THE TECHNOLOGY & WORKPLACE MAGAZINE FOR SMES & PUBLIC SECTOR ORGANISATIONS WWW.BUSINESSINFOMAG.UK ISSUE157 60 SECONDS... With Daniel Blackman, IT Director of McLaren Construction Group PAGE 24 E-COMMERCE Alibaba.com to transform B2B sourcing with AI-powered search PAGE 20 DISPLAYS PPDS transforms the viewing experience for guests at The Grove Hotel PAGE 30 AI Revolution in Document Management Unlocking Efficiency with PFU RICOH Scanners See page 22
Brother Genuine Supplies Perfect quality, print after print. Brother Genuine ink and toner cartridges are specially formulated to limit the risk of smudges and smears, so every printout has a professional finish. www.brotherzone.co.uk/worth-it-every-time Worth it every time.
IN THIS ISSUE: 157 – Q3 04 News Office landlords to devote more space to co-working 08 What’s New A selection of new products for the modern workplace 10 Cybersecurity How partnering with MSPs can help SMEs address growing cybersecurity risk 11 Collaboration Zoom brings AI Companion to Zoom Workplace collaboration platform 12 Security HP highlights dangers of nation state attacks on technology supply chains 15 Ransomware The legal position on paying a ransom 16 MFPs Jason Cort of Sharp Europe explains why MFP security is a priority 17 Printers Brother launches new range of compact mono laser printers 18 Inkjet Printers Printer buyers still labouring under misconception that laser printers are the sustainable choice 20 E-commerce Alibaba brings agility to sourcing with AI-powered search 22 Document Management PFU explains how AI-enabled processing is set to transform document workflows 24 60 seconds with... Daniel Blackman, IT Director, McLaren Construction. 25 Events What to expect at DTX London 26 Procurement JAGGAER’s Simon Thompson considers the impact of AI on procurement 29 Q&A With Robbie Blackmore, founder of Black Capital Group 30 Displays What guests love most about The Grove Hotel’s new Philips MediaSuite TVs Editor: James Goulding 0780 308 7228 · [email protected] Publishing Director, Social Media & Web Editor: Neil Trim 01732 759725 · [email protected] Advertising Director: Ethan White 01732 759725 · [email protected] Art Director: Nick Pledge 07767 615983 · [email protected] Advertising Executive: James Trim 01732 759725 · [email protected] Business Info is a controlled circulation magazine. Applications for free copies will be considered upon receipt of a completed and signed reader info card or online form. Business Info is available on subscription @ £40 p.a. to UK companies or residents and @ £75 p.a. for non-UK subscribers. The opinions expressed by contributors are not necessarily those of the publishers who cannot accept responsibility for any errors or omissions. No part of Business Info magazine can be reproduced without the prior permission of the publisher. © Copyright 2024 Kingswood Media Ltd. ISSN 1464-8814 Design: Sandtiger Media – www.sandtiger.co.uk FOR THE LATEST INDUSTRY NEWS VISIT: WWW.BUSINESSINFOMAG.UK Kingswood Media Ltd., 7 Amherst House, 22 London Road, Sevenoaks TN13 2BT · Tel: 01732 759725 • Email: [email protected] BUSINESS INFO GET YOUR FREE COPY To make sure you get every issue FREE, as soon as it is published, just visit www.businessinfomag.uk, click the ‘FREE Registration’ button and add your details to our mailing list. @BinfoMag facebook.com/ BinfoMag If you no longer wish to receive Business Info magazine please email your details to [email protected] 03 magazine
businessinfomag.uk magazine 04 Landlords to create more shared workspace Office landlords are planning a big increase in square footage dedicated to flexible workspace, reveals new research by infinitSpace. The owner of the ‘beyond’ flexible workspace brand, which also creates/ manages flexible workspaces on a whitelabel basis, commissioned an independent survey of 250 UK office landlords and found that respondents expect an average of 54% of their office space to be dedicated to flexible or coworking spaces by 2030, a 50% increase on the current level of 36%. One in ten landlords (10%) predicts that their portfolio will consist almost entirely (91-100%) of flexible or coworking space by 2030, up from 3% of landlords now. Nearly two-thirds (59%) said converting office space into flexible workspaces is a key part of their strategy to keep up with market demand for shared space. Wybo Wijnbergen, CEO of infinitSpace, said: “Demand for flexible workspaces is on the rise, and our research shows that landlords are looking to adapt their portfolios and buildings to fit this trend. But there are important lessons as they do so. “While demand is booming, businesses are surrounded by greater choice than ever and are becoming more discerning when hunting for a workspace to call home. Competition is tough in the flex market, and to stand out from the crowd, attract occupants and futureproof their assets, landlords must ensure their new workspaces are perfectly aligned with businesses’ demands. “The next steps for office landlords? Taking stock of their existing assets and devising a strategy to optimise workspaces to address the needs of the modern workforce. And, of course, thirdparty workspace providers are always on hand to provide support, from conception to operation.” www.infinitspace.com ... A day to remember How did you mark the inaugural National Social Engineering Day on August 6? The national day established by KnowBe4, provider of a security training and simulated phishing platform, and officially recognised by the National Day Calendar, will be celebrated on the same day every year to highlight the risks associated with social engineering tactics used in an estimated 98% of cyberattacks. KnowBe4 CEO Stu Sjouwerman said: “The establishment of National Social Engineering Day serves as a crucial NESCAFÉ B2B takes partnership with Deborah Meaden to next level NESCAFÉ B2B by Nestlé Professional has announced the winners of a competition to win bespoke advice from serial entrepreneur and business guru Deborah Meaden (see Business Info Issue 155). The seven winners are: Patrick Ellis from Sawn to be Wild; Katie Harrison from Picture News; Kym Morris from Legionella & Fire Safe Services; Dr Haris Mazhar from Cintillate; Jack Bussey from JJB Construction; Jamie Smith from InScout Network; and Simon Poole from Splash Projects. All won the opportunity to discuss their business challenges with Deborah Meaden and NESCAFÉ B2B business experts in front of a live audience in Soho, London. Advice from the sessions will be aired in three short films on Nestlé Professional’s website and YouTube channel from