Monday, February 5, 2018

Important! Scam of the Week: Wave of Payroll Direct Deposit Phishing Attacks

Scam of the Week: Wave of Payroll Direct Deposit Phishing Attacks
Email not displaying?
View Knowbe4 Blog

CyberheistNews Vol 8 #06   |   Feb. 5th., 2018

Scam of the Week: Wave of Payroll Direct Deposit Phishing Attacks 

Lexology had an excellent post from Ogletree Deakins by Rebecca J. Bennett and Danielle Vanderzanden, related to a crafty new phishing scam they warned about and that you should be aware of, because it has bad guys in real-time behind it, reinforcing the scam with quick answers via email.

These scams are affecting employers nationwide without regard to their payroll portals or payroll service providers:

"Employers beware: Companies are experiencing a wave of phishing scams that target employee paychecks. Here is the scenario:

  • An employee receives from a company email account e-mail that mimics a familiar and trusted company service or resource, such as an e-signature request or a request to complete a survey.
  • The e-mail asks the employee to click a link, access a website, or answer a few questions.
  • Then it directs the employee to “confirm” his or her identity by providing his or her complete log-in credentials. Skeptical employees who question the request via reply e-mail receive a prompt response purporting to verify that the employee should complete the steps contained in the link.
  • The threat actors then use the employee’s log-in credentials to access payroll portals, reroute direct deposits to other accounts, and wreak other havoc upon the employer’s network.
In some versions of the scam, hackers access employee e-mails to request a password change from the employer’s payroll service and then use the new log-in credentials to change direct deposit instructions."

Bennett and Vanderzanden have the following recommendations:

"The threat actors are doing substantial due diligence on the social engineering side of things, and these e-mails look real. In many circumstances, they are effectively spoofing the sender’s account, and employers are learning of the scam when employees begin reporting that they did not receive their direct deposits. By then, the damage has been done.

In addition to diverting funds, the scam creates a data breach for the employer and triggers notification obligations. Failure to take prompt action may result in penalties and liability to unsuspecting employers.

Employers may want to immediately take the following precautions to avoid security breaches as a result of these phishing scams:

  • Alert your workforce to this scam.
  • Direct employees to forward any suspicious requests to the information technology or human resources departments, rather than replying to the e-mail.
  • Instruct employees to refrain from supplying log-in credentials or personally identifying information in response to any e-mail.
  • Ensure that log-in credentials used for payroll purposes differ from those used for other purposes, such as employee surveys.
  • Enforce (or, where necessary, establish) multifactor authentication requirements.
  • Review and update the physical, technical and personnel-related measures taken to protect your sensitive information and data."
This is a link to the original article:

I suggest you send the following to your employees, friends, and family. You're welcome to copy, paste, and/or edit: 

There is a new Direct Deposit phishing attack you need to watch out for. It's a sophisticated scam that starts with an official-looking email that asks you to click a link and access a website. Next, they ask you to confirm the data with your real username and password. Last, they use your info to access payroll portals, and reroute your direct deposit amounts to bank accounts owned by the bad guys. The lesson here is to never give anyone your credentials in response to an email... Think Before You Click!
End of KnowBe4 newsletter clip.

Stay alert!  Stay Vigilant!

Best Regards,

Sunday, December 3, 2017

Cyber Security and the Risks & Challenges in Manufacturing Today!

Learn what you really need to know to keep you, your family, and your companysafe in the Internet connected world today!

Find out what the greatest challenge to cyber security in the manufacturing sector is. You will be surprised to find out it is not the entity you think it is!

Finally, learn how as an effective leader for your company, you can be even more effective and efficient by providing your company the right kind of security strategy both inside and outside (on the Internet) your network.

Listen to our podcast:

Cyber Security and the Risks & Challenges in Manufacturing Today!

We hear about leadership quite often, and even how important leadership is in all facets of our lives.  During this episode of The Ararat Connection, we are joined by our Guest Andrea Olson.  Andrea is the author of “No Disruptions: The New Future for Mid-Market Manufacturing.”

