1576 Sweet Home Rd, Buffalo, NY 14228

Garmin Hit With Ransomware Attack

The smartwatch and wearable technology manufacturer Garmin was recently struck by a ransomware attack, encrypting […]

TikTok and Data Security: What are the Privacy Risks?

TikTok, a video-based social media application, has been quickly gaining popularity throughout the world, especially […]

Understanding and Preparing for the CMMC

The Cybersecurity Maturity Model Certification (CMMC) is a new cybersecurity standard that will be utilized on all future Department of Defense (DoD) acquisitions to regulate […]

The SANS institute and NIST establish password expiration is no longer effective

The SysAdmin, Audit, Network and Security (SANS) institute and the National Institute of Standards and Technology (NIST) has made it clear that password expiration is a dying concept.  Password expiration had its time and place, but now its time for it to fade out of our security awareness practices. View the link below for more …

NIST has spoken! Death to overly complex and ever-expiring passwords!

The National Institute of Standards and Technology (NIST) has made it clear that highly complex passwords should no longer be the standard practice.  Organizations should begin instituting long passwords/passphrases without complicated complexity requirements. View the link below for more information regarding password complexity Death to Complexity, Long Live the Passphrase

FBI warns of COVID-19 Email Phishing Against US Healthcare Providers

Following a global increase in malicious cyber activity exploiting fear derived from the COVID-19 pandemic, the FBI was notified of targeted email phishing attempts against US-based medical providers.  These phishing emails leveraged content relating to COVID-19 to mask and distribute malicious attachments to US healthcare providers.  The FBI recommends companies targeted by a phishing campaign …

FBI Sees Rise in Fraud Schemes Related to the Coronavirus (COVID-19) Pandemic

An Internet Crime Complaint Center (IC3) PDF warns individuals that scammers are leveraging the COVID-19 pandemic to steal your money, your personal information, or both.  Protect yourself and do your research before clicking on links purporting to provide information on the virus; donating to a charity online or through social media; contributing to a crowdfunding …

The NYS Shield Act

In 2019, New York Governor Andrew Cuomo signed into law the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act).  The SHIELD Act expands data security and breach notification requirements to cover all businesses that collect private data from New York residents. Breach Notification Changes Notifications now must be provided to any New York …

National Women’s History Month

Happy #NationalWomensHistoryMonth from our CEO Holly Hubert, CISSP, CISM, CGEIT, CRISC. Hubert spoke at Buffalo Business First Mentoring Monday event. The event highlighted over 40 different bizwomen mentors and mentees…truly an amazing day to engage with such exceptional women. Thank you Michelle Cioci, Donna Collins, and John Tebeau for hosting the event.

What Makes a Strong Password?

What makes a password strong? They need to be long and complex to create a uniqueness about it that will be hard to crack from the hacker’s standpoint. Password requirements are getting more in-depth, below is a list of best practice requirements that are needed for a secure password: 1. Do not input any login, …