IT Vulnerabilities Remind Us of the Need for Action

by | Jan 19, 2022 | Leadership, Marketing Developers, Uncategorized | 0 comments

hiding and peeking out

Dmitry Ratushny

A new year is a time for reflection, a practice corporate IT would do well to adopt. Although I took some time off over the holidays, a number of events, trends and news kept me busy. In December, it was the Log4j security vulnerability, whose full consequences remain unknown as the Trojans may still be slumbering in yet to be identified systems.

The threat to corporate IT from Log4j and related extortion attempts is far from over, so companies should continue to keep a backup from before December 1, 2021, just to be safe.

Don’t Blame Log4j on Open Source

People have used the vulnerability as an excuse to argue against open-source solutions, stating they are not as secure. But keep in mind proprietary, closed software has its fair share of security holes. If the code is open, at least theoretically more developers can look inside to fix the bugs. Of course, Log4j made it clear that even open-source solutions are not and will not be bug-free. If the code is then widely distributed, as in the case of Log4j, it can have corresponding widespread effects, which will hopefully not be as dramatic as the rule.

An error in Microsoft Exchange at the turn of the year reiterated that software errors unfortunately are part of the everyday life in IT — and more broadly, to our everyday lives. Headlines online noted how the ‘Y2K22 bug stops Exchange mail delivery’ and how ‘Antimalware engine stumbles over 2022.’  Some versions of the Exchange server (2016 and 2019) failed to deliver emails at the beginning of the year because an incorrect date format could not be processed in the integrated malware scanner. The bug has since been fixed, but some servers are still hiccuping and it will take a while before all of the emails go out. Once again, a reminder of the vulnerabilities of the systems we rely on so heavily.

Related Article: Equifax Breach Drags Open Source Security Into Spotlight Once More

AWS Outage Takes Out Netflix, Disney+ and More

Another end of year story that flew slightly under the radar was the Amazon Web Services outage in early December 2021. The outage affected many companies on the East Coast of the U.S. However, in this case, the disruption exemplifies how much individuals and businesses depend on “the cloud,” in this case, market leader AWS. Suddenly Disney+, Netflix and smart home devices no longer worked.

But we are dealing with enterprise IT here. The incident forced companies and government agencies to realize that they too are dependent on the cloud, even if they thought they had no contracts with Amazon. But when Trello or Slack stopped running, it was precisely because these solutions use Amazon Web Services.

One other factor in our cloud dependency to remember: most of the time we’re not just using one cloud anymore. When we use Microsoft Office products as well as Trello or Slack, when we migrate to SAP S/4 Hana or use other solutions from HR to supply chain, we as a company automatically are using different cloud providers, even if it’s not apparent at first glance. The multi-cloud is a reality in most workplaces today. Companies will not be able to escape from this for cost reasons alone. A complete return to the company’s own data center is likely no longer possible. Instead, there will be a hybrid cloud world in which various cloud providers and the private cloud are used in the company’s own data center.

Related Article: How Baseline Security Practices Could Have Prevented Recent Cloud Attacks

Challenges for Corporate IT: Multi-Cloud, S/4 Hana, Cybersecurity

All the incidents above show how sensitive our critical IT infrastructures are, how quickly and consistently we have to react, and how much expertise we need to set up, run and manage our corporate IT. Cybersecurity may be the topic for 2022, but building and managing a hybrid multi-cloud remains on the agenda alongside the migration to SAP S/4 Hana that many companies are facing. Companies will have to think about how they can remain as independent as possible in the cloud world, and potentially move solutions from one cloud to another. They will have to look at how important resilience is to them and what they are willing to pay for it. Will they allocate the money to run critical systems in two or even three Availability Zones?

These are all special challenges at a time when IT specialists from security experts to SAP specialists are in high demand. I expect companies will need to bring in external expertise, even as they think about new ways to bundle and share expertise, for example in the area of cybersecurity. These issues and challenges cannot be put on the back burner — the incidents above make that clear.

