AGUK Blog - Articles, News and Updates from AGUK Solutions Ltd
Contributors
Tags



January 22, 2010

Internet Explorer Security Update

This is a follow up to our article on the Internet Explorer Security Scare sent earlier this week. Microsoft has now released a security patch to fix its weakness. Depending on your system’s update settings, this should have been downloaded by Windows. However, to check and ensure you have the patch installed, here is AGUK’s advice.

INTERNET EXPLORER LATEST UPDATE
Windows XP Users: Go to Windows Update website and follow the steps given.

Windows Vista and Windows 7 Users: Click Start and in the search box type "Windows Update" then press Enter.

In either case you will see the critical updates available. If none are displayed then your system is up to date.

FUTURE SECURITY PRECAUTION
If your computer is not set to receive automatic updates then I recommend you immediately rectify this. It is crucial for any system to automatically download and install updates daily. For more information about how to do this please click here (Microsoft Website).

CURRENT SECURITY STATUS
After you have installed this latest patch from Microsoft you can, if you wish, adjust Internet Explorer and change your browsing security from High security to Medium-High. Alternatively leave the Internet zone setting at High and instead add any trusted sites not displaying correctly at this level to your “Trusted sites” section. To do this take the following action:

Windows XP Users: Click Start > Run and type inetcpl.cpl then press Enter.

Windows Vista and Windows 7 Users: Click Start and in the search box type inetcpl.cpl then press Enter.

In either case then click the Security tab and select the “Trusted sites” zone as per the diagram below.

Diagram of required steps to take. 

FINAL SAFEGUARD
AGUK recommends you maintain up-to-date AntiVirus software and never open email attachments, or follow links in emails to unknown websites. Also, whenever you receive an update or security patch, ensure your system is set to restart automatically after installing it, or do this manually. This will ensure immediate effect of the update.

 

Filed under  //   browsers   Internet Explorer   internet security   Microsoft   security  
Posted by Andy Gambles 

Comments [0]

January 19, 2010

Internet Explorer Security Scare

You may have seen, or heard, news coverage about a significant security problem with Windows Internet Explorer. Following Microsoft’s admission that Internet Explorer was used to hack Google the German Government warned against using Internet Explorer. Now France has issued a similar warning.

INTERNET EXPLORER SCARE
Internet Explorer is the web browsing software used by many to access the internet. If you use this browser, the current flaw allows exploiting hackers to access files on your computer, to log keystrokes made, and to redirect you to specific websites. However, the advice from AGUK is not to panic but be cautious. 

To take any such advantage of a compromised system, a hacker must get you to either visit a specific website, or install a browser add-on. Depending on your security settings, this add-on (unlike software browser add-ons known as ActiveX controls) can be installed without you knowing. It is also undetected by current anti-virus software.

AGUK’s Security Action Plan
If you do not know which type of browser you are using click here and visit our browser test page. If you are using Internet Explorer there are steps you can take to reduce the risk of falling victim to Internet Explorer’s browsing weakness.

(1) Alternative Browser
You could install and use an alternative web browser. AGUK recommends Google Chrome. This lightweight browser is faster than Internet Explorer and is growing in popularity. This would not necessitate the removal of Internet Explorer.

(2) Run Internet Explorer in Safe Mode with add-ons disabled
It is possible to run Internet Explorer with all add-ons disabled. This will help prevent your browser being susceptible to this latest attack. The simplest way to do this is by creating a shortcut on your desktop. Here’s how:

Close down all open programs and on your desktop right click on your mouse and select: [New > Shortcut]. Then in the box labelled "Type the location of the item” paste the following text exactly, including the quotes:

“%ProgramFiles%\Internet Explorer\iexplore.exe” –extoff

After you have done that click [Next] and then [Finish]. A new shortcut will now be on your desktop called iexplore.exe. When you use this shortcut you will see that Internet Explorer is launched with all add-ons and ActiveX controls disabled.  In this mode it is possible some websites will not display correctly, but this is the sacrifice you must pay until the security hole is closed by Microsoft.

(3) Enable High Security level in Internet Explorer
It is recommended you follow this process in conjunction with option 2 above.

Windows XP Users: Click Start > Run and type inetcpl.cpl then press Enter.

Windows Vista and Windows 7 Users: Click Start and in the search box type inetcpl.cpl then press Enter.

You should now see the Internet Properties window. Click on the Security tab, select Internet from the zones and then move the slider to High as per the image below. Make sure you click OK once you have changed these settings.

If you have any questions or concerns about this issue please let us know in the comments.

