Have you noticed consumer and business sites including mobile applications requiring multiple steps to verify who you are? Perhaps you’ve set-up a multi-step verification method to access your bank or Google email account? This security measure is growing in popularity as most data breaches today begin with a set of compromised credentials. From financial institutions to online stores to social media sites, many businesses are now requiring multiple factors of verification to ensure a user is who they say they are, reducing the chances of a cybercriminal successfully gaining access to their networks.
In 2018, there was 49.8 million tons of e-waste generated worldwide. The US contributed a staggering 10 million tons of this waste, and our share is growing. As environmental and health concerns arise over the ever-increasing e-waste, it is the responsibility of everyone to ensure its proper disposal.
This month, Microsoft began the transition to a new customer agreement, which replaces the core terms for all Microsoft customers. Their goal is to improve the purchase experience to better support all customers. They also had some important security-related reasons for the change, including;
Microsoft recently announced a pair of Windows 10 Remote Code Execution vulnerabilities, CVE-2019-1181 and CVE-2019-1182. These vulnerabilities allow cybercriminals to obtain remote control of a computer over a network connection. Microsoft discovered the vulnerabilities during routine testing of Windows 10, which allowed them to publish the required security updates and notify the public at the same time.
On Tuesday, April 2, the FDIC issued an advisory letter to banks on Technology Service Provider Contracts. The letter speaks to gaps that examiners are seeing in contracts between banks and their technology service providers.
When organizations decide to move data to the cloud, there are several benefits including cost efficiency and time savings. Consistent and frequent updates to make usability easier and friendlier is yet another benefit. For those organizations that have adopted Microsoft Office 365, (or better yet Microsoft 365, a.k.a. 'Modern Desktop') for example, you might have noticed that once a login occurs, the default page seen now is Office.com. As such, Microsoft announced the following explanation earlier this week:
The 2018 Human Factor report by Proofpoint states that as many as 95% of web-based attacks now incorporate social engineering, or human error factor. So, with that simple fact, how can your organization prevent its employees from releasing confidential and critical information?
In the coming year, how will your organization be less vulnerable to security threats, remain in compliance, and continue to receive the latest product support?
Quick answer: Upgrade.
Review the chart below and ensure that your Microsoft products are not about to expire. The chart quickly points out some significant end-of-life/support dates that are on the horizon for some of the more popular Microsoft products, including Windows 7, Exchange 2010, and Office 2010.
It seems these dates are far out, but in reality, upgrade discussions should begin now in order to prepare appropriately. By applying upgrades before products fall out of support, your business will be less vulnerable to security threats, remain in compliance, and continue to receive the latest product support.
Assuming you have your network security basics in place, there are a few cybersecurity solutions that are relatively inexpensive that many businesses have yet to include in their cybersecurity war chest. These tools help you stay ahead of the cyber criminals and provide additional protection to reduce your business' chance of a breach. If you do nothing else with your cybersecurity strategy in 2019, be sure to put these security safeguards in your budgets this fall as they will provide tremendous value for the investment:
When it comes to security risks and errors, businesses often fall victim to assumptions and oversights. The reality is that the protection of information and applications is always evolving and, as criminals find new ways to exploit weaknesses, it's tough to stay one step ahead.