Inland Productivity Solutions

Inland Productivity Solutions Inland Productivity Solutions is the Inland Empire's premier provider of business network support an

Inland Productivity Solutions is the Inland Empire's premier provider of business network support and design, business phone systems including VoIP, remote data storage, disaster planning and recovery, and IT support and consulting.

There is a lot of discussion about AI malware right now, and much of it can sound exaggerated.The reality is more nuance...
06/04/2026

There is a lot of discussion about AI malware right now, and much of it can sound exaggerated.

The reality is more nuanced, and more relevant to how businesses should think about risk.

Attackers have not suddenly become more sophisticated overnight. What has changed is speed. AI-powered tools are enabling them to build and refine attacks much faster than before.

Tasks that once required time and technical expertise can now be completed quickly, and often by less experienced individuals. This has a direct impact on how attacks are executed.

Phishing emails, for example, no longer need to be perfect. They only need to appear credible and reach a large number of recipients. As messages become more polished and more widely distributed, the likelihood of engagement increases.

The same applies on the technical side. Attack methods can be tested, adjusted, and redeployed in rapid cycles, making them harder to detect and block using traditional approaches.

For businesses, the key impact is timing.

Once an attacker gains access, even in a limited way, the window to detect and respond is often much shorter. What previously unfolded over hours may now happen in a fraction of that time.

However, it is important to recognize that the fundamentals have not changed. Most incidents still begin with compromised credentials. A password is guessed, stolen, or unintentionally shared, and attackers move from there.

This is why controls such as multi-factor authentication remain critical. They significantly reduce the risk associated with a compromised password.

Visibility is equally important. Security tools that can identify unusual behavior across users and devices help organizations respond before a situation escalates.

The key difference today is pace. As attackers become faster, defenses must be equally responsive.

Organizations should assume that threats may appear legitimate on the surface. Emails, logins, and activity may look normal, with only subtle signs of risk.

User awareness and decision-making still play a central role. Many attacks begin with a single moment of action, such as clicking a link or entering credentials.

If an attack could gain momentum quickly, the critical question becomes how rapidly it would be identified and contained within your environment.

When someone leaves your business, their access should leave with them.But often, accounts are missed.An old login here,...
06/02/2026

When someone leaves your business, their access should leave with them.

But often, accounts are missed.

An old login here, a forgotten app there… suddenly someone who no longer works for you could still get into your systems.

If you’re not completely sure that every account has been removed, it’s time to check…

There is a security issue currently receiving attention that is worth understanding, particularly for organizations that...
06/01/2026

There is a security issue currently receiving attention that is worth understanding, particularly for organizations that rely on mobile devices to store or access sensitive information.

Researchers have demonstrated a method that can extract data from certain Android devices in a very short amount of time. While this may sound unlikely, the technique targets devices that use specific chipsets commonly found across a wide range of Android phones.

Unlike many attacks, this method does not depend on phishing, malicious links, or user interaction. Instead, it operates at the hardware level.

In the demonstrated scenario, researchers connected to a powered-down device via USB and accessed a protected area of the system responsible for securing sensitive information. This area, often referred to as a secure environment, manages encryption keys and PIN protections.

By accessing this layer, they were able to extract encryption keys, unlock device storage outside of the Android operating system, and determine the device PIN. With that access, the contents of the device, including messages, files, photos, and other stored data, can potentially be retrieved.

It is important to note that this technique requires physical access to the device and specialized tools. It cannot be executed remotely.

However, this does not make it irrelevant from a business perspective. Devices are regularly lost, stolen, or left unattended, and those situations are where this type of vulnerability becomes more significant.

This case highlights the level of trust placed in mobile devices without always considering the underlying hardware and software layers that enable their security. While protections such as PINs and biometric authentication provide strong safeguards, they are part of a broader system that can be impacted if a lower-level weakness is identified.

The positive aspect is that this vulnerability has been responsibly disclosed, and updates have been released to address it. Maintaining up-to-date devices is therefore a critical part of mitigating this type of risk.

It also serves as a reminder to evaluate what information is stored on mobile devices, particularly where business-critical or sensitive data is involved.

From an operational standpoint, organizations should consider whether mobile devices are being managed with the same level of oversight as other endpoints, including patching, access controls, and data protection measures.

Mobile devices play an increasingly central role in business operations. Ensuring that they are secured, monitored, and properly maintained is essential to reducing risk.

Ultimately, the key consideration is not just whether a device is in your possession, but what level of access it would provide if it temporarily fell into the wrong hands.

If you receive a message stating that a high-value Apple Pay transaction has been blocked and urges you to call a number...
05/29/2026

If you receive a message stating that a high-value Apple Pay transaction has been blocked and urges you to call a number immediately, it is important to pause and verify before taking any action.

A new scam targeting Apple users is currently circulating, and it is designed to appear highly credible.

