacman widget from 2010.
Communications regulator Ofcom has ruled that automatic compensation for broadband faults will be available to customers experiencing service faults.
Customers of BT, Sky, TalkTalk, Virgin Media and Zen internet (roughly 90% of UK customers) will be able to claim £8 per day for disconnections not fixed after 2 days, £5 for delayed repairs, and £25 for scheduled engineer visits which do not happen.
Ofcom estimates automatic pay-outs could exceed £142m annually, considerably more than the estimated 15% of claims currently paid out by Internet Service Providers (ISPs) each year.
Customers will be expected to follow a complaints procedure to receive compensation – revised guidance will be published in advance of the changes coming into effect in 2019. Existing rules detailing what types of faults should currently be referred to your ISP are available here.
As before, compensation is not expected to cover internal network or internet connection delivery problems at a property, with BT levelling charges on customers who request unnecessary engineer call-outs.
Broadband customers can learn more about their statutory rights on Ofcom’s website here.
Need IT Support? – call Lineal’s experienced team today.
Lineal Software Solutions have become a Triple Gold Microsoft Partner, after having been awarded a third Microsoft Gold competency.
Our IT team was formerly awarded Microsoft’s Gold ‘Windows and Devices’ certification by Microsoft’s Partner Centre earlier this week.
“We were thrilled to qualify as one of the South West’s few Microsoft Gold Partners back in 2016” explained Head of Technical Services Matt Norris, “but for our team to show sufficient expertise and skill to obtain three Gold competencies is a truly groundbreaking achievement.”
The additional gold certification is added to Lineal’s existing double-status, ‘Gold Small and Midmarket Cloud Solutions’ and ‘Gold Hosting’, in addition to ‘Silver Application Integration.’
To achieve the additional gold certification, several members of Lineal’s team were required to pass a series of challenging exams demonstrating a high level of knowledge in larger scale Windows device roll-outs, and ongoing device management best practice.
“Lineal greatly value staff training and development, for the invaluable extra skills Triple Gold Microsoft Partner know-how delivers to our IT support helpdesk. Our clients can be confident that a Lineal engineer will have excellent Microsoft system knowledge when resolving technical queries and assisting with longer-term IT strategy..
“Well done to our IT support team for all their hard work.”
For Microsoft expertise and support, please contact our team today.
Microsoft have announced their plans for combining Skype for Business and Microsoft Teams, setting out how the two communications platforms will merge in a new Microsoft Teams roadmap.
As Lineal predicted just a few weeks ago, Microsoft will indeed align the two apps under one heading, named Microsoft Teams, from Summer 2018.
Microsoft Teams, a super-smooth instant messaging and group sharing app for business, will go head to head with rapidly expanding collaboration app rivals like Slack and Basecamp, but will incorporate the enterprise business telephony and conferencing abilities (including PSTN calling, video conferencing and group screen sharing) from the hugely popular Skype for Business.
On the Messaging side all new planned features (for example contact groups, chat between the two apps and Skype for Business contact import) will be available by the end of Q1 2018, although Meeting and Calling additions are more gradual.
Certain Meetings features, such as browser-based meetings via teams and audio conference calls will be available by Q4 of 2017, although power uses will need to wait until Q2 of 2018 for more advanced features such as recording, powerpoint share and PSTN fallback.
Call queues, out of office support and transfer to PSTN call tools will be running by next Summer, with call park and shared line appearance delayed until Q4 of 2018.
Users can already run both Skype for Business and Teams side by side, although Microsoft will increasingly push users in the direction of the latter. Extra help materials for organisations making the transition can be found here.
Both Teams and Skype for Business are already included at no extra charge to Microsoft Office 365 Business Premium customers, although many do not even realise the leading communication apps are available to use.
While the combined product is likely to be an extremely powerful and flexible business tool, Microsoft’s challenge for the Teams roadmap will be to make Microsoft Teams as much of a household name as the Skype brand.
Lineal are a Microsoft Gold partner – contact us today for Office 365 support.
This year Lineal’s SQLWorks Team traveled to Arnhem, The Netherlands, for the 4-day European Omnis Developers Conference – EurOmnis 2017.
Conference workshops offer the opportunity for developers from more than a dozen countries to exhibit their latest work, seek advice from other programmers and share best practice. A primarily educational event, EurOmnis brings together the brightest and best to further develop software projects and draw on a wider pool of knowledge.
Members of the Omnis Executive Team also attended to discuss the very latest developments of the platform, explain new features (such as remote debugging technology working live from the developer console) and gather valuable feedback from the wider Omnis developer community.
Managing Director of Lineal Software Solutions, Mike Matthews explained: “Over the many years during which we’ve helped organise EurOmnis, both the software itself and the Omnis Developers Group (ODEV) have gone from strength the strength.”
“This year’s conference studied some exciting breakthroughs in web development, mobile/tablet-friendly user interfaces, internet-of-things (IOT) examples, future API technology, and much, much more.”
“SQLWorks is designed to be a highly flexible business management software, and we greatly value contributions from the extraordinarily diverse range of industry sectors, creative skills and technical knowledge represented each year at EurOmnis.”
In addition to coding, EurOmnis 2017 attendees had the chance to visit and dine at the Kasteel Doorwerth, a medieval chateaux dating from before the 13th Century, and literary home of the Beaulieu restaurant, where Erik Hazelhoff Roelfzema wrote Soldier of Orange.
See you next year!
Lineal are Omnis and business software development specialists – learn more here.
Technology firms are urgently issuing fixes for the WPA2 KRACK (Key Reinstallation Attack) thought to compromise the WPA2 encryption used in most WiFi routers and other wirelessly enabled devices.
The exploit, discovered and published by Mathy Vanhoef, a Belgian security expert for Imec-Distrinet, Ku Leuven, has caused serious alarm amongst cybersecurity professionals due to the widespread use of WPA2 across millions of items of networked hardware around the World.
Security guidance remains to continue using WPA2 (rather than reverting to an older encryption standard) and to install the latest WPA2 KRACK security updates from manufacturers as soon as they are available.
A number of key technology vendors were notified in August, giving them some time to prepare. Microsoft are reported to have adjusted “how Windows verifies windows group key handshakes” to fix the issue. Apple and Android are yet to specify exactly when patches will be available, although both are understood to be working on a secure fix to be made available in coming weeks. The more responsive hardware developers, including Cisco and Ubiquiti, yesterday began issuing guidance and new firmware for their wireless equipment.
The Wi-Fi Alliance, the international organisation dedicated to developing Wi-Fi technology, have essentially argued that there is no need to panic. There is no evidence of the extremely serious hack being deployed outside test conditions (yet) – although it’s probably only a matter of time before someone attempts to do so. Because Wi-Fi relies on physical range, it’s likely this could target public Wi-Fi and other easily accessible networks. For this reason, users are (as always) reminded not to use public networks for sensitive tasks, such as online banking.