Practically every day we hear news about some tens or hundreds of millions of personal records stolen from yet another online platform and posted on the Darknet or Internet. All of these instances are preventable by technological means.

The solution floats right on the surface. It’s no rocket science. All of the elements of modern software technologies necessary for the protection of PII already exist, in all languages and frameworks and on all modern data platforms. Nothing needs to be researched or developed from scratch, and only well-known, tried, tested, and proven approaches need to be applied. Why are they not?

Recently, I was asked to look into the hardening of a custom CRM, from the perspective of prevention of possible PII theft. The design was textbook, with all that implies. For a data thief to take advantage of that design, all they had to do was to steal the database backup or file, thus obtaining the shopping list for identity theft, blackmail, or other illegal activities.

Having devised and implemented a plan of turning such a textbook design into arrays of data that cannot be linked back to the same person, without access to the application’s code and some metadata being stored outside of both the database and the web application, I ensured that anyone who steals the database receives meaningless sets of data from which a person’s complete profile cannot be reassembled or deduced.

From the perspective of unauthorized actors, the PII is irreversibly split into its constituent parts. From the data owner’s perspective it remains integral, and its parent-child relationships between a person’s ID and its contact information remains available to search functions. From the user’s perspective, nothing really changes.

Of course, this will not protect the system from being stolen in its entirety: the code, the externally stored metadata, and the database, but that is much more complicated than simply copying a single file, over the Internet or onto a thumb-drive. Doing the former would require access to not one, but at least 3x separate locations, and the perpetrator or perpetrators can be unmasked and identified much easier, if appropriate authorizations are in place.

From the opponents of such an approach, I sometimes hear that it comes with development, performance, and storage cost. Today, in 2025, this consideration is laughable, and here’s why.

Indeed, once the protection measures are in place, developers can no longer use a single SELECT statement to retrieve all personal data at once. Some code is necessary to re-assemble the PII from its constituent parts. Fortunately, this code only needs to be put in place once, and going forward, the developers will leverage a small set of functions or procedures.

Cryptographic functions and database access have become computationally cheap. Compared with the cloud and network latency, the computation of markers that link elements of personal information back to the person’s ID takes a tiny fraction of the time that users wait for the routing and packet transfer to occur. Also, the changes to personal information constitute only a fraction of many online systems’ business payload. And finally, storage has become and is still becoming cheaper, by the day.

Today, there is really no excuse for allowing data thieves to steal PII. Any entity that allows it to happen is simply lazy, and there is no other way to put it. Reach out for assistance in securing your data, and together we will make it prohibitively hard for hackers to damage your business or reputation.

Today, Zenith Elevate releases a feature that makes MAGNAPing even more flexible and powerful. Now, the URLs being monitored can send notifications to their own lists of one or many addresses. This will allow MAGNAPing users to alert different teams or to create incident tickets of varying severity/urgency, depending on the URL.

This application’s appearance is modest, but it can boast of unparalleled power in SQL query data analysis and more. This is the only application currently on the market that allows business analysts, data analysts, software developers, and everyone who works with data to quickly perform analysis that otherwise would have required them to write much more complex queries. In a few keystrokes, clicks, or taps, they can:

• Register connections with any number of databases that run on a broad range of server engines.
• Simultaneously execute any number of SQL queries and view their results in tabs, in grid or plain text format, on screen or in files.
• Compare result grids between tabs and connection windows.
• See the number and data types of columns, navigate to them, or select them.
• Navigate to specific rows.
• Search result grids for values of many data types that include text, numbers, dates and their parts, or binary values^*.
• Generate a broad range of scripts and formats, from rows, columns, or disparate cells of the result grids.
• Search connected database metadata or data.
• Compare connected database schemas.

The following database engines are supported in the initial release, making MAGNAQuery an ideal tool for heterogeneous environments and data migration projects:

• Microsoft SQL Server
• Oracle
• MySQL
• PostgreSQL
• IBM DB2
• SAP/Sybase Adaptive Server Enterprise
• SAP/Sybase Adaptive Server Anywhere

The following engine support is currently in beta stage and available by special request:

• Interbase/Firebird
• Informix

Formats currently supported for the scripting of the results:

• SQL tables/variables/views, etc.
• XML
• HTML tables/selects
• JSON

It is worth re-iterating that query results and database schemas from any of these engines can be compared, in a couple of clicks or taps.

As is always the case with Zenith Elevate’s products, and unlike with some of its competitors, credentials of registered connections are secured by the strong encryption of Windows data protection API.

Also, MAGNAQuery is fully customizable, and its configuration can be shared with co-workers, by way of taking a backup of its database and restoring it on another device. Users are welcome to tailor metadata search queries to their specific requirements. Its default database back-end is MS SQL Express, but it can optionally run on a full MS SQL Server. It is quick to load and perform its functions, even on older systems^**.

* Support varies from engine to engine.

** Performance of queries and searches depends on the target database server instance.

Having been originally conceived as “DBA-in-a-can” tool, this product quickly grew into an “IT-consulting-team-in-a-can” system. In a matter of seconds, it performs a wide array of functions that are time-consuming and are normally handled by expert DBAs, operations, and software developers. It can potentially save between hours and months of work, for small to medium IT teams that cannot afford full-time database experts on payroll. Here’s how it works.

