May 17, 2022
Good morning, everyone!
The latest critical vulnerabilities:
Patch All the Things!
Cyber liability insurance
I read this great blog post recently and wanted to share ”Your cyber insurance probably isn't good enough”:
Cyber insurance, as a product, is still a very new offering. Providers and purchasers alike are still figuring out what the policies should contain.
The result? Lots of companies have ill-fitting cyber insurance coverage that doesn’t match their risk profile and organizational needs.
Seriously, if you own a business, this post is worth reading. It's chock-full of hard info and good advice.
Business Email Compromise: The $43 Billion Scam
The FBI recently published a new Public Service Announcement on business email compromise, the most common form of which is using email to trick a bookkeeper into changing the deposit bank on record for a vendor or an employee. It happened to someone I know just this past week, and it’s happened many times to many people I know over the past few years.
What’s the best defense against this type of fraud?
PICK UP THE PHONE!
Seriously. Have a policy that ANY change in banking information requested electronically must be confirmed by asking a real, live person to confirm the change, in person or on the phone.
Hope this gives you something to think about this week!
Talk to you again soon!
Security Awareness Training Available Here, There, Everywhere!
Thanks to COVID-19, lots of things went virtual, including my employee Security Awareness Training. Live training made a comeback a few months ago, but many organizations are retreating. No worries. Wherever you and your employees may be, I can deliver an interesting and informative training session in whatever format you prefer.
Contact me to schedule your employee training sessions. They're fun! ☺