News & Thought Leadership

What Exactly Is Zero Trust?Traditional cybersecurity defenses, although effective, have allowed for breaches to occur due to misconfigurations and lack of integration. This has caused for the need for the addition of an operational philosophy that trusts no user or machine. Zero trust (ZT) is an operational philosophy that combines least privilege with policy and…

The cybersecurity landscape is ever evolving and changing. New threats are coming at businesses on a daily basis and it is almost impossible for the average business owner to keep up. Businesses who partner with a MSP or MSSP to manage their systems can usually rely on the MSP to keep up on the latest…

The escalating tension between Russia and Ukraine has caused CISA to issue a ‘shields up’ warning to U.S. companies. CISA recommends “all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets.” According to the CISA, “Recently observed foreign influence operations abroad demonstrate that foreign governments and actors…

The financial industry is a high-value target for cyber criminals. With just a little effort, there can be a big pay off and hackers use phishing and other data breaching methods to reach that pay load. Ransomware is another serious threat that can hobble financial firms. Ransomeware allows bad actors to extort financial firms through…

According to the Cybersecurity & Infrastructure Security Agency (CISA), sophisticated, high-impact ransomware incidents against organizations’ critical infrastructure increased globally in 2021. Ransomware tactics and techniques continued to evolve in 2021, which demonstrates ransomware threat actors’ growing technological sophistication and an increased ransomware threat to organizations globally. A joint Cybersecurity Advisory—authored by cybersecurity authorities in the…

On February 9, 2022, the Securities and Exchange Commission voted to propose new cybersecurity risk management rules and amendments to enhance cybersecurity preparedness and improve the resilience of investment advisers and investment companies against cybersecurity threats and attacks. Specifically, the proposal would: ● Require advisers and funds to adopt and implement written policies and procedures…

Office 365 and Azure Active Directory (Azure AD) customers were the targets of billions of phishing emails and brute force attacks successfully blocked last year by Microsoft, according to Microsoft’s Corporate Vice President for Security, Compliance, and Identity. “From January 2021 through December 2021, we’ve blocked more than 25.6 billion Azure AD brute force authentication…

Shadow IT has been a growing problem for years, especially as more and more employees are working remotely. While shadow IT can improve employee productivity and drive innovation, it can also introduce serious security risks to your organization through data leaks, potential compliance violations, and more. Shadow IT is the use of information technology systems,…

Cybersecurity is important. You get that. Especially now, when ransomware attacks have increased 70% during 2021. Many businesses should already have the essentials in place. But, successful businesses know that cybersecurity is not static. Business leaders need to review and enhance cybersecurity across the organization on a regular basis. Here are six practices you can…

With sophisticated cyberthreats on the rise, businesses and CISOs must continue to evolve by using novel strategies and technology. The challenges that face CISOs are also forcing businesses to pivot, adjusting their cybersecurity strategies to meet post-pandemic objectives. And the stakes have never been higher. Industry surveys revealed that CISOs will continue to invest niche…