|Teach Your Employees Not to Fall for Phishing Bait|
|Anne Bisagno—Monday, April 16, 2018
We use Knowbe4 for phishing awareness training because we approve of the company's approach to teaching employees how to recognize suspicious email. (After
all, you can't get phished if no one in your company takes the bait.) So we were excited to see some new information about how well security training
works and who needs it most. Knowbe4 analyzed information across 15,000 companies and discovered that training reduces the average 27% of employees
who are likely to be fooled by phishing attempts to 13% after 90 days and 2.17% after a year.
|Financial Services Firms Under Cyberattack|
|Anne Bisagno—Monday, April 09, 2018
You've probably heard the old joke about why criminals rob banks: because that's where the money is. It's not so funny if you work in the financial services
sector. Security breaches at financial services firms have tripled in the last five years, making the industry cybercriminals' top target, according
to Accenture. The consulting firm's latest "Cost of Cyber Crime" study also reports that the average number of breaches per financial services firm grew from 40 in 2012 to 125 in 2017 — a leap of 212%.
|Get Back to the Cybersecurity Basics|
|Anne Bisagno—Monday, April 02, 2018
|Protect Sensitive Tax Information|
|Anne Bisagno—Monday, March 26, 2018
Tax time is coming — and if you didn't already have enough to think about, you should also be on the lookout for IRS-related phishing attacks. The
tax agency's Online Fraud Detection & Prevention Center reports that cybercriminals are increasingly trying to scoop up W-2 data in bulk by targeting HR professionals who handle payroll and other employee financial data.
|What Keeps CISOs Up at Night?|
|Anne Bisagno—Monday, March 19, 2018
When Chief Information Security Officers (CISOs) lie awake at night, they're most worried about how to find enough cybersecurity pros to keep up with increasing
IT security threats. Most believe they're more likely to suffer a data breach or cyberattack in 2018 than they were in 2017. And most of them expect
those breaches and attacks will stem from inadequate in-house expertise. That's the conclusion of a recent survey from the Ponemon Institute.
|New Infosec Requirements Take Effect in NY State|
|Anne Bisagno—Monday, March 12, 2018
If you're a financial services company doing business in New York state, March 1 was your deadline to file for your first annual certification with 23 NYCRR 500.
This is the state's groundbreaking cybersecurity regulation that mandates risk assessments, vulnerability assessments, penetration testing, multifactor
authentication, and end-user awareness training.
|Does Your Cyber Insurance Policy Have You Covered? Maybe Not|
|Anne Bisagno—Monday, February 26, 2018
We've been urging our clients for some time to look into cyber insurance to
mitigate the risks of data breaches. However, the field is still new enough that there's no standard of coverage. It's critical to read the fine print,
because you might not be getting what you think you are. Here are some of the things most policies don't cover:
|Dive Into the Hot Cybersecurity Talent Pool|
|Anne Bisagno—Tuesday, February 20, 2018
The battle between hackers and IT security experts is never going to end — which is a warning to businesses of all sizes, but a great opportunity
for anyone thinking about a career move. Dark Reading, the website for cybersecurity pros, recently reported that 25% of CIOs are prioritizing security skills as they look to expand their IT teams.
|Data Security is a Team Effort|
|Anne Bisagno—Monday, February 12, 2018
Phishing is one of the most common causes of data breaches — and that means that teaching your employees to recognize a phishing email is one of
the most effective ways to protect your company from an expensive data breach.
|January 28 Was Data Privacy Day|
|Anne Bisagno—Monday, February 05, 2018