» 

Blog

Sign Up for the FREE Secure File Transfer Webinar Series

Linoma Software is hosting a FREE October Webinar Series on the advantages of securing your system-to-system and person-to-person file transfer processes.  Please take a moment to register for one, or both, of these informative live presentations.

Webinar: Get Your FTP Server in Compliance

Get Your FTP Server in Compliance

Are you still running an outdated FTP server in your DMZ? Does your FTP server have the security controls and audit reporting needed to meet the latest PCI and HIPAA compliance requirements?

GoAnywhere goes beyond a typical FTP server by providing the enterprise-level features and security you need to get compliant.

FREE WEBINAR: Now Available On-Demand

We demonstrate GoAnywhere and how to:

  • Use SFTP, FTPS and HTTPS for file transfers
  • Protect files at rest and in motion with AES 256 encryption
  • Set triggers to automatically process files
  • Control access to private and shared folders with granular permissions
  • Generate detailed audit logs and reports

Register Now


3 Advantages of an On-premise Solution for File Sharing

Are you looking for a better solution than cloud-based file sharing services like Dropbox to transmit sensitive company data?

Put an end to employees using unsecure cloud-based file sharing services. Improve compliance and cut the risk of sensitive company data falling into the wrong hands.

FREE WEBINAR: Now Available On-Demand

We cover the three advantages of an on-premise product for Enteprise File Sync and Sharing (EFSS):

  • Local management of user accounts and files
  • End-to-end encryption of files at rest and in motion
  • No monthly user subscription fees or storage limits

Register Now


Join us for these complimentary webinars to get a valuable tour of GoAnywhere MFT. Linoma's engineers will be on hand during the webinars to answer your technical questions.


GoAnywhere customers rewarded for sharing

We hear a lot from our customers about how much they love the GoAnywhere suite of managed file transfer products. From how much time and money they save by automating processes to becoming more efficient and able to attend other tasks, customer feedback is what inspires us to continue innovating and making our products even better.

From the GoAnywhere Mailbag:

"If I ever go to work for another company, I'm not going to accept unless they agree to purchase GoAnywhere Director."

"GoAnywhere works. We have had ZERO problems with it, which is not something you can say about very many products.

It's gratifying to know that our customers enjoy GoAnywhere as much as we do. The amount of new customers referred from current GoAnywhere customers is a testament to how much they believe in our managed file transfer software and how it's often a game changer for businesses. As our way of saying Thank You, Linoma Software has created a referral program to reward our great customers for sharing their recommendations and GoAnywhere experience with others.

"How do they [GoAnywhere] make any money with the low cost and incredible support they provide?"

"Definitely buy GoAnywhere. It will be the easiest implementation...the best value of software that you've ever had"

To participate, GoAnywhere customers can simply fill out an easy online form when they refer our products to others. They will be rewarded with $500 if the person or company they referred purchases GoAnywhere! It's that simple and there is no limit to the number of people or companies they can refer.

It's our way of saying Thank You to all the people and companies we love working with. If you are a GoAnywhere customer, be sure to enjoy the rewards of our referral program starting today! For additional information or to fill out our referral form, please visit our GoAnywhere Referral Program page. You can learn more about GoAnywhere and our customer experiences in their own words by visiting our Testimonials page or viewing our Customer Review Videos.


Why Bother Upgrading Beyond Standard FTP?

Right out of the box, most operating systems come with a built-in File Transfer Protocol (FTP) tool that makes it possible to transfer large files between people, computers and servers. It accomplishes the key goal, which is to deliver the file from one place to another. However, too many organizations' philosophy has been that as long as the files were getting where they needed to go, standard FTP was good enough. That was especially true when they were transferring files internally.

The truth is that FTP alone has never been good enough, because too much information (file data, user names, passwords, etc.) is vulnerable to hackers and it only takes fairly rudimentary hacking skills to steal it. Now with increased pressure to protect sensitive data coming from regulators and consumers, it's urgent that companies implement a more secure file transfer method.

Take a look at this short video to hear Bob Luebbe, Linoma Software's Chief Architect, talk about the dangers of standard FTP.

