Tag

Data Breach Prevention

Explores strategies and best practices for preventing data breaches in organizations of all sizes. Covers topics like access controls, encryption, network monitoring, incident response planning, and employee awareness to help reduce the risk of unauthorized data exposure.

posts

Cybersecurity Tips

Cybersecurity Tips That Actually Stop Breaches in 2024

In February 2024, Change Healthcare — one of the largest health payment processors in the United States — was brought to its knees by a ransomware attack. Patient data for potentially tens of millions of Americans was exposed. The initial access vector? Stolen credentials on a system that lacked multi-factor authentication. One

Carl B. Johnson Jul 10, 2024 7 min read
What Is Cybersecurity

What Is Cybersecurity? A Practitioner's Real-World Guide

In 2023, the FBI's Internet Crime Complaint Center received over 880,000 complaints with potential losses exceeding $12.5 billion — a 22% increase in losses from the year before. That's not a theoretical number. Those are real businesses shuttered, real retirement accounts emptied, and real hospitals

Carl B. Johnson Jul 10, 2024 6 min read
IT Security

IT Security in 2024: What Actually Works Now

In March 2024, UnitedHealth Group's subsidiary Change Healthcare was hit by a ransomware attack that disrupted insurance claim processing for hospitals and pharmacies across the United States. The company reportedly paid a $22 million ransom. The attack vector? Stolen credentials used to access a remote system that lacked

Carl B. Johnson Jul 10, 2024 7 min read
Computer Security

Computer Security: What Actually Works in 2024

In February 2024, Change Healthcare — one of the largest health technology companies in the U.S. — got hit with a ransomware attack that disrupted pharmacies, hospitals, and insurance claims processing across the entire country. UnitedHealth Group confirmed the breach affected a substantial portion of the American population. The attack vector?

Carl B. Johnson Jul 10, 2024 7 min read
Cyber Security

Cyber Security in 2024: What Actually Stops Breaches

The Breach That Changed How I Think About Cyber Security In January 2024, Microsoft disclosed that Russian threat actor Midnight Blizzard had been lurking inside their corporate email systems since November 2023. Not a small startup. Not a company that skimps on security budgets. Microsoft. If their cyber security defenses

Carl B. Johnson May 13, 2024 7 min read
Cyber Security Definition

Cyber Security Definition: What It Actually Means in 2024

In March 2024, a Change Healthcare breach exposed the protected health information of tens of millions of Americans and disrupted pharmacy operations nationwide. A single set of stolen credentials — no multi-factor authentication in place — gave a threat actor the keys to one of the largest healthcare payment processors in the

Carl B. Johnson May 13, 2024 6 min read
Cybersecurity Definition

Cybersecurity Definition: What It Really Means in 2024

In March 2024, a ransomware attack on Change Healthcare — one of the largest health payment processors in the U.S. — disrupted claims processing for pharmacies and hospitals nationwide. Patients couldn't fill prescriptions. Providers couldn't get paid. A single breach paralyzed a massive chunk of American healthcare

Carl B. Johnson May 13, 2024 7 min read
Cloud Computing Security

Cloud Computing Security: 7 Mistakes That Cause Breaches

In January 2024, Microsoft disclosed that a Russian threat actor group known as Midnight Blizzard had breached its corporate email systems — not through some exotic zero-day exploit, but through a password spray attack on a legacy test account that lacked multi-factor authentication. If Microsoft, a company that literally sells cloud

Carl B. Johnson May 13, 2024 7 min read
Define Cyber

Define Cyber: What Security Pros Actually Mean

The Word Everyone Uses But Few Can Explain In March 2024, the FBI's Internet Crime Complaint Center (IC3) released its 2023 annual report showing $12.5 billion in reported cybercrime losses — a 22% jump from the year before. Politicians, news anchors, and boardroom executives all toss around the

Carl B. Johnson May 04, 2024 6 min read
NIST Standards

NIST Standards: What Actually Matters for Your Security

In February 2024, NIST released version 2.0 of its Cybersecurity Framework — the biggest overhaul in a decade. Within weeks, I watched organizations scramble to figure out what changed and what they needed to do about it. Most of them were still struggling to implement version 1.1. Here'

Carl B. Johnson May 03, 2024 7 min read