Binary Code

Computers and other electronic devices store information as Binary Code (which is a series of 1s and 0s that might look like this: 10101001 01101100 11001010).
Network Topology Map

A Network Topology Map is a diagram of a computer network's components, including network access points and connections between its various parts.
Fake Anti-Virus Software

Fake Anti-Virus Software - also known as 'scareware' - is designed to trick you into buying worthless anti-virus protection that you do not need.
Domain Name System

The Domain Name System (DNS) is like the ‘telephone book’ of the Web – it translates a website's name into its corresponding numerical IP address on the Internet.
Social Engineering

A Phishing e-mail is an attempt to trick the recipient into giving up information, such as account, credit card or password information.
Data Encryption

Data Encryption is the intentional scrambling of information into unreadable form - until it is later converted back into its original form by the intended recipient.
Botnet, or Compromised Computers

A Botnet is a collection of computers compromised by a malware attack that can be controlled remotely (via the Internet) to attack websites, send out spam emails, etc.
Distributed Denial of Service Attack

A Distributed Denial of Service (DDoS) Attack can use a botnet to force a website, network or other resource to shut down by overloading it with requests for data.
USB Flash Drive

A USB Flash Drive, aka a 'stick drive' or 'thumb drive' is a portable data storage device which connects to a computer's USB port to send and receive data.
Electronic vs. Static Media

Static Media is something like a book, magazine or printed photo, while Electronic or Digital Media (websites, digital photos, etc.) requires power to be viewed.
Administrative Access

A user with Administrative Rights has unrestricted power to create, modify or delete files, folders, settings and programs on a particular computer.

Security Awareness Basics: Social Engineering

Posted on February 16, 2017 by Scott Aurnou

Are your employees part of the problem, or part of the solution?

Security awareness is important for organizations of all sizes (and sometimes required by law and/or industry standards). Different organizations face different types of threats, and proper security awareness training should be tailored to the risks your organization is likely to encounter. This series offers a basic overview of security concepts. For awareness training tailored to your employees and the risks your organization is likely to face, contact The Security Advocate.

Tagged with: Baiting, BEC Scams, Business Email Compromise, Cyber Scam, Cyber Threats, Help Desk, Phishing, Pretexting, Scott Aurnou, Security Basics, Security Education, Smishing, Spear Phishing, Tailgating, User Awareness, Vishing, Whaling
Posted in Fraud & Scams, Laptops & Desktops, Network Security, Security Awareness

Security Awareness Basics: Phishing

Posted on February 13, 2017 by Scott Aurnou

Are your employees part of the problem, or part of the solution?

Tagged with: Cyber Threats, Phishing, Security Basics, Security Education, Smishing, Social Engineering, Spear Phishing, User Awareness, Vishing
Posted in Fraud & Scams, Laptops & Desktops, Network Security, Privacy Issues, Security Awareness

Security Awareness Basics: Passwords

Posted on February 8, 2017 by Scott Aurnou

Are your employees part of the problem, or part of the solution?

Tagged with: Cyber Threats, passwords, Scott Aurnou, Security Awareness, Security Awareness Training, Security Basics, Security Education, two-factor authentication, User Awareness
Posted in Laptops & Desktops, Network Security, Privacy Issues, Security Awareness, Smartphones & Tablets

Yesterday’s Massive DDoS Attack Shouldn’t Have Been a Surprise. Here’s Why

Posted on October 22, 2016 by Scott Aurnou

An excerpt from my interview with host Jim Blasingame on The Small Business Advocate radio show earlier this month.

Tagged with: DDoS, Distributed Denial of Service, DYN, IoT Botnet, Mirai Botnet, Scott Aurnou
Posted in Network Security

Cybersecurity 101: What Healthcare Providers Need to Know

Posted on October 6, 2016 by The Security Advocate

By Stephanie J. Rodin, Esq.

Cybersecurity 101 What Healthcare Providers Need to Know By Stephanie J. Rodin, Esq. From a legal perspective, cybersecurity means that all confidential information, including patient health information (PHI), in a healthcare provider’s database or server is protected, confidential, and completely compliant with the Health Insurance Portability and Accountability Act (HIPAA).

In order to do so, healthcare providers should:

Conduct a risk assessment of their data;
Develop and institute data security policies; and
Test the effectiveness of those policies to make sure that they are running correctly.

In the first part of the risk assessment, the healthcare provider should identify sensitive data, including names, Social Security numbers, facial photographs, email addresses, health information, and anything that’s considered confidential and protected pursuant to the law. All PHI should also be encrypted, as mandated by HIPAA.

The next step is to assess the risk of exposure. For example, what’s the risk of data being exposed through a security breach or because someone inappropriately obtains access to private and protected information? Is there a technical risk? Is there a risk for human error? Is there a physical security risk, such as the place where the sensitive data resides in the office or storage unit? Or perhaps there is a virtual security risk from the network access controls or password protocols being utilized by the practice?
Read more ›

Tagged with: Compliance, Healthcare Provider, HIPAA, Patient Health Information, PHI, Risk Assessment, Security Policy, Stephanie J. Rodin, Stephanie Rodin
Posted in Guest Posts, Privacy Issues

RT @JimBlasingame: How the government cyber-security forces guard the U.S. election. @saurnou joins Jim to report on how the #government #c… 01:44:47 AM December 06, 2020 from Twitter Web App Reply Retweet Favorite
RT @AndreiCherny: A family of Muslim immigrants from Turkey newly arrived in Germany. The boy in the yellow t-shirt went on to lead the te… 01:43:10 AM December 06, 2020 from Twitter Web App Reply Retweet Favorite
RT @_marcba: Developers can be cruel sometimes https://t.co/kpYvO9aZsu 03:46:39 PM June 29, 2020 from Twitter Web App Reply Retweet Favorite

@saurnou