 

 

At the end of this video, Bob mentions the value of clustering and load balancing to promote high active-active availability. Since this video was produced, we've also added these features to both GoAnywhere Services and GoAnywhere Director.


Updates for GoAnywhere Include Clustering, Disk Quotas, and More

In response to customer requests, especially from larger organizations, Linoma Software has released new enhancements such as clustering and disk quotas for GoAnywhere Director and GoAnywhere Services.  These updates to the GoAnywhere Managed File Transfer suite provide even more robust administrative control, and add automatic failover protection in the event of a server failure.

GoAnywhere Director 4.5.0 adds clustering

The new release of GoAnywhere Director 4.5.0 got a big boost when developers added clustering, a feature they added to GoAnywhere Services earlier this year.  Clustering, also know as "active-active" high availability, means that multiple installations of GoAnywhere Director can be in operation simultaneously, communicating with each other at all times.

GoAnywhere Director Clustering for High Availability

There are several advantages to clustering.  It provides assurance for users and trading partners that if something were to go wrong with one of the servers, the additional installations would automatically take over so availability would not be affected.  It also allows for load balancing, which is especially helpful for organizations with high volumes of file transfers.  Finally, it makes it easy for organizations to manage growth because they can easily incorporate additional servers to their managed file transfer environment.

GoAnywhere Services 3.3.0 adds disk quotas, bandwidth throttling

GoAnywhere Services 3.3.0 offers administrators even greater control over how users interact with their secure FTP servers.

One key enhancement is the addition of disk quotas, which allows admins to determine how much storage space to give to each trading partner and user to better manage storage device resources.

Bandwidth throttling, also new to GoAnywhere Services 3.3.0, lets administrators put limits on the amount of network resources a user can consume when transferring files.  With this feature, controls can be enforced on file uploads, downloads and even on which days or times of day are available to specific users.

With more than 50 updates in this round of enhancements, GoAnywhere continues to respond to the needs of its ever-growing consumer base.  GoAnywhere customers will be notified within their product screens that an update is available, and those who are not yet customers can contact us to get a free demo, or can download a fully-functional free trial.

For more information about the features included in the new releases, check out our news page.  


Could your FTP server pass a compliance audit?

data security compliance auditIf an auditor showed up in your office tomorrow and wanted to examine your file transfer security policies and procedures, how confident are you that your organization would earn high marks?

Take this short quiz and find out.

  1. Are you still hosting an outdated SFTP or FTP server in the public area of your network (or DMZ)?
  2. Do trading partners have access to inbound ports within your internal network to drop off or retrieve files?
  3. Are your administrative security controls granular enough to manage user access to specific files, folders and areas of the network?
  4. Can you monitor all file transfer activity and maintain detailed audit logs?
  5. Do employees have easy access to an ad hoc file transfer tool that lets them transfer files of any size, all while generating audit trails?

To find out how auditors expect you answer these questions, don't miss our next webinar:

Get Your FTP Server Into Compliance
Thursday, July 18 at Noon Central

Linoma Software's Chief Architect Bob Luebbe will show you how the GoAnywhere Services secure FTP server can work with GoAnywhere Gateway to keep sensitive data and credentials safely in your internal network and out of the DMZ.  He'll also demonstrate how the two work together to allow you to exchange files with trading partners without opening inbound ports.

Do your homework so you can prepare for a visit from the auditor.  Sign up today!  


GoAnywhere Services Clustering Is Featured in IT Jungle

Linoma Software is getting lots of attention these days thanks to the recent addition of clustering and load balancing to its GoAnywhere Services secure FTP server.   Companies who need maximum up-time can now depend on GoAnywhere as a high availability solution, especially when it comes to overcoming hardware failure. secure ftp server high availability clustering According to a story published in IT Jungle today, "The one-two punch of GoAnywhere Services 3.1 and GoAnywhere Gateway 2.0 will put Linoma in the game when clustering and load balancing are part of the RFP."


Hacking and File Transfers: What You Need to Know

In the battle to secure information, it helps to know a little bit about how it can be compromised. Using FTP is one way to expose critical vulnerabilities that can allow credentials to be hacked.  However, these holes in security can also be easily closed if you know how.

