Directive Blogs

Not long ago, we shared some information about the New York SHIELD Act—Stop Hacks and Improve Electronic Data Security—and what it has changed in terms of business cybersecurity preparedness across the board. This time, we wanted to discuss all that we’ll do to ensure that your business remains compliant with this relatively new law.

The effectiveness of your business’ IT security is largely contingent on how your IT operates. As a result, it is extremely important to ensure that your staff understands the role they play in protecting your business’ assets. This month, we discuss what you should prioritize when putting together a security training platform; an essential part of any business’ attempts to keep their IT secure. 

With no unifying federal law that aims to protect data security, individual states—including our home state of New York—have had to take it upon themselves to create such privacy laws.

Here in the Empire State, that law is the SHIELD Act.

Technology has come a long way, but so too have the threats which leverage it to their advantage. How have the cyberthreats which target your organization evolved over time, and what can you do to protect yourself?

We talk a lot about preventing threats from seeping into your company, and hoo boy, there are a lot of them. From ransomware to zero-day exploits to targeted social media attacks, there are a lot of threats out there that business owners need to be aware of. We’re not going to talk about any of those today.

Why? Because you, as the business owner, are likely a threat to your own business.

Your network security is of the utmost importance to your business for numerous, hopefully obvious reasons. However, there are a few errors that are easy enough to make that could easily be the proverbial monkey wrench in the works. Let’s go over what these network security faux pas look like, so you can resolve them more effectively (and don’t worry, we’ll discuss that, too).

With many people continuing to work remotely to some extent, it would be irresponsible not to acknowledge that remote work can introduce a level of risk to an organization’s cybersecurity. This makes it all the more important that this security is locked down. Let’s discuss the concept behind zero-trust security, and why it is becoming the benchmark that organizations of all sizes should meet.

Prices are going up and it’s taking longer to get the hardware you might need for your business. Here are some things that might help. Prices are going up and it’s taking longer to get the hardware you might need for your business. Here are some things that might help.

The latest obstacle for small businesses isn’t exactly new, it’s been a growing issue since the start of the pandemic, but it’s definitely catching up to local businesses in a big way now; the global chip shortage.

Ransomware is widely regarded as one of the worst modern cyberthreats out there today, and there's plenty of evidence to support this. These attacks and their aftereffects can devastate businesses of all industries. Let's consider why it is that ransomware is so dangerous, and what can be done to fight it. 

Ransomware has been commonplace for years, with no sign of it going anywhere anytime soon. Let’s take a few moments to examine the state of ransomware right now, and review how to keep it from impacting your businesses.

The cyberattack on SolarWinds was devastating for many reasons, and Microsoft has officially uncovered yet another type of malware used in the attack on the software provider. This time, it is a backdoor threat they have named FoggyWeb. What does this threat do and why is it so important to look at this incident even now?

What happens when your company configures something on its infrastructure incorrectly? It turns out, according to a recent data leak, that a lot can go wrong, especially in regards to cybersecurity and the privacy of sensitive records. The affected software was not an unknown third-party application, but was actually Microsoft! How did one of the world’s largest software developers put out software that potentially exposed millions of records? Let’s dig into the details.

While it only makes sense to assume that a cybercriminal would focus specifically on those targets that would bring them the greatest profit—in other words, larger businesses—the reality of modern cybercrime renders this assumption grossly outdated. Let’s examine how different developments in ransomware have made it possible for cybercriminals to be far less discerning in who they target.

Ransomware is such a massive threat that all businesses should be aware of the latest news and findings regarding how it spreads and how it can be prevented. According to a recent report, the latest modes of transporting ransomware have been revealed. What can your organization do to keep ransomware off of its network? Let’s find out.

Small businesses often struggle with technology, primarily because they either lack strong IT leadership or they lack the resources to ensure IT maintenance and management happens without a hitch. There are several mistakes that a small business can make when it comes to technology management. Here are four of the biggest and most common that you absolutely cannot afford to make.

Ransomware, ransomware, ransomware. Every day the news reports of a company, a hospital, or even a city getting hit with a cyberattack. It is to the point where it is becoming “background noise”. Unfortunately, many business owners have reached the point where they have begun to tune out the warnings and are lowering their defenses, exposing themselves to risk. Here are 5 misconceptions local businesses have regarding ransomware.