Blog

So far in 2020, the ransomware threat has escalated to a new level in terms of the volume of attacks and the number of ransom demands. And the danger is only going to continue to increase.

The rate at which major security breaches are occurring appears to have reached a cadence that now has many organizations, for better or worse, finally reviewing their overall approach to cybersecurity.

Many SMB and SME companies have not fully segmented their CUI data from the day-to-day operations, presenting a massive challenge to achieve compliance.

While everything changed over the last year, as businesses return to full speed and return to normal stronger, they need to address the basics by examining their IT management and security. There wasn’t a blueprint for moving so many people to remote work, and there isn’t a blueprint for moving employees back. However, this moment is not to be lost, and those who step up and invest in their IT protection and Managed Services will be better off and far ready to move forward than those who do not.

Zero Trust Security requires all users, whether in or outside of a business’ network, to be authenticated, authorized, and continuously validated for security configuration before being granted or keeping access to applications and data. Zero Trust assumes the networks can be local, in the cloud, or a combination with resources anywhere and workers in any location.

Ransomware attacks breach systems, usually through infected email, and lock essential files or networks until the user pays a specified amount of money. On the other hand, Doxware is far more dangerous. This latest form of malware holds a company’s data hostage, including intellectual property, and can compromise the privacy of conversations, photos, and sensitive files.

Barracuda, our trusted partner and leading provider of cloud-enabled security solutions, released recent key findings from a report titled “The State of Office 365 Backup.” Commissioned by Barracuda, the research surveyed global IT decision makers to capture their opinions and perspectives about Office 365, data security, backup and recovery, SaaS solutions, and a variety of related topics.

The National Security Agency has released a guidance document on implementing Zero Trust within networks. The paper “Cybersecurity Information Sheet: Embracing a Zero Trust Security Model” explains what Zero Trust is, why it is necessary, and how to get started.

If you’re a business owner who considers IT a necessary evil that you’d rather not have to think about…you’re not alone. You don’t know what you don’t know, so it’s easier to rely on your IT team to maintain your systems. And there’s nothing wrong with that. Whether it’s an outsourced team or an employee, finding trusted resources to employ their expertise on behalf of your business is the path to sustainable success.

Centrality’s partner, Barracuda, recently spent several months analyzing spear-phishing attacks looking for new patterns and tactics. They share their findings in the new report Spear Phishing: Top Threats and Trends Vol. 5 – Best Practices to Defend Against Evolving Attacks. This in-depth report takes a look at the evolving trends in spear phishing and the new ways attackers are tricking their victims.

A new type of brand impersonation attack is disproportionately using Google-branded sites to trick victims into sharing login credentials. Making up 4 percent of all spear-phishing attacks in the first four months of 2020. Researchers expect to see that number climb as cybercriminals have success harvesting credentials with these attacks.

Gain the IT Support You Need to Manage Your Business  Your small or medium-sized business helps power the global economy. You own or operate one of the firms that provides 90% of the world’s businesses and 50% of its jobs. However, it’s more difficult than ever to run...

Doxware is a recently evolved form of malware. It holds computers hostage and extorts victims by threatening to release sensitive information if a ransom is not paid. Like traditional ransomware, it must first find a way to infect a network or computer using phishing emails. These lures contain evil-intended attachments or links to malicious websites that have code imbedded in them that is capable of exploiting unpatched security vulnerabilities.

Cybersecurity needs to be a proactive strategy. While making plans for 2021, consider including an investment in your security before something happens rather than waiting to respond to a security crisis. The fact is, all small businesses face a relatively high risk of being targeted. With even a modest investment in cybersecurity defenses, your business will be able to ward off or minimize the majority of potential attacks in 2021.

Health insurer Anthem has agreed to another multimillion-dollar settlement over a cyberattack on its technology that exposed the personal information of nearly 79 million people.

Microsoft has released an update to resolve a vulnerability with the NetLogon service in Windows Domains. The vulnerability is being handled via a two-step approach. The update released in September for Windows Servers adds functionality to prevent devices with an...

Since the first computer virus in 1971, security professionals and computer programmers have been playing catch up. As an industry, they continually detect threats, update defenses, then repeat. Over time, there has been a rise of new defenses; however, each defense triggers a corresponding change in tactics from the bad guys.

There is no doubt that layered security is the best defense in the face of current and future threats to your network. Two solutions are frequently discussed to protect your environment: Managed Antivirus (MAV) and Endpoint Detection and Response (EDR). While these two solutions offer tremendous benefits for your business, as the lines between the two blur – how do you know the difference?

The level of cybercriminal activity related to the COVID- 19 pandemic continues to rise, and these attacks are likely to continue even when a vaccine for the virus is discovered. Phishing attacks purporting to share information about any eagerly awaited COVID-19 vaccine will be launched long before it ever becomes available.

Ransomware operators announced last week they have breached the network of the Louisville the spirits and wine firm, Brown-Forman. The thieves claim to have exfiltrated 1TB of confidential data and plan to put up for auction the most sensitive info and leak the rest.

