6 Steps to Prevent Data Breaches

by Hannah Grace Holladay / March 21st, 2022

As we enter a new year, it’s traditional to look back at the successes and failures of the last twelve months. The information security world is no different, and as the year draws to a close, information security writers publish a flurry of articles with titles like The Top Data Breaches of 2021 and The Top 5 Scariest Data Breaches in 2021. They are sobering reading: each listicle entry represents…

How to Build Secure IT Infrastructure for Your Business

by Hannah Grace Holladay / November 5th, 2021

The global information technology industry is worth around $5 trillion. To put that in perspective, the global oil and gas market is worth $5.8 trillion. IT is an enormous industry because every business depends on IT infrastructure. That makes infrastructure security a priority for organizations, from sole proprietorships to multinational corporations and governments. As a business owner or executive, you are responsible for creating and managing a secure infrastructure platform.…

Cybersecurity at Work: Audits That Require Security Awareness Training

by Amelia Lewis / October 29th, 2021

It is Cybersecurity Awareness Month! Every October we are reminded of the potential threats that are up against our cybersecurity. It is no surprise that employees make their way to the top of the vulnerability lists each year. It is time we created a culture of cybersecurity in the workplace. Employees are often an organization’s weakest link. Whether it be the lack of funding or misunderstanding of cybersecurity best practices,…

Protecting MSPs from Million Dollar Ransomware Attacks

by Amelia Lewis / April 21st, 2021

The DarkSide Ransomware Attack on CompuCom On March 3, the IT managed service provider (MSP) announced they had fallen victim to a Darkside ransomware attack. The cybercrime group installed CobaltStrike beacons on several systems throughout the MSP’s environment. These beacons helped the threat actor steal data, spread the virus, and deploy ransomware payloads.  The MSP expects the incident to result in losses of $20 million and counting due to the…

PCI DSS Compliance: What do PCI SAQ, AoC, and RoC Mean?

by Sarah Harvey / November 3rd, 2020

The Payment Card Industry Data Security Standard, or PCI DSS, was established as a standard security requirement for all entities that store, process, or transmit cardholder data. PCI DSS compliance helps to demonstrate your security commitment and assure your clients that their cardholder data is protected. When you engage in a PCI DSS audit, you’re testing your organization’s systems and processes against 12 technical and operational requirements made up of…