These messages, whether sent by email or text, typically claim that a significant purchase has been attempted using your Apple Pay account. They may reference suspicious activity, a blocked transaction, or include what appears to be an official case number. The formatting and branding are often well executed, which can make the message appear legitimate.

The key objective is to create urgency and concern about potential financial loss, then present a rapid solution.

In many cases, the message directs recipients to call a phone number. That number connects directly to scammers.

Once contact is established, the attackers attempt to gather sensitive information such as Apple ID credentials, verification codes sent to your device, or payment details. With that information, they may attempt to gain control of your account.

There are several important points to keep in mind:

Apple does not send fraud alerts that instruct users to call a number included in an email or text message
Official communications do not use aggressive or urgent language demanding immediate action
Requests to provide passwords, verification codes, or payment details over the phone should always be treated as suspicious

There are also common warning signs to watch for:

Sender email addresses that appear similar to legitimate domains but contain small variations
Generic greetings instead of your actual name
Messages that create a sense of urgency or pressure to act quickly

If you receive a message of this nature, do not use any contact information provided within it.

Instead, verify the situation through official channels. This may include accessing your account directly through your device settings or navigating to Apple’s official support resources.

You can also review your purchase history on your device to confirm whether any legitimate transactions have occurred.

Scams of this type continue to evolve, with improved design and fewer obvious errors. This makes it increasingly important to slow down, verify information, and avoid reacting immediately to urgent requests.

For organizations, this highlights the importance of user awareness and clear processes for validating suspicious communications.

The key question is whether employees would recognize this type of scam and know how to verify it safely through official channels before taking action.

Some businesses feel like they’re constantly dealing with IT problems.A system slows down or something stops working. Pe...
05/28/2026

Some businesses feel like they’re constantly dealing with IT problems.

A system slows down or something stops working. People report it, wait for it to be fixed, and then carry on until the next issue appears.

But others rarely seem to have those disruptions.

What’s the difference?

It comes down to the way they approach their IT…

If your team uses Android devices for work, this is worth noting.Security researchers have identified a new strain of ma...
05/27/2026

If your team uses Android devices for work, this is worth noting.

Security researchers have identified a new strain of malware, known as TrustBastion, that can capture highly sensitive data, including PINs, login credentials, messages, and even banking activity.

What makes it particularly concerning is how it spreads.

The app presents itself as a security tool, prompting users with warnings that their device is at risk. Once installed, it downloads malicious components, often from trusted platforms, making it harder to detect.

It then requests extensive permissions, including Accessibility access, which allows it to read screen content, capture input, and overlay fake login screens.

The result is the potential for account takeover, financial data theft, and broader business risk, especially for organizations that rely on mobile access to email, cloud systems, or financial platforms.

There are a few simple but critical precautions:

Only install apps from the official Google Play Store.
Be cautious of apps requesting deep system permissions without clear justification.
Limit Accessibility access to trusted and necessary applications.
Do not assume that software hosted on reputable platforms is automatically safe.

Mobile devices are now a critical part of the business environment and should be managed with the same level of security as any other endpoint.

When was the last time your organization reviewed the apps and permissions on company devices?

For organizations that rely heavily on Microsoft Teams, even small improvements can have a meaningful impact on daily pr...
05/25/2026

For organizations that rely heavily on Microsoft Teams, even small improvements can have a meaningful impact on daily productivity.

Several upcoming updates are designed to improve meeting experiences and streamline collaboration.

One of the more notable changes is the ability to hide the meeting control toolbar.

This is the toolbar typically displayed during meetings with options such as mute, camera, screen sharing, and leave. Users will soon be able to hide this interface entirely, providing a cleaner view and more available screen space.

This is particularly useful when presenting detailed content, reviewing spreadsheets, or working through complex information where screen clarity is important.

The setting is not limited to a single session. Once enabled, the preference carries across future meetings.

Users do not lose functionality when the toolbar is hidden. It can be quickly restored by moving the cursor or using the Tab key, and keyboard shortcuts such as mute continue to work as expected.

While simple, this change makes the meeting environment less intrusive and more focused.

Another improvement is being introduced to the image viewing experience within Teams.

When multiple images are shared in a conversation, users will be able to view and scroll through them in a single interface. The viewer will also display the original message header, allowing users to quickly navigate back to the context in which an image was shared.

This reduces time spent searching through conversations to locate specific content.

There are also updates designed to improve consistency across devices.

Recently used emojis will now sync between Windows and mobile devices. Although a minor change, it helps reduce friction for users who rely on consistent communication patterns across platforms.

For more technical collaboration, enhancements are being made to code sharing within Teams.

Updates include improved keyboard navigation, the addition of line numbers, and easier selection of programming languages for syntax formatting. These changes simplify discussions around code and help reduce ambiguity when referencing specific sections.