In October, Dane and Andrea explored the definition of real leadership as well as why leaders need to lead by example with Character First to be an effective leader in shaping their personal, family and corporate lives.  Today, we will be taking that a step further and discussing what it takes for leaders to keep themselves, their families, their teams, and company cultures more secure in this totally digitally connected world we live in now.  We will delve into network and internet security best practices as well as things you need to have in place to detect and prevent breaches and security compromises from happening in the first place.

"Hello...and Welcome!  I am Dane DEUTSCH your host....coming to you with another episode of The Ararat Connection.  This is going to be another great show today.  There is nothing more important these days than Character and more specifically Character driven Leadership.  That was the topic of our Radio Show in October of this year.  However, another topic of almost equal relevance and importance is the topic of getting secure and staying secure in this digitally connected world we live in today.

That is the topic of today’s podcast:  
Cyber Security and the Risks & Challenges in Manufacturing Today!

Today we have Andrea Olson as a guest.

Andrea is the author of a book titled, "No Disruptions: The New Future For Mid-Market Manufacturing.”

Andrea Olson is inspiring and educating industrial business leaders on how to transform their outlook and approach to Marketing, Technology and Communications to operate more efficiently and increase profitability.

Andrea's 19-year, field-tested background provides unique, applicable approaches to creating leaner, more effective, technology-driven, customer-facing operations. A 4-time ADDY® award-winner, she began her career at a tech startup, and led the strategic marketing efforts at two global industrial manufacturers.

Andrea is the CEO of Prag'madik, an Operational Strategy Consultancy, and also the Director of the Midwest Manufacturing Business Coalition, a non-profit organization dedicated to the advancement of mid-market manufacturing in the US.

Andrea's most recent book, "No Disruptions", provides manufacturing leaders an easy, educational read on how to increase revenue generation through marketing, branding, and effective technology implementation.

In addition to writing, consulting and coaching, Andrea speaks to leaders and industry organizations around the world on operational strategies to discover new sources of revenues and savings.
Welcome Andrea!

First of all, can you tell us a little more about your book and what you were sharing with your

readers about security, specifically Internet or Cyber Security for the manufacturing sector or

vertical marketplace?

So,during our show today, we are going to do three things:  
1. Define Cyberspace (Network/Internet) and the Human Factor in terms of Cyberspace and Network security,

2.   Let our audience know 3 key takeaways that they can implement immediately after listening to our show today that will help them minimize the Human Factor and Immediately improve their security posture in the cyberspace world which today is called the Internet of Things?

3.  Learn about National Institute of Standards and Technology (NIST) and why NIST Security Framework can help you know what you need to do to get compliant with the government for contracting purposes.  However, even if you are not involved in government contracting, as cyber security becomes more important and proof of “good faith effort” required by every company to prove they have a security program, the NIST framework will assist you.

FIRST:  October was cyber security awareness month.  However, every month, and even more….every day, needs to be dedicated to cyber security awareness.  Vigilance is key nowadays.  Think about this….whenever you are connected to the Internet, everyone on the Internet is potentially connected to you.  That is mind-boggling and Amazing at the same time!

So, let’s start with the the weakest security link….the Human Factor.  What, do you the listener, think is the greatest threat to our security in networks and on the Internet?  

Hint:  It is not the Bad Gu

If you said anything other than the Human Factor you would be wrong.  The Human Factor is the greatest threat!  You and Me...that is correct...we are the weakest link in the security chain!

The Human Factor is what I call the fallibility of being human.  We make mistakes, we are human!  We get jealous, we get emotional, we get forgetful, we get lazy, we are just Human.  These human traits are really the greatest threat because, sometimes unknowingly, we let the bad guys into our lives, our networks, our emails, etc.  

