Moving DMARC from p=none to p=reject
DMARC is one of those security controls that sounds simple until you actually try to enforce it. At a high level, DMARC helps prevent people from spoofing your email …
Read articlePlain-English guidance on cyber risk, email security, vCISO work, governance, strategy, and common security issues that affect real businesses.
DMARC is one of those security controls that sounds simple until you actually try to enforce it. At a high level, DMARC helps prevent people from spoofing your email …
Read article
A recent article from The Register reported that Kaspersky researchers found 60% of MD5 password hashes could be cracked in under an hour using a single high-end GPU. …
Read article
Slow Down the Hype Cycle: Strategy Comes Before New Technology Every few years, a new technology comes along that everyone feels like they need to adopt immediately. …
Read article
Why the U.S. Router Ban Makes Sense from a Cybersecurity Perspective The U.S. government has taken a stronger position against foreign-made consumer routers, and from a …
Read article
Physical Security Frameworks for Data Centers: ISO 27001 vs TIA-942 vs BICSI 002 When people talk about cybersecurity frameworks, they usually mean things like NIST CSF …
Read article
Most small and mid-sized businesses aren’t ignoring cybersecurity—they’re just trying to balance it with everything else. The problem is, a few common gaps show up over …
Read article
Every year on April 1st, the internet fills up with jokes, fake announcements, and pranks. Most of it is harmless. But in cybersecurity, April Fools creates a very real …
Read article
Do I Need a vCISO or Is My MSP Enough? If you’re a small or mid-sized business, you’ve probably asked a version of this question: “We already have an IT provider… aren’t …
Read article
Why Small and Mid-Sized Businesses Should Consider a vCISO If you run a small or mid-sized business, you’ve probably asked yourself a version of this question: “Do we …
Read article
Why Modern Backup Strategy Matters (3-2-1-1) A friend of mine works in IT consulting, mostly on the operational side of things. He was recently called in by a potential …
Read article