September, supported by written collateral. www.nestleprofessional.co.uk/ nescafe/discussions-with-deborah B U L L E T I N BULLETIN When too much buzz is bad for biz As employers try to entice workers back into the office with the promise of a vibrant, lively working environment, new research from Jabra highlights the damaging effects of noise on concentration and productivity. Overall, 71% of UK workers say noisy environments make them mentally tired, with 50% complaining that noise makes it difficult to focus: 49% find it difficult to lead or participate in calls when colleagues are conducting their own calls without headphones on; 47% say it is difficult for them to be productive under such circumstances. To avoid noise and limit distractions, over half of UK workers say their employers expect them to take calls and join online meetings in a separate room (53%) and use professional headphones (66%). Almost three-quarters (72%) say clear, high-quality sound enhances their ability to focus on tasks and projects. On the flip side, 58% of UK workers say poor quality audio during conference calls negatively impacts their wellbeing. When it comes to how employers should address audio issues in the workplace, allowing employees to work from home more frequently was cited by 39%, followed by providing noise-cancelling headphones as part of standard office equipment (36%) and creating dedicated, designated areas for specific activities e.g. quiet zones or collaborative zones (34%). Almost two thirds (64%) of UK workers agree that employers should invest more in creating an inclusive, neurodiverse workplace that accommodates employees with diverse reactions to and tolerance of noise and distractions. www.jabra.com
01732 759725 05 magazine BULLETIN reminder that cybersecurity is not just about technology – it’s about people. By founding National Social Engineering Day, we’re creating an annual reminder to stay vigilant and informed about the evolving tactics used by cybercriminals. By educating ourselves and our teams, we can transform the human element from the weakest link to the strongest defence against cyberthreats.” www.nationaldaycalendar.com ... I am Lewis Hamilton Lewis Hamilton has taken the chequered flag in a poll of the UK’s most popular ‘spoof names’ – the false identities British consumers use when they don’t want to give personal information to businesses. Analysis of 140 million customer records by data consultancy Sagacity reveals the UK’s five most used spoof names to be: q Lewis Hamilton w Harry Potter e Gordon Ramsey r Taylor Swift t Indiana Jones Sagacity research shows that when people choose not to divulge their real name, 60% will use a spoof name, 35% will use a profanity and 5% will resort to gibberish. ... Free business advice Small Business Britain is offering 500 free places on its Small and Mighty Enterprise Programme starting in September. The programme run in partnership with small business platform Xero and ARU Peterborough university is designed for the UK’s 5.2 million microbusinesses that have historically been ineligible for Government support aimed at more established start-ups, such as ‘Help to Grow’. Since launching in 2022, the Small and Mighty programme has boosted the skills of nearly 3,000 sole traders and micro-businesses, including Denise de Gromoboy, Founder of Denalis Jewellery. She said: “I’ve worked for SMEs in the past but there were definite gaps in my knowledge as a business owner. The course filled those gaps, gave me so much more help and information as well as increasing my confidence. I’ve also met so many other small business owners and the support of this group has been invaluable.” The six-week online programme combines training in business management and finance with two hours of free mentoring and access to a support network of small businesses. https://smallbusinessbritain.uk/ small-and-mighty ... A pivotal moment for black entrepreneurs The Black Business Network (BBN) and Lloyds Bank have joined forces to launch a free online platform designed to support Black entrepreneurs at every stage of their business journey. The Black Entrepreneurial Ecosystem Network (BEECON) gives members access to grants, loans and investment opportunities; a vibrant peer community; events and networking sessions; a database of over 200 UK-based organisations dedicated to supporting Black entrepreneurs; and targeted resources and programmes for every stage of the business journey. Shari Leigh, Founder of Black Business Network, said: “We are thrilled to launch BEECON, a platform born from BBN’s deep understanding of the systemic barriers that Black entrepreneurs in the UK face. The platform represents a pivotal moment for the Black entrepreneurial ecosystem, providing an ecosystem designed to level the playing field for Black entrepreneurs in the UK.” https://www.blackbusinessnetwork. online/support-hub ... Boosting performance through technology Technology took centre stage at Paris 2024, with solutions based on AI, Internet of Things, 3D Printing and other fields making an impact in multiple areas, from the performance of Top 10 new office buzzwords Rippl, the employee recognition, rewards and benefits app, has scoured Reddit and TikTok to identify this year’s workplace buzzwords. Following the emergence of ‘quiet quitting’ and ‘the Great Resignation’ in 2023, it has identified 10 new expressions widely used on social media. They are: q Acting your wage – Putting in a level of effort appropriate to your wage; w Monk Mode – An intense period of uninterrupted focus with no external distractions; e Performance punishment – Being overloaded with colleagues’ work because you can take on more and operate above expectations; r Loud suffering – Publicly sharing how busy you are and how close you are to ‘burnout’; t Fake happy – Putting on a happy face whilst hiding your exhaustion; y Woliday – Spending your annual leave working; u Interview insanity – A long and strenuous interview process that doesn’t include any updates or feedback; i Office peacocking – Making offices more attractive to entice employees back post-pandemic; o Ghost jobs – jobs that don’t actually exist posted by businesses to give the impression they are thriving; and 1) Quitting guilt – Feeling guilty for quitting an unhealthy work environment and leaving colleagues behind. Any favourites of your own? Please email to [email protected] continued... Shari Leigh Denise de Gromoboy
