Latest News

Globally, data centres hold over 1,500 exabytes of data. That’s 1,500,000 petabytes. 1,500,000,000 terabytes. 1,500,000,000,000 gigabytes. To put that into perspective, the average computer hard drive is around 1 terabyte these days, so it’s roughly equivalent to 1.5 billion computers worth of data.

That’s a lot of data to keep protected, so how do they go about ensuring that it is all secure? Well for starters, not all of them do. The most secure data centres are ISO 27001 certified. This accreditation is a sign that their Information Security Management Systems (ISMS) are in line with the highest standards and it covers all legal, physical and technical control risk management.

Without going too much into the finer details in this blog post, ISO 27001 covers all of the following in 12 main headings:

  1. Risk assessment
  2. Security policy
  3. Organization of information security
  4. Asset management
  5. Human resources security
  6. Physical and environmental security
  7. Communications and operations management
  8. Access control
  9. Information systems acquisition, development and maintenance
  10. Information security incident management
  11. Business continuity management
  12. Compliance

In terms of physical safety, all data in ISO 27001 data centres have manned security checkpoints and are externally patrolled 24/7. Sensitive areas of the data centres are completely isolated, requiring both card and fingerprint scans to allow authorised personnel entry. It might sound like I’m describing a building from Mission Impossible, but I don’t think even Ethan Hunt could break in here!

On top of the security equipment and personnel, the data also needs to be kept safe from other factors, such as power cuts. To combat this, the centres also have automatic power failover and full equipment failover, meaning power and servers, etc. are switched over to backup systems in the case of any faults.

To reduce the risk of fires, oxygen levels are kept between 12% and 15% to ensure the environment is still breathable for humans, but fires don’t have enough oxygen to propagate. Coupling this with VESDA early warning smoke detection, risk from fire damage is greatly reduced. But still, what if there is a catastrophic event and the data gets destroyed here? Well, not to worry, as all data is backed up separately in case of damage or hard drive faults.

So, that’s the physical protection dealt with. What about the cyber protection? Obviously it wouldn’t be the best idea to share all of the security details here, as that would give hackers specific things to aim for. However, we can say that the scope includes corporate policies and practices, IP network information security, anti-virus software and continued monitoring. One example is ensuring software and firmware is always updated to the latest version.

For more information, check out Datahive and Veeam to see how we can securely backup your data.

It’s probably a good time to change your password.

Hacked

In January 2019 hackers have leaked and distributed a list of nearly 773 million unique email addresses and 22 million unique passwords in a folder labeled “Collection #1” on MEGA, a popular cloud hosting service.

These details can be used for credential stuffing, which is an automated process that tests these stolen credentials across multiple different websites, such as social media accounts or marketplaces like eBay or Amazon. Once a hacker gains access to an account they take as much information as they can, be it personally identifiable information, private documents, images, videos or debit/credit card numbers.

Although this isn’t the biggest online data breach in history (That currently sits with Yahoo at 3 billion user accounts), it is certainly hugely significant, containing over 87GB of personal information. The breach contains details from several data breaches since 2008 amalgamated into one big folder, so they could have come one of hundreds of websites.

You can check on Have I Been Pwned to see if your email address is included in this breach, or any others over the years the site has been running. “Have I Been Pwned” is a site ran by security expert, Troy Hunt. It doesn’t store any data you enter, so don’t worry if you have any concerns over the security of this site.

According to Troy, over 82% of the email addresses had been seen in previous breaches. 18% is still around 140 million new addresses, so if you’ve checked before, it’s probably worth checking again!

You can also use it to see if your password has been leaked anywhere, even if it isn't linked to your account. It even had some of my old passwords on there, although thankfully I had the sense to change my passwords on anything with sensitive information years ago. I also tested this with the password "Hell0!" and received this result:

pwned password

So, what should you do if your account has been compromised?

The best thing to do is to change the passwords for all your accounts across the net. Also, make sure it isn’t one you’ve used anywhere else before and don’t use the same passwords across different accounts, even if it’s a strong one. If one password gets leaked, then the hackers could access all your accounts.

We recommend using a password manager to keep track of multiple, difficult to remember passwords. Dashlane and 1Password are great paid examples with lots of features, but there are also free alternatives such as LogMeOnce (if you can cope with how horrible their whole website is!)

Of course it’s always best to have all your business data backed up in case of data loss. Credential stuffing isn’t the only way people are getting into your accounts and of course hackers aren’t the only threat to your data. Check out Datahive Cloud Backup for more information on how we can help with data disaster recovery.

Cyber threats on the rise!

Protecting yourself and your company online is an increasingly important task in today's day and age. To make it tougher, the requirements for online security are ever changing.

There will always be plenty of advice available on how to protect yourself, it can be a minefield. We hope this email makes things a little easier to digest.

SCAM ALERT

Scams are when a cyber criminal contacts you out of the blue and tries to convince you to hand over your personal information or money or gets you to download a virus that infects your device.

Our Data Centres are all in the UK and all ISO 27001 certified

VSL only use ISO 27001 certified UK data centres. This means that you know where your data is held at all times and that it is always close at hand. By partnering with VSL you have complete peace of mind that our certification and facilities will allow you to meet your industries regulatory data requirements.

By associating with award winning data centres we are able to confidently publish and deliver against service level agreements that are the envy of our peers.

Your company emails could contain business critical data...

Think of all the things you share via email with your colleagues... What would happen if you lost that information?

Six reasons you should archive your business emails

shutterstock 9833917

About Us

VSL Net is a division of Lane Telecommunications Inc. VSL are an experienced, ISO 9001 accredited Cloud services provider  offering innovative backup and email business solutions supported by traditional service to a loyal direct customer base and a large reseller channel.

VSL Net is an ISO9001 accredited company. Since our certification in 2013 the standard has provided the tools and guidance for us to implement a structure which has enhanced our quality management. Through continual monitoring across all operations and measurement against predefined standards, we consistently exceeded our published service level agreements.

The primary recipients of this consistency has been our customers who come to expect and enjoy the high standards we set ourselves and are not surprised when we exceed their expectations.

EMEA

VSL Net U.K.

Europe, Middle East & Africa

+ 44 (0)845 258 1500

+44 (0) 1256 301555

info@vsl-net.com

America & Asia

VSL Cloud U.S.A.

10 Lanidex Plaza West Ste 213
Parsippany, NJ 07054

+1 973 526-2979

+1 973 526-2988

info@vsl-cloud.com

 

Asia Pacific

+65 6353 0555

+65 6353 7448

info@vsl-net.com

Newsletter Optin

Sign up to our newsletter for the latest in backup and data protection solutions. No spam - we promise!

 

Sign Up Here