I call this Human Factor...The Houdini Concept….the great magician, Harry Houdini, believed there was no lock made that could not be broken into or out of.  That is the same concept applied to the security realm.  If it was built by mankind ( and the Internet and networks certainly were and are), then it can be broken and/or broken into by mankind (meaning the bad guys)

SECOND:  So, we have defined Cyber and Internet Security, and we have a solid understanding of the Human Factor, being the greatest threat to our security...let’s dive in and help our audience learn 3 Keys to staying safe and secure in cyberspace today.

1. First….make sure you have a policy that everyone in your company should have security awareness training ( then test each person with random “harmless, but life-like” phishing campaigns (i.e.- companies like PhishingBox, PhishMe, KnowBe4, etc.) against your users in your company’s network.  This should include a daily service which provides real-time “Dark Web” scans and alerting.

So, have you heard of the Dark Web, Andrea?  Did you know that you can get a Dark Web scan done on you personally?  Right now on television, Experian is offering a FREE Dark Web Scan for people personally.  

Companies can have Dark Web Scans done for them as well.
We provide Dark Web Scans for companies like Manufacturers.  Guess what we find more times than not?  

Emails compromised…
Credit Cards compromised…
Associations that you may not want others to know you were involved in (i.e.-Ashley Madison)
And the list goes on and on!
So, what is so important about getting a Dark Web Scan done for your company’s domain?  Everything!  Think about Dropbox, or Linkedin...both were compromised.  Any of us who had accounts in Dropbox and/or Linkedin, most likely also had our passwords and usernames compromised.  Then the bad guys can try to use those same usernames and password elsewhere..and more often than not, they are successful.

So, by staying vigilant and knowing when someone else has been compromised, we can do a better job of protecting ourselves and our companies.

Let’s take a look Andrea.  Here we are looking at the actual email addresses and passwords that one manufacturer has been exposed underground on the Dark Web.  Scary, huh?

More importantly, the bad guys never you really need to have a service that monitors the Dark let you know when a potential area of risk or vulnerability exists so you can counter that and protect your company before anything happens.

2.  Second….make sure you have a company policy that enforces strong password habits and includeswhat we call 2 Factor Authenticaion of 2 Step Verification for the company email and applications whenever possible.  Minimally each user needs to have text verification for access to email or applications.  Companies can use third party programs that are Secure, FREE and easy to train and implement to make sure users have secure passwords that have 2FA or 2SV.

Due to the Human Factor, company users violate this policy all the time because of convenience, and speed.  But, you can easily enforce secure passwords and 2FA with very minimal cost.  Mostly leaders in our manufacturing plants just simply need to make this a priority.

Andrea, you talk a lot about Cyber Technology in Chapter 4 in your book...and how that relates to the Fear of Change….can you help our listeners understand what that means to them personally and for their companies?
Andrea Speaks....

3.  Third….get an automated monthly service that updates and patches all computers, browsers, mobile devices, and can monitor them for health, breaches, etc.  This is what we call our Managed Services, but we also have Managed Security Services as well.

Part of our Managed Information Security Services entails actually helping companies have a place to store their logs and evaluate them for breaches, etc.  I train companies throughout the United States on Firewall to setup, operate and maintain firewalls...WatchGuard to be specific.  

Guess what?  9 out of 10 companies that come to train with me have no logs turned on and therefore, they could not actually know who was in their network or if they had any breach.  The average amount of time it takes a company to learn they have had someone in their network is 240 days….that is a LONNNNNNNGGGG Time!  Much like the Target breach.

Later in Chapter 7 you talk about Cyber Attacks…
Andrea speaks....

THIRD: You the listener might ask, "Cyber and Security are such huge topics….where do I start, what do I do next?"  That is where NIST can help!

The National Institute of Standards and Technology (NIST) and their Security Framework can help you know what you need to do to get secure and stay secure as well as how to be compliant with the government’s security requirements for contracting purposes.  However, even if you are not involved in government contracting, as cyber security becomes more important and proof of “good faith effort” required by every company to prove they have a security program, the NIST framework will assist you too.

