Posts for category: Best Practices Weekly Summaries

Remote Workers

Executive Summary Nation-State advanced persistent threats (APTs) infiltrate US businesses by disguising themselves as remote workers, consultants and vendors. Often, international fraudulent ...

Social Engineering

Executive Summary Threat actors use social engineering to manipulate users into performing actions on their behalf. It works by exploiting a natural emotional stress response that causes victims to ...

QR Codes

Executive Summary QR codes offer a convenient mechanism to distribute information for benefic and malefic purposes. Malicious QR codes can distribute malware and steal sensitive information. Threat ...

Ransomware and Small Business

Executive Summary Ransomware attacks are especially damaging for small businesses due to resource limitations. Businesses risk failure without a resilience plan that is able to address such an ...

Building a Culture of Cyber Safety

Executive Summary Unsecure habits in the workplace create unintentional threats to an enterprise’s cyber posture. Leadership can create a culture of cyber safety by modeling good cyber habits and ...

XaaS Security

Executive Summary Many businesses use some form of XaaS, or Anything as a Service, to reduce overhead while expanding business operations. Because businesses are only responsible for the product ...

Email Spoofing

Executive Summary Email impersonation has become harder to detect. Recent attacks exploit inbound and outbound server vulnerabilities commonly found in default settings to impersonate a sender’s ...

Multifunction Printer Security

Executive Summary Multifunction printers (MFPs) provide immense value to enterprises due to the administrative support the devices provide. Cyber attackers can exploit these machines via networking, ...

Russia’s Cyber Strategies

(By: William Beard on November 4, 2021) Executive Summary There has been an uptick in fourth and fifth-generation warfare in the last few decades and a major player in that has been ...

The Next Generation and Cyber Security

(By: William Beard on October 21, 2021) Executive Summary According to research recently published by the National Cybersecurity Alliance (NCSA), lack of cybersecurity training and education ...