Cyber Risk

94% of firms hit by phishing attacks in 2023 as AI sharpens scam tactics

94% of firms hit by phishing attacks in 2023 as AI sharpens scam tactics

Business & Technology, Cyber Risk, Information Security, Preventative security, Responsive security, Security, Security, Security knowledge /

Phishing scams, which aim to trick victims into revealing personal information or clicking malicious links, have long been a thorn in the side of individuals and businesses alike. However, the emergence of generative artificial intelligence has transformed these scams from mere nuisances into sophisticated threats capable of causing significant financial damage and emotional distress. Recent […]

94% of firms hit by phishing attacks in 2023 as AI sharpens scam tactics Read More »

Cybersecurity digest: The Microsoft-Open AI report, U.S. govt’s stance on spyware, and Clorox’s teachable moment

Cybersecurity digest: The Microsoft-Open AI report, U.S. govt’s stance on spyware, and Clorox’s teachable moment

Business & Technology, Cyber Risk, Information Security, Preventative security, Responsive security, Risk, Security knowledge /

AI in the hands of bad actors is everyone’s nightmare. But we take heart in the fact that Microsoft and OpenAI are working together to understand and curb the ways that threat actors could misuse AI and LLMs. The U.S. government is also stepping up to protect people from technology used for nefarious purposes —

Cybersecurity digest: The Microsoft-Open AI report, U.S. govt’s stance on spyware, and Clorox’s teachable moment Read More »

5 sure-fire strategies for achieving a reasonable cybersecurity baseline

Strategies for achieving a cybersecurity baseline

Business & Technology, Cyber Risk, Risk, Security, Security /

The cybersecurity industry offers an abundance of high-quality, constructive guidance for organizations. Although this is something to be celebrated, it can also be overwhelming for business and technology leaders who are grappling with the following questions: How to determine if the organization’s current cybersecurity posture is good enough? How to establish the right priorities within

Strategies for achieving a cybersecurity baseline Read More »

User Enablement: Driving Safe Adoption of New AI Technologies

User enablement: Driving safe adoption of new AI technologies

Cyber Risk, Digital, Learning, People, Technology & Platforms /

Everyone has been talking about AI, and for good reason! AI is currently revolutionizing nearly every industry. The technology has the potential to streamline collaboration, increase productivity, and help people get the information they need right when they need it. Exciting, right? The analogy: A shiny new sports car I recommend deploying a new AI

User enablement: Driving safe adoption of new AI technologies Read More »

Corporate boards take note: The 2023 SEC rules for cyber disclosure have teeth

Corporate boards take note: The 2023 SEC rules for cyber disclosure have teeth

Cyber Risk, Information Security, Responsive security, Security, Security knowledge /

SEC tightens cybersecurity rules in 2023 2023 saw Federal authorities ratcheting down on Cybersecurity. In July, the U.S. Security and Exchange Commission [SEC] issued the latest final rules that enhance the SEC’s cybersecurity disclosure requirements. The new SEC Rules: Holding corporate boards accountable While this has been a topic of concern since cybercrime began to

Corporate boards take note: The 2023 SEC rules for cyber disclosure have teeth Read More »

Journey to CMMC

Cyber Risk, Information Security, Security, Security, Security knowledge /

Introduction to NIST 800-171 cybersecurity framework The National Institute of Standards and Technologies issued NIST Special publication 800-171 cybersecurity framework to provide guidance, deliver requirements, and set expectations for Federal contractors and suppliers doing business with the Department of Defense (DOD). NIST 800-171 vs NIST 800-53 NIST 800-171 consists of 171 security controls that cover

Journey to CMMC Read More »

Cybersecurity digest 2023: a year in review

Cyber Risk, Information Security, Preventative security, Responsive security, Security, Security, Security knowledge, Uncategorized /

This content appears in our monthly email Security Digest, which unpacks recent security incidents, detailing what you should know, and what you should do. Sign-up to receive this digest below.   As the sun sets on 2023, it’s time for a retrospective glance at the cybersecurity landscape that has both challenged and advanced our industry

Cybersecurity digest 2023: a year in review Read More »

Spot the Fed: Mastodon, the Fediverse, and why you can’t run servers like it’s 1999

Cyber Risk, Risk, Security, Technology & Platforms, Uncategorized /

Decentralized technology has become an increasing topic of interest to technologists and enthusiasts seeking alternatives to the “walled garden” of many online communities and platforms. Spinning up a web service has become much easier with DevOps tooling, automation, and cloud services. However, the internet is more complex a place than it was twenty years ago.

Spot the Fed: Mastodon, the Fediverse, and why you can’t run servers like it’s 1999 Read More »

Cybersecurity digest: Ransomware, social engineering, and MFA negligence

Cyber Risk, Information Security, Security /

The following article on recent cybersecurity news and events was written by Kalles Group Security Consultant, Jayanth Kumar. This content appears in our monthly email Security Digest, which unpacks recent security incidents and details what you should know, and what you should do.   Ransomware Resurgence: A Ticking Time Bomb   What you need to

Cybersecurity digest: Ransomware, social engineering, and MFA negligence Read More »

Why you should adapt the MITRE ATT&CK framework for threat intelligence

Cyber Risk, Information Security, Security, Uncategorized /

Cyber threats are becoming more severe with the widespread use of remote technologies and the increasing sophistication of attacks. Recent analyses indicate that attackers are exploiting vulnerabilities at unprecedented speeds. In 2023, the average time to exploit a vulnerability after public disclosure decreased to just five days, a significant reduction from 32 days in 2022.

Why you should adapt the MITRE ATT&CK framework for threat intelligence Read More »

Which information security framework is right for my business?

Which information security framework is right for my business?

Business & Technology, Cyber Risk, Information Security, Project Leadership, Security /

Which Information Security Framework is Right for My Business? Picking the right security framework is important to protect your organization’s sensitive information and systems. With so many threats and regulations to think about, it’s important to have a plan in place to reduce risks and meet compliance requirements. A security framework provides step-by-step guidelines to

Which information security framework is right for my business? Read More »

Your future is secured when your business can use, maintain, and improve its technology

Request a free consultation

Incident Response
Incident Response