So, we are coming to a close on this episode of The Ararat Connection where we focused on Cyber/Internet & Network security.  Let me remind you that you don’t want to be the weakest link in the security chain.  Your future, your reputation, and your people depend on you!  Get secure and Stay Secure!

If you would like to learn more, you can contact Andrea to access information on her book, workshops, keynote speeches or consulting.  You can connect with her on the Internet  and find out more information at and

If this podcast has peaked your interest cyber and network security, you can learn more at or you can simply call me at 877-327-6385.  We are your IT & Security partner to help you get secure and stay secure in cyberspace.

And remember, Don’t you be the weakest link!…..This has been Dane Deutsch and Andrea Olson at the Ararat Connection.

Until our next journey on the Ararat Connection, this is Dane Deutsch, your host… and remember... “Keep leading with character first!”  Trike On and Smile On!

Tuesday, August 22, 2017

Adults are just BIG Kids, and as a BIG Kid I love HUGS!

Adults are just BIG Kids, and as a BIG Kid I love HUGS!

We own a professional gymnastics training center (, and our teams practice multiple times per week.  Most of the time, we are always training the Technical Skills.  That is what we do.  We teach and coach the kids to learn "tricks" and perform routines for competitions.s

We also focus on training and coaching the same athletes on their People Skills.  We even go further and focus on helping the athletes develop their Character Skills.  That's right!  You read that right...."develop your Character Skills."

Did you know that you can develop character skills?  We all can benefit by making character building skills a cornerstone of our life goals.

Our primary goal though is to coach our athletes so they can strike the right balance in living life, mirroring what I strive to live by and wrote about in my book The Tricycle Effect.

One of the things I learned over the years is that as adults, we are simply just Big "grown up" Kids.  

We are still the same person, in our character at least, today that we were when we were 3 to 5 years old. 

Yes...we may cover up our inadequacies and weaknesses better than when we were younger, and we may be better at hiding the things we fear too.  However, we generally have the same feelings and emotional needs as an adult that we did when we were younger, though we most likely would not admit that to anyone, including ourselves.

With all that said, I have to admit that I loved riding tricycles when I was young and I should never have quit!  Do you want to know why?

Because the kids in our gym still naturally ride their tricycles in life and I realize now how fun that really was and that I have somehow forgotten how to "Trike" in a kid again.

Most likely I forgot, because through the hard knocks of life somehow, I got rusty and got worried about whether I could or should "Trike" through life anymore or not.  Maybe through the fears and tensions of life, I did not feel I could have fun anymore.

After all, I am an adult now you know!

To illustrate this point, I want to share a quick story with you.  Sound good?

I walked into the gym this week, as I always do and started to get ready for team practice.  I reached over to turn on the music and suddenly realized that one of my athletes (we call them gym daughters), was wrapping her arms around one of my legs and giving me a Big HUG!  

I looked down to see one of our newest and youngest gym daughters hugging me.  She wasn't tall enough to reach around my waist...she is only 7 years old I think and very short.  

But, it wasn't a quick hug and was a "bear" hug with all her heart and she did not let go!  I smiled down at her as she looked up at me.  Then without hesitation, she said, "How are you doing Dane?"  

Oh my gosh!  How did she know I had a tough day...a really rough day of the worst days I have had in a long time.  Her hug was just what I needed.  

Noone told her to come over and give me a hug and find out how I was doing.  Noone told her she could or could not hug me.  As it turns out, she left her class group and came across from the other side of the gym.  She just did what was natural for her.  She just "triked" over to me and gave me a hug and asked how I was doing.  Isn't that so innocent and so genuine and came straight from her little heart.

She had no fears that I might not like the hug or even might reject her.  She just did what came naturally from her heart I think. She simply "Triked" right over to me to give me a hug and let me know she cared about me.  What?  Isn't it supposed to be the other way around?  I am the coach after all!  I am so glad that this little gymnast knows how to ride her trike in life...and I hope she never forgets how to Trike either.  Life is so much more rich and fun when we never stop "Trikin'."

