Tag

Endpoint Security

Comprehensive resources on securing laptops, desktops, mobile devices, and other endpoints that connect to your network. Covers endpoint detection and response tools, device hardening, patch management, encryption, and policies that minimize the attack surface across distributed environments.

posts

Computer Virus Prevention

Computer Virus Prevention: 9 Steps That Actually Work

The Virus That Cost a Hospital $65 Million In 2017, the WannaCry ransomware tore through the UK's National Health Service, locking down systems at over 80 organizations and forcing hospitals to divert ambulances. The estimated cost exceeded £92 million. The root cause? Unpatched Windows machines running a known

Carl B. Johnson Jul 06, 2026 5 min read
Types of Malware

Types of Malware: What Every Organization Must Know

In 2023, MGM Resorts lost an estimated $100 million after a social engineering attack opened the door to ransomware that crippled casino floors, hotel check-ins, and digital room keys for days. The attackers didn't use some exotic, never-before-seen weapon. They used well-known types of malware — the same categories

Carl B. Johnson Jul 02, 2026 5 min read
Keylogger Attack

Keylogger Attack: How Hackers Steal Every Keystroke

In 2023, the FBI dismantled a cybercriminal operation that used the Snake malware — a sophisticated keylogger that had quietly exfiltrated credentials from government networks across 50 countries for nearly two decades. Every password. Every internal message. Every classified document typed into a keyboard. That's the reality of a

Carl B. Johnson Jun 28, 2026 5 min read
Mobile Device Security Policy

Mobile Device Security Policy: Build One That Works

A Single Lost Phone Cost This Company $4.9 Million In 2023, a healthcare organization reported a breach to HHS that started with one unencrypted smartphone left in an airport lounge. Patient records, internal credentials, VPN configurations — all exposed. The settlement and remediation costs were staggering. And here's

Carl B. Johnson Jun 18, 2026 6 min read
BYOD Security Risks

BYOD Security Risks: What Your Policy Is Missing

In 2023, a single employee's personal phone led to one of the most damaging casino breaches in history. Threat actors used social engineering to compromise MGM Resorts, and the attack vector started with a device the company didn't fully control. The resulting disruption cost MGM over

Carl B. Johnson Jun 08, 2026 5 min read
Computer Virus Prevention

Computer Virus Prevention: 9 Steps That Actually Work

A Single Click Cost One Hospital $28 Million In 2024, Change Healthcare — a unit of UnitedHealth Group — suffered a ransomware attack that started with compromised credentials and insufficient access controls. The fallout disrupted healthcare claims across the United States for weeks. The company paid a $22 million ransom, and total

Carl B. Johnson Jun 04, 2026 5 min read
Computer Virus Prevention

Computer Virus Prevention: 9 Defenses That Work in 2026

In February 2024, Change Healthcare — one of the largest health payment processors in the United States — was hit by a ransomware attack that disrupted pharmacy operations, delayed patient care, and ultimately cost UnitedHealth Group an estimated $872 million in the first quarter alone. The attack vector? Stolen credentials and the

Carl B. Johnson May 28, 2026 5 min read
Mobile Device Security Policy

Mobile Device Security Policy: What Most Orgs Get Wrong

A Single Phone Took Down an Entire Pipeline In 2021, a compromised password — likely harvested from a mobile device or reused across platforms — gave threat actors access to Colonial Pipeline's VPN. The result: fuel shortages across the Eastern United States, a $4.4 million ransom payment, and a

Carl B. Johnson May 18, 2026 6 min read
Mobile Device Security Policy

Mobile Device Security Policy: What Yours Is Missing

In 2023, Verizon's Data Breach Investigations Report found that 74% of all breaches involved the human element — and a growing percentage of those started on a mobile device. I've reviewed mobile device security policies for organizations of every size, and here's the uncomfortable truth:

Carl B. Johnson Apr 15, 2026 5 min read
Computer Virus Prevention

Computer Virus Prevention: 9 Steps That Actually Work

In 2023, the FBI's Internet Crime Complaint Center (IC3) received over 880,000 complaints with potential losses exceeding $12.5 billion — a 22% increase from the year before. A massive chunk of those losses traced back to malware infections that could have been stopped with basic hygiene. If

Carl B. Johnson Apr 13, 2026 4 min read