Through its plugins, MAGNABase supports a growing number of database back-ends. Currently they are:

• MS SQL Server
• MySQL
• Oracle
• PostgreSQL

On each, it can perform a set of analytical operations. Support varies from engine to engine. Almost all of the analyses produce a script that can then be reviewed, adjusted, and applied in a controlled manner. No direct changes are immediately made to the database, and superuser access is not required by MAGNABase. Refer to the plugin feature matrix for the features supported by DB back-end plugins.

	MS SQL	MySQL	Oracle	PostgreSQL
Slow-running queries	Yes
Storage overstatement	Yes		Yes	Yes
Compression	Yes
Insecure table access	Yes	Yes	Yes	Yes
Table audit	Yes
Missing indices	Yes
Unused indices	Yes		Yes
Models	Yes	Yes	Yes	Yes

Slow-running queries

This analysis uses several objects that MAGNABase creates in its own database on your server. At the center of it lies a variation of the famous Who Is Active stored procedure that runs on a specified schedule, in SQL Agent. The schedule interval alone defines how long is considered ‘long’. During its every iteration, the job collects information about the queries that are still running since the previous one. This information can then be visualized by MAGNABase in a user-friendly format. It is retained for a user-configurable number of days.

Compression

This analysis calculates statistics on the data in table columns and determines whether they can benefit from compression. It then generates a script that compresses columns that would compress considerably.

Storage overstatement

This analysis looks at column data types across your database and analyzes data stored in them. By comparing these two values, it determines by how much column data width or data type can be adjusted, in order to reduce table and index storage requirements while still preserving the integrity of the data. This analysis can be configured to pad character data by a desired value.

Insecure table access

This analysis uses the pattern of access to tables via stored procedures. It generates a script that creates CRUD stored procedures and revokes select/insert/update/delete permissions from users. By applying this script, the DBA can then expose the database to the outside world only through the stored-procedure-based API, preventing any user from directly accessing the data.

Table audit

This analysis creates audits for the tables in your database.

Missing indices

MAGNABase reviews history of query plans and determines which tables and columns can benefit from the creation of indices, then generates a script that creates them. This can dramatically improve performance of some of slower queries.

Unused indices

Opposite the Missing Indices analysis, MAGNABase determines which indices are not used by any queries and generates a script that drops them. This is beneficial to the reduction of extra storage space and improves performance.

Models

Common among all of the supported storage engines is the generation of high-level programming language models from tables. Currently, the following languages are supported:

• C#
• Java
• PHP

For each language, MAGNABase can be configured to expose columns as public fields, getters, getters and setters, or getters and setters with property change notification. Minimal manual editing may be required, and it normally does not go beyond global search and replace.

MAGNAWall Now Supports ipinfo.io API Access.

Zenith Elevate is pleased to announce a new feature of MAGNAWall Windows Filtering Platform audit manager: ipinfo.io API look-ups.

With a couple clicks or taps, users can now find basic information about an IP address that appears in their firewall logs, such as company name, geographic location, and other data.

This feature works with or without a subscription to ipinfo.io API access. Without subscription, the results are limited. With subscription, the full set of results becomes available, including Privacy API.

In the future, the array of supported features may be expanded further.

MAGNAWall is a powerful tool by Zenith Elevate, for system administrators, operators, and software developers. It brings Windows Filtering Platforms audit log management under their fingertips and allows log entries to be examined from different angles and new rules to be created/modified. The investigation into blocked or allowed applications and their network access has never been easier than with MAGNAWall: it takes guesswork about which application can or cannot access the network out of the equation.

MAGNAWall is a Windows Filtering Platform Audit Manager.

Zenith Elevate is pleased to announce the preview availability of its new product: MAGNAWall, a viewer/manager for the audit event logs of the Windows Filtering Platform. It continues and expands on Zenith Elevate’s motto of IMME:

Infrastructure Monitoring/Management Made Easy.

MAGNAWall is the world’s most user-friendly tool that provides security professionals, system administrators, and software developers with unique insights into the network activities on their firewalled devices. By visualizing and filtering audit events logged by the Filtering Platform, it helps pinpoint network activities that require attention.

It proved itself very useful, even during its own development, as it helped immediately visualize its own network activity during the debugging of the access to remote event logs. Without MAGNAWall, it takes mere minutes, to find out which applications or services try to pass through the firewall. With MAGNAWall, it takes only a couple of seconds.

Features

• Configures local audit logging, in a single click of a mouse or a touch.
• Visualizes and structures local and remote logged events, with source/destination IP addresses and port numbers, executable names, and other data.
• Filters records by any permutation of the above data points.
• Exports filtered events to Excel, for further analysis.
• Command-line interface, for batch scripting.

System requirements

Windows 7 and up; .NET 4; CPU @ 0.8 GHz and up; 40 MB of free memory. Windows Defender firewall or Group Policy firewall must be enabled, in order for the audit policy to capture connections. Elevated privileges are required to access the Security event log.