 

Filed under  //   browsers   Google Chrome   Internet Explorer   internet security   Microsoft   security  
Posted by Andy Gambles 

Comments [8]

November 26, 2009

Email List Management

Many businesses look at their email marketing list in the wrong way thinking of it as a numbers game and simply adding new names as old ones disappear. Worse still are those who resort to email blasts, regardless of subject relevance. Either approach indicates an email list is being used incorrectly, with little consideration shown towards recipients. To some extent etiquette has a role to play in email effectiveness, so consider the following:

  • Ensure your email recipients know who you are, and explain how you obtained their details. Speaking from experience I receive many email newsletters from businesses and struggle to work out who they are, or why they are emailing me. It's also a legal requirement to give your business contact details.
  • Provide your recipients with an easy, instant unsubscribe process. It is pointless to continually communicate with anyone not interested in you or your products. Better by far, and cheaper, to email 500 recipients genuinely interested in your business than 5,000 with little or no interest.
  • Review your statistics for up to 12 months after any email campaign. Checking responses, ie whether they are being sent to “trash”, filed or later reviewed, will clarify the interest rate of your emails. Understanding how recipients read your newsletters will benefit future campaigns.
  • Use an Email Service Provider to manage your email campaigns. This will help you manage unsubscribes, improve deliverability and provide statistics on user engagement. (User engagement is an important topic we will discuss separately.)
  • Segment your list into categories such as customers, prospects, interests. This will  prevent you from sending inappropriate offers or information.
  • Send topical and informative emails, and submit them regularly to keep in touch with recipients. If you have not used your email marketing list for more than six months then send a re-engagement campaign. If recipients forget who you are, your email marketing list is redundant.

Filed under  //   Articles   Email Marketing  
Posted by Andy Gambles 

Comments [0]

October 16, 2009

Improving Your Google Rank Talk

Thursday 29 October 2009 (17:00 - 20:00)

I will be speaking at a networking event at Burn Hall in York about how you can improve your website rank in Google. The event is free of charge and presents a great opportunity to network. For more information and to book your place please click here.

Filed under  //   Event   Google   Google Adwords   Google Analytics   Networking   SEO   Speaking   Training  
Posted by Andy Gambles 

Comments [0]

October 16, 2009

Importance of Website URL Structure


When developing a website it’s all too easy to focus on aesthetic design and content. These certainly are important factors but so, too, is the site’s strategy. How you construct your website URLs will have a direct operational impact, and this design aspect should not be overlooked.

On many websites, URL structure is determined by the web developer and could look, for example, like: [company name].net/ files.asp?id=12adbe456&session=wertybr. Compare this with the “Contact Us” page of AGUK’s website, which is located at aguk.net/contact/. This is a nice short and easy to understand URL. You may think the contrast insignificant but, take my word for it, the benefits of a simple URL structure are substantial. Here are some of the advantages.

Easier Inbound Links
You want to encourage visitors to link to the content on your website at every opportunity. This becomes even more imperative as users share links on websites such as twitter, FaceBook and other social networking systems. If your URL is too long it makes it difficult to paste into these applications. Worse still, if your website relies on user sessions within the URL, (your developer will understand this but it is basically to track and identify visitors), then it may be impossible to link to a sub page on your website.

Simpler to Describe
If you are referring someone to the page they need on your website, whether over the phone or in person, it is much easier to describe a simple URL than one that contains a lengthy and complex string of letters and numbers.

Better Search Engine Results
Creating a URL structure where the page address also describes the content can improve your search engine rank. We have previously covered the topic of SEO, which can be accessed through our Blog.

Filed under  //   Articles   SEO   URL   Website  
Posted by Andy Gambles 

Comments [0]

October 16, 2009

LinkedIn: The Business Benefits - Bite Sized Seminar

Monday 7 December 2009 (12:00 - 14:00)

This two hour seminar will provide simple explanations on how to use the professional social networking site; how to make connections; how to increase online networking contacts, and achieve a growing circle of business contacts; and the benefits for you and your business.

The venue for this one-off event is York Innovation Centre, York Science Park, Heslington, York, YO10 5DG.  It is free for Leeds, York & North Yorkshire Chamber members, with a £25 fee for non-members. There are only five places left so if you would like to attend please email events coordinator Sarah Welsh at sarah.welsh@ynycc.com or book online here 

This Event is now FULLY BOOKED.

 

Filed under  //   Event   LinkedIn   LYNYCC   Seminar   Training  
Posted by Andy Gambles 

Comments [0]

September 7, 2009

Is Your Laptop Secure?


After focusing last month on the importance of mobile phone security, I received a number of emails asking about securing laptop computers. By 2011, according to market intelligence firm IDC, laptops will represent 66% of corporate purchases, with 71% of consumers opting for a notebook instead of a tower PC. In response to those who contacted me, and for anyone considering buying a laptop, here are my safekeeping recommendations.

LAPTOP SECURITY
Many office workers who have to be mobile are opting to replace their desktop system with a laptop. An average laptop has an impressive hard-drive capacity and can store a huge amount of sensitive and important data. Laptop security is, therefore, crucial.  The following tips on keeping laptops safe and secure apply to those with Windows-based software.

