News March 27, 2023

More School Closings Coast-to-Coast Due to Ransomware

4 min read - Instead of snow days, students now get cyber days off. Cyberattacks are affecting school districts of all sizes from coast-to-coast. Some schools even completely shut down due to the attacks. The federal government recently warned that K-12 schools face a…

Data Protection March 23, 2023

Six Ways to Secure Your Organization on a Smaller Budget

4 min read - My LinkedIn feed has been filled with connections announcing they have been laid off and are looking for work. While it seems that no industry has been spared from uncertainty, my feed suggests tech has been hit the hardest. Headlines…

News March 20, 2023

LastPass Breaches Cast Doubt on Password Manager Safety

4 min read - In 2022, LastPass suffered a string of security breaches which sparked concern among cyber professionals and those impacted by the intrusions. Some called into question the way LastPass handled and responded to the incident. In addition, the situation ignited a…

Incident Response March 14, 2023

Breaking Down a Cyberattack, One Kill Chain Step at a Time

4 min read - In today’s wildly unpredictable threat landscape, the modern enterprise should be familiar with the cyber kill chain concept. A cyber kill chain describes the various stages of a cyberattack pertaining to network security. Lockheed Martin developed the cyber kill chain…

Incident Response February 27, 2023

How Breached Companies Become the Face of Change

4 min read - I’ve always told my kids that everyone makes mistakes. What really matters is how you handle them and that you learn from what happened. SolarWinds followed the same thinking in how it handled its 2020 breach. Not only did the…

Risk Management February 13, 2023

Avoid Being a Downstream Victim of Service Provider Attacks

4 min read - Attacks on service providers are mounting — and so are downstream victims. Earlier this year, some customers of the cloud service provider DigitalOcean received emails instructing them to reset their passwords. These users hadn’t actually forgotten their passwords — their…

Identity & Access January 24, 2023

An IBM Hacker Breaks Down High-Profile Attacks

5 min read - On September 19, 2022, an 18-year-old cyberattacker known as “teapotuberhacker” (aka TeaPot) allegedly breached the Slack messages of game developer Rockstar Games. Using this access, they pilfered over 90 videos of the upcoming Grand Theft Auto VI game. They then…

Intelligence & Analytics December 20, 2022

4 Most Common Cyberattack Patterns from 2022

4 min read - As 2022 comes to an end, cybersecurity teams globally are taking the opportunity to reflect on the past 12 months and draw whatever conclusions and insights they can about the threat landscape. It has been a challenging year for security…

Identity & Access December 16, 2022

The Cybersecurity Takeaway from Twitter’s Verification Chaos

4 min read - Twitter has been verifiably bonkers since electric car and rocket mogul Elon Musk took over and reworked the social network’s long-standing verification system. This provides a valuable lesson about the link between verification or authentication and between security and usability.…

Data Protection December 7, 2022

Will the 2.5M Records Breach Impact Student Loan Relief?

2 min read - Over 2.5 million student loan accounts were breached in the summer of 2022, according to a recent Maine Attorney General data breach notification. The target of the breach was Nelnet Servicing, a servicing system and web portal provider for the…