In response to the Russian aggression and subsequent invasion of Ukraine, President Biden swiftly imposed stiff sanctions on Russia. This announcement was shortly followed by U.S. security experts calling for heightened awareness of Russian cyberattacks on U.S. businesses and the economic sector. As of today, U.S. officials have not identified any specific, credible threats related to the Russian-Ukraine tensions, however past cyber threats out of Russia call for increased vigilance.
One of the most important documents your organization can create is a Business Continuity Plan (BCP). This plan comprehensively reviews how your organization can preserve business continuity when responding to unplanned disasters that cause business disruption of critical operational processes, applications, and IT infrastructure.
Every day, before you have even finished your first cup of coffee, you've likely sifted through a myriad of email messages, most of which are equally important and require action. However, behind some messages is a hopeful cybercriminal waiting for you to react to their sophisticated phishing email. So how can you recognize and react to the fraudulent emails coming at you multiple times a day?
The landscape of security challenges your business faces today has evolved significantly over the past decade. The rapid shift towards a more digital and connected world has led many organizations to adopt new work paradigms.
Employees, with the best of intentions, have started using personal devices that are not managed by the organization, collaborating through public cloud services, and sharing data beyond the safety of the secured network perimeter. As organizations adapted to changes like these, cybercriminals saw an opportunity, focusing their attacks on these newfound network vulnerabilities.
This shift in how employees use devices in these new settings left many organizations unprepared to ensure the security and safety of their data being stored and transmitted outside their secure environment.
Employees, with the best of intentions, have started using personal devices that are not managed by the organization, collaborating through public cloud services, and sharing data beyond the safety of the secured network perimeter. As organizations adapted to changes like these, cybercriminals saw an opportunity, focusing their attacks on these newfound network vulnerabilities.
This shift in how employees use devices in these new settings left many organizations unprepared to ensure the security and safety of their data being stored and transmitted outside their secure environment.
Social engineering attacks on unsuspecting employees continue to be a favorite tactic among cyberhackers. Employee behaviors, such as clicking on fraudulent links in emails, reusing passwords across business and personal accounts, or downloading PDFs containing ransomware, put a company at risk. Small to medium-sized businesses (SMB) can reduce these risks by employing the following cybersecurity best practices within their organizations.
UPDATED: March 18, 2022
Microsoft recently announced they have reimagined the way commercial customers will transact with them. Their latest initiative is referred to as the New Commerce Experience, or NCE. Their goal is to simplify the licensing process and improve the purchasing experience for Microsoft customers.
UPDATE: December 21, 2021- We have identified the products Systems Engineering sells and supports that are impacted by the log4j vulnerability. Affected products are listed below along with our plans to address each.
