The Cybersecurity and Infrastructure Security Agency (CISA) noted that 90% of successful cyber-attacks begin with phishing emails, which is unsurprising. Social engineering attacks prey on the exploitation of human psychology and range from phishing emails to impersonation phone calls.

As a business owner, you are probably doing everything you can to manage risk, after all, any disruption in day-to-day operations could spell disaster, but it warrants the question: Are you sure?  Many business owners assume their processes are sufficient for managing their risks, but do these assumptions come with an ongoing validation process? Are […]

Email hijacking, account takeover, and business email compromise (BEC) are very frustrating and damaging daily cybersecurity threats businesses face. In these attacks, cybercriminals gain unauthorized access to email accounts or login credentials, typically through something called phishing or because of weak security practices, and use your compromised account to steal data, impersonate your good name, and […]

For a business of any size, big or small, there is a chance that it could get the attention of cybercriminals. They seek to get to know your business and are meticulous in that process. They want to know about your employees, see what you do, and maybe even get to know your customers.

Risk management for IT and cybersecurity is one of the most important aspects of a business’s security program. It offers you the opportunity to not only identify risks but also give you the ability to mitigate them preemptively. You can conduct these activities internally through self-assessment and glean some value.

While it may feel strange to be talking about things going on in the UK, it is appropriate to be aware of how this could have implications for private-sector businesses at some point. The UK proposes banning public sector and critical infrastructure organizations from making ransom payments with their current proposal.