How Hackers Discover Vulnerabilities

Here's how hackers could access sensitive data sent via FTP.  With the use of a "sniffing" tool, an attacker could intercept and log any data traveling across the network. This log can then be analyzed to look at the content that was sent across specific TCP ports like FTP (port 21), as well as the user ID and passwords used to log in to the FTP servers that may have been sent as clear text.

managed file transfer, secure file transferStart with Networks, Routers, and Firewalls

To prevent this kind of hacking, the wired network can be secured by first making sure network ports are not available for public access, and then by separating network segments for sensitive servers and workstations.

However, many companies also have wireless networks where hackers just need reasonable proximity to the Wi-Fi signal, such as in an adjacent office or parking lot. Therefore, it is critical to secure wireless routers with WPA or WPA2 encryption options, rather than WEP encryption, which is no longer considered effective protection against hackers.

Once networks are secured, the next most effective tactic against hackers is to block all FTP traffic at the firewall. Then, for permitted file transfers, allow only secure encryption protocols such as SFTP, FTPS, HTTPS, PGP, or GPG for file exchanges in and out of the network. These security restrictions will deter most hackers.

Security Measures Can Be Challenging

Implementing these security measures is important, but it doesn't come without some challenges.  The IT staff will have to handle more complicated secure file transfer management processes, and users may be inconvenienced as files are transferred to people and organizations that need them.  As a result, users may look for a workaround for sending and receiving files to avoid being slowed down by the IT staff.  Popular alternatives users may try include email attachments or browser-based cloud services such as Dropbox that present a new vector of vulnerability as these options may not meet necessary security standards.

MFT Minimizes Hassle, Solves Security Vulnerabilities

There is a solution, however, that can provide not only the highest security for file transfers, but also create fewer hassles for both the IT department and the general employee.

Managed File Transfer (MFT) solutions increase data file security implementations and simplify the entire file management process by providing the tools for easily creating and managing all of the unique encryption keys for the company's various trading partners.  Access controls can be set up for authorizing each employee's file exchange requirements. MFT also provides a detailed log of all transactions so that any required audits may be easily fulfilled.

Some MFT vendors also provide intuitive and convenient email encryption solutions that can integrate with existing corporate email clients such as Outlook. This reduces the temptation for employees to use workaround tools that may bypass the security restrictions that have been put in place to prevent hacking of sensitive data.

Keeping data secure is an ongoing mandate that will only become more critical as industries move toward paperless environments.  Adopting a managed file transfer solution is one of the best ways to strengthen your file transfer processes and security as the pressure and liability risks continue to grow.

photo credit: kryptyk via photopin cc
 
 


Managed File Transfer Solution Now on Video

We're always looking for new ways to illustrate the power and versatility of our GoAnywhere suite of secure file transfer and encryption solutions.  Very simply, GoAnywhere helps you streamline, encrypt and automate your file transfer processes to save time and money while meeting ever-growing compliance requirements.

Still, we find it's sometimes challenging to quickly explain the power and convenience of our managed file transfer software, so we're excited to introduce some brand new videos to showcase the flexibility and control GoAnywhere clients have.

GoAnywhere secure file transfer software solution

GoAnywhere's suite of secure file transfer solutions helps you manage all of your organization's inbound and outbound file transfers -- both internally as well as with external trading partners.

With support for virtually any platform and protocol, including FTP, FTPS, SFTP, HTTP/S, AS2, SMTP and ZIP, GoAnywhere puts local control of the entire process into one intuitive dashboard.  GoAnywhere eliminates the need for custom scripts, generates detailed audit logs, and provides a rich catalog of features for comprehensive management, all without additional hardware or specialized skills.

If you'd like to test drive a free trial, let us know.  We'd also love to hear what you think of our videos!


Managed File Transfer Streamlines HIPAA/HITECH Complexity

Managed File Transfer (MFT) systems are great for policy enforcement, access authentication, risk reduction, and more. But for HIPAA and HITECH requirements, MFT shines as a work-flow automation tool.

MFT as the B2B Enabler

It shines because Managed File Transfer systems are actually automation platforms that can help companies streamline the secure transfer of data between business partners. How? It removes many of the configuration steps traditionally required for complex Business-to-Business (B2B) processes, keeping it straightforward and manageable.

