By Bradley WolfendenFor the majority of organizations, regardless of size, any mention of the word ‘cybersecurity’ can lead to some serious anxiety. Whether that anxiety is the result of a lack of general awareness, limited internal expertise, absence of a response plan, restricted budgets, or a myriad of other triggers, there is no doubt that the complex web of cyber best practices can be daunting.
To help calm this overwhelming reality, many business leaders will turn to one of several existing cybersecurity frameworks as a starting place. These frameworks provide guidance around managing risk, foster improved communications, allow for scalability in application, and can support recruitment and hiring of cyber talent. For this blog post the EmberSec team digs in on the NIST Cybersecurity Framework to share how it can be leveraged to improve your overall cybersecurity strategy. We chose to focus this blog specifically on the NIST Framework due to our D.o.D. and government heritage, rich experience working with it, and due cause how it takes a threat-based approach to cybersecurity. By Bradley WolfendenIt’s about that time of the year when folks start to think about setting goals for the New Year, and for some, becoming more cyber literate may be at the top of your list (or should be!). To get all of you (n00bs) started, EmberSec has put together the following list of the Top 16 Cyber Terms Everyone Should Know.
Jimmy BayneIntroduction
Windows 10 is an incredibly feature rich Operating System (OS). In the last four years, the innovative folks at Microsoft have continued to introduce and expand functionality as well as improve and integrate security features in its flagship OS. On the second Tuesday of each month, many of us that live in the Windows 10 universe receive updates from the mothership or through derivate means; These monthly patches are typically feature OS updates, security updates, and anti-virus definition updates. In this short post we’ll discuss an alternate Windows update process, a recently discovered vulnerability, and an ‘interesting’ way to exploit it. By Bradley WolfendenAs compute power and malicious tools become increasingly accessible, and the profitability of a successful cyber-attack remains on the rise, cyber criminals continue to be motivated to find new and more complex ways to exploit businesses of all sizes. And as these attacks can lead to devastating results, both financially and in terms of business reputation, it’s now more important than ever to develop an effective cybersecurity strategy.
What is an effective cybersecurity strategy? By Bradley WolfendenMyth #1- I Don’t Have Anything Valuable that a Hacker Would Want
To put it simply, yes you do. And if you operate any kind of connected device with a mentality that “it’ll never happen to me”, that’s just the kind of thinking that almost certainly guarantees it will. Not only do hackers want your information to use for identity theft and fraud, but they can also leverage the control over your PC to learn your behaviors, distribute malware, launch DDoS and other attacks, move laterally throughout your network to gain access to other, more “valuable” data/ machines, and more. With the availability of automated attack tools, hackers can go after you even if they don’t know you – you are just part of the wide net that makes them money. By Bradley WolfendenAs we land in the final quarter of Calendar Year 2019, highlighted by October and the 19th annual Cybersecurity Awareness Month, the team at EmberSec has drafted a breakdown of the basics of security assessments to make them more accessible and applicable to your business. While we all know that building cybersecurity awareness and implementing best practices are much more than a month-long mission, October reminds us that each and every one of us needs to do our part to make sure that we keep our online lives safe and secure.
By Bradley WolfendenThe team here are EmberSec is excited to share that our official website is now live – www.embercybersecurity.com. Because our driving principle as an advanced cybersecurity technical services and managed solutions provider is to create partnerships that improve overall security for everyone, it was important for us to make the website informative and approachable. To do this we focused on communicating with current and perspective clients in an easily digestible manner, and intend to provide accurate, up-to-date, and meaningful information and resources as we continue to grow our organization and its capabilities.
A Quick Tour of Embercybersecurity.com By Ken JenkinsThe constantly evolving nature of cybersecurity demands that businesses today
place their cyber posture and resiliency at the forefront of operations. To do this, it’s crucial to have both a plan and a partner to rely on before, during, and after malicious actors come knocking. |
AuthorsKen Jenkins Archives
March 2020
Categories |
RSS Feed