Data leaks should be managed like pest infestations

A well-built house serves one fundamental purpose: it protects humans from the elements. Overtime, however, atrophy takes its toll. Windows begin to leak in air; water finds its way around the foundation; and vermin tunnel down shelters in the cracks of building material.

Even the least responsible homeowner takes every step to prevent this from happening. You caulk the windows, patch the foundation, and call the exterminator at the first sign of trouble. The last thing anyone wants is a family of squirrels wrecking havoc in their attic over the winter, chewing on wires and devaluing their property.

Yet when it comes to cyber security, such care is not given.

Nowadays, it seems that everyone’s data is as secure as leaving food out overnight. Large scale data breaches are so frequent that we fail to tell one from the other. The question isn’t “who’s” been hacked anymore. Rather, it’s become a question of who hasn’t been hacked. Apple WhatsApp, Facebook, Equifax, Capital One, Desjardins, the list goes on and on. Sure, not all leaks affect us, and we might think that we’re safe because only our neighbors were affected. But in this case, like in many others, ignorance isn’t bliss. Medias will cover data leaks, tell us to contact our credit agency or to change our passwords and then will move onto the weather. What might have once been met with anxiety is now being met with apathy.

Data leaks seem to sprout without anyone really knowing where they come from, like squirrels. Like squirrels however, all it takes to ruin your day is one rabies-ridden runt to bite your dog or a particularly crafty critter to eat through your breaker. Once in a very long while, the resourceful rodent might even nibble through your plumbing and cause a flood throughout your house. The only thing to do when that happens is to call the exterminator, the plumber, the electrician or all of the above. You don’t care anymore about who the culprit is, you just want to fix the huge mess they’ve made and hope the damage isn’t too bad, or too expensive.

 

That’s why you need Evizone. Evizone serves as your first, second and third lines of defense, and the only ones you’ll need. Our state-of-the-art military-grade data protection and communications governance ensure that no one can come in and mess up your home. Critters of the two-legged and four-legged kinds. When it comes to cyber security, trust the experts and invest in fortifying, rather than fixing. Sign up for a free trial today and see for yourself!

Whatsup with Whatsapp?

WhatsApp has been in the news these past few weeks, and not for a reason it would have hoped for. High ranking officials from over a dozen countries have been hacked through its platform. The app, used by over 1.5 billion people around the world, has built its reputation around the security of its software. The so-called “encryption” technology in the app has led many government and military officials to naively communicate through WhatsApp instead of other channels.

Now, state officials, journalists and activists from countries such as the USA, Mexico and Pakistan have been successfully targeted. Over a hundred politicians and high-profile journalists in India alone were targeted and the worldwide scope is yet to be confirmed. WhatsApp is now in proverbial hot water and there are fears further breaches on the platform may be uncovered.

The spyware used in the attacks is reported to have been created by the NSO Group, an Israeli firm that provides its clients with state of the art tools to catch terrorists and criminals. Their flagship product, Pegasus, is said to be extremely sophisticated and capable of breaching even secure software with relative ease. Of course, NSO denies being involved in the attacks.

No matter who’s at fault, the fact is that WhatsApp’s reputation for safe, encrypted messaging has been shaken. They’re clearly not as impregnable as they thought.

We must now ask the question: How many others have been able to pierce the platform’s defenses? Will we ever know?

There is only one platform that does not have such a problem: Evizone.

Evizone is proud to offer our clients with state of the art, military-grade data protection and communications governance. Our software is built with encryption and proprietary clauses that take away the risk of having personal information stolen.

See for yourself by signing up for a free trial today!

Cloud storage is a wonderful tool, but only when done right

Quebec’s minister for the Government’s Digital Transformation submitted his long-awaited Act to facilitate the public administration’s digital transformation last week. The legislation would create an internal department staffed by experts in cybersecurity and would be tasked with protecting data belonging to the province’s public sector and its citizens. Minister Éric Caire said that 80% of the province’s data will be stored on private data servers through the cloud. They claim that the most sensitive content will be stored on secure local servers, but without seeing more technical details, we can’t help but be skeptical that either of these storage methods will be fully secure.