Stefan Pfeiffer is working in Communications for Kyndryl Germany, the spin-off from IBM delivering Managed IT Infrastructure Services. Prior he was in different Marketing for IBM joining IBM from FileNet acquisition.

Source link

Three Key Facebook Metrics to Understand Ad Performance

Three Key Facebook Metrics to Understand Ad Performance

My fellow digital marketers – before we talk about Facebook performance metrics, please complete this short survey. Question: Why do you create new Facebook ads?A. Out of pure habit.B. Our creative team never has enough work to do.C. Because ABT – “Always Be Testing”...

14 Strategies to Promote Your Business Through PPC

14 Strategies to Promote Your Business Through PPC

Are you getting low-quality traffic through your PPC campaigns?  Are fraud clicks draining your revenue from the PPC? Is your return on investment on PPC not as expected?  Even though PPC advertising is an integral part of an effective marketing strategy, poor tactics...

Use Customer Lifetime Value to Find More of Your Best Customers

With new privacy rules continually changing the landscape of third-party data, brands are increasingly becoming more focused on understanding their current customers in order to make more sophisticated marketing decisions. One approach to this is utilizing customer...

Tips for Optimizing a Localized PPC Account

Tips for Optimizing a Localized PPC Account

Before jumping into the components of a local PPC account and why it matters, we should first define what constitutes a local PPC account. The basic definition is that it targets customers within a specific region. The strategy for localized PPC specifically involves...

How Automation Hurts Rank, And How to Fix It

Imagine you are offered an opportunity to have control of all the creative, copy, and budget in your Google Ads account (or your paid media platform of choice) put in the hands of an anonymous six-year-old user. Each day, you are allowed to tell them whether they...

Content Marketing and PPC Advertising: Better Together

Content Marketing and PPC Advertising: Better Together

While some businesses invest solely in one type of advertising and marketing, like social media, others thrive by seamlessly combining multiple strategies, like content marketing and pay-per-click (PPC) advertising. Both of these methods can give a boost to your...

Pricing Plans

MediaQuad Membership Levels

Select one of the 8 plans below that best fits your needs.


Why wouldn't I just hire a full-time marketing team?

Great question! Hiring a full-time marketing team can be costly, with salaries and benefits easily exceeding $500,000 per year. Plus, you may not always have enough work to keep them busy, leading to wasted resources.

With MediaQuad’s subscription model, you can scale up or down as needed, ensuring you’re only paying for the services you need.


Is there a limit to how many requests I can have?

Once subscribed, you’re able to add as many marketing and web development requests to your queue as you’d like, and they will be delivered one by one unless you are on the Enterprise plan.

How fast will I receive my marketing deliverables?

On average, most requests are completed in just a few days. However, more complex requests can take longer.


Who are the marketers and developers?

MediaQuad is a team of experienced marketing and web development professionals. You’ll be working directly with our team, ensuring consistent, high-quality results.

How do I pause my subscription?

We understand you may not have enough marketing and web development work to fill up every month. That’s where pausing your subscription comes in handy. You can pause and resume your subscription as often as you need to ensure you’re only paying when you have work available for that month.

What software do you use?

We use a variety of industry-standard tools and software. If you use it, we probably have or currently use it too. Seriously, this is what we do everyday.

How do I request marketing and web development services?

MediaQuad offers a ton of flexibility in how you request services. You can request directly via our platform, share Google docs or wireframes, or even record a brief video. If it can be linked to or shared in our platform, it’s fair game.

What if I don't like the deliverable?

No problem! We’ll continue to revise the deliverable until you’re 100% satisfied.

What if I only have a single request?

That’s fine. You paid for a month’s worth of work, so don’t throw it away. Remember to submit a pause email or pause task in Trello. We’ll note how many business days you have left in your month, and you can come back when you need more marketing or web development services.

Are there any refunds if I don't like the service?

Due to the high-quality nature of our work, we do not issue refunds. However, we’re committed to ensuring your satisfaction and will work with you to address any concerns.

Need to talk first?

Schedule a call

Learn more about how MediaQuad works and how we can serve you.