Knogin Blog

CyberSecurity 101. Six ways to improve your first line of cyber defense - your employees.

October 19, 2018 5:43:55 PM EDT / by Joe Mangano posted in Cybersecurity Awareness, Cybersecurity 101, Cyber Education

0 Comments

In cybersecurity your first line of defense will be your weakest link, unless you reinforce it. 

What is the most important position in football? Many would say the quarterback, right?

After all, their job description includes: reading the defense; adjusting the plays; handing off the ball and making those awe inspiring, crowd cheering amazing touchdown passes. They also happen to be paid the highest salary on the team.

So, they must have the most important job, right?

Instead, I think the most important job could be that of the offensive linemen.

If the offensive line doesn't do their job well and they don't stop the defensive players (the attackers), then what happens to the quarterback? A sack. Ouch! Or, a fumble. Opps. Or, a touchback. Drat. Or even worst, an injured quarterback. Big big ouch!

Well, there is a similar analogy in business. Think of any employee that uses the internet as your 'offensive line'. One of their important jobs is to block attempts by cybercriminals (aka, the defensive attackers) to get through the line (company network) and allow them to 'sack your business'.

Your employees are your company's first line of cyber defense.

But are they taking the steps needed to keep their company data secure? How can you improve their buy-in to the importance of being a crucial part of shielding against cyber attackers?

Read More

Is your business a target for a cyberattack?

October 15, 2018 6:41:19 PM EDT / by Joe Mangano posted in Cybersecurity Awareness, Small Business, Cybersecurity Fundamentals, Cybersecurity 101

0 Comments

Think your small business is too small to be a target for a cyber attack?

Think again.

Small businesses are one of the biggest and most vulnerable targets because personnel, budget and technologies continue to be insufficient to have a strong security policy.

According to the Better Business Bureau (BBB) 36% of business that reported being a target of a cyberattack in 2017 ended up losing money. The average loss for smaller businesses from these cyberattacks is estimated to be  $79,841 USD.

Cybersecurity threats are real and businesses must implement the fundamental tools and tactics to protect themselves, their customers, and their data.  But, what are the fundamentals?

Here is some very good news. 

Some of the most fundamental actions you can take to improve your organization's level of cybersecurity can be accomplished for free or a nominal cost. Some of these may already be in place. 

But, are you covering all the  bases?   
Are you securing all fundamental areas that a cybercriminal might exploit?

Let's say that on Friday, you installed a brand new alarm systems in your business.  But, since the alarm company was in a rush and you wanted to save a few dollars,  you decided not to install a sensor on that really high window that you are 100% sure that no one can ever reach.  Seems like a reasonable trade off, right?

Wrong.  

On Monday, you discover that over the weekend, your business was broken into and robbed, but yet, your alarm was never triggered.  How is that possible?  Ah, it was that 'high window'.  And  just think, for the cost or an additional alarm sensor, that window could have been protected also.

Moral of the story? 

Don't assume criminals won't find a way in, when there is something they want.  Instead, take the time to understand and cover all the fundamental bases  in your cybersecurity. 

What are the cybersecurity fundamentals that your company should implement?

We have 10 of them for you.    Click here and download our report:   'Cybersecurity 101: Ten Cybersecurity Fundamentals for Small Businesses'.

Read More

Google+ strike one, strike two, you're out

October 10, 2018 5:55:18 PM EDT / by Joe Mangano posted in Cybersecurity Awareness, Social Media

0 Comments

Another day and another data breach.   New York Times calls out Google for exposing  "the private data of hundreds of thousands of users of the Google+ social network and then opted not to disclose the issue this past spring, in part because of fears that doing so would draw regulatory scrutiny and reputational damage".

Google 'feared repercussions'.  Really?
Strike 1..

What caused the data breach?  A security bug allowed third-party developers to access Google+ user profile data since 2015 until it was discovered and patched in March of 2018.   But,  it took them 6 months to finally report it to the public. 

Really?  Six months to make it public?  Strike 2..... 

 Embarrassingly, Google admits their internal  'Project Strobe' security audit review also  "crystallized what we’ve known for a while: that while our engineering teams have put a lot of effort and dedication into building Google+ over the years, it has not achieved broad consumer or developer adoption"   Really?  Who knew! (shhhhh, almost everyone knew)

Get ready for a  big announcement.. drum roll please.....  Google+  is going to shut down in 2019. 

Strike 3, Google+ is OUT..
That's OK, because no-one really used their Facebook wannabe anyway.

So, what the moral of the story?

While the Google data breach is small compared to the ones revealed by Facebook,  your online security is something that you should take very seriously.  

With every social media account you sign up for, every picture you post and status you update,  you

Read More

Hello Admin 12345, your days are numbered.

October 8, 2018 4:31:24 PM EDT / by Joe Mangano posted in Cyber News, Cybersecurity Awareness

0 Comments

Have you ever heard of a ‘common sense law’? Well, California just passed SB327 that raises cybersecurity standards.  And it is great timing too, because it’s October and its National Cyber Security Awareness Month.

But first, what is a ‘common sense law’?  When something is ‘common sense’ and ultimately good for you, but yet not enough people are doing that ‘something’, then the lawmakers create a law that requires you to do that ‘something’.  An example would be ‘seat belt laws’ in the US.  

Read More

What do death, taxes and cyber breaches have in common?

October 4, 2018 1:35:06 PM EDT / by Joe Mangano posted in Cybersecurity Awareness, Social Media

0 Comments

If I asked you, 'what are two things that are certain in life?',  what would you say?  Death and taxes, right?

But, what if I asked you,  'what is one thing that is almost certain to affect you in  your Digital Life?'

What would you say?

If you said, 'another announcement of a cyber breach that could affect me, my family or my business', then you would be 100% right.

Ok, while it is a bit of a stretch to tie all 3 of these things together, I hope you get the point.
Facebook alone has reported breaches that affected the data of  87M people in April 2018, and 50M people in September of 2018.  

Your online security is something that you should take very seriously.  Think about this. Do you  know someone  that has been hacked, had their identity compromised or got hit with a virus or..., , maybe even worse?  

With every social media account you sign up for, every picture you post and status you update,  you

Read More

Boo! Its National Cybersecurity Awareness Month

October 1, 2018 5:59:00 PM EDT / by Joe Mangano posted in Cybersecurity Awareness

0 Comments

It's October! As the leaves change to a wonderful pastel of colors, squirrels are preparing by collecting lots of acorns for the winter. Birds are preparing to fly to warmer climates. Children are preparing their best Trick-or-Treat costumes with the hope that  with a good 'Boo' they might get more goodies.

It's  October.  Are you prepared for National Cybersecurity Awareness month?   What's that all about ?

Read More