LogMeIn has been monitoring the evolving WannaCry situation and taking proactive measures to mitigate the risk associated with this global event. To that end we have:
1) Made a concerted effort to patch all of our machines with the latest available security fixes;
2) Configured our internal computer security, security information, and event management (SIEM) tools to monitor for recognizable or known signatures of any WannaCry activity;
3) Alerted our end users within the organization to be ever vigilant; and
4) Been in communication with the vendors of our perimeter and end point protection security systems.
In addition, the LogMeIn corporate network is segregated from the production systems network, providing a further layer of protection and defense. As a result, at this time, we believe that our exposure to the WannaCry ransomeware is minimal and controlled.
We’re very excited to share that LogMeIn has officially announced the completion of a merger with Citrix’s GoTo business. Effected through a Reverse Morris Trust transaction, the merger brings together two of the preeminent players in cloud connectivity to instantly create one of the world’s top 10 public SaaS companies, and a market leader with the scale, resources and world-class talent required to accelerate innovation and significantly expand its total addressable market opportunity.
For more on what this means for our customers, please a letter from our CEO, Bill Wagner, on our corporate blog, here.
The holidays are in full swing, which means holiday parties, time off with the family, and sneaking away to finish up your shopping. However, it can be a challenge to balance holiday to-do’s with work to-do’s and the last thing we want to worry about during the holidays is work.
For most of us, knowing we’ve covered our bases allows us to flip the work switch off and relax. But that peace of mind can only be achieved if we set ourselves up correctly. And while business is inherently unpredictable, we’ve put together these five tips for factors that you can control before going away to set yourself up for a happy, stress-free holiday season!
The biggest gift you can give yourself is peace of mind as we head into the holiday seaon, and that means preparation well ahead of time. Anticipating deadlines and prioritizing projects weeks ahead of when you’ll be out of the office can translate into a clear line between what needs to be done before you leave, and what can wait until after. Use apps like Trello to maintain your lists with this “before and after” perspective.
Don’t be a bottleneck
Nobody wants to be the reason a project is being held up, and the key here is communication. Reach out early to all of your stakeholders and let your team know when you’re going to be out of the office – Connect with them in person, via e-mail or quick pings on Slack – so you can leave knowing you didn’t drop the ball.
Notorious OOO message
Probably the simplest, yet most effective thing you can do is to set-up your Out of Office message. For anyone you might have missed before leaving, or that falls outside your usual team, it sets clear expectations while you’re away or unavailable. In many cases, after you let people know that you have limited access to email, they may even be pleasantly surprised to hear back from you while you are away.
Schedule your work ‘check-ins’
If you do need to keep in touch while you’re off for the holidays, be sure to set specific times that won’t disrupt your time with family, and set a maximum on your communication. For example, an easy rule to follow is two email checks in your day: once in the morning, and once in the evening. Reply only to what is time-sensitive, and save everything else until you get back. Done. It’s important to respect the time you have allowed for time off, both for your well-being and for those around you. Switching your email notifications off or even turning your data off while you’re out enjoying yourself can help keep this in check.
Enable your technology
Technology has made it possible for us to be equally or more productive when we are outside of the office. In fact, many leaders are beginning to embrace remote culture for its many productivity benefits. With LogMeIn Pro you can access files on your work computer from your personal laptop, even if you’re over the river and through the woods at Grandma’s house (assuming Grandma has wi-fi). Once you retrieve that document from your work computer, you may need to collaborate on it with a colleague or update a client in a quick meeting. Simple start up join.me from your laptop or your mobile app. You can easily screen share with a colleague or meet face-to-face with a client, maintaining strong relationships even with your time off.
Our product development efforts at LogMeIn have always centered on enabling employees and individuals to simply and securely connect to their devices and applications. Today, we notified users of our plans to discontinue the LogMeIn Authenticator, our dedicated two-factor authentication app, on December 31, 2016.
Designed to simplify the second factor authentication process to a single gesture, we’ve built a superior product with a better user experience in the LastPass Authenticator. A LogMeIn product and free mobile app, the LastPass Authenticator delivers a unique one-tap password verification experience and can be used on hundreds of popular applications and websites such as LogMeIn, LastPass, Google, Amazon, Salesforce, and more.
