Outsourcing IT operations to managed IT services providers (MSP) is a common trend for a business looking to maintain its operational efficiency while cutting down on cost. In addition to assisting with IT infrastructure management, 38 percent of businesses that hire an MSP do so with the expectation that their business will have enhanced security [...]
When a firm experiences a cyber event or security intrusion, it is often a chaotic experience. Responders are focused on detecting the breach source, locking down their IT infrastructure, and understanding the extent of their losses. However, when responding to an incident, it is important for firms to not overlook their other required breach management [...]
Due to the ever-growing threat of cyber attacks, businesses operating in the NY State financial services and insurance industries are required to establish cybersecurity programs. The New York State Department of Financial Services (NYDFS) passed a set of regulations (23 NYCRR 500) requiring banks, insurance companies, and other financial services institutions supervised by NYDFS [...]
@nismoguy1, social engineering is an important security topic that impacts individuals and businesses alike! Before answering your question, it is important to define the term social engineering. A broad definition of “social engineering” is influencing someone to react in a certain way by exploiting one’s interests, habits, etc. In the context of cybersecurity, “social [...]
@CarsonSallis1, you bring up a very interesting question that is starting to become a hot topic in cyber security research. Internet of Things (IoT) ransomware is not yet a widespread threat to IoT devices, but there is evidence to indicate that it could become a growing threat. Security researchers (and hackers) are proving that [...]
@Pwdrkeg, effective and comprehensive phishing attack protection should combine technical solutions with user education. It is important to note that protecting against phishing attacks is a process that must constantly be revisited and adjusted as appropriate. We have outlined four recommendations for a well-rounded approach for effective phishing attack protection. 1.Configure email spam filters [...]
Submit your #askahacker questions to @soteriasecurity on Twitter. Chosen questions will receive a response from our consulting team and a Soteria gift pack. @ltpate3, great question! Small business security is becoming increasingly important, as hackers have been placing greater emphasis on targeting small businesses in recent years. Every breach that occurs doesn’t make the [...]
Conversation about business security is often centered around what additional measures companies should be taking to protect their businesses from cyber threats. However, what many businesses don’t consider is the effects of poor security policy enforcement practices at their firm. The National Institute of Standards and Technology released a study indicating that employees at [...]
Having proper security policies and procedures is important for all businesses, especially those that must meet compliance standard requirements. It is a common belief that maintaining policies is one of the easiest aspects of meeting compliance. However, checking the “policies” box off your list of compliance requirements requires more than merely downloading policy templates off [...]
With email security incidents on the rise, good business email practices are becoming more crucial to protecting your firm from internal and external security threats. Soteria often works with companies, some with millions of dollars in revenue, who still use personal email addresses for business use. While Soteria sees the simplicity and cost-effectiveness of [...]
