Keep your MSP Secure with LogMeIn Central

Cyber criminals are targeting MSPs more and more due to the number of accounts they have access to on their networks.  MSPs need to be consistently vigilant with their security practices and ensure that they are partnering with software vendors that also prioritize security.

LogMeIn prioritizes the security of our software solutions to guarantee that we’re providing best-in-class security to keep your business and users secure (and to provide you peace of mind).

Here are a few ways we work to keep you secure:

Data Encryption

LogMeIn uses 256-bit SSL encryption on data that is passed from the host through the internet. This ensures that your data is protected while being transmitted outside of your network.

Multi-Factor Authentication

LogMeIn recommends all users introduce multi-factor authentication to add an additional layer of protection to their account. In Central, customers can choose to receive codes via the LastPass authentication app, text message, or email. To learn more about adding multi-factor authentication to your account, visit help.logmein.com.

Intrusion Detection Technology

In LogMeIn Central, we have multiple intrusion detection filters to safeguard your account.  First, we employ a TLS Filter to ensure that data is not changed in transit. Second, we employ our own filters to protect against malicious behavior. These filters include an IP address filter, Denial of Service filter, and Authentication filter. These filters are built to flag any malicious behavior and reject the connection attempt.

Software Updates

The LogMeIn host, based on user preferences, can semi-automatically or automatically update itself on the user’s computer.  These software updates are digitally signed with a private key that protects customers in the result of one of the LogMeIn data centers being compromised.

When it comes to your business’ security, do not compromise with a vendor that doesn’t take it seriously.

To learn more about our security practices, read our security whitepaper.

         

Love Bites: Ransomware Mimics Love Letter

You’ve probably heard the expression “love hurts” in the context of a heartbreak, but how about a ransomware attack?

This Valentine’s Day, we’ve heard reports that internet criminals are taking advantage of human emotions with romantically-inspired ransomware attacks. With Valentine Day inspired subject lines – ‘My letter just for you’ or ‘Wrote my thoughts down about you’ – these phishing emails are pulling at the heartstrings. Once the email is opened, victims see a love-letter named attachment that, if downloaded, will immediately install ransomware onto the victim’s computer. This will encrypt the victim’s computer until they pay the determined ransom.

These holiday-specific ransomware attacks are nothing new to consumers, but are increasingly targeting small businesses.

To keep your small business network secure from this type of targeted attacks, experts recommend creating a strong patch management policy. Patches are released when a provider discovers a vulnerability in their system that needs fixing, but organizations are not yet effective at installing these patches when these vulnerabilities are discovered. A 2018 Ponemon Institute report showed that 34% of cyber-attack victims were already aware of a vulnerability prior to being attacked. Small businesses need to have proper patch management in place to address a vulnerability prior to its exploitation by cyber-criminals.

As cyber-criminals become more specific and targeted (and even a little romantic), IT teams need to become more preventative and secure. Patch management is a key step to preventing targeted ransomware attacks and to staying one-step ahead of cyber-criminals.

To learn more about what a cyber-attack costs a small business, check out our infographic here: https://www.logmein.com/central/resources/doingnothing