We recommend users migrate their two-factor authentication enabled online accounts over to the LastPass Authenticator before the end of the year. The app can be downloaded from:
We talk a lot about security here at LogMeIn, especially with our recent partnership with Kaspersky Lab, and given that October is National Cyber Security Awareness Month (NSCAM), it’s an ideal time to refresh some of your company’s security practices.
As a small business or an IT lead for a larger company, you’re maintaining a large amount of technology, devices, users, and much more. But there are a few areas where you can make quick improvements to better secure your company’s important information. Check out this list of items you can address fairly quickly and make quick improvements to your security:
From WiFi to VPN, make sure your company networks have strong, secure and protected passwords. Enable strong encryption (WPA2 and AES) and require authentication as needed. For the WiFi, set up multiple networks for each use case – one for employees, guests, IT, development, etc – to help eliminate disruption and security breaches impacting the entire company. Also consider the physical security of your network equipment – is it stored in the open where anyone can access, or is it stored away hidden from potential theft?
It’s likely that many of your employees are using more than just their desktop or laptop to access company systems and information. Make sure those devices are secure as possible, including requiring a passcode that enables you to wipe the device in case it is lost. On top of the passcode, use finger swipe authentication for additional security.
Many LogMeIn users are managing not just computers, but also POS devices. Those machines should be just as secure as others with strong, secure passwords that are changed frequently, if not automatically, and enabled with both user and admin access. You’ll also want to set up anti-virus protection on these machines; it’s likely they don’t receive as frequent maintenance as a laptop or desktop computer so anti-virus monitoring is critical to ensuring the machine is free from malware and threats.
Whenever you’re using a cloud-based file storage and sharing solution, you can enable authentication for those user accounts as well. And if possible, set up application-level encryption to protect that data. You can also choose to restrict the locations and devices where data and files stored in the company account can be stored so you always know where that data is going.
Our friends at LastPass have done a great job at highlighting the importance of good password practices, not just at home, but at work as well. The three key tenants that your company should adopt is secure, unique passwords for each account, use of two-factor authentication, and use of a password. Start with employee education on secure password practices and take steps within your team to roll out 2FA. While these are just a start, these steps will greatly improve your company’s security.
Today, we began notifying Cubby users and customers of the decision to retire Cubby, our file sync & share offering. Since its debut in 2013, Cubby has provided a unique file sharing experience for millions of individuals and businesses and this difficult decision was made after much deliberation and consideration.
LogMeIn’s long-term investment strategy is focused on three key technology markets — Collaboration, Identity & Access Management, and Customer Support & Engagement – and we are aligning our product development efforts accordingly to best serve our customers rapidly evolving needs. With such focus comes tough decisions around the future of products that don’t fully align with our strategy, and after careful consideration and evaluation, we have reached the difficult, but none-the-less important, decision to discontinue Cubby.
Our users are our top priority and chief concern with this change, and we are taking steps we believe will help existing Cubby users safely and securely migrate to alternative cloud-based offerings, whether to LogMeIn or other trusted companies.
Cubby Free users will be given until November 16th to migrate away from Cubby, and can choose to move to another free service – LogMeIn is recommending Dropbox and OneDrive – or a paid service, including LogMeIn Pro. Cubby Pro and Enterprise customers will continue to have full access to Cubby, both their files and full product functionality, through their account’s expiration date plus an additional 30 days to allow more time to evaluate options and complete the migration of their files.
Here is a quick tutorial on how to move your files out of Cubby and into another service like Dropbox.
We understand that with any change comes questions and potentially concerns. Here are a few FAQs to explain what we anticipate will be the most common questions for our users:
How are you notifying customers?
All Cubby users are being notified of this decision by email and in-product notifications. Our users are our top priority and chief concern with this change, and we are taking steps we believe will help existing Cubby users to safely and securely migrate to other cloud offerings, whether from LogMeIn or from other trusted companies.
Will you offer cloud storage and file sharing capabilities in any of your other products?
