Category Archives: Food for thought

IT Security for SMBs and the Rising Risk of Cyber-threats

By | Business, Food for thought, IT, Security | No Comments

70% of Cyber Attacks Target Small Businesses.

This scary stat came out in late 2016 from the National Cyber Security Alliance. The reason for the very high volume of attacks against small businesses is that they make easy targets. While the payday may not be huge, the results can be devastating for the business. Most small businesses are under the impression that they are too small to be interesting for cyber crime. This means that routine IT security patches and server upgrades or maintenance are frequently deferred, exposing vulnerabilities.

Take into account one of the more popular cyber crimes, Ransomware, which systematically encrypts as many files as it can across your entire network. Once encrypted, a ransom email is sent to the company asking for anywhere from thousands to tens of thousands of dollars in exchange for the key to unlock the encrypted files. The price is usually set below the cost of hiring the IT firm to fix the problem and saves the time of performing lengthy restores.

At Symbio we encounter this occurrence fairly often when an employee opens a file or visits a site they shouldn’t have. To combat this, we have architected our IT as a Service platform to stop the spread of the attack and then to rapidly restore from the point just before the attack occurred. Regardless of the hack, make sure that you have a strong IT Security policy in place with the proper processes and infrastructure to back them up.

Going to do a series of posts around; IT Security, Liability, Data Compliance (HIPAA, FAFSA, HI-TRUST, PCI, etc.) because these are very important topics and one thing we see over and over is smaller organizations that have avoidable IT disasters.

Lessons from “The Grid”

By | Business, Entrepreneurship, Food for thought, IT, Outsourcing | No Comments

Recently, on Bill Gates’ suggestion, I picked up ‘The Grid’ by Gretchen Bakke. To borrow Bill’s words: “This book, about our aging electrical grid, fits in one of my favorite genres: “Books About Mundane Stuff That Are Actually Fascinating.”

I often use the term “utility style computing” when talking about our IT-as-a-Service product, and the parallels between the IT industry today and the way our electrical grid developed in the late 1800’s and early 1900’s are striking. To (very) briefly describe the first few chapters in the book, when electrification first became popular, we were limited to DC (direct current, as opposed to today’s more common AC or alternating current). The primary limitation this imposed was range; it was very difficult to transmit DC electricity more than a mile or so. Thus, “private” small generation plants became the defacto standard for electrical power generation. Factories, private estates, and even the occasional municipality would deploy their own stand-alone infrastructure to power their facilities.

During this time, many small power companies emerged, and due to the limited range their plants were idle much of the time (a factory only runs during the day, street lamps only at night, etc). Because there is no cost effective way to store electrical power for later use, the capital investment was huge and the return very limited. Many of the small utilities turned to selling and servicing private plants as a way to make ends meet.

This really reminds me of the way IT service for most SMB’s developed during the 90’s and 00’s. Lots of businesses with servers sitting in closets, idle 96% of the time. Yet that degree of investment was required because there was no shared infrastructure (or grid) comparable to today’s cloud services.

About 30 years pass, and by 1920, AC (alternating current) becomes the norm. Long-distance transmission and voltage conversion become cost-effective. Samuel Insull, Thomas Edison’s long time aid and business manager took control of Chicago Edison, a small generating station downtown. He came to a series of interlocking insights about the utility business:

1) The key to making money as a utility is keeping your infrastructure as close to 100% utilization 24×7 as possible.
2) The lower your prices, the more money you will make.
3) Subscription is ultimately cheaper for the consumer than independence.

Those insights were enough to propel Chicago Edison under Insull’s leadership from bit player to regional monopoly. He realized that federal and state regulation would turn utilities into natural monopolies, meaning competition in those markets would largely disappear due to high infrastructure costs. It remains to be seen if something similar will play out in the cloud space, but with major infrastructure players developing their own custom chips, and what Cory Doctrow (a personal hero) called a “war on general purpose computing,” it wouldn’t be an unsurprising outcome.