Individually, these updates may appear incremental. Collectively, they contribute to a more efficient and user-friendly experience.

When collaboration tools become easier to use, productivity tends to improve without requiring significant changes in behavior.

From a practical standpoint, enhancements that reduce friction, improve visibility, and streamline interaction often deliver the greatest long-term value.

The key consideration is which of these improvements will have the most impact within your organization, whether that is cleaner meeting interfaces, faster navigation, or more effective collaboration.

There has been some confusion recently around a new behavior in Windows 11 when accessing storage settings.You may have ...
05/21/2026

There has been some confusion recently around a new behavior in Windows 11 when accessing storage settings.

You may have noticed that when navigating to Settings > System > Storage, a permission prompt now appears asking, “Do you want to allow this?”

This is intentional.

Microsoft has introduced a security change that triggers a User Account Control, or UAC, prompt when accessing the Storage section within Settings.

UAC is designed to prevent unauthorized or potentially harmful changes by requiring explicit permission before making system-level modifications.

If you are using an administrator account, you can approve the prompt and continue as usual.

However, in environments where users operate under standard accounts, which is common in business settings, access to the Storage panel may be restricted unless administrative credentials are provided.

In practical terms, Windows is adding an extra layer of control around storage management.

The Storage section allows users to delete files, manage drives, and remove system data. Without appropriate safeguards, these actions can lead to accidental data loss or system instability if performed incorrectly.

This additional prompt also provides a small but meaningful barrier in scenarios where an unauthorized individual gains local access to a device. While it is not a complete security solution on its own, it contributes to a layered defense strategy by reducing easy pathways for misuse.

From a business perspective, this is a sensible change.

Most organizations do not require general staff to have unrestricted access to system-level storage controls. Limiting this access helps reduce the risk of accidental damage and supports overall system stability.

One challenge is that this change was introduced without significant visibility. For users encountering it for the first time, the prompt can feel unexpected, especially if the process was previously seamless.

It also introduces an additional step in what was once a straightforward task.

There is currently a minor inconsistency as well. Some temporary file cleanup options, particularly those related to older Windows updates and drivers, are no longer visible in the Storage interface. These can still be managed using the traditional Disk Cleanup tool, and it is likely that Microsoft will address this in future updates.

Overall, the shift reflects a broader trend toward prioritizing security over convenience, particularly in areas that can impact system integrity.

For organizations reviewing their internal practices, this also raises an important consideration. Ensuring that users operate with the appropriate level of access remains a foundational element of effective security.

The key question is whether standard user permissions are consistently enforced across your environment, or if administrative access is still being granted more broadly than necessary.

If most business owners were asked where their biggest security risks exist, the answers would typically include email, ...
05/19/2026

If most business owners were asked where their biggest security risks exist, the answers would typically include email, passwords, or remote access.

Very few would point to Excel or PowerPoint.

However, Microsoft Office applications remain one of the most common entry points for attackers.

Microsoft has recently released an updated security baseline for Microsoft 365 Office apps, introducing stronger default protections behind the scenes.

A security baseline is essentially a set of recommended secure configuration settings. When applied by IT administrators, these baselines help harden Word, Excel, PowerPoint, and other Office applications against modern attack methods.

This latest update places a strong emphasis on reducing risks associated with legacy components and external connections.

For example, in Excel, spreadsheets that attempt to refresh data from external sources will now be blocked if those sources do not meet security requirements. Instead of updating automatically, users will receive an error.

Malicious actors often embed harmful external links within spreadsheets. Preventing automatic connections to untrusted sources removes a common attack vector.

In PowerPoint, support for OLE (Object Linking and Embedding) content is being disabled. While OLE has legitimate use cases, it has also been widely exploited. Phasing out this legacy functionality further reduces risk.

Additional updates across Microsoft 365 Office apps include:

* Blocking documents that attempt to use non-HTTPS web connections
* Disabling outdated graphing components that are no longer widely used
* Turning off legacy add-ins such as the classic OrgChart
* Preventing fallback to older, less secure network protocols

These changes reflect an ongoing shift away from legacy technologies that attackers commonly exploit.

One important consideration: these enhanced security settings are not automatically enabled in all environments. They must be deployed by an IT team using Microsoft’s Security Compliance Toolkit.

The key question is not just whether Office applications are up to date, but whether they are configured to meet current security standards.

When was the last time your organization reviewed its Office application security settings?

Address

132 N Euclid Avenue Suite A
Upland, CA
91786

Opening Hours

Monday 7:30am - 5pm
Tuesday 7:30am - 5pm
Wednesday 7:30am - 5pm
Thursday 7:30am - 5pm
Friday 7:30am - 5pm

Telephone

+19099814500

Website

Alerts

Be the first to know and let us send you an email when Inland Productivity Solutions posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to Inland Productivity Solutions:

Shortcuts

Share

Category