Time to Accept the Risk of Open Source?Where is the real risk?Accepting Open Source RiskAccepting cybersecurity risk has become the norm for organizations. Even with extensive firewalls, IDS, email security, zero-trust, ransomware, identity threat, and business email compromise protection, attacks still have a substantial financial impact on organizations. Artificial intelligence, ... Read More

Cybersecurity is a Successfully FailureNext-generation firewalls are well, XDRing, IPS in prevention mode, and we had 100% attainment of our security awareness weekly training podcast. Yes, we even have email encryption of all outbound messages with complete data loss prevention enabled with multi-factor authentication! Hold on, didn’t we just deploy ... Read More

Hiring Data Recycling Security Engineers Smart?Why is the blockchain transaction framework becoming the future of cybersecurity?Because Blockchain is the most secure framework in the world! Being secure is everything!Once we have done away with paper currency and moved 100% to digital, blockchain will protect our transactions with its global ledger ... Read More

Sunsetting legacy Cybersecurity Process for Better Optimization and Security ModernizationSunset in Carlsbad CaliforniaThe idea of “if it isn’t broken, don’t fix it” should not apply to cybersecurity. Most organizations develop three to five-year phasing plans for most IT and cyber products to align with the manufacturer’s end-of-development, end-of-support, and end-of-life ... Read More

Smart Phone, Smart Watch, Smart Pay, Smart?How safe is smart?The idea of never needing to carry cash or debit cards looks pretty appealing, right? Never worry about someone trying to steal your traditional wallet and hard-earned cash bills. Or maybe someone attempts to jack your favorite sports watch in favor ... Read More

National Critical Infrastructure Under Attack: Clop RansomwareOn August 15, 2022, a U.K. water supplier suffered disrupted essential services within their corporate IT systems. The hackers used a remote access software platform that had been dormant for months.This is another NCI nation-state ransomware attack.The recent criminal cyber activity on the IT ... Read More

Phish or Be Phished. That is the question!DEAR USER, thank you for renewing your “GEEK Squad” purchase.Yes, I am sure we have received suspicious emails. Receiving unsolicited emails nothing new? Let’s look at this message to see if this is a legitimate email or a business email compromise.Email phishing attacks ... Read More

What is in Your SOC?Movie “300” credit — Warners Bros PicturesOffensive or defensive culture for SecOps- becoming purple?Organizations developing a Security operations center(SOC) should consider which strategy they should adopt based on available cybersecurity professional resources: offensive or defensive?Both strategies organizations hope to become interchangeable; however, this idea rarely works ... Read More

Has ESG Become aWake-Up Call for Cybersecurity?Even with ransomware costing billions of dollars in losses and cyber insurance claims, organizations are still impacted beyond the checkbook. Brand imaging, lawsuits, loss of respect in the industry, and mass departures of crucial personnel all stem from people’s perceptions of the organization’s actions ... Read More

Is Too Much Automation an Issue for Security Operations?Scale, optimization, rapid response, lateral attack propagation, kill chain, and automation all equate to the current model for SecOps when dealing with potential threats. Even before the continuous outbreak of ransomware, malware, and business email compromise, the role of the Secops team ... Read More