businessinfomag.uk magazine 06 BULLETIN the athletes themselves to broadcasting and energy management. Technology Foresights, an innovation intelligence platform from data and analytics company GlobalData, says that with nearly $6 billion in venture capital invested in the sports and gaming industry since 2020, and ongoing R&D by technology, sports and healthtech companies, new developments will continue to disrupt the industry (see graphic). Sourabh Nyalkalkar, Practice Head of Innovation Products at GlobalData, said: “Disruptive technologies are transforming every aspect of gameplay, from highly customised 3D-printed footwear to high precision sensors and sophisticated algorithms for gait monitoring. Some of these innovations, such as breathable fabrics, are widely adopted in the industry while others are picking up.” The latter includes wearable athletic monitoring sensors for tracking athletes’ performance, physiology and physical condition during activities, which is attracting leading brands from several different market sectors. Nyalkalkar added: “The involvement of major sports brands like Nike, Lululemon, and Adidas among leading innovators in this innovation highlights the importance of this technology. Competing with tech giants like Apple and Google, as well as specialised fitness companies like Fitbit and Garmin, these brands leverage extensive data on athletic performance to stay ahead.” www.globaldata.com ... Data is key to AI success says Boomi Boomi, the intelligent integration and automation leader, has produced A Playbook for Crafting AI Strategy in collaboration with MIT Technology Review Insights. The playbook combines guidance on AI strategy formulation with insights into enterprise AI adoption based on a survey of C-suite and senior data executives. Key findings include: n Few companies have scaled AI beyond pilots. Fully 95% of companies surveyed are already using AI and 99% expect to in the future, but few have graduated beyond pilot projects. Three quarters (76%) have deployed AI in just one to three use cases. n AI-readiness spending is set to rise significantly. AI spending in 2022 and 2023 was modest for most companies, with only one in four increasing their spending by more than a quarter. This year, four in ten expect to increase spending by 10-24%, and one third expect to increase spending by 25-49%. n Data liquidity is a key attribute for AI deployment. The ability to access, combine and analyse data from various sources enables firms to extract relevant information seamlessly and apply it effectively to specific business scenarios, while eliminating the need to sift through vast data repositories. n Data quality is a major limitation for AI deployment. Half (50%) of respondents cite data quality as the most limiting data More than one in 10 Windows devices need to be replaced More than four out of five enterprise Windows endpoint devices (82%) are not yet running Windows 11, according to Digital Employee Experience (DEX) management specialist ControlUp. Initial findings from the ControlUp Edge DX Windows 11 readiness assessment tool, a one-click widget that instantly identifies devices that are out of compliance with Windows 11 hardware requirements, reveals that 82% of 750,000 enterprise Windows endpoint devices sampled have yet to migrate to Windows 11. Of these, 88% are ready for migration, 1% can be upgraded to meet the requirements prior to migration and 11% need to be fully replaced. Windows 11 has specific security and performance requirements, including a 64-bit CPU, Secure Boot and a TPM 2.0 chip, that older devices often lack. Microsoft ends support for Windows 10 on October 14, 2025. www.controlup.com issue. Enterprises with revenues of over $10 billion are most likely to cite both data quality and data infrastructure as limiters. n Companies are not rushing into AI. Nearly all organisations (98%) are willing to forgo being the first to use AI if that ensures they can deliver it safely and securely. Governance, security and privacy are the biggest brakes on AI deployment, cited by 45% of respondents (65% in the largest companies). https://boomi.com/content/report/ ai-strategy-playbook/ ... Tell us when you use AI Over three-quarters (77%) of consumers feel it’s important for companies to declare when GenAI is used in their communications (77%) and to always provide human oversight to check content created by GenAI (81%). State of Customer Conversations, based on a survey of 2,000 consumers commissioned by customer communications specialist Smart Communications, also highlights the misgivings people have about using AI in customer communications, including ethical (63%) and security concerns (66%). Fewer than half (47%) of consumers believe GenAI has the potential to improve the communications they receive from businesses. www.smartcommunications.com ... Talking point – AI servers needed to prevent AI slump Nessim-Sariel Gaon, co-founder & managing partner of LIAN Group, an investment firm with $500m+ of deployed capital across companies in digital infrastructure, AI, blockchain, healthcare and other sectors, warns that the AI bubble will burst if the number of AI servers in data centres globally doesn’t increase ten-fold by 2026. He said: “Given the amount of data and processing power needed to accommodate AI programs, a lot of servers are just not fit for purpose. This is the real ceiling on the expansion and growth of the AI sector, and it’s a real barrier for innovative AI startups looking to disrupt the market. The number of bespoke AI machines – and by that I mean servers able to accommodate reams of AI data – has to increase if we’re going to avoid a slump. In fact, they’ll have to increase tenfold and certainly by 2026. At the end of the day, it’s a ticking time bomb. Quick action is needed.” ... ...continued
01732 759725 magazine 07 AD FUJI *Source: IDC WW HCP Tracker, 2022 Q4, Share by Company A3 Color Laser Shipping units, Year: CY2022 Say hello to your new office workers. Versatile and ready for tomorrow. The new workplace is digital and highly mobile. Our advanced Apeos multi-function office printers have been designed for this changing landscape. It’s easy to print from your mobile and you can scan from the printer directly to your device. This boost to productivity is supported by robust security through full IT control, data security and audit trails for easy tracking. Print, protect and perform with Asia Pacific’s #1 colour A3 multi-function printer.*
