ITSecurity Training

“Cybersecurity News” and what to do with it

by

So what has happened that I want to make another post about “Cybersecurity News”? Microsoft states they will implement the new CCPA (California Consumer Privacy Act) across the nation by January 1, 2020 https://blogs.microsoft.com/on-the-issues/2019/11/11/microsoft-california-privacy-rights/  November 11) 68000 patients of Methodist hospital impacted by Phishing attack  (By HIPAA Journal) (October 17)   https://www.hipaajournal.com/68000-patients-of-methodist-hospitals-impacted-by-phishing-attack/ Domain Registrar Network Solutions … Read more

IoT, IT and OT Merging and Needs Integrated Defense

by

First of all what is the alphabet soup: IoT, IT and OT? Internet of Things, Information Technology, Operational Technology are explained best in the sans.org white paper: https://ics.sans.org/media/IT-OT-Convergence-NexDefense-Whitepaper.pdf Operational Technology (OT) consists of hardware and software systems that monitor and control physical equipment and processes, often found in industries that manage critical infrastructure, such as … Read more

Stopping Social Engineering Attacks No, Slow Down Yes!

by

Elements of an Attack: From the article at TechNewsWorld. Social Engineering is equivalent to scammers trying all types of methods to gain information or money. What does it mean to have an image above that shows many possible Social engineering attacks? Let’s list them: Techniques Phishing Pretexting Baiting Quid Pro Quo Compliance principles Friendship or … Read more

October is Cybersecurity Awareness Month

by

In a year of many problems and issues the Department of Homeland Security decided to make October the National Cyber Security Awareness Month (NCSAM) since 2003. https://www.dhs.gov/national-cyber-security-awareness-month   The Theme is Own IT. Secure IT. Protect IT. Own IT is reminding you to travel with cybersecurity in mind (at least some of the time), Social … Read more

Top Cybersecurity Problem for Small Business

by

The top Cybersecurity problem (or risk) is phishing emails and ransomware downloaded to your computer or your website.   When a phishing email somehow gets you to click a link that then downloads an infected “payload” into your computer you can only hope that the anti-virus you have (and/or firewall) will protect you from the … Read more