How to Buy

Us Contact Us form, to request preview access.

MAGNAText SMS/MMS Text Message Sender for VOIP.MS REST API

Zenith Elevate is pleased to announce the preview availability of its new product: MAGNAText. It is a client for VOIP.MS REST API that allows you to send SMS and MMS messages from Windows desktop.

Features

• Up to 160-character SMS
• Up to 1600-character MMS
• Up to 3 MMS attachments of up to 1.3 MB.
• All attachment formats supported by VOIP.MS are allowed.
• Built-in phone book.
• History of sent messages.
• Add history entries to the phone book.
• Create firewall rule automatically, if necessary.

System requirements

Windows XP and up; .NET 2.0; CPU @ 0.8 GHz and up; 100 MB of free memory. For devices with firewall enabled and outbound connections blocked, a rule will be necessary that allows the application EXE to reach out to VOIP.MS REST API endpoint.

Roadmap

• Support other providers.

How to Buy

Visit MAGNAText product page.

Today, Zenith Elevate is happy to announce the availability of a new feature that makes MAGNAPing even more powerful and flexible.

MAGNAPing now supports checking for the external IP address of a network for being the same as expected.

Today, Zenith Elevate is happy to announce the availability of a new feature that makes MAGNAPing even more powerful and flexible.

MAGNAPing now supports checking for HTTPS certificate expiration through a new custom scheme: HTTPSCert. By using this scheme, one can check certificate expiry on web sites and endpoints of interest. The value to check against is passed as the URL query string parameter. If omitted, it defaults to 30 days in the future or its overriding value from the configuration file. If present, it can take form of days in the future or a specific date.

By using this new scheme, you can stay abreast of HTTPS certificate expiration on your web sites or endpoints and always remain prepared to the pending certificate renewals by way of alerts issued if they near expiry.

Internally, the check is implemented by sending a HEAD request; therefore, it creates minimal load on the target server and transmits minimal network traffic.

MAGNAChat Serverless Audio/Video and Instant Messenger

Zenith Elevate is pleased to announce the preview availability of its new product: MAGNAChat. It is a direct, serverless instant messaging, video, and audio software.

Features

• Audio/video calls (selectively mutable)
• Instant messaging
• File transfers
• AES encryption (optional)

Unlike mainstream client/server solutions, MAGNAChat provides both security and privacy of all media streams: conversations, videos, messages, and file transfers. Being a .NET 4.8 application, it is fully reverse-engineerable and auditable, for your safety (a permission from Zenith Elevate is required and available upon request).

System requirements

Windows 7 and up; .NET 4.8; 2x CPU cores @ 2 GHz and up; 300 MB of free memory; web camera (for video calls), sound interface, microphone, speakers or headphones (for audio calls); network connections at both ends with UDP port 12345 (italk) mapped to the client PCs.

Roadmap

• Rich text messages
• Adaptive video resolution adjustment
• Custom video backgrounds
• STUN protocol support
• Conference calls
• Video and audio recording

How to Try

To participate in the preview, please use Contact Us form, to register for your free trial copy.

Since its introduction, MAGNABoard Beta has been developed rapidly, and several Linux distributions (openSUSE, SLES, Debian) as well as FreeBSD have been added.

New functions have also been added. Now, MAGNABoard can perform full system updates of all supported Linux distributions as well as ports tree updates on FreeBSD. It also generates SSH keys for users and exports them to the client.

The UI has been improved with the addition of comments on the registered hosts, OS information tooltips, icons, search, filtering, and more.

Head over to our Store, to grab your free copy of the Beta version!

If you miss functions that are important for you, please use Forums or Contact Us form, to send your feedback. We value it!

Screenshots

Today, Zenith Elevate is happy to announce the availability of a new feature that makes MAGNAPing even more powerful and flexible.

MAGNAPing now supports checking for CPU load and free memory on Linux hosts. Two new URL schemes have been made available: freepmeml and cpuloadl. Besides Linux, they support any OS that is available via SSH protocol. The only requirement is for the commands top and grep to be available. Both old-style (KiB) and new-style (MiB) output of top is supported.

Among dozens of IT infrastructure monitoring solutions on the market, MAGNAPing is unique because it allows to monitor that which is most important and from where it is most important. Its competitors usually install in a central location; therefore, they provide only a partial view of your infrastructure, by monitoring from a different angle. On the contrary, MAGNAPing’s pricing and licensing model allows it to be right where it is needed: at the point where a possible failure may impact.

IT professionals know that it is critically important to monitor endpoints and connections between them, in the same manner as real-life applications connect. For example, a web application that connects to a database server needs this connection to stay up. It does not help if some other host where a monitoring system is deployed still has a connection to the DB but the web application no longer does, or vice versa. By deploying an instance of MAGNAPing on the same host as the web application you keep an eye on the connection that is important. This also helps to avoid false positives.

With their low cost, flexibility, and low memory and CPU footprint, MAGNAPing instances can be sprinkled over your infrastructure, to keep their watchful eyes on the resources necessary to keep your business going. You only have to seat back and watch your inbox for alerts that will hopefully come seldom if ever.