businessinfomag.uk magazine 08 The AOC 16T3EA is a 15.6in monitor that enables pro-consumers, digital nomads and hybrid workers to enhance productivity and adaptability on the go. With thin bezels and a sleek design, the Full HD device is the ultimate portable companion for laptops of a similar size that lets users create a double-monitor setup in seconds, whether working/ presenting in a hotel, library or café, at a client’s office or on an exhibition stand. It also enables two people to use the same laptop simultaneously for two different purposes, with one person watching a movie on the 16T3EA while another uses the laptop screen to view their email, for example. Useful features include USB Type-C connectivity, a built-in Auto-Rotate option lets users switch between landscape and portrait orientations to suit the format of the document being viewed and a foldable stand offering a variety of tilt angles. For portability, the 11.5mm-thick, 1.1kg 16T3EA comes with a padded carrying bag. It can also be used with a monitor arm or in fixed locations thanks to an optional 50x50mm VESA mounting bracket. It has an MSRP of £149.99. https://aoc.com Multi-screen working on the go WHAT’S NEW INNOVATIONS Back seat viewing Instead of looking at the view from their window as they travel around Madrid and other cities, taxi users in Spain will soon be able to watch personalised, geo-located adverts on in-vehicle digital displays. A pilot in Madrid conducted by outdoor advertising specialist Gran Pantalla, AV integrator Screensor Tech and content management company DENEVA has proved so successful that the three parties now plan to extend the DigiTaxi solution to 600 taxis in cities across Spain. The solution uses advanced Artificial Intelligence and Big Data technologies to deliver personalised advertising content to taxi users and collects precise audience measurement data for enhanced ad targeting. ADHD support With ADHD diagnoses in the NHS taking as long as eight years and charity ADHDUK suggesting two million people could be undiagnosed, Cog ADHD has launched a new iOS/Android app to help over 2.5 million Brits struggling to get access to ADHD treatment. As well as providing a framework for managing ADHD, proven to work by Harvard Medical School and Massachusetts General Hospital, supported by extensive educational resources, Cog ADHD gives access to a network of qualified therapists and clinical experts via the integrated Cog Clinic. Founder and CEO Dom Longford said: “Cog is designed to be the one-stop shop for ADHD support at the touch of a button, for the price of two cups of coffee a month.” The app costs £13.99 a month or £99.99 per year. This includes free 20-minute consultations with specialists via the Cog Clinic, with the option to pay for ad-hoc sessions (£50-£190) or subscribe to the Cog Clinic to receive weekly support at a discounted rate. https://www.cogadhd.com Seal of approval LG’s anti-discolouration technology for outdoor digital signage has become the first such solution to receive verification of its effectiveness from standards and testing organisation UL Solutions. LG’s advanced Anti-Discoloration technology, already deployed in some LG highbrightness products, helps extend the lifespan of LG digital signage in outdoor environments by preventing ‘screenyellowing’ caused by prolonged exposure to sunlight. Before LG developed a methodology for testing its claims, used independently by UL Solutions, there was no recognised method for measuring a display’s resistance to screen-yellowing. www.lg-informationdisplay.com/product/ digital-signage/high-brightness. A pot of biochar Aston University researchers have used biochar, a sustainable form of charcoal, to create a collection of durable plant and pen pots for the city centre offices of Birmingham law firm Mills & Reeve. The raw material was produced at Cofton horticultural nursery where a pyrolysis demonstrator run by Aston University’s Energy & Bioproducts Research Institute (EBRI) converts organic waste, including fallen and diseased trees, sawdust and chicken manure, into three commercially valuable products – gas, liquids and biochar, which has uses in carbon sequestration (the process of capturing and storing carbon dioxide). As well as locking carbon in the earth where it works to improve the soil and enhance plant growth, biochar has applications as a composite material, for example to reduce the carbon impact of cement, and in 3D printing. To create the pots, biochar was sifted into a fine powder, mixed with the resin and left to dry in a mould. www. aston. ac.uk
01732 759725 magazine 09 HP invites all to AI party HP Inc. is inviting everyone, from students to corporate knowledge workers, to unlock the power of AI, with the launch of the world’s highest performance AI PC coengineered with AMD to provide 55 TOPS of NPU performance. The HP OmniBook Ultra 14-inch Next Gen AI PC, available in the UK in October with prices starting at £1,649, is designed to enable users to run AI workloads faster, customise models and maintain privacy – all locally on the device. An HP AI Companion optimises the AI PC for greater productivity and brings AI tools and solutions onto the device, while a unique security chip allows the PC’s core to self-heal from AI-assisted cyberattacks while keeping data private and users productive. Other features include 21-hour battery life; an AI-enabled, high-resolution 9 MP camera; and a free update to Copilot+ PC experiences when available from Microsoft. http://www.hp.com INNOVATIONS Filofax enters digital age Filofax personal organisers are entering the digital age with the launch of a new Reminder App that allows users to plan on paper and keep track of commitments on their smartphone. In combination with QR codes printed on each diary page, the app enables users to digitally capture notes and task lists, schedule electronic reminders and send notifications. New QR code diaries and refills will be available in three sizes – Personal (the top seller), A5 and A4 – and in several languages. https://filofax.com/ Forewarned is forearmed KnowBe4, provider of the world’s largest security awareness training and simulated phishing platform, is introducing a free tool to help IT security professionals and network administrators identify network security weaknesses from the perspective of a hacker. BreachSim conducts simulations to uncover network vulnerabilities that bad actors might exploit to exfiltrate data, providing results in minutes. KnowBe4 CEO Stu Sjouwerman said: “With BreachSim, we’re giving organisations the power to see their networks through the eyes of a potential cyberattacker. By offering this at no cost, we’re ensuring that organisations of all sizes can benefit from these proactive security measures. Leveraging BreachSim alongside KnowBe4’s comprehensive security awareness training