The phone number and web address keep getting taken down and new ones keep popping up. But there is a Microsoft support scam going on requesting personal information. Do Not give them any information. Here are a couple screen shots from a few different people encountering this scam. Vigilante hackers have done some research and […]
The PCI DSS (Payment Card Industry Data Security Standard) is an industry-wide data security benchmark for firms that deal with payment cards issued by the biggest payment card gateway organizations. The guidelines increase the security of cardholder data as well as minimize the risk of credit card fraud. Developed by the PCI Security Standards Council […]
Social engineering has become the new standard in both cyber-attacks as well as physical security. Many organizations are fighting back and are quickly making education a priority. First off let’s enumerate a few of the most common types of social engineering attacks and then let’s go over ways to address these threats. Email Phishing […]
Introduction The Sarbanes-Oxley Act is the law as of 2002. You may remember the infamous corporations that were the driving force behind the Act, such as WorldCom and Enron. SOX accordingly expanded and defined new requirements for all public companies as well as management accounting firms. In addition, boards of public organizations in the United States hold […]
What Is NIST Special Publication 800 53? NIST Special Publication 800 53, developed by the National Institute of Standards and Technology, provides Federal organizations with a dossier of security controls for the information systems under the purview of the concerned agency. This catalog is not applicable to information systems that are related to national security. […]
An introduction to FISMA The Federal Information Security Management Act (FISMA) is a landmark piece of federal legislation that was enacted by the United States in 2002 under the E-Government Act of 2002. The federal government enacted the law in order to acknowledge the growing importance of information security to the political, economic, military, and […]
Does your organization take security awareness seriously? Would your employees be able to defend against social engineering attacks? Is the effectiveness of your organizational security frequently tested? You should be answering a resounding “Yes” to all of these questions. If you answer “no” or “I don’t know” this may be a sign that your organization has serious security vulnerabilities. The following is […]
Scam phishing involving the impersonation of the Internal Revenue Service is on the rise. The IRS has issued several reports in regards to these scams, warning citizens and providing tips on how to recognize these; 5 ways to recognize these scams, the IRS does not: Call demanding immediate payment, nor call about taxes owed without […]
With all the computer threats out there, and hacking at an all-time high, individuals and companies alike are taking extra precautions to protect their computers, networks and private information. Still the number of phishing attacks continues climbing, because users continue to fall for the same old tricks. The number of people that still today ask me […]