Cloud providers moving to ban basic authentication

Basic Authentication

Basic authentication has been the first line of cyber defense for decades. For many individuals and companies, it’s been the only line of defense (probably for too long, honestly). Despite the warnings of countless IT and cybersecurity experts (including us), too many companies still rely exclusively on on basic authentication to protect their IT infrastructure, corporate IP, etc. To that … Read More

Company without cyberinsurance on the hook for $668k scam

Cyberinsurance

Cyberinsurance is one of the most important protections your business can carry, full stop. No business can exist without insurance coverage of some kind, be it worker’s comp, commercial liability, etc. But one of the most important entrants to the insurance market is cyberinsurance. What was effectively nonexistent 15 years ago is now a mission-critical must have for basically every … Read More

The most successful phishing attacks… come from you

phishing

It’s a bit exhausting being an online person in 2022. Hyper-vigilance is the price we all have to pay to exist online or work online, which is a prerequisite for almost any business these days (at least in some form or fashion). But, there’s no end to spam emails, phishing emails, malware, ranomware, you name it. As an individual, some … Read More

Why you absolutely should update your iPhone iOS… now

iPhone iOS

Apple has been making their case to consumers over the last few months and years as the privacy-focused alternative to big-brother-ish Amazon, Facebook and Google (at least, that’s the implication in Apple’s PR positioning, anyway). But no matter how privacy and security focused you may be as a company — especially if you’re a massive, strategically vital company like Apple … Read More

Living off the Land cyber attacks — your newest nightmare

Living Off The Land

We talk a lot about looming cyber threats out there. It’s a huge operational concern for businesses large and small. Insurance, backup, protection, you name it — we’re writing about it and talking about it with our clients and partners. What was a relatively small part of our managed services portfolio not too long ago has become a central tenet … Read More

Safari hack shows browser security key to cyberdefense

Safari

In news you may have missed, Apple awarded a bug bounty for more than $100k back in January. The bug identified was a clever and creative vulnerability in the Safari browser system which could have allowed hackers to exploit target systems, implant malicious files and code on host computers, impersonate users with accurate credentials, commandeer webcams and microphones, etc. This … Read More

Russia increasing cyber attacks globally — how to protect your business

Russia

As Russia’s invasion of Ukraine drags on — and global sanctions against Russia take firmer hold — cyber attacks coming from Russia have started to both increase in frequency as well as severity. For nearly a decade, Russia has perfected state-level cyberwar by practicing on Ukraine. Now, however, Russian-originated cyber attacks are leaking out to government entities and private corporations … Read More

The stages of vulnerability management

Vulnerability management model

Cybersecurity and organizational preparedness have never been more important than they are right now. Both will become more important with every passing week. More advanced, more pervasive and more destructive cyber threats crop up every single day, and your vulnerability management plan has to be up to snuff to keep your company and its clients safe. But where do you … Read More

Cybersecurity tiers: how to move from Tier 1 to Tier 4 of preparedness

Cybersecurity tiers

Back in 2018, the National Institute of Standards and Technology released a report with a pretty bland name: Framework for Improving Critical Infrastructure Cybersecurity. But in that report is one of the most useful guides for how to think about organizational cybersecurity, how to improve your cybersecurity and how to stay secure even in a rapidly evolving threat environment. We … Read More

2022 Cybersecurity Predictions

cybersecurity

Sometimes, I wish I didn’t have to write about cybersecurity quite as much as I do. If it wasn’t such a dangerous and pervasive menace, I wouldn’t have to spend so much time researching it and writing about it. But as you can imagine, cyber threats are only getting more common, more widespread and more destructive. And for business owners … Read More