enables organisations to strengthen their security posture significantly. This combined approach effectively reduces human-related risks and equips organisations to navigate the ever-evolving cybersecurity landscape with confidence.” www.knowbe4.com Sound boom Video conferencing manufacturer Boom Collaboration is offering its high performance HALO videobar in a bundle with an audio expansion kit. The Boom HALO Business Edition includes the videobar and an extra microphone/speaker to increase audio range by an additional three metres. HALO delivers 4K video with enhanced AI facial framing and speaker tracking, a 120° wide angle field of view, 10x zoom, smart mic array, dual 10W speakers, high-fidelity audio with a 48kHz sampling rate and intelligent noise reduction. https://boomcollaboration.com At the sharp end Sharp NEC Display Solutions Europe has introduced its first desktop displays under the Sharp brand. With high pixel density resolutions and support for multi-screen configurations, the Sharp MultiSync EA272Q (QuadHD) and Sharp MultiSync EA272U (UltraUHD) 27in monitors are suitable for use in detail-rich control room applications as well as corporate environments and home offices. Desktop models with 90W USB Type-C connectivity and embedded LAN act as Docking Hubs with a single cable for powering a notebook/PC and connecting it to the display. Alistair Round, Product Manager Commercial Displays at Sharp NEC Display Solutions Europe, said: “Maximum screen estate, minimum cable clutter – that’s the vision we had in mind for the first two Sharp-branded desktop monitors. The new desktop displays improve productivity through frictionless workflows, they support energy-efficient technology usage and offer ergonomic comfort, all while convincing with detail-rich visualisation.” www.sharpnecdisplays.eu Prefab AI data centres With demand for AIready data centre capacity outstripping supply, Vertiv has developed a high density prefabricated modular (PFM) data centre engineered for efficient and reliable AI computing that can reduce the time to deploy AI critical digital infrastructure by up to 50% compared to an onsite build. The scalable Vertiv MegaMod CoolChip prefabricated modular data centre integrates bestin-class technologies, including highdensity direct-to-chip liquid cooling and high-efficiency power protection and distribution. The solution can be used as a modular retrofit of an existing facility or as a new freestanding data centre, supporting up to hundreds of kilowatts per row, up to multiple megawatts with prefabricated units. Vertiv.com
businessinfomag.uk magazine 10 CYBERSECURITY Ransomware-as-a-Service (RaaS) is on the rise, dramatically lowering entry barriers for cyber actors to launch attacks on businesses. With the evolution of generative AI, and fuelled by both organised and state-sponsored criminal groups, the market has grown into a billionpound industry. With a lower barrier of entry, more threats of varying sophistication are popping up. Bigger organisations with larger cybersecurity teams can deal with these new threats, but SMEs are more susceptible to being caught out or targeted by dangerous cyber actors looking for a quick pay-out. More support is needed for those with smaller profiles and limited resources, lest one ransomware assault puts them out of business entirely. Mark Appleton, Chief Customer Officer at ALSO Cloud UK, believes that SMEs are at greater risk from RaaS attacks due to a more limited, exploitable security profile. “Whilst business leaders might think their smaller organisations are safe as they have fewer valuable targets, in reality attackers understand that a smaller business The rise of RaaS – How Copilot can safeguard SMEs from the growing storm of AI-boosted cyberattacks is more likely to pay an attacker to leave them alone and has a weaker security posture to exploit. You can pay in the hope that your attacker quickly moves on, but this just signals that you’re ready to pay over and over for each successful ransomware attempt.” On a more hopeful note, Appleton adds that whilst generative AI may be a security problem, copilot solutions powered by similar technology hold the solution. “With the power that Copilot is giving RaaS, there is an equal if not greater opposing solution to prevent it. Tools are already available in the hands of MSPs and they just require the right expert to integrate them into SME security ecosystems. “Security training does not necessarily require an additional dozen hoops to jump through to coordinate successfully. In entrusting SME security to trusted security partners – always on hand to help and available via partnerships with cloud marketplaces – SMEs can rely on expert help at the click of a button. This helps the SME market self-insure. Rather than investing millions of pounds in software to create their own robust security profile, the software to build a partner ecosystem is there via MSP and vendor partnerships. “Additionally, a unified response to cybersecurity can be achieved by the sum of many partnerships, available once again through tailored vendor support. MSPs can fill the gaps in both knowledge and resources that SMEs don’t have, bringing access to training and lowering the barrier to entry for Generative AI and the rise of Ransomware-as-a-Service pose a growing problem for SMEs. However, AI copilot tools can provide much needed support, says ALSO Cloud UK protecting a smaller business.” Appleton concludes: “Resources are there to combat the rise in ransomware and, with the development and integration of Copilot tools, suddenly SMEs have an additional pair of hands in their security team. Whilst generative AI undoubtedly has launched a new wave of ransomware threats, it holds the answer to defending against those same attacks as well, going one step further in being able to more easily and proactively prevent crippling cyberattacks before they can occur. Finding the right expert that has all the knowledge and tools in one place is the first step for any SME looking to safeguard their operations and survive the current security landscape.” ALSO Cloud UK is part of ALSO, a leading technology provider for the ICT industry. In 2023, net sales of the Swiss-based company, which employs about 4,000 people and is active in 144 countries, amounted to 11.1 billion euros. The ALSO ecosystem offers 135,000 resellers hardware, software and IT services from more than 800 vendors in over 1,540 product categories, from provision to refurbishment. ALSO has three business units: the Supply division provides hardware and software on a transactional basis; the Solutions division supports customers in the development of customised IT solutions and ready-to-use IoT applications; and the Service division focuses on subscription-based cloud offerings for software and hardware, including platforms for cybersecurity, IoT, virtualisation and AI. www.also.com
