Tag

Ransomware Prevention

Ransomware prevention content provides actionable strategies for defending against ransomware attacks before they encrypt critical data. Articles cover backup protocols, endpoint detection, network segmentation, patch management, and incident response planning tailored to ransomware scenarios.

posts

Employee Cybersecurity Training

Employee Cybersecurity Training: What Actually Works

In January 2024, a finance employee at a multinational firm in Hong Kong transferred $25 million to threat actors after a deepfake video call convinced him his CFO had authorized the payment. No malware. No zero-day exploit. Just a well-trained employee who wasn't trained well enough. That incident

Carl B. Johnson Mar 24, 2024 7 min read
Security Awareness Training Program

Security Awareness Training Program: Build One That Works

In January 2024, Microsoft disclosed that a Russian threat actor group — Midnight Blizzard — had breached executive email accounts using a simple password spray attack against a legacy test account that lacked multi-factor authentication. One of the most technically sophisticated companies on the planet, compromised by one of the oldest tricks

Carl B. Johnson Mar 24, 2024 8 min read
Ransomware Prevention

How to Prevent Ransomware: A Practical Defense Guide

The $1.1 Billion Year That Changed Everything In 2023, ransomware payments topped $1.1 billion globally, according to Chainalysis research. That's more than double the previous year. If you're reading this wondering how to prevent ransomware, understand this first: threat actors aren't slowing

Carl B. Johnson Feb 09, 2024 7 min read
Ransomware Examples

Ransomware Examples: What 2024 Attacks Teach Us

The Ransomware Landscape Right Now Is Brutal In January 2024, the Hive ransomware group's infrastructure had barely been dismantled by the FBI before new ransomware gangs filled the vacuum. If you searched for ransomware examples hoping to understand what's coming next, the best place to start

Carl B. Johnson Feb 09, 2024 7 min read
Ransomware

How Ransomware Spreads: 7 Paths Into Your Network

In September 2023, MGM Resorts lost an estimated $100 million after a social engineering phone call — just one phone call — gave threat actors the foothold they needed to deploy ransomware across the company's entire infrastructure. Slot machines went dark. Hotel key cards stopped working. Reservation systems collapsed. All

Carl B. Johnson Feb 09, 2024 7 min read
Ransomware Protection Tips

Ransomware Protection Tips That Actually Work in 2024

MGM Resorts lost an estimated $100 million from a single ransomware attack in September 2023. The entry point? A social engineering call to the help desk that lasted about ten minutes. That's all it took for the Scattered Spider threat actor group to cripple slot machines, hotel check-in

Carl B. Johnson Feb 09, 2024 7 min read
Data Breach

What Causes a Data Breach: 7 Root Causes Behind Every Attack

In September 2023, MGM Resorts International lost an estimated $100 million after a threat actor social-engineered a help desk employee with a single phone call. One conversation. That's all it took to cripple slot machines, hotel check-in systems, and digital room keys across Las Vegas for over a

Carl B. Johnson Jan 22, 2024 7 min read
Remote Desktop Security Risks

Remote Desktop Security Risks That Breach Networks Daily

In September 2023, the FBI and CISA issued a joint advisory warning that the Play ransomware group had compromised over 300 organizations — and their most common initial access vector was exposed Remote Desktop Protocol. That's not a sophisticated zero-day exploit. That's a login screen sitting wide

Carl B. Johnson Nov 26, 2023 7 min read