By -- 2018-04-30 in Blog

Does your business have a spare $2 million around to fix your computer problems when you get the next Ransomware attack?  As you may have seen in the news, the city of Atlanta, George recently became a victim of the SamSam ransomware, shutting down operational systems. Unlike most ransomware, SamSam indiscriminately searches the internet for vulnerable servers by looking for weak passwords or passwords that rarely get changed and then infecting the system. While Atlanta didn’t pay the ransom, the cost to remediate the issue was calculated at $2,667,328 according to this ZDNET article.

While your business may require less than the city to remediate your problem, there are things you can do today to make sure that Ransomware doesn’t hurt your organization. This includes changing and using complex passwords, updating security patches, installing the proper security equipment and educating your employees.

For more information on some of the things you can do, give us a call and we can provide you with a no-cost, no-obligation assessments. We can be reached at 703-790-0400 or on the web at

By -- 2018-04-25 in Blog

According to a recent CNET article, cybercrime is now costing businesses as much as $600 billion.  In fact, the most recent Ransomeware attack costs millions of dollars to the city of Atlanta to recover from that attack.   So what does a small business or non-profit organization do?

The most important thing you can do is to make sure you have a Great backup.  Not just a backup but a backup which automatically checks to make sure that the backup works.  You also should have in place the proper security software and devices and even more importantly, the proper training program for your employees on what to avoid.

If you are unsure of what you are doing to keep you organization safe and would like a free security assessment, please give us a call at 703-790-0400 or on the web at Don’t wait until a threat strikes.

By -- 2018-04-20 in Blog

Is your router out of date?  Did you ever change the default password/  Are you still getting security updates on it?  If you answered yes to any of these questions or you do not know the answers, then there is a great chance your router is at risk of being hacked.

                According to this article on CNET, more and more hackers are accessing organizational routers because they are not being updated and protected.  And once they are in your router, they have the ability to do a lot of damage through the theft of information or the shutting down of your systems.  What are you doing to keep your organization safe?

                If you are not sure or would like a free assessment of things, give OptfinITy a call.  For 16 years, OptfinITy has been providing organizations with budget friendly unlimited IT support that protects you and keeps you at ease with knowing that your technology is safe.    Give us a call at 703-790-0400 or on the web at

By -- 2018-02-28 in Uncategorized


Springfield, VA, February 27, 2018 – OptfinITy, Washington, DC’s leading provider of IT Services, announced today that CRN®, a brand of The Channel Company, has named OptfinITy to its 2018 Managed Service Provider (MSP) 500 list in the Pioneer 250 category. This annual list recognizes North American solution providers with cutting-edge approaches to delivering managed services. Their offerings help companies navigate the complex and ever-changing landscape of IT, improve operational efficiencies, and maximize their return on IT investments.

In today’s fast-paced business environments, MSPs play an important role in helping companies leverage new technologies without straining their budgets or losing focus on their core business. CRN’s MSP 500 list shines a light on the most forward-thinking and innovative of these key organizations.

The list is divided into three categories: the MSP Pioneer 250, recognizing companies with business models weighted toward managed services and largely focused on the SMB market; the MSP Elite 150, recognizing large, data center-focused MSPs with a strong mix of on-premises and off-premises services; and the Managed Security 100, recognizing MSPs focused primarily on off-premise, cloud-based security services.

“Managed service providers have become integral to the success of businesses everywhere, both large and small,” said Bob Skelley, CEO of The Channel Company. “Capable MSPs enable companies to take their cloud computing to the next level, streamline spending, effectively allocate limited resources and navigate the vast field of available technologies. The companies on CRN’s 2018 MSP 500 list stand out for their innovative services, excellence in adapting to customers’ changing needs and demonstrated ability to help businesses get the most out of their IT investments.”

The MSP500 list is featured in the February 2018 issue of CRN and online at


By -- 2018-02-15 in Blog

What do you think happens when you go to a website and there is a big warning that says this website is not secure?  Do you think you will go back to that website?  That is going to happen to millions of websites beginning in July when Chrome version 68 is released.

Google is forcing all websites to begin using HTTPS for all websites which means that the connection between the website’s server and your computer is encrypted. Google believes it will make the web a more secure place and if you don’t do it, they will announce to the world that you are not secure.

If you want more information, click here, otherwise if you need help with installing an SSL certificate to have HTTPS on your website, please contact OptfinITy.

By -- 2018-02-8 in Blog

Making sure your website is updated with the latest patches is very important as new vulnerabilities are discovered almost daily – so what happens when the latest update stops your updates from working?

On Monday, WordPress released version 4.9.3. The very next day, WordPress released version 4.9.4. Although version 4.9.3 fixed 34 bugs, it also introduced a new bug that prevents automatic background updates from updating automatically! This bug causes WordPress to encounter an error when attempting to update itself to the latest version.

