It started innocently enough, a member of staff opened an email from their personal email account with a subject line “Confirmation of payment”. Unbeknownst to the unfortunate recipient the attachment contained malware from the Dyre banking trojan family (specifically Troj/Dyreza-FP). One week, 500 hours of staff time, and 128 infected systems later we’ve learnt a lot of lessons the hard way. Learn from our experience (we have).
It’s everywhere. You can’t get away from it. It never stops. It can contain the most trivial of information, or the most important thing you’ll read that week. A recent study concluded we spend 28% of our time reading and answering email. I receive about 185 emails a day on average, on a bad day over 300, but my inbox is nearly empty and I know where everything is and what I have to do. How do I do it?
Back in 2012 I wrote a blog post about the ‘new parent‘ method of project management. Now, I cringe when I read that article, because I was missing some fundamental principles behind the project management methodology. The proof of the pudding was definitely in the eating, as I ‘tested the theory’ in a deployment of a product called Druva InSync across our estate. Unsurprisingly, it was not as successful as I’d hoped, but the reasons why are useful lessons to learn.
Back in August 2013 I blogged about the importance of IT staff training, and I’d planned to follow up shortly after that with a post about end user training. Unfortunately the challenges of a new role took over, and it’s only now I’m returning to the topic, with a particular challenge in mind, increasing end user awareness of information security threats.
If you’ve visited the site in the past few days you’ll have noticed I’ve been experimenting with a new WordPress theme from Slocum Studio called Socialize. I’m still tweaking it (hence the slight changes) but so far I’m very happy with it. It’s responsive and works beautifully on any size view, it’s fast, and easily configured. And it’s only the free version!