We commend the Minister on his intentions to protect our personal information, but we’ve seen time and time again that cloud-based servers aren’t impregnable. An all too familiar example would be the iCloud account hacks that plagued Hollywood in 2014. WhatsApp, the popular “secure” messaging app with over 1.5 billion users, was hacked last May and should serve as a rude awakening for those who rely solely on cloud-based communications tools. According to Business Insider, the NSO Group, an Israeli cyberwarfare firm, was able to access users’ phones and subsequently, their information, through relatively simple hacking measures.

We recognize that cloud-based storage is a wonderful tool, but it needs to be done right. In addition to having up-to-date cybersecurity software, users of the cloud should make sure to have solid passwords and use multi-step log-in verification to better secure the data they store. For government systems where large numbers of people have access to sensitive information, a proper governance system must be put in place.

That’s why we created Evizone. With Evizone Secure Communications (ESC) and Evizone Communications Governance (ECG), your bases are covered with proprietary technology that offers the strongest commercially available system for the secure exchange and compliance archiving of electronic communications. Mr. Caire, if you’re reading this – see for yourself by signing up for a free trial of Evizone today!

Digital IDs : a tempting shift for consumers and hackers alike

A recent study conducted by Interac, a leading debit payment service, suggests that two out of three Canadians would rather have their IDs offered through a digital format than through a physical document or card. Though they also claimed some form of weariness on the matter of cyber-security threats, 86% of the 1,500 people polled wanted a digital version of at least one of their official documents stating it would be “more practical”.

It’s very clear: Canadians want more practical digital options to manage their ID documentation, be it though online formats or through their mobile phones.

However, these findings bring up important questions. Where does the information for these digital IDs come from and where does it get stored? The practicality of such a service might attract many to make the shift, but we can’t forget to think about how the information will be sent and where it’ll be stored. How easy could it be for hackers to come upon IDs directly from people’s phones? The recent data leaks plaguing government agencies must be kept in mind before making such a big leap towards a digital ID system.

At Evizone, we’re proud to offer the best of both worlds. Practical and easy to use software that can be easily integrated even into a mobile phone, as well as a software built with encryption and proprietary clauses that take away the risk of having personal information stolen. See for yourself by signing up for a free trial today!

Another week, another data leak

Last week, Revenu Québec, the Canadian province’s tax collection agency, suffered a serious data breach. An internal leak of some 23,000 files contained the names, salaries, and Social Insurance Numbers of government employees.

Two suspects have been charged and fired. But we are still left asking ourselves: why was it so easy for these individuals to bypass the security system of a government agency tasked with collecting the most sensitive information on 8 million people? Are all their files as vulnerable as the data that was leaked? How can we put a stop to these all too frequent occurrences?

Data breaches and leaks come in many forms, from disgruntled workers to external contractors to belligerent actors, but the song remains the same. All organizations need to implement better data protection barriers in their servers and software. While all culprits need to be caught and charged when a hack occurs, it would be better to take better care of our data and make sure cybercriminals can’t access sensitive information in the first place. Government agencies should be the first to understand this.

Evizone is proud to offer our clients with state of the art, military-grade data protection and communications governance. Our software is built with encryption and proprietary clauses that take away the risk of having personal information stolen. See for yourself by signing up for a free trial today!

2018 taught us the importance of cybersecurity

The global community continues to experience a growing number of cyber threats impacting industries from tourism to retail. As technology advances, so do the complex methods utilized by hackers. If 2018 has taught companies anything, it is that their data is one of their most valuable assets.

Data breaches not only have negative long-term impacts on consumers and their privacy, but also on the companies involved.

The Marriott International scandal that exposed up to half a billion guests is now facing a class action suit and shares have fallen 5.6%. Who can forget the Facebook data breach that turned the company upside down, with over 80 million accounts compromised? And what about the UnderArmour scandal, when the breach of over 150 million led to a media frenzy and a 3.8% price drop in shares?

