Computer Security News and Insights
In 2023, MGM Resorts lost roughly $100 million after a threat actor social-engineered their way past a help desk with a single phone call. That one incident tells you more about what cybersecurity actually is — and isn't — than any textbook ever could. If you've searched for
The Talent Shortage That's Driving Six-Figure Salaries In 2023, the FBI's Internet Crime Complaint Center (IC3) reported over $12.5 billion in losses from cybercrime — a number that's only grown since. Organizations are desperate for qualified defenders, and that desperation shows up directly in
The Breach That Started With a "Managed Security" Contract In 2024, Change Healthcare — a company with dedicated security vendors and enterprise-grade tools — suffered a ransomware attack that disrupted healthcare claims processing across the entire United States. UnitedHealth Group confirmed the breach affected roughly 100 million individuals. The attackers
The Breach That Rewrote the Cybersecurity Definition for Everyone In 2023, MGM Resorts lost an estimated $100 million after a social engineering attack that started with a single phone call to their help desk. The threat actor didn't exploit a zero-day vulnerability. They didn't brute-force a
The Breach That Started With a Single Reused Password In January 2024, a midsize accounting firm lost access to every client file it had. A single employee reused their corporate email password on a third-party scheduling app. That app got breached. Within 48 hours, a threat actor used those stolen
In 2023, MGM Resorts had world-class computer security software deployed across its entire infrastructure. Firewalls, endpoint detection, SIEM platforms — the works. A single social engineering phone call bypassed all of it, leading to an estimated $100 million in losses. That incident should have been a wake-up call for every organization
A Two-Billion-Dollar Word Nobody Can Explain In 2023, the SEC adopted new cybersecurity disclosure rules requiring every public company to report material cyber incidents within four business days. Boards scrambled. Legal teams panicked. And a surprising number of executives asked the same question behind closed doors: what does "cyber&
When Change Healthcare suffered its catastrophic ransomware attack in early 2024 — disrupting pharmacy operations across the United States for weeks — investigators found a familiar culprit: stolen credentials and no multi-factor authentication on a critical system. The company's parent, UnitedHealth Group, eventually disclosed the breach affected roughly 100 million
The Hiring Manager Doesn't Care Where You Sat in Class I've reviewed over a thousand resumes for security analyst and incident response roles. Not once — not a single time — have I rejected a candidate because their online computer security degree wasn't earned in a
The Misconfiguration That Exposed 100 Million Records Updated for 2026 In 2019, a former Amazon Web Services employee exploited a misconfigured web application firewall to steal personal data from over 100 million Capital One customers and applicants. The breach cost Capital One more than $270 million in settlements and remediation.
