Blog

Home/Blog

Don’t be like Chicken Little, but don’t ignore Cassandra either

Cassandra, a priestess of Apollo in Greek mythology cursed to utter true prophecies, but never to be believed   On my first day of the Marine Intelligence School, my instructors warned the class not to fall into one of the following two categories: 1) Apathy. When reading classified intelligence reports, it's easy to feel overwhelmed and discouraged by bad news. “The world is so messed up, there’s nothing we can do about it.” 2) Panic. It’s easy to become ‘Chicken [...]

2020-05-18T11:51:00-04:00By |

Stop the music! Law firm hack foreshadows celebrity doxing

Once again, a major New York law firm was hit by a ransomware attack, exposing their client’s personal and private information - several of whom are prominent musicians. The specific ransomware, commonly referred to as REvil or Sodinokibi, has done significant damage since being introduced in 2019. Viewed in isolation, this event - this specific attack and its effect on these unlucky celebrities - seems almost run of the mill. After all, the event involving Panamanian law firm Mossack Fonseca [...]

2020-05-15T10:13:28-04:00By |

Financial repercussions for Marriott in wake of data breach

Day by day, we gloss over the latest breach news without connecting the event with our own company. Data breach cases are daily events in the media, so even a well-read businessperson can be lulled into 'data breach fatigue.' While the reputational damage of a data breach incident is easy to see and feel, financial liability is harder to quantify from a distance. Cautionary tales abound, and here's a prime example. In November 2018, Marriott announced that it had been [...]

2020-04-28T08:37:26-04:00By |

Surviving the Economic Typhoon

How large companies can do their part for small businesses In stormy seas, it’s better to be on a capital ship than a smaller one. For those familiar with Naval History, Typhoon Cobra, did significant damage to the US Fleet in December 1944. The smaller escort destroyers, without sufficient fuel reserves to use as ballast or for maneuvering, were hardest hit. Three capsized with the loss of 790 crew. Today, we face a similar crisis. As the economy comes to [...]

2020-03-22T14:21:49-04:00By |

Why Layer 8 Security Became HITRUST Assessors

  For years we were asked if we could provide a 'seal of approval' or a 'certified by…' graphic for our clients. We always ensured that our clients were adhering to their necessary standards, but a seal of approval, or a certification, or a one-size-fits-all framework just wasn’t available. The approach used in the HITRUST CSF (Common Security Framework) greatly reduces the level of effort required for organizations’ assessment and reporting processes, and thus saves substantial time and money. This [...]

2020-04-06T15:17:17-04:00By |

Cyber Considerations For Your COVID-19 Planning

Cyber Considerations For Your COVID-19 Planning Managing Remote Workers, Thinking of Business Continuity, Disaster Recovery, and More For the first time in a long time companies need to manage the extremely disruptive effects of a novel virus. In response, businesses are changing the way they operate to limit the risks to employees and customers. To further complicate matters, businesses are also having to respond in a way that adheres to the cybersecurity practices that have become marketplace standard. This is [...]

2020-03-12T19:00:04-04:00By |

Leadership Musings by JPL #3

One of the most rewarding things we as leaders get to do is see our teammates succeed and receive promotions. Regardless of occupation (military or otherwise) seeing our colleagues grow in their careers is very fulfilling. I was honored on Sunday to attend the promotion ceremony of Major Samuel (Sam) Nop, Pennsylvania Air National Guard. Sam used to work for me at Marine Air Group 49 as a Corporal of Marines. At one point, Sam came to me and let [...]

2020-03-11T02:05:32-04:00By |

The Answer to Your Data Risk Management and Compliance Dilemma

Written by Mariano Mattei and Sanya Dayo -- Is your company undergoing a digital transformation? Look around your industry. Most likely your competitors are in a mad dash to gather and use data more effectively, to enter new markets and/or to surpass their competition. This ever-growing body of data offers organizations great power, and with great power comes great responsibility. In response, both the government and your third party partners are rightfully mandating that companies protect data, and ultimately, protect [...]

2020-04-13T13:40:38-04:00By |

The Trend from 2019 You Didn’t Expect

Biggest trend in 2019 - Executives let their IT departments determine the risk level of the entire company. What actually happened in 2019? Increase in Ransomware Increase in Business Email Compromise Increase in compliance driven by clients Increase in compliance driven by EU and (incoming… California) What should you be doing in 2020? Avoiding phishing and social engineering attempts Using a password manager AND not repeating your passwords Use multi-factor and advanced biometrics when available Shocked by any of this? [...]

Nation-State Activity – Attack on Iran and What You Should Know

This week, the US carried out an airstrike against an Iranian General, Qasem Soleimani. Iran's Supreme Leader, Ayatollah Ali Khamenei, warned that "harsh retaliation is waiting" for the US after the airstrike. Khamenei declared three days of public mourning and appointed Soleimani's deputy to replace him. Iranian President Hassan Rouhani called the killing a "heinous crime" and vowed his country would "take revenge." Many pundits are debating what form of retaliation Iran will take. While kinetic actions may be among [...]

2020-01-05T17:04:47-05:00By |