Tag

Ransomware Prevention

Ransomware prevention content provides actionable strategies for defending against ransomware attacks before they encrypt critical data. Articles cover backup protocols, endpoint detection, network segmentation, patch management, and incident response planning tailored to ransomware scenarios.

posts

Cybersecurity for Healthcare

Cybersecurity for Healthcare Organizations: A Field Guide

In October 2023, the healthcare sector reported more data breaches than any other industry — again. Prospect Medical Holdings was still recovering from an August ransomware attack that forced hospitals across four states to divert ambulances and revert to paper records. CommonSpirit Health's 2022 breach affected over 600,000

Carl B. Johnson Nov 09, 2023 7 min read
Cloud Storage Security Risks

Cloud Storage Security Risks: What Your Team Ignores

A Single Misconfigured S3 Bucket Exposed 3 Billion Records In early 2023, security researchers discovered that a misconfigured cloud storage instance at Toyota had been leaking vehicle location data for over a decade — affecting 2.15 million customers. That wasn't a sophisticated nation-state attack. It was a configuration

Carl B. Johnson Nov 03, 2023 7 min read
Cybersecurity Training ROI

Cybersecurity Training ROI: The Numbers That Matter

A $2.6 Million Invoice Nobody Budgeted For In March 2023, the city of Oakland, California declared a state of emergency after a ransomware attack crippled city services for weeks. Systems went offline. Sensitive employee data leaked onto the dark web. The estimated recovery cost? Millions. And the initial entry

Carl B. Johnson Jun 09, 2023 7 min read
Cyber Hygiene

What Is Cyber Hygiene? The Daily Habits That Stop Breaches

In March 2023, the FBI's Internet Crime Complaint Center reported that Americans lost over $10.3 billion to cybercrime in 2022 — a 49% increase from 2021. The majority of those losses didn't come from sophisticated nation-state attacks. They came from poor habits: reused passwords, unpatched software,

Carl B. Johnson Jun 08, 2023 7 min read
Stolen Credentials Dark Web

Stolen Credentials Dark Web: Where Your Passwords End Up

In January 2023, Norton LifeLock disclosed that attackers used credential stuffing to compromise roughly 6,450 customer accounts. The passwords didn't come from a Norton breach. They came from stolen credentials dark web marketplaces had been selling for months — maybe years. The attackers simply bought username-password combos from

Carl B. Johnson Jun 06, 2023 7 min read
Phishing

Phishing in 2022: What Actually Works to Stop It

Twilio disclosed in August that a phishing campaign tricked its employees into handing over credentials via SMS, exposing data tied to over 130 organizations — including Signal users. A few weeks later, Uber suffered a breach when an attacker used social engineering to fatigue an employee with multi-factor authentication push requests

Carl B. Johnson Dec 18, 2022 6 min read
Phishing

Phishing Attacks in 2022: What Actually Works to Stop Them

The Typo That Costs Billions: Why "Phising" Leads You to the Right Problem Here's something I find fascinating: "phising" is one of the most common misspellings in cybersecurity search queries. Thousands of people type it every day looking for information about phishing — the attack

Carl B. Johnson Oct 18, 2022 7 min read
Phishing News

Phishing News: The Attacks Dominating 2022 So Far

In August 2022, Twilio disclosed that a sophisticated phishing campaign had compromised employee credentials and exposed data tied to over 130 organizations — including the encrypted messaging giant Signal. A month earlier, a massive phishing operation dubbed "0ktapus" by researchers at Group-IB had already hit over 130 companies. If

Carl B. Johnson Sep 04, 2022 6 min read
Computer Virus Prevention

Computer Virus Prevention: 9 Steps That Actually Work

In January 2022, a single employee at a European oil storage company opened what looked like a routine invoice. Within hours, the BlackCat ransomware had encrypted critical systems across multiple terminals, disrupting fuel distribution for days. The virus didn't exploit some exotic zero-day vulnerability. It walked through the

Carl B. Johnson Aug 23, 2022 6 min read