Blog – Brain Trust Technologies LLC

Are your site’s images hiding an attack?

May 17, 2016 admin Security 0 Comments 2016may17_security_c, javascript, php, python, security, web applications, web development

2016May17_Security_C As more and more content management services are released to aid SMBs in online marketing, security risks also increase. One such helper is the image processing service ImageMagick. And while it has proven useful to countless businesses, it is now something you should be concerned about from a security standpoint. Let’s take a minute to discuss this vulnerability and what you can do to protect yourself.

What is ImageMagick?

ImageMagick is a tool that allows sites to easily crop, resize, and store images uploaded by third parties. Vendors continue to improve user interfaces and experiences by consolidating functions into all-in-one packages, which means administrators are becoming increasingly unaware of what specific services they are actually utilizing. ImageMagick is deeply integrated into countless web services and many webmasters may not even be aware they are using this unsafe software.

How can an image make my site vulnerable?

Recently, it was discovered that images can be uploaded that force ImageMagick into executing commands and permitting attackers to remotely insert harmful code into vulnerable sites. Images are actually made up of complex code that is translated into photos, icons, etc. Different file extensions use what are called “Magic Numbers” to define their file types. Manipulating these numbers allows attackers to exploit a flaw in ImageMagick. The service scans the uploaded file, and attempts to decode the source information whenever it detects the file is not what it claims to be. Scanning that code and attempting to rectify the file misappropriation can then trigger whatever was hidden inside the image and result in remote command of your site.

How should I protect my site?

ImageMagick has admitted knowledge of the security flaw and promised to release a patch very soon. Until then, experts advise implementing multiple workarounds to keep your systems safe. However, if you’re not well acquainted with your web server and its code, then it’s wise to consult an expert instead of attempting these changes on your own.

For those who are familiar, follow these steps. The first is to temporarily incorporate lines of code that preemptively block attackers from exploiting these holes. Those lines of code, and where to insert them, can be found here.

The next step is double checking that any image files utilizing the ImageMagick service aren’t hiding any harmful information. This can be accomplished by opening an image file with a text editor, and checking for a specific set of letters and numbers at the beginning of the text that define what type it is. The list of these “Magic Numbers” can be found here, and will reveal if an image is hiding its true purpose.

Ideally, administrators will halt all image processing via ImageMagick until a patch is released from the developers.

Data security is one of the most crucial aspects of any SMB, however, keeping up with the constant flow of security exploits and patches can be overwhelming for administrators of any ability level. Why not contact us to learn more about keeping your network secure and protected from exploits like this one?

Published with permission from TechAdvisory.org. Source.

7 Twitter tactics to get more retweets

May 13, 2016 admin Social Media 0 Comments 2016may13_socialmedia_c, call to action, hashtag, keywords, links, quotes, retweets, timing your tweets, tweets, twitter

Managing your company’s Twitter account can be tricky. You have a lot of brilliant things to say in under 140 characters but the problem is getting more eyes on your tweets. What’s worse is that there are other companies competing with you to grab that attention. So what can you do to get more people retweeting your posts? Here are a few tricks you can use to get more retweets.

Schedule your tweets

There is absolutely no point in tweeting out any content if your audience isn’t even awake for it. That’s why it’s important for you to tweet at the right time to get the most retweets. Usually people won’t be retweeting in the morning and are more likely to retweet around 2pm to 6pm EST. However, if your followers live in different time zones and countries, the time you should be tweeting may vary. Twitter tools like Tweriod track down the geographical distribution of your audience and pinpoints the optimal time you should be tweeting to get the most retweets.

Use links

The next time you tweet out something, try embedding a link in your post. Whether it’s news, sports or celebrity updates, people will put some effort in keeping up-to-date with their interests. Studies have also shown that links to instructional posts get the most amount of retweets as well. The problem is, 140 characters is not enough content for your followers. So by satisfying your audience’s curiosity, you motivate them to pay you back by sharing your tweet out to their friends.

Ask for retweets

This is perhaps the most obvious tactic to get some retweets. Using call to action phrases such as “please retweet” significantly increases your chances of a retweet. Of course, you probably aren’t the only one asking for retweets. Adding something to sweeten deal, like a prize for one lucky person who retweets you, gives people incentive to do so.

