Tag

Cybersecurity Awareness

Articles on cybersecurity awareness cover the foundational knowledge individuals and organizations need to recognize and respond to digital threats. Topics include safe browsing habits, password hygiene, social engineering tactics, and building a security-first culture across teams.

posts

Computer Security Service

Computer Security Service: What Actually Works in 2025

The Breach That Started With a Help Desk Call In September 2023, MGM Resorts lost an estimated $100 million after a threat actor social-engineered their way through a help desk phone call. The attacker didn't need a zero-day exploit. They didn't crack an encryption algorithm. They

Carl B. Johnson Sep 27, 2025 7 min read
Business Email Compromise

Business Email Compromise: The $2.9B Threat in 2025

In December 2024, a finance employee at a multinational firm in Hong Kong wired $25 million after a video call with what appeared to be the company's CFO and several colleagues. Every person on that call was a deepfake. The real CFO had never scheduled the meeting. This

Carl B. Johnson Sep 22, 2025 7 min read
Smishing Attack Examples

Smishing Attack Examples: 7 Real Texts That Steal Data

In March 2025, the FBI's IC3 warned that Americans lost over $470 million to phishing and smishing schemes in the prior reporting year — and text-based attacks were growing faster than any other vector. I've personally triaged incidents where a single SMS message led to a six-figure

Carl B. Johnson Sep 21, 2025 8 min read
Social Engineering Examples

Social Engineering Examples: 7 Real Attacks in 2025

In September 2023, a threat actor called Scattered Spider called MGM Resorts' IT help desk, impersonated an employee they found on LinkedIn, and convinced a technician to reset credentials. The result: an estimated $100 million in losses, a ransomware lockout across casino floors and hotel systems, and weeks of

Carl B. Johnson Sep 21, 2025 7 min read
Ransomware

What Is Ransomware? A Security Pro's Blunt Guide

A Single Click That Cost a Hospital $22 Million In February 2024, Change Healthcare — the payment processing backbone for thousands of U.S. hospitals and pharmacies — was hit by the ALPHV/BlackCat ransomware group. UnitedHealth Group, its parent company, confirmed paying approximately $22 million in ransom. The attack disrupted prescription

Carl B. Johnson Aug 11, 2025 7 min read
Ransomware Examples

Ransomware Examples 2025: Real Attacks Shaping Defenses

Ransomware Isn't Slowing Down — It's Shapeshifting In February 2024, Change Healthcare suffered what became one of the most devastating ransomware attacks in U.S. history. The ALPHV/BlackCat ransomware group crippled the nation's largest health care payment processor, disrupting pharmacies, hospitals, and insurance claims

Carl B. Johnson Jul 19, 2025 7 min read
Data Breach

What Causes a Data Breach: 7 Root Causes in 2025

In May 2024, Ticketmaster confirmed a breach that exposed the personal data of over 560 million customers. The attack vector? Stolen credentials used to access a third-party cloud database. It wasn't some exotic zero-day exploit. It was a login and password that fell into the wrong hands. If

Carl B. Johnson Jul 15, 2025 7 min read
Strong Passwords

How to Create a Strong Password That Actually Stops Hackers

The 23-Character Password That Still Got Cracked In 2024, a security researcher at Hive Systems demonstrated that a 12-character password using only lowercase letters could be brute-forced in about three weeks with modern GPU hardware. Bump that up to a complex 12-character mix of upper, lower, numbers, and symbols? Still

Carl B. Johnson Jun 15, 2025 7 min read
Password Manager Benefits

Password Manager Benefits That Stop 80% of Breaches

The Breach That Started With "Company2024!" In January 2024, the password "admin" was still the most common credential found in data breaches according to NordPass research. That same year, the Verizon 2024 Data Breach Investigations Report confirmed that stolen credentials were involved in over 77% of

Carl B. Johnson Jun 15, 2025 7 min read
Password Manager

Why Use a Password Manager: The Case Is Settled

The Breach That Started With "CompanyName2024!" In January 2025, a mid-size healthcare provider in the Midwest discovered that an attacker had been living inside their network for eleven weeks. The initial access point? A reused password. An employee had used the same credential for their company email and

Carl B. Johnson Jun 15, 2025 7 min read