Tips From Cybersecurity Experts

🚨 Seattle Airport Shutdown: Could Your Business Survive a Cyber Attack? Just spoke on Newsmax Media, Inc. about the recent Seattle-Tacoma Airport outage that caused a massive disruption in U.S. infrastructure. This isn’t just about delayed flights—cybercriminals managed to cripple one of the most important transportation hubs in America, holding it hostage through what appears to be a ransomware attack. When we FAIL to prioritize cybersecurity before incidents happen, we end up in a reactive state, forced to make tough choices like paying a ransom. I just heard from a company that faced a $900,000 extortion attempt, and their offsite backups weren’t even functioning. They were in a crisis—don’t let this be you! 🔐 Here are 5 CyberSecure Mindset Tips to Prevent Ransomware Attacks: 👉 Backup Regularly and Test Your Backups: While backing up your data is essential, it won't prevent a ransomware attack from occurring. Remember, backups are your last line of defense after the attack hits. Make sure your backups are encrypted, stored offsite, and regularly tested for functionality. 👉 Multi-Factor Authentication (MFA) is Key: Adding an extra layer of security through MFA can stop cybercriminals from easily accessing your systems. Even if they have your password, MFA can block unauthorized access. 👉 Train Your Employees to Spot Phishing: Cybercriminals often use phishing emails as their entry point. Regular employee training is critical for identifying suspicious emails, links, and attachments, which could otherwise compromise your entire network. 👉 Keep Your Software Up to Date: Outdated software is a welcome mat for cybercriminals. Regularly update and patch your systems to close security loopholes that ransomware attacks often exploit. 👉 Have an Incident Response Plan Ready: Preparation is key. Develop a clear, actionable response plan that outlines steps to take if you become a ransomware victim. Ensure everyone knows who to contact and how to proceed. ⚠️ Important Reminder: If you’re hit with a ransomware attack, it’s not just a disruption—cybercriminals have already breached your systems and stolen your data. In reality, this is more than just ransomware—it’s a data breach. I always try to provide five tips to stay safe and I know there are more, what do you recommend companies should do to avoid becoming the next cybercrime victim. Stay proactive, not reactive. Follow me for more insights on how to develop a CyberSecure Mindset and protect your family and business from cyber threats! #CyberSecureMindset #CybersecurityAwareness #RansomwareProtection #DataBreach #CyberThreats #PhishingPrevention #MFA #BackupAndRestore #EmployeeTraining #CyberResilience #CyberDefense #DataProtection #IncidentResponse #DigitalSecurity #OnlineSafety

❗ As many of you probably know, before I was an FBI Special Agent, I was a teacher. Because of this background, I am focused on blending the concepts of cybersecurity and education together to help businesses and individuals stay safe so they can reduce the chance of becoming a cyber victim. I think the current method most companies take in offering cyber training once or twice a year is ineffective. In today's evolving cyber landscape, small and medium-sized businesses (SMBs) face unprecedented challenges when it comes to cybersecurity. There is a fallacy out there that cybersecurity attacks mainly target large corporations, but the reality is far different. In fact, according to a recent report, nearly 43% of all cyber-attacks are aimed at SMBs, often because attackers expect less sophisticated defense mechanisms. Training and education is an area that is often also lacking in the SMB world. 🔑 Why One-Time Training Isn't Enough Initial training sessions on cybersecurity might give your team a foundational understanding, but cybersecurity is not a one-and-done endeavor. The threat landscape is constantly evolving, and what was secure yesterday might not be secure today. Here's why continual training is crucial: 1️⃣ New Threats Emerge Daily: Cybercriminals are innovating faster than ever. Your team needs to keep up. 2️⃣ Technology Evolves: As your business adopts new technologies, new vulnerabilities may emerge that your team needs to be aware of. 3️⃣ Human Error: The most common cause of breaches is still human error. Regular training helps keep best practices at the top of mind. 🎯 Benefits of Continual Cybersecurity Education 1️⃣ Proactive Defense: Ongoing training helps employees recognize threats before they become incidents. 2️⃣ Compliance: Many industries require regular cybersecurity training for compliance purposes. 3️⃣ Employee Confidence: A well-educated staff is more confident in their daily operations, reducing stress and increasing productivity. 💡 Action Steps for SMBs 1️⃣ Annual Assessments: Conduct cybersecurity risk assessments annually, if not bi-annually. 2️⃣ Quarterly Training: Implement quarterly cybersecurity training and frequent drills. 3️⃣ Stay Updated: Keep abreast of the latest in cybersecurity news and update your training materials accordingly. Remember, cybersecurity is a journey, not a destination. As a business owner of leader, you need to prioritize the safety of your businesses, employees, and customers by investing in ongoing cybersecurity education. Stay safe and secure! 🔒 #Cybersecurity #SMBs #DataProtection #ContinualTraining #DigitalSafety #BusinessSecurity #knowledgeisprotection (image source - cyberpilot dot com)

