It’s time to rethink employee security training
Data breaches dominate the news headlines. Whether it is the Home Depot, Target, Staples, Anthem or the Ashley Madison breach. Every day a new company is experiencing a data breach. Many businesses are asking when this will all end. Unfortunately, the end of data breaches don’t appear to be happening anytime soon.
Breach Secure Now! Rolls Out an Unlimited Clients IT Security Training Program for MSPs
MORRISTOWN, NJ (PRWEB) SEPTEMBER 08, 2015
Breach Secure Now! has lowered the barriers to increased IT security sales for MSPs by introducing Unlimited Clients Employee Security Training that they can now offer their SMB (small and mid-sized business) clients for free or for a minimal fee. A YouTube video explains the training program in detail.
MSPs: If your client has a data breach they will blame you
As we talk to potential MSP partners and give presentations at ASCII and MAXfocus events, we are starting to hear a common message:
I worried about providing security services to my clients because they may hold me legally responsible if they have a data breach.
You can understand why MSPs might think that not discussing security would help them avoid legal liability. No one wants to be in the position where they told a client “if you implement these security measures, you will not have a data breach”. Then if the client does have a data breach the MSP bears the responsibility.
Businesses are not prepared for cyberattacks
An article in Forbes discusses the risk of cyberattacks on businesses. Many companies are unprepared to prevent a cyberattack.
Yet many are still ill-prepared for the new age of cybercrime. Recently, PwC indicated less than half of companies surveyed are taking necessary steps to protect their business. This lack of action is not only leading to significant costs, but can result in immeasurable damage to corporate reputation.
More proof that hackers are going after SMBs
Large scale data breaches such as Target and Home Depot make the news but smaller organizations are victims of data breaches as well. The problem is that most data breaches that happen to small or midsize companies are either not reported or do not make the news headlines. This in turn leads many small to midsize businesses (SMBs) to underestimate the risk that their company may be a victim of a data breach.
SEC Investment Management Division Issues Cybersecurity Guidance
The US Securities and Exchange Commission (SEC) Division of Investment Management has issued cybersecurity guidance (PDF) to registered investment companies (“Funds”) and registered investment advisers (“Advisers”). The SEC has identify cybersecurity as an issue for both Funds and Advisers.
A look at how hackers create spear phishing emails
Spear phishing emails are highly effective and have been the cause of many successful hacking attempts. Unlike a regular phishing email that could be sent to thousands or millions of recipients, a spear phishing email is created to target just one victim. And if that victim falls for the bait, there is a good chance that they will turn over valuable information including network user accounts and passwords or confidential information such as bank account login credentials.
Survey: Companies worried about disclosure of PII
A survey by Mayer Brown shows companies consider the disclosure of PII the biggest cyber related threat.
Survey respondents overwhelmingly considered the disclosure of personally, identifiable information as the biggest cyber-related threat to their companies (63%). Concern about interruption of business operations such as system sabotage ranked second (24%).
Cyber risk the most serious threat to business, says Lloyd’s chief
The CEO of Lloyd’s of London, one of the largest insurance companies in the world, says that cyber risk is the most serious threat to businesses
Inga Beale, chief executive of Lloyd’s, said: “Cyber risk poses the most serious threat to businesses and national economies, and it’s an issue that’s not going to go away.
This threat is driving a big push for Cyber Insurance
Hackers impersonating IT staff on the rise
Research by security company FireEye reveals that hackers are becoming much smarter in their methods to gain access to networks that they are trying to break into. According to ZDNet
Fresh FireEye research suggests that today’s cyberattackers are becoming smarter about the systems they seek to break, and are commonly using impersonation and social engineering to tap into the most common weakness in the security chain — employees.