Without compromising the growth of the digital economy, companies are increasingly advocating for the protection of consumers to avoid harmful data breaches.

Yesterday, the Washington Post reported that a coalition of over 200 retailers, banks and technology companies is releasing new recommendations for national privacy legislation that calls on the United States government to adopt a national privacy law that would apply the same data collection requirements to all companies.

“We see a real need to both protect consumers at a time when digital services and the digital economy is so important and expanding, and at the same time, making sure we’re advancing global competitiveness,” said Julie Sweet, chief executive of Accenture North America.

Evizone provides its customers with the best data protection services. Our military-grade encryption and our proprietary software allow you to share information with no fear of being hacked. Try for yourself by testing our free trial.

The US is taking a big step on cybersecurity

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

 

Today’s hackers are professionals who have mastered the art of breaching servers and stealing data. Small businesses, multinationals and even governments are investing record amounts on cybersecurity. Yet hackers always seem to always find a way to get the information they are looking for using sophisticated methods.

The European Union acted on this issue with regulation, forcing companies to maintain a high level of protection to avoid big fines if data isn’t secured properly.

Now, the United States followed through with their own piece of legislation which passed both Houses of Congress and is now on the President’s desk awaiting his signature.

The bill will establish the Cybersecurity and Infrastructure Security Agency (CISA), a new cybersecurity agency within the Department of Homeland Security, replacing the National Protection and Programs Directorate. Even though its main focus is to protect the .gov domain against cyberattacks, this initiative is a step towards acknowledging the seriousness of new sophisticated data threats.

Tom Kellerman, chief cybersecurity officer at Carbon Black and a member of former president Obama’s Commission on Cyber Security, talked about the positives of CISA in a recent interview:

“The Achilles heel of America is her cybersecurity posture. This new agency represents a cosmic shift in governance toward civilizing American cyberspace.”

The US government is taking a step towards protecting its own domains, but unlike the EU legislation, it does not protect personal data held by private corporations.

Because of this, it is up to small businesses and multinationals to take the responsibility into their own hands. For this, companies should turn to Evizone.

Evizone provides the best cybersecurity software that will protect your data through high-end encryption. Make sure to try our services by signing up to our free trial here.

About Evizone Ltd.
Evizone Ltd. is a revolutionary secure communications, encryption and compliance software and service provider based in Montreal, Quebec, Canada. Evizone offers innovative enterprise solutions in secure messaging (next generation beyond encrypted e mail) and encryption, encryption at rest, regulatory compliance, compliance archiving, WORM compliance, 17a-4 compliance, document life cycle management and communications governance and risk management. Evizone’s services protect organizations through best in class security, encryption, recipient controls, document life cycle management, discovery management, compliance management, compliance archiving, tamper proof WORM and 17a-4 compliance archiving and complete audit records against the enormous damage caused by communications breaches. Evizone’s patented technologies offer a level of security impossible to obtain with conventional or encrypted email and fast, powerful, user friendly compliance archiving. Evizone’s services are immediately available on multiple platforms and provide the strongest commercially available communications security and compliance archiving. You can follow Evizone on Facebook, Twitter, and LinkedIn.

 

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

Cybersecurity is only expensive when you don’t have any

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

 

In business, protecting your data (as well as your customers’) is fundamental for mutual trust. That’s why rigorous cybersecurity is becoming the norm in all fields of business activity. More and more companies are realizing that investing in cybersecurity today is a better business decision than being stuck with the consequences of a cyberattack later on. They’re putting in good risk management procedures to counter or react quickly to possible breaches in their systems. This is very positive news compared to what was the standard a few years ago.

But unfortunate, not all companies are so rational. Let’s take the case of Tesco Bank. Multiple warnings were sent to the British retail bank regarding deficiencies in the cybersecurity measures and software they had in place. However, Tesco ignored the notices and – surprise! – was a victim of a cyberattack. Tesco Bank chief executive, Gerry Mallon, confirmed to the Guardian that following the attack, they made sure to upgrade their cybersecurity measures.