01732 759725 magazine 11 COLLABORATION summaries into easily editable docs, freeing up time spent on note-taking and manually copying notes into a shared document, with templates for one-on-ones, stand-up meetings, brainstorming, project updates, Q&As, customer success, user feedback and more. n Generate content based on AI Companion meeting transcripts. Use commands or queries with AI Companion to further create and revise content. n Revise and summarise content such as articles, plans and outlines, change tone and style, catch grammatical and spelling errors and translate content into nine languages (with more planned). Maximise meeting effectiveness to drive better outcomes n Start and schedule meetings from a Zoom Doc to connect with colleagues and quickly streamline workflows. n Create, share and co-edit docs during meetings. Meeting attendees can follow along with the presenter, co-edit and comment on the doc in real time without leaving the meeting window. Attendees on mobile devices can view in-meeting doc collaboration without signing in. n Create an editable and shareable doc that includes relevant information from a meeting in a customisable format. n Streamline permissionsharing to reduce time spent granting access to docs with bulk permission settings for meeting attendees. Grant temporary access to meeting attendees to collaborate during the meeting. Users can also share Zoom Docs in Team Chat channels and with individuals in specific chats directly from Zoom Docs. n Share docs across Zoom Workplace via Zoom Team Chat or Zoom Mail or invite colleagues to collaborate live in Zoom Meetings to streamline editing. Get work done in one place – adapt docs to different needs to keep collaboration fluid and information organised. n Customise docs with content blocks for texts, tables, images, charts and more to help increase efficiency and reduce information management across multiple apps. Add data tables for team collaboration and planning to track assignments and projects. Add checklists, images, videos and callouts to make the doc more engaging and utilise the multicolumn layout for greater flexibility in organising content. n Embed content from across Zoom Workplace and third parties like Zoom Whiteboard, Google Drive, Figma, X and YouTube to make information centrally accessible. n Stay organised by starring frequently used docs or quickly filtering docs by author for quick access. Optimise teamwork – reduce silos and keep collaborators informed, connected and aligned. n Keep an eye on progress using tables, checklists and trackers for activities, due dates, status and assigned owners, with various views like Kanban boards, calendars and galleries. n Organise team documents in dedicated wikis to provide central locations for shared information. n Group, filter, sort and search data tables to easily visualise information and quickly locate needed data. n Edit concurrently with up to 100 users in a single Zoom Doc, and tag teammates in edits and comments. n Quickly add, remove and change permissions for internal teammates and external users to confidently share and collaborate on a doc’s contents. zoom.com Zoom has launched a free AI-first document solution to improve collaboration across Zoom Workplace. Powered by the Zoom AI Companion generative AI assistant, Zoom Docs can help solve critical challenges facing modern workforces, including time wasted on repetitive tasks, information overload and crossfunctional alignment. As well as transforming content from Zoom meetings into actionable documents, Zoom Docs helps keep information organised and reduces silos by empowering teams to communicate and share information more fluidly. It makes it easier for global teams to generate, revise, summarise and translate content; plan complex projects with templates for project briefs, consolidation of project-related materials and progress tracking; and build robust wikis for a single source of information to improve knowledge-sharing, team onboarding and goal tracking. “Zoom Docs is our first Zoom Workplace product with generative AI built in from the ground up. It effortlessly transforms information from Zoom Meetings into actionable documents and knowledge bases, so teams can stay focused on meaningful work,” explains Smita Hashim, chief product officer at Zoom. “Zoom Docs is included at no additional cost with Zoom Workplace paid licences, creating even more value for our customers. With AI Companion available every step of the way, Zoom Docs is purpose-built to empower people to ‘work happy’ and give them more time back in their day.” Leverage the power of AI Companion to bring information together for optimal results n Turn AI Companion meeting Zoom enhances collaboration with AI-powered solution for creating, sharing and organising documents Teamwork made easy
businessinfomag.uk magazine 12 PRINTERS HP is alerting organisations to the growing danger of nationstates targeting physical supply chains and tampering with device hardware and firmware integrity before products even reach the customer. Its warning follows a survey of 800 IT and security decisionmakers (ITSDMs) responsible for device security which highlights the scale of the problem and the urgent need for businesses to focus on device hardware and firmware integrity. n 91% of organisations surveyed believe nation-state threat actors will target PC, laptop and printer supply chains to insert malware or malicious components into hardware and/or firmware; n 19% believe they have already been impacted by nation-state threat actors targeting those supply chains. In the US, this figure rises to 29%; n 35% believe that they or organisations known to them have already been impacted by nationstate threat actors targeting supply chains; and n 63% believe the next major nation-state attack will involve poisoning hardware supply chains to sneak in malware. Buyer beware Hard to detect Commenting on these findings, Alex Holland, Principal Threat Researcher in the HP Security Lab, said: “System security relies on strong supply chain security, starting with the assurance that devices are built with the intended components and haven’t been tampered with in the factory or during transit. If an attacker compromises a device at the firmware or hardware layer, they’ll