Insights For Success

Strategy, Innovation, Leadership and Security

Canada has 12th fastest wireless networks

GeneralEdward Kiledjian

OpenSignal uses its millions of mobile users to map and test global wireless connectivity and they just released their latest global review summary. The 2 main takeaways are that wireless connectivity speeds are improving globally and users are still leveraging WIFI when available. 

Canada is the only western country to reach 20Mbps wireless speeds, making us the 12th best in the world. Our wireless may be expensive but at least it ranks well for performance. As expected, South Korea has kept its crown as the king of wireless speeds. 

For those wondering, our closest neighbor and friend, the United States of America ranks at the 20th position with a speed of 12.48Mbps. 

Talk to me about WIFI

Canada ranks 4th as it related to time on WIFI. Canadians spend on average ~60% of their time connected to WIFI. Again we rank better than the US at 10% more WIFI time than them. 

Roam Mobility launches USA Monthly Plans

GeneralEdward Kiledjian

I've written about Roam Mobility before:

Today Roam Mobility is launching new monthly plans that include unlimited talk, text and data. It is a middle of the ground offering between their day plans and their 3-month snowbird ones.

Although these plans were originally designed for Canadian travelers heading to the USA, it is really applicable to anyone going to the US (Europe, Asia, Middle East, etc).

At launch, there are 2 monthly plans (30 day) which both include unlimited talk and text but differ in their data offering:

  • 1GB of 4G LTE for $39.95
  • 4GB of 4G LTE for $64.95

Once you consume all of your data, you get unlimited 2G data. In my testing, the TMobile LTE network is excellent but their 2G network is so so.

All you need is a non-expired Roam Mobility SIM card and then you can choose these plans on their website.

Why a Canadian should choose Roam Mobility

Telus, Rogers and Bell have all started to offer special Roaming plans ($5-7 per day) where you consume your home monthly plan when in the US. The attractiveness of this plan is the ease of use. You keep your same SIM and number. 

Most Canadians have limited data plans and the risk you run is the overage charges once you've eaten your monthly allocation. With Roam Mobility, you have to switch SIM cards but you are given ample 4G LTE and even if you do bust your cap, you get unlimited 2G connectivity. At least there won't be any $50-100 surprises at the end of the month.

What is my review of Roam Mobility

I have tested almost every conceivable USA travel solution from Roam Mobility, KnowRoaming all the way to buying local SIM cards upon landing. I have found the Roam Mobility solution to be the most robust one I have used.

KnowRoaming provides "unlimited" data for $US8 a day but it is slower 3G. Additionally during my last trip to San Francisco, I couldn't get inbound calling to work and finally gave up after 45 minutes on the phone with their support person. I didn't have my Roam SIM so I was stuck paying the Telus $7 a day fee.

So for USA only travel, I would buy a couple of Roam Mobility cards and use them.

Link to monthly plans page

5 best Random Password Generators

GeneralEdward Kiledjian

1 - Random.org

Random.org has been one of my favorite sites for a long time. It uses atmospheric noise to generate its randomness which is much better than the logical pseudo-random generators used by many sites and service.

You choose the password parameters you need and it generates wonderfully random passwords to use with your password manager of choice.

Link

2 - Symantec Identity Safe

Symantec has been a mainstay of the security market since the 90s and they bought a company called PCTools (and its Secure Password Generator). As a PC Tool vendor, they will try to make you download their privacy tools but I wouldn't recommend their password vault.

Use the password generator on the right side of their site to generate high quality complicated passwords with the required complications. As an example, the above complications generated this password for me : dr-cr+wreF5p.

Link

3 - Wolfram Alpha

Wolfram Alpha is a powerful knowledge engine created by the brainiacs behind mathematica, It is a superb tool I use regularly for problem solving but it also generate random passwords. Head over to their knowledge engine and enter Generate Strong Password. Then press the equal sign. 

Then choose the complications you want and press the equal sign again to generate you password.

then it generates your wonderful password

you press on Plaintext and copy it into your favorite website or password manager.

Link

4 - Lastpass password generator

My 2 favourite password managers are Lastpass and 1Password. Both have the capbility to generate strong passwords and you should use that functionality if you have those those. Considering most of Lastpass is now free to use, you really have no excuse.

But Lastpass also offers a web based secure password generator which is clean, easy to use and efficient. 

When you scoll up on that page after choosing your complications, you get a wonderfully generated password of your can click the button and have another one created for you.

5 - GRC Ultra High Security Password Generator

GRC is the home of Gibson Research Corporation. It is owned by Steve Gibson the Grand Poobah of internet security. He found the first spyware and wrote the first anti-spyware app. He is considered one of the most prominent security professionals and makes tones of tools available on his site. 

His site generates perfectly random long complex 64/63 character passwords and he then explains why his passwords are high quality. If you are interested in geeking out, its a wonderful read. 

Companies buying bitcoin to prepare for cyber extortion

GeneralEdward Kiledjian

In an uncertain world where kidnapping for ransom is an all too common occurrence, many hostage negotiators use the no-concession policy. They justify this position by explaining that paying a ransom makes it more likely that the perpetrators will try it again and often times the ransom is used to fund illegal or terrorist organizations.

Although I have seen very little empirical evidence to prove that this no-concesion approach is more desirable than paying the ransom, this mentality was brought into the digital age when cyber-ransoms, cyber-extortions and crypto-malware became prevalent. 

