Buckeye IT blog

The attack on SolarWinds earlier this year caused a lot of challenges, and now that time has passed and the dust has settled somewhat, Microsoft has uncovered another type of malware associated with the attack. This one is called FoggyWeb. What does this threat do and what can we learn about it?

Incorrect configurations on your infrastructure’s hardware are surprisingly easy mistakes to make, and even worse, they can have severe security ramifications if they are not discovered promptly. It can happen to anyone, as evidenced by a recent data leak. One of the most popular software developers out there, Microsoft, made a pretty nasty blunder with one particular setting that led to a huge data leak that could have exposed millions of records.

Ransomware is such a major problem for computing-dependent organizations that even government agencies are getting involved, equipping businesses and organizations with tools to help themselves identify whether or not they are at risk of these attacks. The most recent addition to this group, the United States’ Cybersecurity and Infrastructure Security Agency (CISA) have made their Ransomware Readiness Assessment, or RRA, available as part of its Cyber Security Awareness Toolset.

Phishing attacks are a major problem that all businesses must be prepared to handle. Sometimes it comes in the form of messages or web pages designed to steal information from your employees, but other times it might come in the form of phone calls asking for IP addresses or network credentials under the guise of your IT department. It’s especially important that your staff members understand how to identify these tricks, and it all starts with phishing training.

A new ransomware threat has surfaced, this time targeting unpatched and end-of-life products in SonicWall’s line of Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products. The threat is currently being exploited in the wild, so if you utilize these devices in your business, it is your responsibility to take action to mitigate damages caused by these ransomware attacks now.

Ransomware has been a scourge to businesses for years now, with it unfortunately experiencing a renaissance of sorts as the COVID-19 pandemic came to the fore. With increased phishing attacks and other means of spreading ransomware now taking advantage of the ongoing situation, it is all the more important that these attempts can be identified and mitigated.

Data breaches are an unfortunate reality that businesses have to contend with, but small businesses often do not give them the consideration that they deserve. It is critical that you consider security challenges and take these risks seriously. Let’s examine how you can overcome some of the many challenges that small businesses have with cybersecurity.

Countless high-profile ransomware attacks have surfaced over the past several years, all against targets like manufacturers, pipelines, hospitals, and utility companies. Obviously, these attacks are a cause for concern, but some small businesses might make the mistake of thinking themselves too small to target. Unfortunately, this is simply not the case; we’ll help you protect your business from these devastating cyberattacks.

Hackers are a crafty bunch. They will use any and all means to infiltrate businesses, including some that are downright shameful. One of the most devastating ways that hackers make these attempts is through the use of phishing attacks, or attacks where they essentially trick users to click on links in emails or hand over confidential information.

This past May, Ireland’s Health Service Executive—the organization responsible for providing healthcare and social services to the country’s residents—was successfully targeted by a major ransomware attack. Unfortunately, we are still talking about it now because the entire situation has forced us to acknowledge the aftereffects of such an event.

With so many accounts required on an everyday basis, it’s no surprise that people often struggle with passwords and password security. One way that individuals try to manage the countless passwords used on a daily basis while keeping them secure is through the use of password managers. What does a password manager do, and why should you consider implementing one for your business?

The COVID-19 pandemic forced many organizations to transition to online work, a notion that many businesses felt was previously out of the question. This transition came with its fair share of frustrations, but eventually businesses figured out that remote work offered various benefits. That said, one of the biggest issues also manifested, and was in the form of security.

It should come as no surprise that cybersecurity is an important consideration for a business, which means it is important that you are aware of how effective your security practices are. Evaluating this is best accomplished by testing your team and their preparedness… but how often should you do so?

Now that Google’s Android Messages application has end-to-end encryption, it might be a good time to discuss the concept of what end-to-end encryption actually is and why it’s important. Let’s take a closer look.

Once again, ransomware strikes, this time targeting the world’s largest meat processor and distributor, JBS S.A. This disruptive cyberattack forced the company to suspend operations in both North America and Australia, a move which had devastating consequences to the supply chain. What can we learn from this situation?

A survey from Splunk and Enterprise Strategy Group indicates that organizations tend to invest a significant amount of their capital into cybersecurity. Even more interesting is that 88 percent of respondents in this survey reported that they would increase these investments, with 35 percent reporting that they will be substantial. What other insights can we glean from this survey?

As is often the case with ransomware attacks, the situation with the Colonial Pipeline hack has grown more complex as more information regarding the attack has been discovered. Here are some of the major developments that you should keep top of mind in the wake of this devastating ransomware attack.

Your organization’s network security is dictated in part by your security solutions, but your employees also play a large role in maintaining it. If you want to make sure that your employees are not inadvertently putting your organization at risk, you need to ensure they are getting the proper security training. Here are a couple of ways you can make security training less like pulling teeth and more engaging for your employees.

Hackers are always taking advantage of others’ misfortunes, and they have even gone so far as to leverage the COVID-19 pandemic in efforts to launch phishing attacks. How have hackers utilized this worldwide disaster to their benefit, and what can we do to keep our organizations secure in this troubling time? Let’s find out.

Unfortunate as it might be, one single solution is not going to eliminate any and all of your cybersecurity woes. That said, there are plenty of ways that you can mitigate the majority of threats and minimize their chances of success. One of the best ways is to construct a culture of cybersecurity awareness within your organization that encompasses all employees, including upper-level management and the C-suite. Here are 11 ways that you can build up an enduring culture of cybersecurity awareness for your business.