How are employees connecting? In times where everyone who does their job from a computer is working from home, companies are being creative about making the environment available to the workers. Is the risk of a work at home environment being completely considered? We will examine the different scenarios: Read more…
What is “DLP” or “Data Loss Prevention” One of the most important and valuable assets a company possesses is the information. This has become clear over the years based on the attacks by malicious parties and actors to steal that information, render it unusable, and make it unavailable. Client/patient information, Read more…
Were you aware that October was Cybersecurity Awareness Month, or previously known as National Cybersecurity Awareness Month? Did you also know that in 2021, Cybersecurity Awareness Month celebrated its 18th anniversary? In 2004, the National Cybersecurity Alliance and the Department of Homeland Security CISA (Cybersecurity and Infrastructure Security Agency) Read more…
When you have discovered a vulnerability, have you ever been confused about how to determine the risk level of that vulnerability or the time-frame in which that vulnerability should be addressed? Among the many publications in the NIST (National Institute of Standards and Technology) library, there are tools to Read more…
Have you noticed recently that many of the web sites you visit now have a link or banner that displays additional information for “California Residents”? When clicking on the link, you learn about all the additional protections around the privacy and security of your personal information. For example, a few Read more…
When considering security, most of the attention is placed on the confidentially of sensitive information. Controls are put in place to ensure that the appropriate individuals have the right access to information. Security, however, address three areas protecting the sensitive information: Confidentiality Integrity Availability The availability of information is as Read more…
As we look at the history of ransomware attacks, the primary attack vector has been through the reliance on end user activity and error. Most of these attacks are carried out by the end user clicking on a malicious link in an email or on a web site and the Read more…
The news has been dominated recently by reports of ransomware attacks. Specifically, we’ve heard about the attacks in the gas pipeline and meat processing industries. Though the news media is treating this as if it were a breaking event, the reality is that these types of attacks have been threatening Read more…
These days, it is more and more common to use cloud, technology, and integration partners in our IT environments. Consider the use of a cloud-software or application provider. You me leverage these services to deliver your respective products and services or as a means of operating business. Take, for Read more…