Cyber Security News & Tips by Glenda R. Snodgrass for The Net Effect

[ View this email in your web browser ] [ Visit our archives ]

May 17, 2022

Good morning, everyone!

The latest critical vulnerabilities:
  • Chrome needs to be updated immediately! 9 critical vulnerabilities have just been patched.
  • Cisco has released important security patches for Cisco Adaptive Security Appliance (ASA), Firepower Threat Defense (FTD) and Firepower Management Center (FMC)
  • F5 released a fix for a vulnerability being actively exploited in its Big-IP appliances
  • Microsoft has released patches for flaws in Azure Data Factory and Azure Synapse Pipelines
  • Microsoft also released more than 70 patches for Windows products

Patch All the Things!



Cyber liability insurance

I read this great blog post recently and wanted to share ”Your cyber insurance probably isn't good enough”:

Cyber insurance, as a product, is still a very new offering. Providers and purchasers alike are still figuring out what the policies should contain.

The result? Lots of companies have ill-fitting cyber insurance coverage that doesn’t match their risk profile and organizational needs.

Seriously, if you own a business, this post is worth reading. It's chock-full of hard info and good advice.

Business Email Compromise: The $43 Billion Scam

The FBI recently published a new Public Service Announcement on business email compromise, the most common form of which is using email to trick a bookkeeper into changing the deposit bank on record for a vendor or an employee. It happened to someone I know just this past week, and it’s happened many times to many people I know over the past few years.

What’s the best defense against this type of fraud?

PICK UP THE PHONE!

Seriously. Have a policy that ANY change in banking information requested electronically must be confirmed by asking a real, live person to confirm the change, in person or on the phone.

Hope this gives you something to think about this week!

Remember, you can read past editions of this newsletter on our website, along with tons more information under the Resources tab.

Talk to you again soon!

Glenda R. Snodgrass

Glenda R. Snodgrass
grs@theneteffect.com
(251) 433-0196 x107
https://www.theneteffect.com
For information security news & tips, follow me!

Security Awareness Training Available Here, There, Everywhere!

Thanks to COVID-19, lots of things went virtual, including my employee Security Awareness Training. Live training made a comeback a few months ago, but many organizations are retreating. No worries. Wherever you and your employees may be, I can deliver an interesting and informative training session in whatever format you prefer.

Contact me to schedule your employee training sessions. They're fun! ☺

TNE. Cybersecurity. Possible.

Speak with an Expert

Contact

The Net Effect, L.L.C.
Post Office Box 885
Mobile, Alabama 36601-0885 (US)
phone: (251) 433-0196
fax: (251) 433-5371
email: sales at theneteffect dot com
Secure Payment Center

The Net Effect, LLC

The Net Effect is a CMMC-AB Registered Provider OrganizationRPO

Copyright 1996-2022 The Net Effect, L.L.C. All rights reserved. Read our privacy policy