Encrypt Your Laptop
Entering a password to access or log into a laptop does not mean its data is safe.  Far from it.  The initial log-in can easily be circumvented, or the drive removed and accessed via a different device.   My suggestion is to use a program called TrueCrypt which creates and runs hidden system-wide encryption. It is easy to use, and free for commercial use.

Anti Virus Software
Maintaining up-to-date Anti Virus software on your laptop is vital so I recommend installing the following two programs: 
  1. NOD32. This is a low cost business-strength security product providing integrated, real-time protection against spyware, adware, viruses, worms, trojans, phishing, hackers, etc. 
  2. Windows Defender if you are using Windows XP. Windows Defender is compatible with all MicroSoft certified Anti Virus software including NOD32. Anyone using Vista and Windows 7 will already have Windows Defender. 
Back-up Your Data
Laptops are light and portable and easier to lose than PCs so backing up your data should be instinctive. New laptop users should consider online systems such as HumYowhich, once installed, automatically backs up your data securely and safely while you work.

Using Wi-Fi Safely
Be cautious when connecting to public Wi-Fi hotspots. Some access points may be set up maliciously in order to collect data as you surf the internet. To avoid such risks, connect only to access points you recognize. You should also enable your laptop’s built-in Windows Firewall.
 

Further Action
Devise your own laptop security best practice routine by checking for updates regularly. Protect your laptop when on the move in an easily identifiable case. When not in use, store it in the same place away from any temperature extremes and electrical fields. Last but least, don’t forget to insure it.

Filed under  //   Anti-Virus   Data Protection Act   Encryption   Humyo   Laptop   NOD32   security   TrueCrypt   Windows Defender  
Posted by Andy Gambles 

Comments [0]

August 12, 2009

Mobile Phone Data Security

Mobile phones make life very easy on the one hand, and very difficult on the other. Here's why.

A study by TAXI, the magazine for the Licensed Taxi Drivers Association, revealed that during a six-month period a staggering 63,135 mobile phones were mistakenly left in London cabs.  If they contained customer data and information that was not secure, then their owners could find themselves in breach of the Data Protection Act.

MOBILE PHONE DATA SECURITY

Mobile phones are common tools of the trade now for many businesses. However, in recent years these devices have become much more sophisticated. Many have the capacity to store over one million emails, as well as contact details of an entire customer base and other sensitive information, such as word documents and spreadsheets.

Awareness
Think how important the data on your mobile phone is.  Be aware, too, that if your employees are equipped with a company mobile phone, they must similarly be conscious of the importance of any stored information and contact details.  We strongly recommend that you look at your own mobile device security strategy, and that of your company. 

Precautions
As a first step you should note down your mobile device’s IMEI (International Mobile Equipment Identity) number. This is often found underneath the battery and your mobile provider will require it when you report the loss or theft of your mobile.  This should be a mandatory safety measure for all staff with company mobiles.

Seven Steps to Take
Here are some of the other things you should consider in formulating your mobile security strategy:
  • Enable the “Automatic Lock” function on your device, and set the lock period to the minimum time
  • Enable the “Require Pin” function or, if the option is available, the lock device on SIM card removal 
  • If you use memory cards, enable the “Encrypt External Storage” option if supported by your device
  • Only store essential names, numbers and documents on your mobile phone
  • Check with your mobile provider if your device supports “Remote Wipe”, and know how to implement this
  • Keep your mobile provider’s number handy as they can disable your phone when you give them your IMEI 
  • Be prepared to notify the Information Commissioner and your customers if a mobile device with customer data is lost/stolen
Further Action
There may be other things specific to your business that you need to think about, and you may need to create a workplace policy to ensure all staff are aware of the implications of storing data on mobile devices.

Filed under  //   Articles   Data Protection Act   mobile   phone   security  
Posted by Andy Gambles 

Comments [2]

July 7, 2009

8 Email Marketing Mistakes

There is plenty of scope for getting things wrong with email marketing campaigns; the focus here is on the most common errors made.

Poor Subject Line

Getting recipients of your email to open and read it is key to your marketing campaign’s success. It follows, therefore, that of primary importance is the field marked “Subject”. Yet research shows that the content of this title bar is often the last thing considered, and sometimes it is even left blank. What a wasted opportunity.

Equally important as not leaving it blank is devising a suitable subject. Headings such as “Free Coupon” tend to perform badly against simple descriptive titles such as “[Company] Newsletter.” My advice is to describe the content honestly, rather than “sell” it with a gimmick.

Unrecognised Source

Some email campaigns originate from unrecognisable email addresses, or companies with bizarre names few have heard of. Emails from unidentified sources are usually instantly deleted. If your company is known to everyone on the data base you are using, ensure its name (or yours) appears in the “From” field. You certainly don’t want the words “Mailing List” appearing as sender.

