The 2020 hack of SolarWinds saw a major disruption of the supply chain for many organizations around the world, including the U.S. government, but a recent survey shows that these organizations have felt varying degrees of effects from the hack itself. Furthermore, many have taken the hack as evidence that further information sharing must occur if we are to ever take the fight to cyberthreats.
Ransomware is a threat that has seen exponential growth in recent years. We have witnessed it grow from a minor annoyance to a considerable global threat. Even the U.S. Justice Department has issued a declaration that they would begin investigating ransomware in much the same way that they would terrorism cases. Let’s take a look at how this policy could change the way your business should respond to these threats.
Any organization that holds medical records or other healthcare-related sensitive data needs to consider legislation and organizations that govern the privacy of those records. In this case, we are referring to HIPAA, the Health Insurance Portability and Accountability Act, and HITRUST, the Health Information Trust Alliance. These two acronyms are incredibly important for healthcare providers in the United States to understand.
The recent hack of Colonial Pipeline has led to no shortage of problems, chief among them gasoline shortages all across the east coast of the United States. The pipeline’s operations may have been restored, but the question still remains: what could have been done to stop it, what can we learn from this incident, and what changes can we expect to see as a result?
Everyday life relies on software to keep going, a phenomenon that is perhaps most visible in the business environment. Unfortunately, it is this software that can prove to be the point of egress that attackers need to your network. Let’s consider a commonly overlooked aspect of IT maintenance—patch management—and why it is so crucial to a business’ operational success.
Data is one of—if not the—most essential resources a business has, which means it is essential that you take the steps to protect it in every way possible from every potential threat. This includes those that could originate from within your own organization. Let’s consider the case of Xiaorong You, who was recently convicted of conspiracy to commit trade secret theft by a federal jury.
One of the most terrifying situations your business can encounter is when it’s clear that you’ve been hacked. It can cause extreme anxiety regardless of what size of a business you run. The most important thing is to know how to react to mitigate the damage to your business’ network and reputation. Let’s go through a few steps you need to take if you’ve been hacked.
Running a business of any size comes with more than its fair share of risks, particularly if that business is on the smaller side. One major risk factor is the prospect of cybercrime and the impact it can have on a business. Let’s look at how this particular risk can influence the challenges that businesses must now contend with.
Ransomware attacks are notorious for their expense to the victim—largely because of the various costs that come along with successful ransomware infections, including many that might not be expected at first. Let’s review some of these costs, if only to reinforce the importance of avoiding ransomware as a rule.
For the small, but growing business, there are a lot of risks that could potentially harm their ability to stay in business. One of those risks comes in the form of cybercrime. Over the past several years, small and medium-sized businesses (SMBs) have improved the ways in which they combat cybercrime. Let’s take a look at some of the problems SMBs have to deal with.
If there is one kind of online scam that people need to be more cognizant about, it would be phishing—where a scammer tries to hack the user instead of the computer, tricking them into sharing sensitive information. Phishing can come in enough forms that it has splintered into a few different varieties to watch out for. Let’s go over what a basic phishing attack looks like, some of the different types you may encounter, and how to deal with such an attack appropriately.
When most of us think of cybercrime, we’re thinking about a lone hacker in a dimly lit room—or, at most, a few hackers hunched over their computers in a dimly lit room. However, to remain restricted to this impression would be inaccurate—particularly when you consider the very real threat that state-sponsored cyberattacks can just as easily pose.
Most businesses fall under some type of regulation that demands compliance. This will be especially true as data privacy concerns turn into further regulations. Most of today’s compliance standards are centered around data security, so you’d figure that if a company is compliant with the regulations their operations fall under, that would mean their business is secure. Unfortunately, the two terms aren’t always synonymous. Today, we will discuss the difference between security and compliance.
Passwords are a crucial element of your online security in terms of keeping threats from being able to access your accounts and resources. Unfortunately, for fear of accidentally locking themselves out of their accounts, many users have gotten into the unfortunate habit of taking shortcuts when it comes to their use of passwords. Let’s try to fix this by going over a few ways to design a password that is both memorable and sufficiently secure.
Preserving cybersecurity requires the person responsible for doing so to consider every component and connection associated with their technology, down to the smallest minutiae. Let’s consider a sizable example that comes from a narrowly avoided disaster in the Democratic Republic of Congo, that could have potentially left millions of Internet users exposed to serious threats.
While many people seem to have little problem sharing their data with social media platforms, there is definite pushback against sharing the personal data generated by a messaging platform. This can be witnessed in WhatsApp, the cross-platform messaging application whose main selling point has been its end-to-end encryption, and its announcement that its users will soon be forced to share their personal data with Facebook (which acquired WhatsApp in 2014).
There are dozens of Internet browsers on the market. They are typically all free and when they come stock, are pretty much all the same. Most of the most popular ones come with an app store where users can download useful apps to make their experience better. Unfortunately, there are times that malicious code gets in there. Security firm Avast recently found 28 third-party extensions that are extraordinarily popular that had malicious code found in them.
It’s 2021! We made it!
A lot of us look at a new year as an opportunity to greatly improve our lives. Maybe your resolution is to hit the gym regularly or commit to fewer processed foods—regardless, there are endeavours that take serious commitment, and others that take just a few minutes to accomplish. A really simple, really beneficial task you should add to your 2021 to-do list is to lock down some of your most important online accounts—and we’re going to walk you through it.
When was the last time you intentionally and systematically changed your passwords?
It’s a good practice, even though it can be a huge pain. For many of us, Google is a huge central hub that is tied to a lot of our data. With all of the cybersecurity issues and data breaches, it’s just a good idea to keep your Google account in check.
In March, when the stay-at-home orders first came down, and businesses started asking their employees to work from home, it was obvious that many of them were not prepared for this contingency. As the pandemic has gone on, however, businesses have had to adapt. Today, we thought we would look at some of the solutions and strategies that are being used by businesses to secure their endpoints with most of their workforce out of the office.
