Remediating Risks

Why Law Firms Need A Managed Security Services Partner

You don’t need to be a cyber security expert to know that there is an increase in cyber attacks against law firms.  Last year’s high profile ransomware attack against  Grubman Shire Meiselas & Sacks showed that law firms are a prime target for attack.  In fact, in a study by Cyber Security firm, Bluevoyant, they …

Why Law Firms Need A Managed Security Services Partner Read More »

Should Water Treatment Facilities Allow Remote Access?

Should water treatment staff be allowed to remote login to monitor systems?  This is becoming a hot button issue with the Oldsmar breach in February and the recent indictment of a man accused of tampering with the Ellsworth County, Kansas treatment plant in 2019.  In both of these cases, the accused was able to tamper …

Should Water Treatment Facilities Allow Remote Access? Read More »

Why Boards Need to Take Cyber Security Seriously

Do executive boards of companies take cyber security seriously enough?  According to the UK’s new CEO of the National Cyber Security Centre (NCSC), Lindy Cameron, the answer is no. In a speech Cameron gave at Queen’s University, Belfast, she said, “The cybersecurity landscape we see now in the UK reflects huge progress and relative strength …

Why Boards Need to Take Cyber Security Seriously Read More »

Is it Time to Stop Relying on SMS for Multifactor Authentication?

Multifactor authentication is a way of authenticating to a device or software with a password plus another factor, usually one-time code or biometrics.  The easy way to think of it is “something you have and something you know.” The most common form of multifactor authentication involves SMS messaging. After entering your password (something you know), …

Is it Time to Stop Relying on SMS for Multifactor Authentication? Read More »

Is DMARC the Answer to the Phishing Problem?

Phishing is a global problem plaguing many businesses.  The statistics on phishing alone are scary. These three in particular should scare you: 65% of U.S. organizations were victims of a successful phishing attack, 1 in 15 U.S. Government employees are exposed to phishing attacks, and 3 billion phishing emails are sent per day. Phishing is …

Is DMARC the Answer to the Phishing Problem? Read More »

How to Keep Data Safe While Working from Home

The COVID-19 pandemic has changed the way we view office work. Roles that we once thought could only be done in the office are now being carried out from home.  COVID-19 has accelerated plans for adopting a work-from-home model out of the necessity of social distancing. One thing to remember about remote workers is that …

How to Keep Data Safe While Working from Home Read More »

Cyber Crime Loses Exceed $4.2 Billion: FBI

The FBI has just released its Internet Crime Complaint Center (IC3) 2020 Internet Crime Report.  Some of the statistics from this report may shock you.  For starters, did you know that the IC3 received 791,790 complaints of suspected internet crime—an increase of more than 300,000 complaints from 2019—and reported losses exceeding $4.2 billion. While these …

Cyber Crime Loses Exceed $4.2 Billion: FBI Read More »

Could The Principle of Least Privilege Have Prevented Surveillance Camera Hack?

The principle of least privilege (POLP) “is the practice of limiting access rights for users to the bare minimum permissions they need to perform their work.” Unfortunately, this wasn’t the case at Verkada where their “super admin” account was shared with more than 100 internal users.  Those super admin credentials were also found on the …

Could The Principle of Least Privilege Have Prevented Surveillance Camera Hack? Read More »

Oh No, Not the Beer! Brewery Breach Stops Beer Production

Molson Coors disclosed on Thursday that it had suffered a breach that disrupted operations and beer production.  In a filing with the U.S. Securities and Exchange Commission Molson Coors chief communications and corporate affairs officer, Adam Collins, said in an emailed statement, “We have engaged a leading forensic IT firm to assist our investigation into …

Oh No, Not the Beer! Brewery Breach Stops Beer Production Read More »

Things you Need to Know About the Microsoft Exchange Attack

By now you may have heard that Microsoft has suffered a major breach to it Exchange Software. According to KrebsOnSecurity, At least 30,000 organizations across the United States have been affected by the breach.  It involves an espionage group exploiting holes in Microsoft’s Exchange to steal email and also be able to have control over …

Things you Need to Know About the Microsoft Exchange Attack Read More »

6 Steps Every SMB Should Follow to Improve Their Cyber Security Posture

If you own a SMB, you may think that a cyber criminal would not be interested in stealing your assets. The reality is, SMBs are being targeted specifically by cyber criminals because they are trying to find the easiest, most vulnerable targets to attack. Maybe your business doesn’t hold the same type of sensitive information …

6 Steps Every SMB Should Follow to Improve Their Cyber Security Posture Read More »

Why Passwords are a big Problem

Passwords are everywhere! We need them to access workstations, mobile devices, social media and ecommerce.  The trouble with passwords is that they are weak when it comes to securing all of those things.  You may have heard of brute force or password spraying as forms of attacks a hacker might use to gain access to …

Why Passwords are a big Problem Read More »