The Bleach Breach: How a Quality SOC 2 Audit Could Have Helped Clorox

by Tori Thurmond / October 12, 2023

Another day, another breach. There have been quite a few cybersecurity events breaking the news involving major companies lately—one of the notable events involving Clorox.   Back in August, the multibillion-dollar corporation discovered unauthorized activity in some of their IT systems. The organization enabled their business continuity plan (BCP), but was forced into processes that affected their production capacity. The product shortages resulted in the organization losing money each and every…

Rebuilding Trust After a Data Breach

by Hannah Grace Holladay / October 2, 2023

Threats are constantly evolving.  We know you want to be ready to face them, but what happens when you’ve already experienced a breach? How do you restore not only your business operations, but your reputation?    According to Pew Research Center, half of Americans feel that their personal information is less secure than it was five years ago. Even more so, 64% of American adults have experienced data theft via credit…

Learning from MGM’s Mistakes: How a Quality Audit Can Help

by Tori Thurmond / September 15, 2023

A $33 billion company breached because of a 10-minute phone call, and, according to vx-underground, all the hackers had to do was a simple search on LinkedIn.   You’ve probably heard about the MGM breach that happened earlier this week, but did you know that the attack was a result of social engineering? A notorious hacking group, ALPHV (aka BlackCat), searched one of MGM’s employees on LinkedIn, called MGM’s help desk,…

Notes from the Field: Center for Internet Security Control 10 – Malware Defenses 

by Greg Halpin / September 14, 2023

The client I was working with had a web application hosted on a Windows server with the anti-virus software disabled. When I asked the head of Information Technology about it, he said the company's web application didn't work when anti-virus was running, so they couldn't enable it. They weren't concerned about it as they had a firewall in place with malware protection. I strongly advised them to reconsider that decision.…

Building a Cyber-Resilient Culture: A Webinar Recap

by Tori Thurmond / March 21, 2024

We recently had the opportunity to team up with CyberCX for our webinar, “Building a Cyber-Resilient Culture.” During the webinar, our President and Founder, Joseph Kirkpatrick, and the US Director of Digital Forensics, Chris Pogue discussed how company culture can lead to cyber resilience.   If you weren’t able to attend the webinar but would like to hear Joseph and Chris’s entire conversation, you can listen to the full recording here.…