More and more companies though have started to take a different approach and are now prepared to pay ransom in exchange for saving their networks, devices and information. To meet these demands quickly, some companies have started to store bitcoin as a risk mitigation strategy.

Why this change of heart? Many of the most popular well written malware was actually designed to ensure victims could recover their data when the ransom was paid. This attention to detail and solid customer service by the bad guys, means victims are now relatively certain that they will be saved if they pay the ransom. 

Sure paying the ransom means funding organized crime and will likely fuel the next wave of crypto-malware but companies have a duty to protect their organization (rather than take the moral high ground).

This change in mindset is so pronounced that traditional physical K&R (kidnap & ransom) negotiation experts have started to test the cyber-extortion and cyber-ransomware negotiation space. 

True verifiable numbers are hard to find but firms like Recorded Future ( a cyber intelligence company) has stated that it believes the cyber-ransom market has now reached the 1B$ mark. Kaspersky says a company is cyber-attacked every 40 seconds.

Obviously crypto-malware can be counter-acted by proper, regular offline backups but many companies don't start a robust recovery program until it's too late. They either pay the ransom or lose their data. Its that plain and simple.

Right now the advantage is with the attacker. Corporate information security groups have to bat 100% to keep the company safe. This is expensive, time consuming and not always achievable. The attacker just need to infect 1 machine on the network and then can propagate and move laterally from there. 

Companies have started to jump on the Ransomware protection bandwagon. An EDR &"next-generation AV" company called Cybereason offers a free product called RansomFree. They claim it protects against 99% of ransomware by monitoring how applications interact with files on your computer. Did I mention RansomFree is free? I haven't used their product and thus can't recommend it but it does seem to be useful and could really help the average consumer ensure they don't end up getting victimized.

It is clear that this malware is written by extremely skilled and determined threat actors. This isn't code written in somebody's basement but rather a professional extortion company with developers, quality assurance and even customer support to ensure a paying customer is taken care of. 

So the question is will your company prepare by buying and storing bitcoin? If you will, how much should you store? that is the new question.

7 airport lounge access secret you need to know

GeneralEdward Kiledjian

1 - Buy day-passes online

Most airlines will allow passengers to buy a lounge access day-pass online.

Toronto Air Canada Airport Lounge

As an example, you can buy a day-pass from Air Canada for access to their own lounge for $25 if you are travelling on a Latitude fare. 

United Airlines offers airport lounge access day-pass for $50 here.

2 - Buy day-passes at the airport

Check directly with your airline. If if your airline doesn't own its own named lounge at the airport, they often have deals with private lounges offering them at competitive prices. As an example, Canadian airline Westjet has partnered with private lounge operators in the various regions it travels (Canada, Europe, Caribbean) to. Westjet offers airport lounge access at very competitive prices.

3 hour access to the Plaza Premium lounge costs $40 - 20% (Westjet discount) = $32. 

Some vacation package wholesalers also offer (add-on) lounge access to their customers. As an example, Signature vacations (in Toronto, Vancouver, Edmonton & Winnipeg) sells lounge access to all vacation pass holders. 

3 - Buy access to an independent airport lounge

Some airlines do not offer any type of (direct or indirect) lounge access. Other times companies buy the cheapest ticket they can find which means you may fly 10 different airlines and therefore not gain priority privilege access on any one particular airline. These are the times you may need to buy access to one of the independent lounges. 

If you travel to different airports, you may want to join one of the independent airport lounge access networks like:

As an example, Priority Pass offers access to 1000 airport lounges worldwide. Priority Pass (sold in Canada) offers 3 levels of membership:

  1. Standard($99 a year). Every access will cost $27 for the member or guests.
  2. Standard Plus ($249 a year). Member receives 10 annual visits. Additional visits or guests cost $27 each.
  3. Prestige ($399 a year). Member receives unlimited lounge access and guests can buy access for $27. 

Some credit cards have standing agreements with these lounge access  wholesalers and allow you to buy access without having to pay an annual membership fee. As an example, Diners Club Canada offers members access to worldwide lounges at affordable prices.

Here is an example of their Canadian airport lounges you can buy access to. Access to a lounge in Toronto is about $US30.

4 - Get a credit card with lounge access

If you travel a lot, it may make sense to use a travel credit card that includes access to airport lounge (either free or a pay per use without requiring an annual membership to a lounge network).

Credit Walk (Canada) has published an interesting article comparing various credit card lounge access programs.

Sleeping in Airports (USA) also has an article about credit cards offering lounge access.

5 - Buy a refundable business class ticket

Some travel forums (e.g. maphappy, boarding area, view from the wing ) recommend that you buy a full price refundable business class ticket for travel the same day as your regular discounted ticket, use the lounge and then refund the ticket. 

I have never used this technique and you should make sure the ticket is still refundable if you use the lounge. I know airlines like United have started implementing lounge access software that will help curb this type of abuse but I know this still works on some airlines. 

6 - Buy lounge access from other passengers

You can sometimes buy lounge access from other travelers on classified type sites at discounted rates (eBay, Craigslist, etc). Make sure you check any restrictions that may apply.

Someone selling 4 Air Canada Maple Leaf lounge access on eBay.

7 - Use a Smartphone App for lounge access

There are travel smartphone apps like Loungebuddy (IOS & Android) . 

Loungebuddy offers on the spot lounge access purchased on your smartphone without requiring an annual subscription.