gain unparalleled visibility and control over everything that happens on that machine. Just imagine what that could look like if it happens to the CEO’s laptop.” He added: “Such attacks are incredibly hard to detect as most security tools sit within the operating system. Moreover, attacks that successfully establish a foothold below the OS are very difficult to remove and remediate, adding to the challenge for IT security teams.” Need for verification Organisations surveyed by HP are concerned that they are blind to this risk and ill-equipped to mitigate device supply chain threats like tampering. Over half (51%) of ITSDMs admit they cannot verify if PCs, laptops or printer hardware and firmware have been tampered with while in the factory or in transit. Three quarters (77%) say they need a way to verify hardware integrity to mitigate the risk of device tampering. Considering the scale of the challenge, it’s unsurprising that 78% of ITSDMs say their attention to software and hardware supply chain security will increase as attackers try to infect devices in the factory or transit. Addressing the threat Boris Balacheff, Chief Technologist for Security Research and Innovation at HP Inc. Security Lab, points out that HP already builds in security features that help customers proactively manage device hardware and firmware security, right from the factory. “In today’s threat landscape, managing security across a distributed hybrid workplace environment must start with the assurance that devices haven’t been tampered with at the lower level. This is why HP is focused on delivering PCs and printers with industry-leading hardware and firmware security foundations designed for resilience, to allow organisations to manage, monitor and remediate device hardware and firmware security throughout the lifetime of devices, across the fleet.” He advises customers concerned about the risk to hardware and firmware in vendor supply chains to take the following steps: n Adopt Platform Certificate technology, designed to enable verification of hardware and firmware integrity upon device delivery. n Securely manage firmware configuration of your devices, using technology like HP Sure Admin (for PCs), HP Security Manager (for Printers), or HP Security Manager (Support). These enable administrators to manage firmware remotely using public-key cryptography, eliminating the use of less secure password-based methods. n Take advantage of vendor factory services to enable hardware and firmware security configurations right from the factory, such as HP Tamper Lock, Sure Admin or Sure Recover. n Monitor ongoing compliance of device hardware and firmware configuration across your fleet of devices. https://hp.com/wolf One in five businesses impacted by attacks on hardware supply chains, warns HP Wolf Security HP is warning of the risk of tampering and malware before computers, laptops, printers and other devices even leave the factory
AD SNOM 01732 759725 13 magazine www.spitfire.co.uk Telecoms and IP Engineering Solutions for Business since 1988 Innovative • Flexible • Reliable • Supportive • Cost Effective Sales 020 7501 3333 • Partner Services 020 7501 3150 www.spitfire.co.uk/ onenetwork/ Spitfire Unified Network Rapidly deploy secure private networks using mobile, fixed line and cloud. Security matters, using an appropriate implementation of MPLS, Firewall as a Service and VPN tunnels, Spitfire Unified Network provides a secure private network across mobile, fixed and cloud connections to all your network endpoints. Designed to avoid or greatly limit any endpoint configuration, Spitfire Unified Network delivers maximum benefit to users at minimum cost. Contact us today to see how Spitfire Unified Network can work for you and transform your business or IoT solution. Key Benefits Secure private network without the work! Powered by MPLS Easily add existing devices and sites Award winning connectivity solutions Incorporates
businessinfomag.uk magazine 14 CPC SPREAD Smart Buildings Show is the UK’s leading commercial smart buildings conference and exhibition. ■ Meet the key decision makers in the smart buildings market ■ Market your products to new customers ■ Increase your brand awareness ■ Network with new and existing clients BOOK YOUR STAND AT: WWW.SMARTBUILDINGSSHOW.COM SPONSORS Connect with the key decision makers in the smart buildings industry
01732 759725 15 magazine CYBERSECURITY issue fines or penalties in respect of a breach of data protection rules. Indeed, the ICO recently fined construction company Interserve £4.4 million for failing to keep personal data of its staff secure when it neglected to put in place appropriate security measures to prevent a cyber-attack, enabling hackers to access personal data of up to 113,000 employees via a phishing email. What preventative action can businesses take? Given the importance of protecting data, businesses may consider familiarising themselves with the Data Protection Act 2018; the National Cyber Security Centre’s ‘ransomware portal’; and the ICO’s recently published checklist to help businesses mitigate threats to their data. This includes the following recommendations: n Consider data governance and implement sufficient security principles and communicate these across the business. n Ensure that asset identification is meticulous – i.e. identifying, documenting and classifying all personal data that is processed (including higher classification for special category data). Processed personal data should also be protected by appropriate controls, for example by reference to the NCSC’s Mitigating Malware and Ransomware Guidance. n Protect the entirety of a business’s digital systems with access controls, for instance multi-factor authentication which can prevent the wrong people from accessing these systems. n Ensure high levels of staff education and awareness, as security measures will require human input as well. This can be attained through training so that all staff are aware of the risk of ransomware attacks. n After establishing strong defences, it is important to maintain them. For example, it is beneficial to keep a policy for patching security systems when flaws arise, with reference to the NCSC’s Vulnerability Management Guidance. Alongside this, businesses should consider conducting regular security audits and scan for potential vulnerabilities, whilst measuring the systems in place against, by way of example, the Cyber Essentials standards. n Put in place response plans for when something goes wrong. Using adequate controls to monitor, detect and respond to attacks as they arise will