Even though she is fairly new to the gym family, she already knows how to Trike in life. How great is that?!

No matter what else happened earlier in the day to me, all those emotions and feelings melted away, and once again, one of my gym daughters reminded that life can be just that simple and sweet!

The sweetest things in life happen most of the time in an unplanned way.  We just need to Trike naturally like a kid again.

So, I decided a while back to learn how to "Trike" again.  My gym kids and gym daughters need me to learn how to Trike again, and frankly, I want to learn how to "Trike" again, because it is more meaningful in life and it is so much more fun Trikin' in life that just passing through.

How about you?  Do you remember how to Trike?  Why not start Trikin' again even though you are an adult?  Let me encourage you to get Trikin'.

Want to learn more, and find out how you too can Trike in Life?  Visit and search for The Tricycle Effect to find out more and learn about how you too can develop your character skills to Trike again like the kid you once were.  

Trust me, life will become so much richer when we can let that Big Kid in us out again to play and Trike!  Smile On!

Wednesday, February 8, 2017

The Customer is NOT always right - Partnership versus Customer Service!

I recently read a great article by Danny Iny.  In that article, he points out that the customer is not always right.  He also says there is a big difference between customer service and partnership.

Mt. Ararat - 17,000 ft mountain in Turkey
Mt. Ararat (Agridag)- 17,000 ft mountain in Turkey

At Deutsch's Inc., we are in the "people business" and all of our businesses (i.e.- DCS Netlink, Deutsch's Gymnastics, and Leadership Management Development Center) focus on partnerships not pure customer service.  So, I totally agree with Danny Iny.

I am not a professional climber by any stretch of the imagination, but I had the privilege of climbing Mt. Ararat (17,000 ft dangerous climb - which in Turkish, Mt. Ararat is called Agridag, which means "mountain of pain") during the 5 years I lived in Turkey.  Having made that climb, I can tell you that what Danny says about the difference between customer service and partnerships is exactly right!  He says, "Think of it this way: If you were climbing Mt. Everest, customer service is your porter. Partnership is your Sherpa climbing guide."  Perfectly said!

In other words, your porter carries your supplies for a fee...strictly transactional.  However, your Sherpa climbing guide is your key to reaching your goal (i.e.- the mountain Peak) and getting back to base camp successfully and safely.  The relationship with the Sherpa is totally transformational and Trust is two way.  Big Difference!

At Deutsch's Inc. we are all about partnerships, NOT customer service as our primary goal.  Why?  Because as Danny says, "The goal of customer service is to make the customer happy. In contrast, the goal of a partnership is for the customer to achieve their goals. Buyer and seller are both focused on a goal that's bigger than the buyer. The customer's happiness is a by-product of achieving that goal."

Dane's climbing team successfully at the top of Mt Ararat with climbing Guides

I want to encourage you to read Danny's full article here:

I also encourage you to read Danny's book:

And as always, focus on leading with Character First!  To learn more about how to lead with character first, grow relationships, leadership and teamwork, you can pick up a copy of my new book called "The Tricycle Effect" on Amazon:  

or visit my website at:

Thanks for letting me serve as your Sherpa during this short "blog."  Keep leading with Character First!  Trike On and Smile On!

Wednesday, January 25, 2017

Bad Guys are Getting Badder, Faster than the Good Guys are Getting Better!

“Nothing has happened to my network, computer, or email yet, so most likely nothing will happen!”  That phrase is one I hear people make all the time.  Is that something you might say?

If you said “Yes,” then I guess you might also live by “The Odds.”  Are you a gambler?  Would you gamble your business or livelihood away?

At DCS Netlink, we don’t live by “The Odds.”  We don’t gamble when it comes to computer, network or Internet security.  The reason:  the odds are not in any person’s favor when it comes to computer, network or Internet security.  There are lots of explanations on why that is true.  

