Tag

Zero Trust Security

Zero trust security content examines the principle of never trusting and always verifying every user, device, and connection. Articles explore micro-segmentation, least-privilege access, continuous monitoring, and how organizations transition from perimeter-based defenses to zero trust models.

posts

Ransomware Attack Prevention

Ransomware Attack Prevention: A Practical 2026 Guide

The $1.1 Billion Problem You Can't Afford to Ignore In 2023, ransomware payments exceeded $1.1 billion globally, according to Chainalysis. That number only captured what was paid — not the downtime, legal fees, regulatory penalties, or permanent reputational damage. I've worked with organizations that survived

Carl B. Johnson Nov 30, 2019 7 min read
Ransomware Prevention

How to Prevent Ransomware: A Practical Defense Guide

The Attack That Shut Down 100 Million Prescriptions In February 2024, a ransomware attack on Change Healthcare paralyzed pharmacy operations across the United States. Hospitals couldn't process claims. Patients couldn't fill prescriptions. UnitedHealth Group ultimately disclosed the breach affected roughly 100 million individuals — the largest healthcare

Carl B. Johnson Nov 30, 2019 7 min read
Ransomware Protection

Ransomware Protection Tips That Actually Work in 2026

A Single Click Cost One Hospital Chain $100 Million In 2024, Change Healthcare — the payment processing backbone for thousands of U.S. healthcare providers — was crippled by a ransomware attack attributed to the ALPHV/BlackCat group. UnitedHealth Group, Change Healthcare's parent company, disclosed that the incident cost over

Carl B. Johnson Nov 26, 2019 7 min read
Data Breach Prevention

Data Breach Prevention: 9 Steps That Actually Work

The Breach That Cost Change Healthcare Everything In February 2024, a threat actor used stolen credentials to access Change Healthcare's systems — systems that lacked multi-factor authentication on a critical remote access portal. The result? A ransomware attack that disrupted pharmacy operations across the United States for weeks and

Carl B. Johnson Nov 26, 2019 6 min read
Password Security Best Practices

Password Security Best Practices That Stop Breaches

The 24 Billion Stolen Passwords Nobody Talks About In 2022, researchers at Digital Shadows found over 24 billion username-and-password pairs circulating on dark web marketplaces and criminal forums. That number has only grown. If you think your organization's credentials aren't in that pile, I'd

Carl B. Johnson Nov 26, 2019 7 min read
Password Manager Benefits

Password Manager Benefits That Stop 80% of Breaches

In 2024, a single set of stolen Snowflake credentials led to the breach of over 165 organizations — including Ticketmaster and AT&T — exposing hundreds of millions of customer records. The root cause wasn't some exotic zero-day exploit. It was reused passwords without multi-factor authentication. Every one of

Carl B. Johnson Nov 02, 2019 7 min read
Multi-Factor Authentication

Multi-Factor Authentication Setup: A Practical Guide

In 2023, MGM Resorts lost an estimated $100 million after a threat actor bypassed their security by social engineering the help desk into resetting an employee's credentials — credentials that lacked properly enforced multi-factor authentication at critical junctures. That single phone call cascaded into one of the most expensive

Carl B. Johnson Nov 02, 2019 8 min read
Insider Threat Awareness

Insider Threat Awareness: What Most Companies Miss

The Threat Already Inside Your Building In January 2023, the FBI arrested a former GE Aviation employee who had spent years downloading thousands of proprietary turbine technology files and transferring trade secrets to a competing business in China. The insider had legitimate access. He passed every background check. He sat

Carl B. Johnson Oct 01, 2019 6 min read