Tesco now has to pay £16.4 million ($21.5 million USD) to the Financial Conduct Authority (FCA). In addition, the bank invested massively in a “comprehensive redress programme” to improve their cybersecurity measures in order to avoid being a victim again down the line.

“We have significantly enhanced our security measures to ensure that our customers’ accounts have the highest levels of protection.’’ Mallon affirmed.

Case study after case study shows that you shouldn’t wait until after you’ve been hacked to protect yourself. As we’ve argued before, security breaches are expensive and lead to a loss of trust. Don’t let this happen to your company. Make sure you have the best cybersecurity software protecting your data. You can try our services by signing up to our free trial here.

About Evizone Ltd.
Evizone Ltd. is a revolutionary secure communications, encryption and compliance software and service provider based in Montreal, Quebec, Canada. Evizone offers innovative enterprise solutions in secure messaging (next generation beyond encrypted e mail) and encryption, encryption at rest, regulatory compliance, compliance archiving, WORM compliance, 17a-4 compliance, document life cycle management and communications governance and risk management. Evizone’s services protect organizations through best in class security, encryption, recipient controls, document life cycle management, discovery management, compliance management, compliance archiving, tamper proof WORM and 17a-4 compliance archiving and complete audit records against the enormous damage caused by communications breaches. Evizone’s patented technologies offer a level of security impossible to obtain with conventional or encrypted email and fast, powerful, user friendly compliance archiving. Evizone’s services are immediately available on multiple platforms and provide the strongest commercially available communications security and compliance archiving. You can follow Evizone on Facebook, Twitter, and LinkedIn.

 

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

‘GDPR: A Move Forward’ webinar

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

This past July, Europe’s General Data Protection Regulation (GDPR) was passed into law. This new ePrivacy law brought forward two major changes: the first being tougher regulation on data collection and increased security measures to protect that data; second was new financial penalties for non-compliance that can go up to 4% of a company’s revenue or $25 million (whichever is higher).

Some companies already face huge fines as the result of GDPR. According to Erin Winick, associate editor at MIT’s Technology Review, British Airways might have to pay $650 million USD following a hack on their database.

“If it’s determined that British Airways didn’t do enough to protect consumer information, it could be facing a fine of up to 4 percent of its annual revenue (that works out to about 500 million pounds).”

In an upcoming webinar on the subject, Evizone Chairman William Wells, along with Joseph Rossi, Principal TurtleBay Advisory Services, and Mary Beth Borgwig, CEO of Standish Cyber Corp, will be discussing the post-GDPR changes, the timetable for implementation, the implications to Financial Service Organisations-Policies, Operation and Technology issues and how businesses can prepare for those changes.

This webinar, organized by FSO Knowledge Xchange, will inform business executives and tech specialists on their responsibilities and their obligations before and after a data breach, the penalties and liabilities imposed on processers and controllers, and most importantly, practical advice on how to improve your overall information security in line with the GDPR’s requirements.

The webinar is set to take place on September 13 from 10 am to 11:30 am EST. Interested parties can sign up at https://www.fsokx.com/Webinar/WebinarIntroduction.aspx?evId=63.

“Evizone’s military grade encryption is exactly what the GDPR webinar viewers are looking for,” said Mr. Wells. “Company executives today know how important it is to safely keep and protect their customer’s data and compliance archiving are for their businesses. With Evizone Communications Governance (ECG) they finally have a simple, secure, and easy way to meet their regulatory needs.”

Evizone is the perfect solution for your business’ electronic communications. Multinationals have failed to properly protect their clients’ data in accordance to the GDPR standards. Don’t wait for your company to face fines before getting your data protection to conform with GDPR. Visit our website to learn more about the Evizone Communications Governance which will allow you to be up to date with the latest regulations. You can test our free trial here.