On 13 Nov, the Cybersecurity and Infrastructure Security Agency & the Federal Bureau of Investigation (FBI) released a statement (https://lnkd.in/ezrFy_4j) on the US government's investigation into PRC targeting of telco infrastructure: “PRC-affiliated actors have compromised networks at multiple telecommunications companies to enable the theft of customer call records data, the compromise of private communications of a limited number of individuals who are primarily involved in government or political activity, and the copying of certain information that was subject to U.S. law enforcement requests pursuant to court orders. We expect our understanding of these compromises to grow as the investigation continues." With the investigation ongoing, folks should take basic steps now to protect their personal communications. With gratitude to CISA's Senior Technical Advisor Bob Lord (https://lnkd.in/e-WxWiFF) consider the below steps: - Enable FIDO authentication or FIDO https://lnkd.in/ezzyha7t for email & social media accounts - Migrate off SMS MFA for all other logins. Migrate to FIDO/passkeys if you can, otherwise to an authenticator app - Use a password manager for all passwords. Use a strong pass phrase (https://lnkd.in/ebPpTAU5) for the vault password. - Set a telco PIN to reduce chances of a SIM-swap attack - Update the OS and all apps and turn on auto update Additional tips: 1. Encrypt all text and voice communications (some options): - Signal works well on iPhones & Android phones. - iMessage is great if all your contacts are within the Apple ecosystem, though that’s limiting - Collaboration suites like Google Workspace or Teams can work but don’t always encrypt as you might assume. For example, Teams encrypts data point-to-point, meaning it’s decrypted on Microsoft’s servers before re-encrypting it to the recipient. If you want end-to-end encryption, there’s an option, but it’s off by default and only supports two people on the call. - WhatsApp might be ok for some people based on their threat model but understand metadata it keeps (https://lnkd.in/eQkP-Ety) & how it's used (https://lnkd.in/eiZmxgi4). 2. If you use an iPhone disable these carrier-provided services that increase the attack surface: - Disable: Settings > Apps > Messages > Send as Text Message - Disable: Settings > Apps > Messages > RCS Messaging > RCS Messaging 3. Protect DNS lookups (some options): - Apple iCloud Private Relay - Cloudflare’s 1.1.1.1 resolver - Quad9’s 9.9.9.9 resolver 4. Use recent hardware: Apple (13 or newer) or Google (Pixel 6 or newer) 5. Depending on your threat model, consider enabling Lockdown Mode on iPhones: It will disable some features, but it’s manageable

The "set it and forget it" approach to cybersecurity is a ticking time bomb. Why? Because cybersecurity isn't a one-and-done deal.  It's an ongoing battle that requires constant vigilance and adaptability. Threat actors are often relentless, constantly sharpening their skills and finding new ways to infiltrate your defenses.  If you're not doing the same, you're leaving the front door open for them to enter and wreak havoc on your business. What can you do to stay ahead of the game?  1. Treat cybersecurity like a subscription, not a one-time purchase. Stay on top of software updates and patches like your life depends on it (because, let's be real, your business does). 2. Continuously educate your team on the latest threats and best practices. Cybersecurity isn't just an IT problem; it's an everyone problem. 3. Regularly review and update your security policies and procedures. The cybersecurity landscape is constantly shifting, and your strategies need to keep up. 4. Conduct regular risk assessments and penetration testing. Identify vulnerabilities before the bad guys do, and plug those holes faster than lightning. 5. Create a culture of cyber resilience. Encourage your team to be proactive, curious, and unafraid to question the status quo regarding security. Staying vigilant and proactive with cybersecurity can feel like a never-ending battle.  But complacency costs far more than the effort required to stay secure.