What is ‘Shadow IT’?
Shadow IT refers to the various web tools informally in use within most organisations. These tools are often chosen without reference to IT or to management in general.
They are often used for all the very best reasons. Your colleagues have work to do, and these tools help them, so they get used. You might know about some because there is a subscription charge, but others might be free.
These tools can be anything from simply keeping lists of tasks to do, sharing information or managing workflows, providing newsletter lists, or recruiting staff. Its endless.
There’s all sorts of web pages out there that your people will be finding useful and will be using.
The question is, do you know what is being used on your behalf?
Even more importantly, do you know who’s got access to them? As your staff come and go, do you know to change passwords or reset user accounts to make sure that no one who has left you (maybe even gone to a competitor) is still able to access your confidential data?
Shadow IT is one of the largest threats to data privacy in organisations today. It’s not necessarily because these sites are going to be hacked, although it’s always possible, but it’s because if you don’t know the tools are in use, then there is no way that you can manage them!
The first step to maintaining this data is to identify them, and that’s why you need new tools that are cloud focused.
If you’re still using the same old security tools that you used prior to the cloud, then you are simply not keeping up and we need to talk!
Here’s a story about what happens if you don’t have this under control: Why you need to know all the cloud services that your organisation uses – IT Solutions and Managed Services (new.kinetics.co.nz/)
Shadow IT is part of our 10-point cyber-security check list
While there is no single layer of technology that can guarantee you will be safe from hackers, you can reduce your risk by adding layers of protection. How many of our 10-point check list are in place for you?
Is “Deathstalker” coming for you?
Cyber-Crime is big business. The criminals are organised and sophisticated. Imagine if they put their ingenuity to things that are good? But alas, that's not reality. Instead we have to brace ourselves to deal with another wave of crime. Deathstalker is a such a...
Automating our own business processes with Microsoft 365
Normally our case studies reflect work we’ve done with clients. This time we wanted to share how we’ve used our own services through lockdown to automate a key business process. One of the challenges we’ve always had is that it can be really hard to know how long a...
Privacy Act 2020 – Are you ready for Dec 1st?
Parliament recently passed the new Privacy Act, which comes into effect on 1 December 2020. This introduces stricter measures around the storing, sharing and breach of personal information and gives the Privacy Commissioner more powers. Every organisation should have...
Nostalgia – Floppy Disks flying high in 2020
The old TRS-80 just turned 43 years old. It brings back memories of storing programmes on cassette tape. I still have copies of games I wrote and published on cassette many years ago. That got us thinking about whether their successor, floppy disks, were still in...
Is Cyber Security important at work? What about Working from Home (WFH)?
The best way that security can be managed when Working From Home (WFH) is to ensure the WFH devices are known to be patched, have AV, and are monitored. There is always going to be a risk if the device is not monitored as you won’t know what the patch/AV status is,...
What to do when the proverbial hits the fan?
What should you do when ‘Evil Corp’ comes to call? (Yes, that’s a real name.) By now, its well understood that hackers and cyber-criminals are busy and it’s only a matter of time before they hit you. They will keep trying and trying and whether they succeed, or...
Webinar : Protect your business from cyber attacks
Since Covid-19, there has been a surge in ransomware and cyber-attacks in New Zealand. For almost 25 years, Kinetics has specialised in providing comprehensive cyber security solutions and staff training to a broad cross section of the business community. Learn...
Drowning in eMail – survive the flood
It’s hard to believe there was once a world with eMail. Working from Home meant we couldn’t talk to colleagues as easily as we used to. Some messaging moved to tools like Teams, and that cut email traffic, but others stayed in eMail and inboxes were flooded. Do you...
Webinar : Winning with real-world Digital Business Transformation
As a result of Covid-19, many organisations have become a lot leaner and the new normal means doing more with fewer resources. What if your organisation could quickly achieve the following: Save money on IT expenditure – while baking in a future proof IT strategy...
Researchers Find New Calendar-Based Phishing Campaign
The latest email scam looks like a calendar attachment. It’s a phishing attack intended to get you to click on something that isn’t what it seems to be – in this case an ICS calendar invitation. It is the same kind of thing as before, except rather than being a DOC...