rCloud Office – En svensk #molntjänst för företag, organisationer och föreningar

image

Red Cloud IT levererar sedan flera år molntjänsten rCloud Office som hjälper företag och föreningar nå sina program och data från fler plattformar och från geografiskt skilda platser. Till en fast kostnad utan långa avtal.

Allt data finns i Sverige och systemen har inbyggd generationshantering och skyddas från intrång med hjälp av Syspeace .
Allt data virusscannas av Fsecure och i tjänsten ingår backuper, fillagring och åtkomst från Windows, IPad, Android, iPhone, Linux .
Ni kör alltså samma program men från olika plattformar, även om de inte ens finns till t.ex MAC. Som exempel kan bi nämna Visma programnen, FLEX programmen (Lön, Tid osv) och Rebus

#infosec How to block an ongoing dictionary attack / brute force attack against Windows Servers, #MSexchange and more

Syspeace - intrusion prevention for Windows servers

Syspeace website

How to block an intrusion attack against Windows Servers for free

If your server or datacenter is targeted by a brute force attack a.k.a dicttionary attacks , it might be hard to figure out how to quickly make it stop.
If the attack is from a single IP address you’d probably block it in your external firewall or the Windows Server firewall and after that start tracking and reporting the attack to see if needs following up.
However, if the attacks is triggered from hundreds or even thousands of IP addresses, it will become basically impossible to block all of them in the firewall so you need something to help you automate the task.

This is where Syspeace comes into play.

Fully functional, free trial for bruteforce prevention

Since Syspeace has a fully functional trial for 30 days, you can simply download it here ,install, regsiter with  a valid mail address, enter the licensekey into the Syspeace GUI and the attack will be automatically handled (blocked, tracked and reported) as soon as the Syspeace service starts up.

In essence, the attack will be blocked within minutes from even connecting to your server.

The entire process of downloading, installing and registering ususally only takes a few minutes and since Syspeace is a Windows service it will also automatically start if the server is rebooted.

If the attack is triggered to use just a few login attempts per attacking IP address and for a longer period of time in between attempts, I’d suggest you change te default rule to monitor for failed logins for a longer triggerwindow , for example 4 days so you’d also automatically detect hacking attempts that are trying to stay under the radar for countermeasure such as Syspeace.

The Syspeace Global BlackList

Since Syspeace has already blocked over 3.6 Million attacks worldwide , we’ve also got a Global Blacklist that is automatically downloaded to all other Syspeace clients.

This means that if an IP address has been deemed a repeat offender (meaning that it has attacked X number of Syspeace customers and Y number of servers within Z amount of tme), the attackers IP address is quite likely to already be in the GBL and therefore it will be automatically blacklisted on all Syspeace-installations, thus making it preemptively blocked.

Syspeace does not simmply disable the login for the attacker, it completely blocks the attacker on all ports from communicating with your server so if you’ve got otther services also running on the server (such as an FTP or SQL Server) the attacker will not be able to reach any if those services either. The lockdown is on all TCP ports.

More Syspeace features, supported Windows Server editions and other services such as Exchange Server, Terminal Server, SQL Server …

You will also get tracking and reporting included immediately for future reference or forensics.
Syspeace supports Windows Server editions from Windows 2003 and upwards, including the Small Business Server editions. It also supports Terminal Server (RDS) and RemoteAPP and RDWeb, Microsoft Exchange Serevr including the webmail (OWA) , Citrix, Sharepoint,
SQL Server and we’ve also released public APIs to use with various weblogins. All of this is included in Syspeace. Out of the box.
We’ve got a IIS FTP server detector in beta and also a FileZilla FTP Server detector and we’re constantly developing new detectors for various server software.

Download and try out Syspeace completely free

Even if you’re not being attacked by a large brute force attack right now, you can still download the trial and have Syspeace handle attacks for you in the background. Who knows, there could be more invalid login attemtpts than you think, such as disabled or removed users that have left the company or very subtle, slow dictioanry attacks going on in the background that actaully might be quite tricky to spot if your not  constantly monitoring logfles.

On this blog, http://syspeace.wordpress.com ,we’ve written a lot of blog articles on how Syspeace works and a lot of other articles regarding securing your servers that we hope you’ll find useful.

#Svenska #molntjänsten #rCloudOffice på #Facebook

image
rCloud Office – En svensk #molntjänst

Svenska Red Cloud IT  levererar sedan 2010 #molntjänsten #rCloudOffice för företag och organisationer med ambitionen att hjälpa sina kunder få sina program och data tillgängliga och plattformsoberoende på ett enkelt och säkert sätt.
Molntjänster handlar inte bara om att kunna dela filer med varandra utan även kompletta program från olika plattformar ( #Windows, #iPad, #Android, #iPhone t.ex) som t.ex #Visma eller #FLEXLön eller ett #CRM men även andra specialprogram som kunder vill flytta till en svensk molntjänst med allt data i #Sverige.

Sedan flera år har Red Cloud valt att använda #Facebook för att meddela kunder  om nyheter och driftsstatus för #molnet.