We need more humility in cybersecurity. Let me explain … I was scrolling through LinkedIn and came across a comment on a post about FireEye from my friend Raf Los that reminded me of this issue and a webinar I did with SecureWorld several months back. In the webinar, I was asked what is the…
Tag: Incident Response Plan
***URGENT*** MEMO TO: “The IT Guy” RE: Securing RDP Access–Changing the RDP Port Does Not Work!
***URGENT MEMORANDUM*** TO: “The IT Guy” FROM: Your clients’ Incident Response Coach SUBJECT: Securing RDP Access–Changing the RDP Port Does Not Work! This Memo comes out of necessity, please take it seriously. I have now lost track of how many times over the past couple of months I have been on “scoping calls” with a…
2 Critical Cyber Insurance Issues All Companies Must Consider Now, Before an Incident!
There are two critical cyber insurance issues that every single company must understand right now, before they have an incident: In today’s environment, every company has substantial cyber risk and every company needs cyber insurance. Period. Cyber insurance is not covered by typical business insurance and companies must have the right cyber insurance for their…
Two Cyber Insurance Issues Service Providers Should Discuss with Their Clients
If you are a service provider, there are two things about cyber insurance that you should discuss with your clients and make sure they understand. Watch this 2 minute video to better understand why: So, what are those two things? In today’s environment, every company has substantial cyber risk and every company needs cyber insurance….
***URGENT*** MEMO TO: “THE IT GUY” RE: #RANSOMWARE / WIPING DATA
***URGENT MEMORANDUM*** TO: “The IT Guy” FROM: Your clients’ Incident Response Coach SUBJECT: Your clients affected by ransomware STOP OVERWRITING / WIPING / DELETING OR OTHERWISE DESTROYING YOUR CLIENTS’ DATA WHEN THEY ARE AFFECTED BY RANSOMWARE!!! PLEASE!!! PRETTY PLEASE!!! PRETTY PLEASE WITH SUGAR ON TOP!!! JUST STOP IT!!! Seriously, everyone understands that ransomware is scary…
Complimentary SecureWorld Webinar – 2016 Breaches: Lessons Learned
You are welcome to attend a complimentary SecureWorld webinar with these featured presenters: Erich Kron, Security Awareness Advocate, KnowBe4 Aliki Liadis-Hall, Director of Compliance, North American Bancard Craig Spiezle, Executive Director & President, Online Trust Alliance Shawn Tuma, Cybersecurity & Data Privacy Partner, Scheef & Stone, LLP The webinar qualifies for CPE Credits, and will take place…
Cybersecurity: How Long Should An Incident Response Plan Be?
Last evening I had the pleasure of talking cybersecurity law with a group of CIOs from some pretty sophisticated companies. It was a great discussion and I learned as much as I shared — just the way I like it. During our discussion, the subject of Incident Response Plans came up and I explained why…