Tag

Cybersecurity Awareness

Articles on cybersecurity awareness cover the foundational knowledge individuals and organizations need to recognize and respond to digital threats. Topics include safe browsing habits, password hygiene, social engineering tactics, and building a security-first culture across teams.

posts

Ransomware Examples

Ransomware Examples: What 2024 Attacks Teach Us

The Ransomware Landscape Right Now Is Brutal In January 2024, the Hive ransomware group's infrastructure had barely been dismantled by the FBI before new ransomware gangs filled the vacuum. If you searched for ransomware examples hoping to understand what's coming next, the best place to start

Carl B. Johnson Feb 09, 2024 7 min read
Data Breach

What Causes a Data Breach: 7 Root Causes Behind Every Attack

In September 2023, MGM Resorts International lost an estimated $100 million after a threat actor social-engineered a help desk employee with a single phone call. One conversation. That's all it took to cripple slot machines, hotel check-in systems, and digital room keys across Las Vegas for over a

Carl B. Johnson Jan 22, 2024 7 min read
Data Breach Examples

Data Breach Examples: What 2024 Trends Tell Us

The Breach That Cost MGM Resorts Over $100 Million In September 2023, a threat actor called Scattered Spider brought MGM Resorts to its knees — not with some exotic zero-day exploit, but with a phone call. A social engineering attack against the company's IT help desk gave attackers the

Carl B. Johnson Jan 22, 2024 7 min read
Strong Passwords

How to Create a Strong Password That Actually Stops Hackers

In September 2023, a credential stuffing attack against 23andMe exposed the personal data of nearly 7 million users. The root cause wasn't some exotic zero-day exploit. It was reused, weak passwords. Attackers took credentials leaked from other breaches, tried them on 23andMe accounts, and walked right in. That&

Carl B. Johnson Jan 22, 2024 7 min read
Password Manager Benefits

Password Manager Benefits That Stop 80% of Breaches

The Breach That Started With "Company123!" In September 2023, MGM Resorts lost an estimated $100 million after a threat actor used social engineering to compromise employee credentials. The attack didn't require some sophisticated zero-day exploit. It started with identity — with passwords and people. And it'

Carl B. Johnson Jan 22, 2024 7 min read
Strong Passwords

Strong Password Examples That Actually Stop Hackers

The Password That Cost One Company $4.4 Billion In 2017, Equifax suffered a breach that exposed 147 million records and eventually cost the company over $4 billion in total losses and settlements. One of the contributing factors? Weak internal credential management. The admin username and password for a critical

Carl B. Johnson Dec 11, 2023 7 min read
Insider Threat Indicators

Insider Threat Indicators: 12 Red Flags You're Missing

In January 2023, the U.S. Department of Justice charged a former Twitter employee with spying for Saudi Arabia — accessing the personal data of dissidents and handing it to foreign intelligence. He'd worked at the company for years. Passed background checks. Sat in meetings. Nobody flagged a thing

Carl B. Johnson Dec 09, 2023 7 min read
VPN Best Practices

VPN Best Practices: What Actually Protects You in 2023

In May 2023, Barracuda Networks disclosed that a zero-day vulnerability in its VPN appliances had been actively exploited since October 2022 — giving threat actors seven months of undetected access to customer networks. CISA issued an emergency directive. The patch wasn't enough; Barracuda told customers to physically replace compromised

Carl B. Johnson Nov 26, 2023 7 min read
Cyber Hygiene

What Is Cyber Hygiene? The Daily Habits That Stop Breaches

In March 2023, the FBI's Internet Crime Complaint Center reported that Americans lost over $10.3 billion to cybercrime in 2022 — a 49% increase from 2021. The majority of those losses didn't come from sophisticated nation-state attacks. They came from poor habits: reused passwords, unpatched software,

Carl B. Johnson Jun 08, 2023 7 min read
Supply Chain Attack Examples

Supply Chain Attack Examples: 7 Breaches That Changed Security

In December 2020, security firm FireEye discovered that SolarWinds — a company most people had never heard of — had been compromised by a threat actor who injected malicious code into a routine software update. That single update shipped to roughly 18,000 organizations, including the U.S. Treasury, the Department of

Carl B. Johnson Jun 08, 2023 7 min read