Awful Presentation

Emails have to be easy on the eye for comfortable reading, so how you format text is important. Central alignment of content makes text very hard to read.  Similarly, choosing an unusual font is a bad idea as it may not be among the listed styles on your recipients’ system and will consequently not display properly. Play safe – stick to the common fonts, and the standard “align left” for content.

Outsize Images

Promotional emails are sometimes simply a scan of a company’s leaflet, with a huge image embedded with little or no worthwhile text. Don’t commit this crime.  Many email programs do not display images by default, so such emails can appear empty or blank. They also run the risk of being deleted by spam filtering systems. Use images only if they are necessary, and keep them down to 10% or less of your email content.

Badly Coded HTML

This is a technical issue but worth mentioning to anyone with coding knowledge, or in-house programmers. Emails are single or multi-part templates with many HTML emails using CSS and <HEAD> tags for text coding and display commands. However, some email programs (especially web based ones) strip out <HEAD> tags to prevent security problems. Any style code commands listed here will be stripped out, thus mangling the coding and making the email impossible to read. To add style to your email, make sure inline CSS coding is used. Be aware, too, that HTML exports from some programs, such as Microsoft Word, Publisher and PowerPoint, can create very bad HTML that does not work in email.

No "Unsubscribe" Link

There are pointless risks run with either not offering an “unsubscribe” link, or putting a “Reply with Unsubscribe” link in the Subject/title bar. Recipients of such emails will instantly hit the “Spam” button, and you could get blacklisted. Instead, make it as easy as possible for recipients to leave your list by providing a simple “one click” instant unsubscribe link. That way they will think better of you, and you will not be wasting your resources emailing uninterested people.

Spam Appearance

Marketing emails that are blatant promotional messages will resemble spam and, like all junk mail, end up being deleted. It is wise, therefore, to steer clear of highlighting text in bold, to refrain from displaying content in capitals, and to avoid using too many colours. Using the word “free”, particularly in bold or coloured text (whether in capitals or lower case), can also trigger automated spam filter systems if usage in ratio terms is out of proportion to other words used.

Unfamiliar Contacts

If it has taken far more than a year to build up your list of leads, and if you are not in regular contact with everyone on it, will they remember you? Don’t email infrequent customers and prospects out of the blue; some may have forgotten you, been replaced or changed their email address. Instead, turn a potential negative into a positive by sending a short and sweet re-subscribe email along the lines of:  “We know it has been a while since we were in touch. If you are still interested in hearing from us, please click here to subscribe.” 

 

Filed under  //   Articles   Email   Email Marketing   Internet  
Posted by Andy Gambles 

Comments [2]

June 9, 2009

Email Marketing

Sending email newsletters involves overcoming different obstacles so my tips for tackling the basics may help you when compiling and transmitting your own.

Some email marketing beginners get off the starting block by creating a simple email message, sending it to multiple recipients via their email client. There are pitfalls to be aware of when doing this, which were highlighted in one of our articles last year, entitled Multiple Recipient Emails.

Email Nuisances

People who send out too many emails can find themselves in trouble with their ISP (Internet Service Provider). Those who commit this crime and are deemed a nuisance by their ISP can, as a result, find their internet connection cut off. Don’t run this risk; instead of annoying your ISP, use an ESP (Email Service Provider).

Email Service Providers (ESPs)

A much better method for transmitting email newsletters is to use an Email Service Provider, who is specifically set up for this purpose, and is skilled in managing emails to thousands of recipients at a time.

ESPs come in all shapes and sizes, from those who provide full campaign creation and management, to the “self-service” providers who allow you to build your own campaigns via a web interface. Service costs vary; the most inexpensive method is to use a self-service provider.

Self-Service Providers (SSPs)

SSPs provide a simple graphical interface for you to design your own email newsletter, plus easy-to-use options for uploading and adding your email recipients. They will also manage any “bounces” (undelivered emails) and “unsubscribe” requests for you, saving you both time and hassle.

Reliable Recommendations

AGUK uses and recommends the following providers:

They offer similar services at similar prices and personal choice is down to individual preference on the interface provided. Both companies are based in the USA and charge in US Dollars, with a free service for lists of up to 100 email addresses. In our opinion, there are no UK-based ESP services to rival the level of options provided by these two companies, but if you know of one we would be happy to hear from you.

Please note that using a hyperlink ending with an asterisk (*) , as shown above,  may result in a small financial referral contribution to AGUK. This in no way influences our recommendation and if you wish to avoid this automatic reward, you can instead use the following link: Mail Chimp

 

Filed under  //   Articles   Email   Email Marketing  
Posted by Andy Gambles 

Comments [0]