An employee gets an email that says their invoice is attached. Opening the attachment downloads a computer virus that encrypts the files on their computer in seconds. The virus spreads to other computers in the company and soon the entire network is taken down and a cyber-criminal is demanding a hefty ransom in return for the encryption key that’s required to release the data. This is what cyber experts call – a cold, dark day. It’s the day when you have a cyber-attack. While cyber-attacks like this ransomware scenario can happen quickly, these days it’s more common for the bad […]

With a Zero Trust strategy for cybersecurity, the presence of an intruder is assumed. That means that tactics are needed to limit exposure and the potential damage that the intruder can do. One of those tactics is the Principle of Least Privilege. Least privilege involves matching up permissions to access data with the job or tasks that need to be done. This starts with determining exactly what data is needed to perform specific functions and then establishing limits. Historically, companies have been quite relaxed when it comes to allocating permissions with user and even administrator accounts because opening up access […]

Imagine that you’re in charge of protecting a castle. The castle has a drawbridge and a moat around it. You have guards stationed at the drawbridge who monitor the people coming into the castle. The guards let citizens in and keep known bad guys out. Because the guards prevent the bad guys from coming into the castle, the citizens can safely go about their business. Now imagine that the bad guys have found other ways to get inside the castle besides the drawbridge. They’re scaling the walls unseen at night. They’re getting past the guards by disguising themselves as citizens. […]

It used to be that cybersecurity for businesses meant creating a technical barrier around their network and data and they were good to go. Sadly, that’s not enough anymore. Cybersecurity risks for business have evolved and so has the technology that your employees work with every day. Your organization is probably using more cloud apps and have your people working from more locations than ever before and cybercriminals would love to exploit the vulnerabilities that you don’t know are there. The bottom line is that yesterday’s cybersecurity strategy isn’t going to address today’s challenges with IT security for businesses. The […]

Here are some ways you can decide whether to trust a website link or page in a web browser and tell when things smell phishy. Taking the time to look for signs of a hack attempt in links and websites is like washing your hands; it helps keep you and your co-workers safe, and every adult should know how to do it. We’ll start with the best ways to tell if a link or website is safe or a hack attempt. First, look at the link address you are about to visit. In many cases, you can hover your mouse […]