bolster security. Smaller businesses can do this by using the NCSC’s ‘Logging Made Easy’ system. Make sure the incident response plan incorporates thresholds for when the ICO or individuals should be notified of a security incident. n Put in place disaster recovery protocols such as offline backups to ensure personal data can be quickly and safely restored in the event of a breach. Looking ahead Clearly, ransomware attacks are not going to disappear. Indeed, the NCSC recently hosted a security summit bringing together over 2,000 experts from across the world to address the issue of cybersecurity attacks and how to keep future technologies secure. As the country, and world, grapples with these issues, individual businesses should take steps now to educate themselves on the cyber and legal risks, and ensure their systems are as safe as they can be. https://www.stevens-bolton.com Since the Covid-19 pandemic, businesses in all sectors have had to adapt to challenges arising out of the surge in ransomware attacks that exploit weaknesses in infrastructure, systems or people to access and encrypt a company’s data. Attackers demand payment to unlock the victim’s data and threaten to release it online if the ransom is not paid. By revealing highly sensitive employee information or trade secrets, ransomware attacks have the potential to significantly damage a business’s reputation as well as its financial status. Yet, the payment of a ransom can also give rise to legal and reputational risk, and the potential for exploitation. Key legislation to be aware of In the UK, the key risks to making ransom payments arise out of legislation related to sanctions, money laundering and terrorist financing. These include: n Sanctions and cyber sanctions. The UK’s Office of Financial Sanctions Implementation (OFSI) can place individuals on a central sanctions list, thus making ransom payments to such individuals a criminal offence. n The Proceeds of Crime Act 2002 creates further offences, including entering into arrangements which the business knows or suspects facilitates the acquisition of criminal property. n The Terrorism Act 2000 makes it a criminal offence for a person to pay a ransom with knowledge (or reasonable suspicion) that it will finance terrorism. In addition, there are reporting and cybersecurity requirements associated with the Network and Information Systems (NIS) Regulations and the Information Commissioner’s Office (ICO) can Beverley Flynn, Partner and Head of Data Protection and Cybersecurity at Stevens & Bolton, and Paralegal George Harrington outline the legal risks of paying a ransom Beware the hidden risks of ransomware payments Beverley Flynn
businessinfomag.uk magazine 16 PRINTERS The MFP Revolution Jason Cort, Director of Product Planning and Marketing at Sharp Europe, explains why security matters now more than ever not always cover all their bases – an oversight that can make cyberattacks and the subsequent loss of data and reputational damage a real possibility. Take office printers, for example. These trusty office essentials are not traditionally thought of as a hacker’s Trojan horse. But our experience of working with small and mediumsized enterprises across the UK indicates that they are still underestimated as a probable access point for bad actors. This was reflected in our recent Europe-wide research into the attitudes of almost 6,000 IT managers and decision-makers. We wanted to understand the IT investment priorities and security capabilities of SMEs and found that in the UK almost one in five (16%) businesses has been impacted by a printer security breach. Yet just 3% worry about the security risk of printers and a third (33%) have no IT security measures in place that extend to printers. While this may not sound all that surprising, it’s an alarming omission, because printers have evolved just like other workplace tech to meet the needs of a modern office. Today, multi-functional printers (MFPs) are epicentres of connectivity. MFPs are connected to the business network, individual devices and in some cases even to employees who work from home. In short, this means they are a highly vulnerable and largely overlooked gateway. So how can organisations protect themselves against these threats? As with all things security, it boils down to people, processes and technology. First line of defence An organisation’s employees are its first line of defence. It is therefore important to establish protocols for handling sensitive documents With technology advancing at breakneck speed and the sheer volume of connected devices that now have access to a corporate network, it’s unsurprising that cyber threats are infiltrating more organisations. It’s becoming increasingly challenging for businesses to have complete visibility into who is accessing their network. With this in mind, organisations should view every endpoint and device as a possible point of attack. Despite this, organisations do and ensure employees understand them. This can be as simple as securely disposing of printed materials and not leaving them unattended in the tray. Controlling access to MFPs via user authentication through PINs, smart cards or biometric systems can increase visibility of users on your network. The greater the visibility, the more likely that potential threats can be identified and neutralised. Implementing processes for the secure management and disposal of printed documents is important, but in our increasingly digital age, so too is managing the document lifecycle. This includes information capture through scanning hardcopy documents, monitoring email or creating and saving documents from an application; storage and preservation of physical and digital documents; and of course, enabling documents to be securely shared both internally and externally. MFPs today also offer in-built cyber security giving another layer of protection. For example, at Sharp we recently introduced Bitdefender anti-malware technology. As an absolute minimum, MFPs must be factored into an organisation’s overall IT security posture and considered a vulnerable endpoint. The more advanced and integrated MFPs become, the greater the risk to confidential information. All organisations have a responsibility to protect the data they hold about their customers and employees. And with increasingly stringent regulatory and compliance requirements, such as GDPR – and potentially other requirements on the horizon following the recent change in government – print security can no longer be overlooked. www.sharp.co.uk Jason Cort
binfo.co.ukRkJQdWJsaXNoZXIy NDUxNDM=