Four years ago, WordPress added the self-update feature allowing users to keep their website secure and bug-free so users have not had to think about updates. This means that there are millions of unmanaged WordPress sites that expect their site to automatically update itself. So if you are an admin of a website running WordPress, make sure to update now or if you need help with your website, give OptfinITy a call at 703-790-0400.

By -- 2018-01-29 in OptfinITy News

Data is the lifeblood of your organization.
If your systems were struck by a disaster,
How much data could you recover?
How much downtime would you experience?

To ensure your business continuity is to proactively protect your systems and data against disasters of all types. When we consider the amount of data we store and how much we rely on infrastructure to communicate and compete in today’s world, it’s easy to see how one system disaster can cause serious damage to a business.

Join OptfinITy at our February Lunch and Learn (catered by Pure Perfection Catering) where will not only discuss a great solution but will demonstrate an actual computer disaster to help you understand the threats to your data and the solutions to protect it.

For an agenda, here are the items we will be covering on February 22, 2018.  Go here to register. 

• Traditional Backup vs. Business Continuity
• Cyber threats of 2018 – Who is behind them, what to look out for, and where does Business Continuity fit in to your 2018 Cyber Security Plan
• Calculating the cost of downtime
• Live demo of how quickly you can virtualize your systems, and get your business back up and running
• Questions?

By -- 2018-01-6 in Uncategorized

As a Sonicwall partner, we were pleased to find out that Sonicwall routers were not susceptible to the latest vulnerabilities per their release shown below.

On Jan. 3, two processor vulnerabilities, known as Spectre and Meltdown, were published by Google’s Project Zero security team. Variants of this issue are known to affect many modern processors, including certain processors by Intel, AMD and Arm.

A successful exploit of this vulnerability allows an attacker to access sensitive information (e.g., passwords, emails, documents) inside protected memory regions on modern processors. Because the OS-level memory isolation is usually considered trustworthy, this data is most likely to appear in plaintext in memory when processed by the OS and applications.

Your SonicWall customers are not susceptible to Spectre and Meltdown vulnerabilities. No updates are needed at this time.

The SonicWall Capture Labs investigated the Spectre and Meltdown vulnerabilities and found the following:
• The full range of SonicWall TZ, NSA and SuperMassive firewalls are not vulnerable to the Meltdown or Spectre vulnerabilities.
• All other SonicWall products, including Email Security, Secure Mobile Access and Global Management System, also are not at risk. These products are hardened and do not run third-party code, which is a prerequisite for this attack.
• Signatures for SonicWall Gateway Anti-Virus (Exploit.Spectre.A) and Intrusion Prevention Service (IPS 13149: Suspicious Javascript Code) have been released to identify and defend the networks. Each are automatically applied to licensed firewalls with GAV and IPS enabled.

By -- 2018-01-5 in Blog

Meltdown and Spectre are the latest named vulnerabilities to appear in the news and they are in fact very problematic because the attacks could be used to read system memory that *should* have been inaccessible. What happens is an attacker could steal sensitive information such as passwords or encryption keys from your computer’s memory. And because these flaws are in your computer’s chips, it’s not a problem that is particularly easy to properly fix without a hardware replacement.

The solution at this point besides replace your computers? Change the low-level software that speaks to the hardware. Since the hardware can no longer be trusted to do what they were supposed to be doing, the software will limit the capability.

The good news is that these flaws have been known about for months and there are already plans to release these patches with some including Microsoft already releasing server versions on January 3, 2018. The researchers who discovered the problems disclosed them to chip manufacturers and software vendors, who have been feverishly working on fixes. The bad news is that we are at the mercy of some of these companies but the goal is to release patches soon. If you are managing your own hardware, then you should make sure you are updating all items (Phones, routers, computers, etc.). If we are doing it for you, you are all set as OptfinITy will roll out the patches as they are available.

By -- 2017-12-21 in Blog


Researchers at the University of Washington are trying to store small amounts of data on smart fabrics.  These magnetized garments would be readable by a magnetometer and not need any electronics or batteries to function.  This would be useful for invisibly labeling items or using clothing or accessories in place of a password or key card.

While connected textiles have been around for years, they haven’t yet made it to the mainstream.  Some reasons include high prices, limited functionality, and durability; not to mention lack of precision with things such as gloves for smart phones.

Soon, though, you might be able to buy ties, belts, and bracelets that may be programmed to help you open doors, unlock phones, or give you access to your laptop.  And you can bet when these new gadgets become mainstream in the workplace, Optfinity will be there to assist our clients manage their usage, security, and updates.