Hello, 1977 was a great year, for so many reasons. Not least among them was the release of the Ramones’ Rocket to Russia album, on side one (remember when albums had sides?) of which, Joey sang: I don’t care (He don’t care) I don’t care (He don’t care) I don’t care about these words I … Read more
Greetings, Welcome to National Cybersecurity Awareness Month and the Fall 2021 issue of the United States Cybersecurity Magazine! As always, we’d like to take a moment to thank our supporters, sponsors, contributors and everyone else who makes the magazine possible. All of us here at the United States Cybersecurity Magazine remain committed to bringing you, … Read more
Breach and Attack Simulation (BAS) is a new component of a proactive cybersecurity program. The simulation is designed to continuously assess your security controls based on configuration, scanning, and testing leveraging more automation than a traditional pentest. BAS, as it is known, is designed to enhance a regular vulnerability scanning program and consolidate the view … Read more
The article will explain what Synthetic Identity Fraud (SIF) is; why you should care; and what to do to protect yourself/child/business. It is a high-level overview meant to be informative and educational. By the end of the reading, you will hopefully agree with this premise and these definitions. Half-Artificial and Half-Human: A Synthetic Identity (SID); … Read more
Penetration testing is arguably one of the most necessary operations within cybersecurity and its importance is becoming more relevant to C-level executives. It is estimated that almost 70% of business leaders believe that their cybersecurity risks are increasing; therefore, there is a great need for continuous reduction of these risks. As threats continue to evolve … Read more
Ransomware is a form of malware that utilizes a number of vectors to access computers. With the rise of cloud, mobile, and remote work, ransomware attacks have significantly increased as have ransom demands. An example of a common vector is phishing which is delivered via email and allows a threat actor to control a victim’s … Read more
Pogo infamously stated in a 1970 cartoon “we have met the enemy and he is us.” As cybersecurity professionals, we recognize that humans are the weakest link when it comes to securing our businesses. We ask employees to not open suspicious attachments or click on suspicious links; to use strong, unique passwords; to follow rules … Read more
Data – Promise and Peril According to Cisco, global internet traffic will grow from 0.001 petabytes (or PB, where each PB equals 10005 bytes) in 1990, to an estimated 273 exabytes (or EB, where each EB equals 10006 bytes or 1018 bytes) by 2022 (Internet Traffic 2021). By way of a very loose analogy, some … Read more
Privacy initiatives are gaining traction across the country. The problem is that the states’ laws are inconsistent, leaving small and mid-sized businesses, in particular, struggling to understand by which laws they are bound and which “reasonable” means to implement towards securing the personal information they control and process. Moreover, while all 50 states have breach … Read more
Introduction Ransomware is one of the most prolific cybersecurity threats that businesses face. A combination of a virus and a worm, combined with numerous social engineering techniques, have made it a billion-dollar industry for criminals across the planet. Ransomware is a common and fast-growing industry made even worse through modern franchising by more extensive and … Read more