Use visuals

Intriguing images can inspire retweets. Images are a great way to convey a lot of information in a short amount of time, and social media users love that. Some have found that, using colorful images and infographics in their tweets significantly increased their engagement rates and found that more followers were retweeting their content. It’s probably because there’s just more content to engage with other than a witty 140 character thought.

Use retweetable words

Research has shown that some words are more retweetable than others. Words like you, twitter, please, retweet, post, blog, social, free, media, help are the top 10 most retweetable words. However common-use words in any conversation such as “lol, haha, work, sleep or watching” are less likely to get retweeted. Unless you’re someone incredibly famous, it’s best to avoid using conversation filler words and stick to the buzz words that encourage people to share your tweets out to everyone they know.

Use quotes

Quotes express a lot in one simple line, making it perfect for any Twitter posts. Depending on your audience, a thoughtful quote can really move their fingers to click that retweet button. The next time you’re running out of ideas for tweets, dig up some good quotes relevant to your topic to get those retweets going. However, don’t continuously plug in quotes into your tweets. The trick is to do it occasionally, so you don’t risk people tuning out of your tweets.

#Hashtag

You’ll notice that the more popular tweets tend to have at least one hashtag. Using hashtags on keywords helps categorize your tweets with similar ones, giving your posts a bit more reach and, hopefully, more retweets. Just make sure you don’t overdo it as #thiscanbequiteannoying.

We get that small business may find it tough getting their name discovered among so many social media accounts. But if you consider some or all of these Twitter tactics, you have a better chance of getting more eyes on your tweets. If you want to learn more about useful Twitter tactics to increase your exposure and engagement, give us a call today.

Published with permission from TechAdvisory.org. Source.

Are you sufficiently cooling your servers?

May 10, 2016 admin Hardware 0 Comments 2016may10_hardware_c, cooling methods, data loss prevention, server care, server management

2016May10_Hardware_C Every business sits on top of a foundation of different building blocks that enable it to operate smoothly and efficiently. One building block that is becoming increasingly essential is IT hardware. Server hardware can be expensive, which is why proper management is vital. Overburdening your systems can lead to an increase in operating temperature, which can lead to reduced reliability and even total data loss.

How does temperature affect my servers?

Extreme temperature in server hardware can result in different forms of damage. Most SMBs see total failure as the most concerning outcome. A server that completely crashes for any reason results in costly data loss and service interruptions, but the unbiased advisory organization Uptime Institute warns about overheating that doesn’t result in total failure. Every 18 degrees higher than 70 degrees Fahrenheit, hardware reliability decreases by 50%. This decrease in reliability can be just as, if not more, expensive for your hardware budget in the long run.

Cooling methods can’t just be implemented and forgotten, they must be closely monitored to ensure the health of your server hardware–short and long term. Options for temperature management range from simple low-budget solutions to expensive outsourced alternatives; determining your server management budget will greatly depend on what types of methods you intend to implement at your SMB.

Cooling methods

Which system you use to cool your server largely depends on how much power your hardware is using. The higher the watt, the harder it’s working. It will be easier to determine the scope of your temperature management needs when you have a thorough understanding of your power consumption.

PCWorld advises that simple conduction management is adequate for any equipment operating at less than 400 watts. This means simple solutions like positioning your server away from walls, low ceilings, cable clusters and anything else that can block hot air from dissipating naturally.

For watts between 400 and 2,000, strategic ventilation becomes a necessity. Adding passive ventilation is viable up to 700 watts, but fan assisted ventilation will be required above that up to 2,000 watts. With the increased power consumption, temperatures will rise and air movement needs to be more closely managed. At this stage simple vent and oscillating fans will suffice.

Anything higher than 2,000 watts needs to utilize dedicated cooling solutions. This means air-cooled units to actively reduce server room temperature. Depending on the size and arrangement of the space, a simple self-contained unit may be enough to reduce rising temperatures back into acceptable ranges. However, if you’re not sure, you should schedule a consultation with a vendor to consider more drastic cooling and monitoring methods.

Keeping your servers running at ideal temperatures means smoother data operations, lower hardware budgets and one less thing to worry about at your SMB. As your business continues to grow and develop, keep close tabs on increasing server loads–it could save you from devastating data loss. If you’d like more detailed advice about server management, or have any other questions about your hardware setup, contact us today.

Published with permission from TechAdvisory.org. Source.

«‹ 54 55 56 57 ›»