10 min read

2019 Password Policy Best Practices

By Rose Doherty on 6/5/19 8:15 AM

 

Complex passwords policies have proven to do more harm than good, resulting in users creating easy to remember passwords that are even easier to hack! The Verizon 2019 Data Breach Investigations Report confirms that hackers are taking full advantage, revealing that hacking is the #1 cause of data breach in 2019.  The report identifies phishing and the use of stolen credentials (passwords) as the top 2 hacking techniques used is successful data breaches.  

Microsoft, The National Institute of Security Technology (NIST) and the US Department of Homeland Security have drastically changed their recommendations for strong password policies. Let's look at their new recommendations, and how to implement these changes in your organization.

Topics: IT Security 2019 Password Policy Recommendations cybersecurity best practices Password Policy Best Practices password security network security cloud security best practices password policy recommendations
3 min read

15 Lessons Learned from a HIPAA Data Breach

By Rose Doherty on 7/25/18 1:14 PM

Implementing a strong HIPAA Compliance framework is a requirement for all Covered Entities and Business Associates, but many practices don't realize this is also their best strategy to prevent a breach from happening!   My hope is that understanding what the OCR will ask you for after a Data Breach will help you implement an IT security framework that will reduce your chances of ever experiencing a data breach.  

Topics: HIPAA Compliance Data Security IT Security cybersecurity ePHI Security HIPAA Risk Analysis
6 min read

8 Tips from the OCR to Prevent a Phishing Attack

By Rose Doherty on 3/14/18 1:23 PM

Phishing remains one of the most successful tactics used by hackers to steal sensitive information such as usernames, passwords, and credit card details. In phishing attacks, cyber-criminals disguise emails to make the recipient think it is from someone they trust, and  The Department of Homeland Security warns that 97% of people can not identify a phishing attempt. Read the following IT security tips from the OCR to learn the best cybersecurity strategies to prevent a phishing attack.  

Topics: IT Security cybersecurity strategies prevent a phishing attack cybersecurity cybersecurity tips
4 min read

7 Questions That Will Protect Your Network from Ransomware

By Rose Doherty on 4/22/16 1:57 PM

The fastest and easiest way for cybercriminals to steal your confidential data or paralyze your network with ransomware is to send an email to your employees and get just one of them to click on a link or open an attachment.  That is all they have to do, and once anyone on the network clicks, they criminal has been invited in to do whatever damage they want.  Employee education is the key to your corporate security.  Teaching them to ask these questions before clicking is one of the most effective security strategies you could implement.

Topics: Data Security IT Security
2 min read

IT Security Best Practice for Mobile Device Use

By Rose Doherty on 12/21/15 8:00 AM


If you’re planning on heading out of town – or simply to the coffee shop to work – you will want to keep these tips in mind to keep your data secure.

Topics: Data Security IT Security
2 min read

Cyber-Security Requires Training Employees

By Rose Doherty on 12/14/15 8:00 AM

Hackers are getting more sophisticated every day, and the ways they lure you to give them access to your computer are downright devious.  It is important that all employees are aware of these simple rules that will help prevent intruders from accessing your computer network.  

Topics: Security HIPAA Compliance Internet Security IT Security
3 min read

Cybercriminals Top 3 Tricks to Hack Your Computer Network

By Rose Doherty on 11/4/15 1:04 PM


Cybercriminals are extremely sophisticated, but there are 3 tricks they use with tremendous success that you need to be aware of.  Knowing their sneaky schemes will help prevent your business from becoming a victim.

Topics: Security Data Security IT Security