Entries by patrick

Microsoft Support Scam

The phone number and web address keep getting taken down and new ones keep popping up. But there is a Microsoft support scam going on requesting personal information. Do Not give them any information.  Here are a couple screen shots from a few different people encountering this scam. Vigilante hackers have done some research and […]

PCI DSS – what you need to know in order to stay compliant

The PCI DSS (Payment Card Industry Data Security Standard) is an industry-wide data security benchmark for firms that deal with payment cards issued by the biggest payment card gateway organizations. The guidelines increase the security of cardholder data as well as minimize the risk of credit card fraud. Developed by the PCI Security Standards Council […]

Social Engineering & Cybersecurity

Social engineering has become the new standard in both cyber-attacks as well as physical security.   Many organizations are fighting back and are quickly making education a priority. First off let’s enumerate a few of the most common types of social engineering attacks and then let’s go over ways to address these threats. Email Phishing […]

Sox Compliance Requirements a Basic Outline

Introduction The Sarbanes-Oxley Act is the law as of 2002. You may remember the infamous corporations that were the driving force behind the Act, such as WorldCom and Enron. SOX accordingly expanded and defined new requirements for all public companies as well as management accounting firms. In addition, boards of public organizations in the United States hold […]

NIST Special Publication 800 53

What Is NIST Special Publication 800 53? NIST Special Publication 800 53, developed by the National Institute of Standards and Technology, provides Federal organizations with a dossier of security controls for the information systems under the purview of the concerned agency. This catalog is not applicable to information systems that are related to national security. […]

The Federal Information Security Management Act (FISMA) and Compliance Requirements

An introduction to FISMA The Federal Information Security Management Act (FISMA) is a landmark piece of federal legislation that was enacted by the United States in 2002 under the E-Government Act of 2002. The federal government enacted the law in order to acknowledge the growing importance of information security to the political, economic, military, and […]

Security Awareness Training & Education Program, Crucial Elements to Incorporate

Does your organization take security awareness seriously? Would your employees be able to defend against social engineering attacks? Is the effectiveness of your organizational security frequently tested? You should be answering a resounding “Yes” to all of these questions.  If you answer “no” or “I don’t know” this may be a sign that your organization has serious security vulnerabilities. The following is […]

Scam claiming to be the IRS, Phone & Email

Scam phishing involving the impersonation of the Internal Revenue Service is on the rise.  The IRS has issued several reports in regards to these scams, warning citizens and providing tips on how to recognize these; 5 ways to recognize these scams, the IRS does not: Call demanding immediate payment, nor call about taxes owed without […]

What is Phishing and are Phishing Attacks Increasing?

With all the computer threats out there, and hacking at an all-time high, individuals and companies alike are taking extra precautions to protect their computers, networks and private information. Still the number of phishing attacks continues climbing, because users continue to fall for the same old tricks. The number of people that still today ask me […]