Think about these it:
  1. You are most likely a smartphone or computer user.  You are not an IT expert or even less likely to know about IT security.  Do you agree?
  2. Like most people, we are HUMAN and we don’t like change.  So, you might ask, “Why do I need to add extra security when I haven’t needed it so far?  Fair question.  Do you agree?
  3. There are lots of explanations, but there is one more…...that is security stuff is TOO expensive!  So, what most people think is that adding security also adds costs, and you want to be responsible with your money, right?  WRONG!  Your reputation in business has more value than a dollar amount.  Once you become a victim, your reputation will suffer and most likely your business will suffer, and that may translate to dollars in the end.

So, what should you do about your computer, network and Internet Security?
  1. Change your  beliefs about the BAD guys!  You need to believe that they are working hard to take you down and many of those users around you.  If you don’t believe that, then you have already most likely lost the battle.  In this day and age of the Internet of Things, the risks, vulnerabilities, and threats are increasing at an ever alarming rate and with greater consequences!  Do you agree?
  2. Find a company that will look out for your best interests, and not give you answer or propose a solution with the least cost.  Getting the right solution is more important!
  3. Partner with a computer, network and Internet Security company that has done background investigations on each and all of their employees.  After all, these engineers and technicians will most likely see some of your most confidential information in the scope of carrying out their duties.
  4. Hire a company that has gone through at least some semblance of security training on firewalls, and Internet Security.  Most IT companies do not have any formal training and/or certifications as a testimonial to their legitimacy in carrying out their duties.

So, that is the nitty gritty of IT!  If you want to know more and would like a network assessment and/or a security assessment, give us a call.  We would be happy to help coach you to a stronger and more secure future….after all, your business and reputation depend on IT!  Visit us at or call 877-327-6385.

Sunday, November 20, 2016

"The Tricycle Effect" book is here & FREE for a limited time!

"The Tricycle Effect" is making a difference for people!

Some teachers have told me they are
planning on having their students do
book reports in class.

I am very honored and humbled.

That is amazing!

We have 34 reviews so far, and we are averaging a
score of "5" out of "5" on the reviews.

You can read all the reviews at Amazon:

That is so awesome!

We are trying to reach as many people as possible with this
very refreshing and heart-felt "character education" message.

We also set 100 total reviews as our goal.  So, I need your help
to reach that goal.

Here is an example of one teacher's review:

ByAmazon Customeron November 14, 2016

"This book was outstanding! As a teacher and coach, it really
helped put things in perspective and gave me many "a-ha!"
moments. The experiences and insights that Dane shares
throughout the Tricycle Effect really make sense and should
be the foundation that we focus on in our classrooms, athletic
teams and life. I highly recommend this book and am also excited
to incorporate it into my High School classes as well."

The Tricycle Effect will be FREE for a very limited time, so
get your FREE copy on Amazon now and please leave a review.

Effective leadershiip, efficient management, character education
Here is the link to Amazon:

Please feel free to share this link with your friends, family
and network of teachers/educators so they can get their
own FREE personal copy for a limited time.

Please encourage them to write a review as well.

Teamwork makes the dream work!

Thanks for being on our team.  Trike On!

Thursday, October 20, 2016

Look Ma No Hardware! - Discussion about moving IT to the Cloud & protection from Ransomware

Look Ma No Hardware!
Discussion about moving IT to the Cloud & protection from Ransomware

This interview was done on October 19, 2016 between WWIB (103.7FM) Radio Host Pat Wahl and DCS Netlink CEO Dane Deutsch.

This discussion covered 3 main topics: 

1.  How to protect yourself in the Cloud from Ransomware & eliminate hardware costs!
2.  Moving to G Suite (previously Google Apps) for the right security.
3.  Business Continuity with Image Backups of virtual servers and G Suite Backups.

Great discussion on struggles all companies are having with Internet threats, risks, and liabilities.

Click on the link below to listen.....Enjoy!

Ransomware and Business Continuity