Compliance March 17, 2022 Almost 500,000 Patients Affected by Mon Health Data Breach In December 2021, Monongalia Health System (Mon Health) started notifying almost 400,000 individuals about a business email compromise attack, where threat actors compromised email accounts ... Read more
Tools & Practices March 15, 2022 Why an 8-Character Password is No Longer Long Enough Passwords need to be unique and complex to resist brute force attacks by cybercriminals, but how long does it take a hacker to guess a ... Read more
Security Breaches March 14, 2022 SEC Proposes 4-Day Cybersecurity Incident Reporting Deadline for Publicly Traded Companies New data breach reporting rule amendments have been proposed by the U.S. Securities and Exchange Commission (SEC) that require all publicly traded companies to report ... Read more
Security Breaches March 11, 2022 Alleged REvil Hacker Extradited to U.S. to Face Charges Over Kaseya Ransomware Attack One of the alleged affiliates of the notorious REvil/Sodinokibi ransomware-as-a-service (RaaS) operation has been extradited to the United States to face charges related to the ... Read more
Security Breaches March 10, 2022 Feds Issue Update on Conti Ransomware The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have issued an update on Conti Ransomware ... Read more
Insights March 9, 2022 Free HIPAA Training Healthcare staff need to be kept up-to-date on new developments in HIPAA. Healthcare staff need to be regularly reminded about the importance of HIPAA. Healthcare ... Read more
Tools & Practices March 9, 2022 Microsoft Issues Patches for 71 Vulnerabilities Including 3 Critical Bugs and 3 Zero-days Microsoft has provided patches to fix 71 vulnerabilities on March 2022 Patch Tuesday, including 3 critical bugs, 68 important issues, and three flaws that have ... Read more
Security Breaches March 8, 2022 FBI Issues Security Alert About Ongoing RagnarLocker Ransomware Attacks The Federal Bureau of Investigation (FBI), in conjunction with the Cybersecurity and Infrastructure Security Agency (CISA), has issued a TLP: White flash alert warning organizations ... Read more
Trends & Reports March 7, 2022 Survey Highlights Struggles Companies Have with User-Friendly Access Management The password manager provider LastPass has recently published the findings of an IDC Global Survey on Identity and Access Management that has revealed many businesses ... Read more
Trends & Reports March 6, 2022 Think Password Strength Rather Than Password Length Some people believe that password strength is dependent on password length, and the longer a password is, the harder it is for bad actors to ... Read more
Compliance March 6, 2022 Recommended Password Manager Capabilities for SOC 2 Audits An SOC 2 certification is a valuable attestation for businesses such as cloud service providers, software providers, web marketing companies, and financial services organizations, as ... Read more
Tools & Practices March 5, 2022 A Brief Guide to Two Step Login Two step login is a security process used by many websites and apps to prevent unauthorized access to online accounts containing sensitive data. Also known ... Read more
Compliance March 5, 2022 Poor Cybersecurity Practices Put Organizations’ Security at Risk A recent survey commissioned by Mobile Mentor has revealed poor cybersecurity practices are commonplace working in highly regulated industries and those bad practices are a ... Read more
Security Breaches March 4, 2022 Lapsus Ransomware Gang Continues with High Profile Attacks The Lapsus ransomware gang only is a new threat group that first appeared in December 2021 but has already started building a name for itself ... Read more
Trends & Reports March 4, 2022 HHS’ Office for Civil Rights Director Urges HIPAA-Regulated Entities to Improve Cybersecurity In the United States, healthcare providers, health plans, healthcare clearinghouses, and business associates of those entities are required to comply with the standards of the ... Read more
Tools & Practices March 3, 2022 A Guide to the Bitwarden Client Apps Bitwarden is the highest rated password manager on this website, and one of the reasons for its high rating is the comprehensive range of Bitwarden ... Read more
Tools & Practices March 3, 2022 How to Share Passwords Securely Despite some sources suggesting that password sharing is a bad thing, families, friends, and work colleagues can share passwords securely. How else might your partner ... Read more
Cyber Threats March 3, 2022 Phishing Campaign Capitalizes on Ukrainian Crisis A new phishing campaign has been detected that piggybacks on the current crisis in Ukraine to trick people into divulging their credentials. Emails are being ... Read more
Security Breaches March 2, 2022 Source Code and Internal Conti Ransomware Communications Leaked Online An unknown individual, believed to be a member of the Conti ransomware gang, has leaked sensitive internal Conti ransomware communications and the source code of ... Read more
Cyber Threats March 1, 2022 Warnings Issued About Hermetic Wiper with Worm-like Capabilities A destructive new malware dubbed Hermetic Wiper is being used in cyberattacks in Ukraine and there are fears that there could be spill over into ... Read more
Cyber Threats February 28, 2022 TrickBot Trojan Retired as Developers Switch to Stealthier Malware The TrickBot Trojan has been a major malware threat for the past 6 years but appears to have now been retired. The main developers of ... Read more
Insights February 25, 2022 Email Encryption Software Email is an incredibly convenient way for businesses to communicate, but email was never designed to be secure. Access controls are used to restrict access ... Read more
Compliance February 25, 2022 Association with Crypto Sees Customers Looking For 1Password Alternative The 1Password password manager is one of the most popular password managers; however, a recent update that added new features to the platform has attracted ... Read more
Insights February 24, 2022 Office 365 Email Encryption Email is extensively used by businesses as a convenient way to instantly communicate important information internally and with customers, partners, suppliers, and shareholders, but email ... Read more
Security Breaches February 24, 2022 U.S. Organizations Warned About Elevated Risk of Cyberattacks as New Wiper Malware Used in Attacks in Ukraine Cyberattacks in Ukraine have recommenced following the Russian invasion of Ukrainian territory. Ukrainian government agencies have also been hit with DDoS attacks that took their ... Read more
Security Breaches February 23, 2022 83% of Businesses Experienced a Successful Phishing Attack in 2021 Phishing is the most common method used to attack businesses. Phishing attacks are performed to steal credentials, obtain sensitive data, install malware, or gain a ... Read more
Tools & Practices February 22, 2022 CISA Warns Critical Infrastructure Entities About the Risk of Foreign Influence Operations The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to critical infrastructure organizations about the threat of foreign influence operations. Malicious actors ... Read more
Tools & Practices February 21, 2022 Free Cybersecurity Tools to Adopt to Improve Your Security Capabilities Cybersecurity budgets are usually limited, so it is not possible to purchase multiple best-in-class cybersecurity solutions, but the good news is there are many free ... Read more
Insights February 18, 2022 What is Email Archiving Compliance? Email archiving compliance is the practice of using an email archiving solution for retaining email data to comply with government, state, local, and industry regulations. ... Read more
Tools & Practices February 18, 2022 NSA Issues Best Practices for Choosing Cisco Password Types The U.S. National Security Agency (NSA) has recently issued guidance on the use of passwords to secure Cisco devices. Cisco devices are extensively used to ... Read more