Managed Endpoint Detection and Response, or EDR, uses artificial intelligence to stop advanced threats and malware at the most vulnerable point – the endpoint. Antivirus isn’t enough to protect data, and traditional antivirus programs are more simplistic and limited in scope compared to the modern EDR systems. These newer systems serve a much more significant role by providing comprehensive protection against digital threats.

Every business needs to know and understand the large variety of today’s email attacks. Data Exfiltration and URL Phishing are two attacks that can have a costly effect on your business. Providing knowledge to your employees helps them understand how these types of attacks work, and how to prevent them. This knowledge can save your business from costly expenses and wasted downtime.

The human systems set up around technology are consistently the weakest link in the security chain. Attention to detail when establishing training and security infrastructure can protect businesses from cyberattacks and their related fallout.

The email and phishing threats faced by organizations today vary greatly in complexity, volume, and the impact they have on businesses and their employees. There are a number of distinct categories of email threats, two of them being Spam and Malware. Spam is...

Will your employees fully return to the office once the disruption caused by the pandemic ends, or will some of your staff continue to work from home as part of your New Normal? Covid-19 rapidly accelerated the work-from-home trend as businesses rushed to adopt remote...

Cybercriminals are continuing to find new techniques to evade detection. Protect your business by keeping your users informed about current attacks. One of the newest tricks is phishing campaigns using reCaptcha walls to block URL scanning services from accessing the...

Amid COVID-19, businesses are collapsing, and some don't have ways to keep working while at home. From shoddy or unsafe Wi-Fi to broken communications, unprepared technology can make remote work miserable. And without an I.T. department, at-home workers are on their...

As the world discovers how to handle COVID-19, spear-phishing attackers are taking advantage of the fear and uncertainty. There has been a steady increase in the number of COVID-19 spear-phishing attacks since January, but a recent spike in this type of attack shows a...

Covid-19 is changing the working world to a remote environment. While social-distancing practice increases personal safety, the problem is there are serious cybersecurity risks with remote work. And these can put a company’s sensitive data at risk. A recent study by...

Centrality Introduces DAtAnchor: Data loss can come from cybercriminals on the network, or they can come from insiders. Nearly 70% of employees report leaving companies with data. DAtAnchor protects against these situations when sensitive data ends up where it...

In early February 2020, Fifth Third had to notify customers some of their employees had stolen customer information. The data exposed included names, social security numbers, addresses, phone numbers, dates of birth, mother’s maiden names, driver’s license...

Security experts are warning of new phishing campaigns designed to capitalize on global fears of the fast-spreading coronavirus. True to form, cyber-criminals are looking to exploit the widespread need for news about the outbreak by using it as a phishing lure....

According to the most recent figures from Coveware, the average ransomware payment more than doubled quarter-on-quarter in the final three months of 2019 and average downtime grew by several days, according to the latest figures. Cybersecurity should be a top priority...

A Sherwood, Arkansas 60+ year fundraising firm business has been forced to close its doors and suspend services. This forced letting 300 employees go just before Christmas following a crippling ransomware attack in October. The Heritage Company is a professional...

Email is the primary way to attack your security and compromise your business. Are you ready in 2020 to keep your company safe from Cyber Attack? Business email compromise (BEC) attacks pack quite a punch, despite making up a comparatively small percentage of the...

While the holidays are a fun time of the year to give gifts — it can be one of the most dangerous for your credit cards. Most of us will spend money in ways that are out of character for our habits. There is a good chance your holiday gift list will taking your...

CompleteCloud has changed how businesses to leverage, manage and pay for their IT services.  CompleteCloud helps businesses stop the cycle of maintaining and upgrading their IT equipment.  This allows you to focus on what matters most- your business.  Technology is no...

According to the McAfee Report in August 2019, Ransomware attacks grew by 118%, with new ransomware families detected, and new threat actors using innovative techniques. Do you know the last time you evaluated your email security? Unfortunately, most organizations’ IT...

Security continues to be top of mind for businesses. It seems as if there are always breaking headlines that make the news about companies, and even entire cities, that have fallen victim to cyber attacks. Regardless of size or industry type, there are always bad...

Regardless of industry or size, technology lies at the center of every business. However, in most small to medium sized companies there are certain limitations when it comes to IT. With an outsourced IT managed services provider, your organization can save time and...

Finding a Phone System Partner Bullitt County Health Department (BHCD) was starting the process of looking for a new phone system partner. Their existing system was considered legacy and was no longer supported by the manufacturer. This made finding replacement parts...

Welcome to our team, Brenda! Read more about her role at Centrality in this exclusive employee spotlight.     What is your role at Centrality, and what do you do for clients? My role as a Business Development Specialist is to build long term professional...

Kentucky Elder Law is a Louisville based law firm that specializes in estate planning as well as planning for long-term care. When Centrality was introduced to their team, they were experiencing issues that many businesses face when it comes to IT Support –...