Automated large-scale attacks taking down SMBs

Posted by on Mar 28, 2012 in Articles, Blog | 0 comments

Verizon DBIR 2012: Automated large-scale attacks taking down SMBs

There’s always chatter about the sophistication of malware and the advanced hacking techniques attackers use to steal payment information or sensitive corporate data. While that may be true for targeted attacks against high-value targets such as government agencies, the defense industrial base or financial institutions, the majority of victims, according to the 2012 Verizon Data Breach Investigations Report (DBIR) (.pdf), are smaller companies that fall prey to commodity attacks that expose shortcomings in basic information security best practices. The innovation is in the automation and process refinement behind attacks, and not necessarily in the sophistication of the malware involved, the report suggests.

Small businesses are worried about the bottom line. It’s a matter of expertise, time and resources that they’re not able to defend themselves.Christopher Porter, principal, Verizon RISK team

Christopher Porter, principal with Verizon’s RISK team, said organized cybercrime groups have automated attacks end to end. These groups will scan the Internet looking for exposed PoS or remote administration services, such as remote desktop management, and will use brute force attacks against the logins to gain access. Since many use easy-to-guess, or default passwords on these systems, gaining access can be trivial. Once inside, malware—usually a keylogger—is installed and begins collecting data. The malware is also preconfigured to send data outbound, either via FTP or email, to a Web server under the attacker’s control. The data is then sold on the black market, or, if credentials are stolen, deeper attacks are carried out against bank accounts or other systems within an enterprise.

“We joke that there must be some sort of old crime groups that have gotten their MBAs,” Porter said. “In the last several years of these types of industrialized attacks, we’re seeing innovation in the process and methodology used.  The whole process is end to end and it’s massive in scale.

Read more

Energy Retrofits

Posted by on Feb 15, 2012 in Articles, Blog | 0 comments

In managing your properties it is very important to keep up on the myriad of energy savings programs available. They might be from any of your utility providers including;  DWP, So Cal Edison, San Diego Gas & Electric, and any municipal utility provider. Most programs have a specific time frame, item (lights, water) and dollar amount related to them. It is easy to find your utilities’ web sites and all the information will be posted there. Many will provide you a regular update and notice to your respective emails. These programs not only benefit the environment, but also add to the efficiency and effectiveness of utility use and bottom line dollars to owner possibly through their professional residential or commercial managers.

Here is a sample LADWP Newsletter:

 

Commercial Lighting Efficiency Offer (CLEO) Program Update
As of August 31, 2011, there has been a change to the LADWP energy efficient lighting retrofit incentive program known as the Commercial Lighting Efficiency Offer, or CLEO.Under the new policy, existing lighting fixtures employing High-Performance ballasts are ineligible for rebate consideration.The change applies to CLEO rebate applications received on or after August 31, 2011. The new 2011-2012 CLEO application forms now include the revised “Terms and Conditions” and must be used along with the required spreadsheets.For more information on the CLEO program or to download application forms, please CLICK HERE.
LADWP Energy Efficiency Rebate Programs
LADWP has several programs for customers who want to reduce their electricity usage and their monthly utility bills. If your business has lighting, heating, ventilation and/or air conditioning, motors, and chillers, we may have a program that is right for you.
For more information on these programs and financial incentives currently available, visit www.ladwp.com.
LADWP’s RCx Express
(Retro-commissioning) ProgramRestore Your Building to Optimal Performance and Lower Your Electricity Costs
Commercial customers can lower their electricity bills and building operating costs by implementing one or more of the 13 measures in LADWP’s RCx Express (Retro-commissioning) Program. This is a simplified program that requires minimal system data and uses “prescribed” savings calculations, which makes the process much easier. The process ensures that all building systems perform interactively according to the contract documents, the design intent, and the owner’s operational needs.

Find out more about LADWP’s RCx Express Program >>
LA Commercial Building Performance PartnershipSaving Money Saves Energy. Bottom Line.
Do you want to reduce costs, add to your bottom line, and make your property more energy and water efficient?The LA Commercial Building Performance Partnership offers a suite of FREEresources designed to support holistic building performance upgrades, including:

  • FREE comprehensive evaluation of your property, including an Energy Star benchmarking report, and recommendations performed by engineering firms;
  • FREE facilitated access to LADWP and Southern California Gas Company rebates and incentives, as well as state and federal tax credits, and;
  • FREE introductions to third party financing options, so you can use your capital for other strategic investments.

Find out more about LA Commercial Building Performance Partnership>>
LADWP’s Non-Profit Retrofit Services Program Moves Forward
The LADWP has joined forces with the non-profit business community to make L.A. the greenest big city in America. The Non-Profit Retrofit Services program offers non-profit businesses an opportunity to assess and upgrade their facilities at no cost.

Find out more about LADWP’s Non-Profit Retrofit Services Program>>

 

Read more

Managing Expectations – Real Estate Investments and How They Perform

Posted by on Jan 16, 2012 in Articles, Blog | 0 comments

The New Year is the perfect opportunity to reflect; both backwards and forwards. As you look at your real estate investment(s) and how they performed during 2011 are you pleased? Granted, no one ever has sufficient cash flow, but many issues that might lead to disappointment are well within your control.

First of all, it is critical to understand why you invested in real estate in the first place. In addition to the pure joy of ownership and portfolio growth, were your goals and objectives reasonable?

Quantifying Expectations Through Budget

The expectations for a real estate investment are best quantified through a thorough budget. The budget takes into account all items of expenses including account historical expenses, known expenses and projected expenses. This then provides an educated projection as to what a property will cost. Of course, expenses need to include taxes, insurance and mortgage costs.

Income, A Less Than Predicable Equation

The other side of this equation is the income side. This tends to be a bit less predictable than the expense side. An owner needs to take each space or unit and make assumptions relative to each space. For example, if a suite is under a lease contract through 2014, than the income will be simple to project. If an apartment is leased on an annual or monthly basis, the overall vacancy and market rents must be taken into account. In any market the income assumptions are critical and need to be realistic, not wishful thinking. If you are getting $2,000 per month for an apartment rented in 2011, if there any market reason to expect this unit to increase or decrease when available? What are the market concessions for the unit, how much down time will there be, etc? Therefore, quantifying each individual suite and/or unit is critical to obtaining an accurate budget. Combining the expenses with the income should then provide an accurate cash flow projection, i.e. that which we all care about.

Assessing Assets Performance

Now as to the reflections; if you had a budget last year was your asset’s performance in line with this. If so, than the expectations were met and there should be some serenity in your life. If not, what items were missed and why? Those can then be used to adjust the budget for 2012 and provide a basis of reasonable future expectations, but also better understanding of your asset.

Read more