by Leigh Ronczka | Jun 13, 2019 | Security Awareness Training
A client called the other day to tell me about a highly evolved phishing attempt cast straight at his law firm. Kudos to their employees for not taking the bait. Here’s how the attack played out: First, an employee who regularly handles emails addressed to the firm in... by Lou Romero | Jun 19, 2018 | InfoSec Strategies
For the last 20 months or so, we’ve worked with nearly 200 government municipalities on cyber loss control projects, now largely completed. Data security is a major concern for many municipal governments, so in this post—the fourth in our Cyber Security Foundation for... by John Verry | May 22, 2018 | Security Awareness Training
Recently I had a conversation with the CIO of a midsize law firm that had recently lost quite a bit of work product (and one of its biggest clients along with it) to ransomware because an equity shareholder had fallen victim to spear phishing. He was looking for... by John Verry | Mar 6, 2018 | Security Awareness Training
For an organization to comply with Payment Card Industry Data Security Standard (PCI DSS) Requirement 12.6, they must have a formal security awareness program in place. On reviewing a number of these programs over the last few years, I have been surprised to note how... by Taylor Smith | Jan 23, 2018 | Security Awareness Training
As we begin a new year, it is always good to reflect on the events of the past few months, and take into consideration what your company may be facing in terms of security challenges over the next year. Some things change by the year, or by the month… or even by the...