About Evizone Ltd.
Evizone Ltd. is a revolutionary secure communications, encryption and compliance software and service provider based in Montreal, Quebec, Canada. Evizone offers innovative enterprise solutions in secure messaging (next generation beyond encrypted e mail) and encryption, encryption at rest, regulatory compliance, compliance archiving, WORM compliance, 17a-4 compliance, document life cycle management and communications governance and risk management. Evizone’s services protect organizations through best in class security, encryption, recipient controls, document life cycle management, discovery management, compliance management, compliance archiving, tamper proof WORM and 17a-4 compliance archiving and complete audit records against the enormous damage caused by communications breaches. Evizone’s patented technologies offer a level of security impossible to obtain with conventional or encrypted email and fast, powerful, user friendly compliance archiving. Evizone’s services are immediately available on multiple platforms and provide the strongest commercially available communications security and compliance archiving. You can follow Evizone on Facebook, Twitter, and LinkedIn.

 

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

New York will have its own GDPR, and companies must be prepared

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE

 

GDPR has now been in place for a couple of months in Europe, and other jurisdictions around the world are following close behind. New York State’s own data protection regulation, voted into law in March 2017, will be fully implemented come September 4.

Financial institutions will be particularly affected by this new cybersecurity law. They will have to retain an audit trail of all financial transactions, which must be keep for at least five years. Authorities will be able to verify whether or not financial institutions are keeping customer information secured to their liking. Additionally, all companies will have to encrypt their business operations data. Once that data isn’t pertinent anymore, it will have to be erased using safe deletion procedures under the new law.

The Department of Financial Services’ press release quotes the DFS’s Superintendent, Maria T. Vullo, on the new regulation:

“New York stepped into the void and took decisive action to ensure appropriate minimum standards protecting financial institutions’ data systems, including consumers’ sensitive personal information. These new protections, which include encryption, access controls and audit trails, add crucial tools to the regulation’s prior requirements in protecting the institutions and consumers.”

There are many similarities when comparing the cybersecurity requirements in both Europe and New York. However, these two cases vary significantly in one way: the New York legislation has no clear consequences or penalties for not following the letter of the law. Those will be determined on a case by case basis.

The first noncompliants caught will be the ones to set the tone, and future penalties will be based on that precedent.

The fact that there are no precisions on the penalties associated to each violation means companies can’t compare the cybersecurity costs to the risk they are taking not properly investing in security.

Nicole Clement, a senior manager in the financial services security practice at professional-services firm Accenture, addressed the Wall Street Journal on this new regulation:

‘’That lack of specificity increases the risk to a financial institution because it is unable to say here is that true financial risk we are taking on, or the true regulatory risk. Time will tell as to what the penalties will be on this.”

Evizone is the perfect solution for your business’ electronic communications. We provide our customers with high-end data encryption and our proprietary software guarantees security for our user’s clients; all in compliance with new regulations. Don’t wait for your business to get caught before investing in cybersecurity. You can test Evizone in a free trial here.

About Evizone Ltd.
Evizone Ltd. is a revolutionary secure communications, encryption and compliance software and service provider based in Montreal, Quebec, Canada. Evizone offers innovative enterprise solutions in secure messaging (next generation beyond encrypted e mail) and encryption, encryption at rest, regulatory compliance, compliance archiving, WORM compliance, 17a-4 compliance, document life cycle management and communications governance and risk management. Evizone’s services protect organizations through best in class security, encryption, recipient controls, document life cycle management, discovery management, compliance management, compliance archiving, tamper proof WORM and 17a-4 compliance archiving and complete audit records against the enormous damage caused by communications breaches. Evizone’s patented technologies offer a level of security impossible to obtain with conventional or encrypted email and fast, powerful, user friendly compliance archiving. Evizone’s services are immediately available on multiple platforms and provide the strongest commercially available communications security and compliance archiving. You can follow Evizone on Facebook, Twitter, and LinkedIn.

 

LEARN MORE                     FREE TRIAL                          CONTACT EVIZONE