Compass IT Compliance Blog / Cybersecurity (10)

OWASP Top 10: Why Compliance to OWASP Matters

by Jake Dwares on November 10, 2022 at 1:00 PM

OWASP Top 10: Why Compliance to OWASP Matters

During a recent web application penetration test, my Compass IT Compliance colleague Jesse Roberts was quickly able to identify and exploit a coding vulnerability on a client’s public facing web portal. As part of the engagement, Jesse was initially granted “standard user” access to t …

Read Story

Topics: Compliance Penetration Testing Vulnerability Scanning Cybersecurity

Only YOU Can Prevent Cyberattacks This October (And Beyond)

by Brian Kelly on October 13, 2022 at 4:30 PM

Smokey the Bear stands next to a sign that reads "Fire Danger: Moderate"

Some of you may be old enough to remember Smokey the Bear. Created in 1944, the Smokey Bear Wildfire Prevention campaign is the longest-running public service advertising campaign in U.S. history. In 1947, Smokey’s slogan became "Remember... Only YOU Can Prevent Forest Fires".

Read Story

Topics: Information Security Security Awareness Training Cybersecurity Phishing Organizational Culture

MSP Breaches Opening the Door to Further Attacks on Clients

by Jake Dwares on August 10, 2022 at 1:00 PM

A hand stops a row of dominoes from falling

Is your Managed Service Provider (MSP) protecting yours and your client’s data? Are you regularly assessing your MSP and the rest of your vendors? It is no secret that hackers have gained access to more and larger companies over the past few years, but a new malicious tactic is coming …

Read Story

Topics: Vendor Management Cybersecurity Ransomware

Access Control to Combat Domestic and Global Threats

by Bryan Borrayo on August 4, 2022 at 1:00 PM

A map shows a connected Earth as spokes connect one point to another

By now, most cybersecurity professionals have heard of the term access control. Access control is a method of guaranteeing that users are who they say they are and that they have the appropriate access to company data. Access control is comprised of two main components: authentication …

Read Story

Topics: Information Security Policies and Procedures Cybersecurity Ransomware

What Does a Passwordless Future Look Like?

by Nicholas Foisy on July 28, 2022 at 1:00 PM

A man logs into Instagram on his cellphone

Passwords have served as a critical element in the work we do here at Compass IT Compliance since our founding over a decade ago. Whether it is educating individuals on the best practices for developing strong passwords, creating a password policy, utilizing automated programs to atte …

Read Story

Topics: Policies and Procedures Cybersecurity Social Engineering Phishing

Cybersecurity Controls & Configurations – Are You Locking Your Doors?

by Geoff Yeagley on July 20, 2022 at 3:15 PM

A hotel door with large locking mechanisms

Summertime is the peak time for people to go on vacation. The kids are off from school and the weather is finally nice in most of the country. When you go on vacation, no matter how far you travel, there are certain precautions that you take to ensure that your home is safe while you …

Read Story

Topics: Information Security Risk Management Cybersecurity Risk Assessment
8 9 10 11 12

See all

See all

Subscribe by email