Transferring patient information is a difficult challenge which many healthcare institutions are facing. Data standards were supposed to simplify this communication between healthcare institutions and their partners. But ask any technical professional about the underlying variability of data formats, and you'll hear a tale of potential confusion and complexity.

Nightmares of Compliance

The HITECH regulations within HIPAA require the security and privacy of healthcare records, strongly suggesting the use of data encryption. These records may travel between various healthcare-related partners including hospitals, clinics, payment processors and insurers. Each partner may require their own unique data format, and each may prefer a different encryption technique or transport protocol.

Considering these differing requirements, adding each new trading partner has traditionally needed the attention of in-house programming or manual processes, which has become hugely inefficient. Furthermore, if the new trading partner is not implemented properly, this can also create the potential for errors that may lead to data exposures. Any exposures could move the healthcare institution out of HIPAA/HITECH compliance and may cost them severely.

Simplifying and Integrating Information Transfer

A Managed File Transfer (MFT) solution can significantly reduce the potential for errors and automate those processes. With a good MFT solution, any authorized personnel should be able to quickly build transfer configurations for each healthcare business partner. This should allow for quick selection of strong encryption methods (e.g. Open PGP, SFTP, FTPS, HTTPS) based on the partner's requirements, so that HITECH requirements are maintained. At the same time, a MFT solution creates a visible audit trail to ensure that compliance is sustained.

But, perhaps just as important, a good Managed File Transfer solution is constructed as a modular tool that can be easily integrated into existing software suites and workflow processes. In fact, a good MFT is like a plug-able transfer platform that brings the variability of all kinds of B2B communications under real management.

Now extend the MFT concept beyond the healthcare business sector, into manufacturing, finance, distribution, etc. Suddenly MFT isn't a niche' utility, but a productivity and automation tool that has myriad uses in multiple B2B environments.

A Day-to-day Technical Solution

Perhaps this is why the Gartner Group has identified Managed File Transfer as one of the key technologies that will propel businesses in the coming years. It's more than just a utility suite: It's a system that can be utilized over and over as an integral part of an organization's solutions to automate and secure B2B relationships. In other words, MFT isn't just for specialized compliance requirements, but a lynch-pin of efficient B2B communications technology that can bring real cost savings to every organization.

Healthcare Case Study Utilizing a MFT Solution: Bristol Hospital Takes No Risks with Sensitive Data


The Culture of Data Security

Data SecurityWe hear a lot of buzz about protecting both customer and company data, but it is alarming how few IT departments and enterprise users are protecting their data correctly. A recent survey conducted for Oracle reveals that fewer than 30 percent of their respondents are encrypting personally identifiable information.

Data and network security should be the basis for every IT decision, but it is typically an afterthought. The Oracle report also concludes that half of companies surveyed profess a strong commitment to data security, but only 17 percent of them have begun to scratch the surface.

Lack of data security is often due to corporate culture and the fear of change. Most companies at the corporate level agree they are committed to data security and protecting customer records. If a company's official stance is to protect their data, where are the security holes?

In my experience, the largest security holes exist in the departments outside the core IT organization. They don't place the same value on the data as the IT Security team. Many companies still allow their employees to perform file transfers directly from their desktops and laptops using FTP or other unsecure tools. Not only are these ad-hoc methods unsecure and capable of exposing passwords or entire databases, they do not all function alike and do not provide centralized logs.

Educating employees about the dangers of unsecured and/or unnecessary data transfer is more business-friendly than preventing it altogether. Part of this process should be moving everyone to a managed file transfer methodology, like Linoma Software's GoAnywhere Director. This not only secures your data transfers, but it creates a digital paper trail showing where assets are going - something which is of particular importance when you consider all the data security compliance regulations in effect today.

Data security for the millions of files sent over the Internet or within "the cloud" is of great importance to all industries, including health care, retail, banking and finance. Internet transfers include the critical data needed to conduct business, such as customer and order information, EDI documents, financial data, payment information, and employee- and health-related information. Many of these information transfers relate to compliance regulations such as PCI, SOX, HIPAA and HITECH, state privacy laws, or other mandates.

We need to grow a data security culture that includes securing file transfers.