non-technical

Eight firms had a bunch of email accounts get hacked because of failures in their cybersecurity programs. According to the SEC, what did they do wrong?

• Full Story

A few years ago, we migrated email from an "on-premises" Exchange server to Microsoft's cloud email service, Exchange Online (part of their Microsoft 365 suite of SaaS applications, formerly called Office 365). In

• Full Story

EDIT 2020-08-03: It looks like the Bitcoin scam was conducted by three younger people (one is a minor) after a long period of reconnaissance and successful social engineering attacks against internal Twitter employees.

• Full Story

I've heard the phrase "new normal" a lot in the last two months. I'm sure you have too. Everyone is trying to figure out what "normal" will look like in the future and

• Full Story

I got an email update from CISA yesterday telling me that apparently today is "Slam the Scam" Day. You can read the update in its entirety here. This is an excerpt: In association

• Full Story

SEM developed a new risk questionnaire - check it out!

• Full Story

Edit 2020-08-12:We can file the original post (below) under the "things that did not age well during COVID" category. I just read the news that Mozilla, the company behind Firefox, will be

• Full Story

Last week we dealt with a phishing attack that turned out to be a bit scary. The attack used a technique that I knew was possible, but had only read about before (check

• Full Story

We use passwords everywhere and humans have a hard time with this. What can you do?

• Full Story

If you have been on the internet much in the last 20-ish years, you may have noticed the padlock symbol next to the URL in your address bar. Here's what it looks like

• Full Story

Using the terms "two-step authentication" and "two-factor authentication" interchangeably might give people a false sense of security.

• Full Story