Tag Archives: IT Security

O365 – No reason to share passwords

June 10, 2021 There’s no reason to share passwords any more to provide access to a corporate email account. That’s right – whether it’s a generic company email address, such as billing@company.com, or an executive’s email, there’s a more secure method available in Office 365 (M365) you should use. What’s more – doing it our way can save … Continue reading "O365 – No reason to share passwords" Read More

Biden urges private companies to protect against ransomware

June 4, 2021 The Biden administration Wednesday urged private U.S. companies to take five key steps to protect against ransomware. These are best practices most likely to reduce an organization’s risk of succumbing to a ransomware attack. Our clients are very familiar with these five steps. They are: One of the key measures missing from this request is … Continue reading "Biden urges private companies to protect against ransomware" Read More

Don’t plan on paying to recover from ransomware

May 26, 2021 Q: What’s worse than having your systems encrypted by ransomware? A: Discovering hackers used two different strains of ransomware, meaning your data is double-encrypted. Yes, this nightmare is out there, according to a recent Wired article. The article cites cases where combinations of  REvil and Netwalker malware, as well as MedusaLocker and GlobalImposter ransomware combinations, … Continue reading "Don’t plan on paying to recover from ransomware" Read More

Ransomware payments may add U.S. sanctions to your costs

May 21, 2021 Did you know – the U.S. Treasury Department has warned that making ransomware payments could bring sanctions on your organization. The warning also applies to banks and insurance companies, as well as firms negotiating the payments. This is because ransomware can come from a sanctioned country or bad actor. For example, one U.S. sanctioned country, … Continue reading "Ransomware payments may add U.S. sanctions to your costs" Read More

Cybersecurity hiring versus outsourcing

May 20, 2021 In the wake of  Colonial Pipeline and all the related news stories, cybersecurity hiring may be top of mind for organizations with IT security needs. An obvious solution is to “hire someone” to address security needs. But cybersecurity hiring is not an easy fix. The latest numbers from CyberSeek, an organization focused on the cybersecurity … Continue reading "Cybersecurity hiring versus outsourcing" Read More

Mac users: Install latest software updates ASAP

May 4, 2021 Less than a week after pushing out a major update, Apple sent out another software update – and Mac users should install it right away. The new updates fix bugs in the new iOS software – including one that could allow criminals to take over your device.  Security experts recommend you install these patches as … Continue reading "Mac users: Install latest software updates ASAP" Read More

Ransomware: National security risk needs global approach

May 3, 2021 The rising scourge of ransomware needs a global approach to halt its devastation, a task force with government and corporate representatives announced last week. Ransomware is “a flourishing criminal industry” which “routinely imperils lives,” the task force organized by the non-profit Institute for Security and Technology wrote. Utilities, hospitals, schools, military posts, and municipalities all … Continue reading "Ransomware: National security risk needs global approach" Read More

IMPROVE YOUR TECH IQ: Why Multifactor Authentication is so important

April 29, 2021  By now, you’ve probably heard of multifactor authentication, aka MFA and 2FA. You have some accounts that send text messages with five or six numbers to your phone. Maybe your company makes you use an in-house authentication system where you must tap “approve” on your phone. You may even log into some apps on your … Continue reading "IMPROVE YOUR TECH IQ: Why Multifactor Authentication is so important" Read More

ImageQuest named to CRN’s “Security 100”

March 4, 2021 The Channel Co. named ImageQuest LLC to the 2021 CRN Security 100 list. CRN’s annual Security 100 list helps purchasers decide what technologies and vendors they should trust in the crowded and complex security vendor market. It is part of the MSP 500, a list of North American technology vendors with “innovative and forward-thinking approaches … Continue reading "ImageQuest named to CRN’s “Security 100”" Read More

Improve your Tech IQ: What does “Zero-Day” mean?

March 2, 2021 When you read articles about breaches and security warnings, you may see the term “zero-day,” as in “zero-day attack,” or “zero-day exploit.” Zero-Day refers to a system vulnerability that is unknown to IT security providers. A zero-day attack allows a cybercriminal to exploit the vulnerability to inject malware, steal data assets, or crawl through the … Continue reading "Improve your Tech IQ: What does “Zero-Day” mean?" Read More

You can’t afford to postpone investing cybersecurity in 2021

March 2, 2021 In 2021, complacency about your IT security is dangerous. Recent news about hidden, extensive breaches of state and federal government entities and private corporations shocked many in IT and cybersecurity. According to investigators, Russian agents spread espionage malware through updates from IT management firm SolarWinds. The list of victims continues to grow, and investigators believe … Continue reading "You can’t afford to postpone investing cybersecurity in 2021" Read More

ImageQuest guidance on the SolarWinds cyberattack

December 18, 2020 12/22/202 UPDATE: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published further guidance regarding the SolarWinds cyberattack. Aimed at federal agencies, this supplemental guidance nevertheless is helpful to other organizations that use SolarWinds’ Orion software. Under “Conditions for Reconnecting Unaffected Versions,” CISA says it is “still assessing whether it is appropriate to relax ED 21-01’s … Continue reading "ImageQuest guidance on the SolarWinds cyberattack" Read More