Technology Insights Blog: Security

A System and Organization Controls (SOC) report serves as third-party verification that a company is consistently following best practices. The reports follow the Statement on Standards for Attestation (SSAE) 18 requirements set out by the American Institute of Certified Public A…

You may be hearing the term "zero trust" more often these days. Though the concept has been around for years, it’s gained more traction since the mass migration of employees working remotely.

Too soon? You might have guessed that if this question is being asked by tech pros, the answer is probably yes. I recognize this might be unwelcome news for many. A VPN, or Virtual Private Network, looked like the clear choice for a lot of companies looking to accommodate hybrid …

Barracuda, a leader in email protection, application and cloud security, network security and data protection, has recently compiled a comprehensive eBook outlining the 13 email threat types that currently threaten organizations worldwide. These common attacks are listed in order…

There are many different kinds of cyberattacks, but 91% of them begin the same way — with a simple spear phishing email. Phishing scams pose a significant threat to organizations of every size. Despite this, roughly 20% of workplaces only deliver phishing awareness training to th…

Have you updated the software on your Apple device lately? If not, look for any new software updates and install them…now. While your new software is downloading, I’ll explain what this update is for and why it’s important to install new software updates as soon as they’re availa…

Have you updated the software on your Apple device lately? If not, look for any new software updates and install them…now. While your new software is downloading, I’ll explain what this update is for and why it’s important to install new software updates as soon as they’re availa…

What is your Incident Response Plan? An Incident Response Plan (IRP) should contain everything your organization will do in the event of a security incident. A Disaster Recovery Plan (DRP) and an IRP are essential components of a Business Continuity Plan (BCP).

The National Institute of Standards and Technology (NIST) defines Defense-in-Depth (DID) as “An information security strategy that integrates people, technology, and operations capabilities to establish variable barriers across multiple layers and missions of the organization.” H…

In films, cybercriminals are primarily depicted as some sort of genius-level keyboard ninjas, feverishly typing away and sending out a string of attacks in real-time to paralyze an organization or combat another hacker. In reality, most cybercrime is far more mundane, and sadly, …