Tag

Cybersecurity Awareness

Articles on cybersecurity awareness cover the foundational knowledge individuals and organizations need to recognize and respond to digital threats. Topics include safe browsing habits, password hygiene, social engineering tactics, and building a security-first culture across teams.

posts

Computer Virus Prevention

Computer Virus Prevention: 9 Steps That Actually Work

The Virus That Cost a Hospital Chain $100 Million In 2017, the NotPetya malware ripped through networks worldwide. It wasn't theoretical. Nuance Communications, a major healthcare IT vendor, took a $92 million hit. Maersk, the shipping giant, lost around $300 million. Heritage Valley Health System in Pennsylvania lost

Carl B. Johnson May 13, 2024 6 min read
Computer Security Service

Computer Security Service: What Actually Works in 2024

The Breach That a $200K Security Stack Couldn't Stop In January 2024, a mid-sized accounting firm in the Midwest had firewalls, endpoint detection, SIEM logging, and a managed SOC. They spent over $200,000 a year on their computer security service stack. Then an employee clicked a phishing

Carl B. Johnson May 13, 2024 7 min read
Phishing Training for Employees

Phishing Training for Employees: A Practical Guide

In March 2024, a finance employee at a multinational firm in Hong Kong wired $25.6 million to threat actors after a deepfake video call convinced him his CFO had authorized the transfer. One employee. One convincing lure. Twenty-five million dollars gone. That's not a hypothetical — it'

Carl B. Johnson May 03, 2024 7 min read
Phishing Email Detection

How to Recognize a Phishing Email Before You Click

In January 2024, a finance employee at a multinational firm in Hong Kong wired $25 million to threat actors — all because of a phishing email that led to a deepfake video call. That incident made global headlines, but here's what didn't: the thousands of nearly identical

Carl B. Johnson May 03, 2024 7 min read
Business Email Compromise

Business Email Compromise: The $2.9B Threat in 2024

In 2023, the FBI's Internet Crime Complaint Center reported that business email compromise accounted for $2.9 billion in adjusted losses — making it the single costliest category of cybercrime they track. Not ransomware. Not credit card fraud. Email scams where someone pretends to be your CEO, your vendor,

Carl B. Johnson May 02, 2024 7 min read
Whaling Attack

Whaling Attack Cybersecurity: How Execs Get Targeted

The $47 Million Email That Fooled a Fortune 500 CFO In 2016, an Austrian aerospace company called FACC lost €42 million (roughly $47 million USD) because a threat actor impersonated the CEO in an email to the finance department. The message requested an urgent wire transfer for a fake acquisition

Carl B. Johnson Apr 08, 2024 7 min read
Vishing Scam Awareness

Vishing Scam Awareness: Stop Voice Phishing Attacks

The Phone Call That Cost One Company $25 Million In early 2024, a finance worker at engineering firm Arup was tricked into transferring $25 million after receiving a video call that appeared to include the company's CFO and other colleagues — all deepfake recreations. The attack started with a

Carl B. Johnson Apr 08, 2024 7 min read
Ransomware

What Is Ransomware? A Security Pro's Blunt Guide

In September 2023, MGM Resorts watched its slot machines go dark, hotel room keys stop working, and reservation systems crash — all because a threat actor social-engineered the company's help desk with a ten-minute phone call. The attackers deployed ransomware that cost MGM an estimated $100 million in lost

Carl B. Johnson Feb 28, 2024 6 min read
Ransomware Prevention

How to Prevent Ransomware: A Practical Defense Guide

The $1.1 Billion Year That Changed Everything In 2023, ransomware payments topped $1.1 billion globally, according to Chainalysis research. That's more than double the previous year. If you're reading this wondering how to prevent ransomware, understand this first: threat actors aren't slowing

Carl B. Johnson Feb 09, 2024 7 min read
Ransomware Recovery

Ransomware Recovery Steps: A Battle-Tested Playbook

The Phone Call No One Wants to Get at 3 AM I got the call on a Tuesday morning. A mid-sized logistics company had every file server locked with a .lockbit extension. Their dispatchers couldn't route a single truck. Their accounting team was staring at ransom notes instead

Carl B. Johnson Feb 09, 2024 7 min read