LogMeIn will continue to offer cloud storage and file sharing capabilities as key features in our other products – for example both LogMeIn Pro and join.me both offer these features – but we will no longer package them as a separate product.
How long will Cubby users have access to their files?
Cubby Free users will be given until November 16th to migrate away from Cubby, and can choose to move to a free service – LogMeIn is recommending Dropbox and OneDrive – or a paid service, including LogMeIn Pro.
Cubby Pro and Enterprise users will have full access to Cubby – both their files and full product functionality – through their account’s expiration date plus an additional 30 days to allow more time to evaluate options and complete the migration of their files.
For more information pertaining to your Cubby Basic, Pro or Enterprise account, please read our detailed FAQs here:
In light of recent news around the Yahoo breach, we are getting reports from both the general public and LogMeIn customers about suspicious emails that are designed to look like they are coming from LogMeIn — they have all the hallmarks of phishing attempts.
All of the reports are meant to look like a LogMeIn activation email. The email subject line is: “Activate your account” or “Verify your new LogMeIn ID.”
We want to make it clear that these did NOT come from LogMeIn and people should NOT click on the links in these emails. While we are working with our partners to remove these malicious websites, as part of our commitment to security, we want to make sure our users and the public are aware of this specific email, and we wanted to share what we’ve learned, as well as provide an easy way for people to identify the tell-tale signs of phishing attacks.
Today is the day! The Kaspersky Lab integration is now available in Central Premier accounts. This exciting new partnership allows admins to install best-in-class anti-malware software onto their managed computers.
Now with LogMeIn Central, you can centralize your IT automation and anti-malware needs into one tool for easier, more efficient management, including:
Award-winning defense against malware
Easily identify threats from a single dashboard
Proactively support endpoints with scans, real-time protection, and more
The Kaspersky anti-malware software is now available in Central Premier subscription packages at no additional cost.
To get started, simply log in and click on the “Anti-virus” dashboard in the left-hand column. On the AV dashboard, select the computers on which you want to install Kaspersky anti-malware and select the “Actions” menu at the top, then click “Install Kaspersky.”
Not a Premier customer? Contact sales for a demo of Kaspersky Lab or visit our site to learn more start a free trial of Central Premier.
This excerpt is from a post that originally appeared on our official corporate blog:
“…Today we began proactively resetting some LogMeIn users’ passwords. So we wanted to let both these users and the rest of our customer base understand why. The short version is these users’ credentials were on a list making the rounds on the web — credentials taken from high profile breaches at companies like LinkedIn, Tumblr and MySpace. Here’s a bit more.
As you may have seen in the news, lists of hundreds of millions of user credentials taken from past breaches (mostly at social networks) are now being used for a variety of recent nefarious activity on high profile sites like Netflix and Facebook.
LogMeIn actively looks for situations where the accounts of our users could be at risk—even if the threat is external to our service. In this particular case, we identified users who may be at risk because of password reuse. Out of an abundance of caution, we proactively reset those users’ LogMeIn passwords…”
Your security is our first and foremost interest. Your experience is an incredibly close second. So we want to protect you in the most friction-less way possible. To that end, we’ve just started using a CAPTCHA check when you login to join.me, LogMeIn Pro, LogMeIn Central and/or Cubby. But we understand it does add an extra step that some users may not want. So here’s a quick take on why CAPTCHA is a good thing when it comes to protecting your account…and how you can turn it off if desired.
Simply put, CAPTCHA stops most brute force attacks. That is, it stops bad guys who are trying to run hundreds, thousands or millions of login attempts against popular online services to gain access to individual user accounts. You’ve likely heard the recent stories, but if you haven’t, millions of social media accounts are reportedly on sale. Worse is there is lots of evidence that hackers are counting on users’ reusing these across other services. CAPTCHA largely protects against such attempts.
How to turn it off:
CAPTCHA should help as an extra layer of protection against password reuse, in that it protects against automated, big scale attacks that rely on such reuse. Even better is changing your password. So if you want to shut off CAPTCHA, all we ask is that you reset your join.me, LogMeIn or Cubby password. Here’s how you can do that.