Covers the fundamentals of designing and maintaining employee security policies that protect organizational assets. Topics include access controls, physical security rules, acceptable behavior guidelines, policy communication strategies, and disciplinary frameworks for violations.
posts
In 2023, MGM Resorts lost an estimated $100 million after a threat actor social-engineered a help desk employee using information scraped from LinkedIn. One phone call. One employee without clear verification protocols. That's all it took to shut down slot machines, hotel key cards, and reservation systems across
In 2023, MGM Resorts lost roughly $100 million after a threat actor social-engineered their way past an IT help desk employee — with a single phone call. The attacker didn't exploit a zero-day vulnerability. They didn't brute-force a password. They just talked their way in. And the
